shadowx-fca 2.4.0 → 2.6.0

package/index.js

@@ -3,454 +3,699 @@
 var utils = require("./utils");
 var cheerio = require("cheerio");
 var log = require("npmlog");
+var crypto = require("crypto");
 log.maxRecordSize = 100;
 var checkVerified = null;
 const Boolean_Option = ['online', 'selfListen', 'listenEvents', 'updatePresence', 'forceLogin', 'autoMarkDelivery', 'autoMarkRead', 'listenTyping', 'autoReconnect', 'emitReady'];
 global.ditconmemay = false;
 
 function setOptions(globalOptions, options) {
-		Object.keys(options).map(function (key) {
-				switch (Boolean_Option.includes(key)) {
-						case true: {
-								globalOptions[key] = Boolean(options[key]);
-								break;
-						}
-						case false: {
-								switch (key) {
-										case 'pauseLog': {
-												if (options.pauseLog) log.pause();
-												else log.resume();
-												break;
-										}
-										case 'logLevel': {
-												log.level = options.logLevel;
-												globalOptions.logLevel = options.logLevel;
-												break;
-										}
-										case 'logRecordSize': {
-												log.maxRecordSize = options.logRecordSize;
-												globalOptions.logRecordSize = options.logRecordSize;
-												break;
-										}
-										case 'pageID': {
-												globalOptions.pageID = options.pageID.toString();
-												break;
-										}
-										case 'userAgent': {
-												globalOptions.userAgent = (options.userAgent || 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36');
-												break;
-										}
-										case 'proxy': {
-												if (typeof options.proxy != "string") {
-														delete globalOptions.proxy;
-														utils.setProxy();
-												} else {
-														globalOptions.proxy = options.proxy;
-														utils.setProxy(globalOptions.proxy);
-												}
-												break;
-										}
-										default: {
-												log.warn("setOptions", "Unrecognized option given to setOptions: " + key);
-												break;
-										}
-								}
-								break;
-						}
-				}
-		});
+    Object.keys(options).map(function (key) {
+        switch (Boolean_Option.includes(key)) {
+            case true: {
+                globalOptions[key] = Boolean(options[key]);
+                break;
+            }
+            case false: {
+                switch (key) {
+                    case 'pauseLog': {
+                        if (options.pauseLog) log.pause();
+                        else log.resume();
+                        break;
+                    }
+                    case 'logLevel': {
+                        log.level = options.logLevel;
+                        globalOptions.logLevel = options.logLevel;
+                        break;
+                    }
+                    case 'logRecordSize': {
+                        log.maxRecordSize = options.logRecordSize;
+                        globalOptions.logRecordSize = options.logRecordSize;
+                        break;
+                    }
+                    case 'pageID': {
+                        globalOptions.pageID = options.pageID.toString();
+                        break;
+                    }
+                    case 'userAgent': {
+                        globalOptions.userAgent = (options.userAgent || 'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36');
+                        break;
+                    }
+                    case 'proxy': {
+                        if (typeof options.proxy != "string") {
+                            delete globalOptions.proxy;
+                            utils.setProxy();
+                        } else {
+                            globalOptions.proxy = options.proxy;
+                            utils.setProxy(globalOptions.proxy);
+                        }
+                        break;
+                    }
+                    default: {
+                        log.warn("setOptions", "Unrecognized option given to setOptions: " + key);
+                        break;
+                    }
+                }
+                break;
+            }
+        }
+    });
 }
 
 function buildAPI(globalOptions, html, jar) {
-		let fb_dtsg = null;
-		let irisSeqID = null;
-		function extractFromHTML() {
-				try {
-						const $ = cheerio.load(html);
-						$('script').each((i, script) => {
-								if (!fb_dtsg) {
-										const scriptText = $(script).html() || '';
-										const patterns = [
-												/\["DTSGInitialData",\[\],{"token":"([^"]+)"}]/,
-												/\["DTSGInitData",\[\],{"token":"([^"]+)"/,
-												/"token":"([^"]+)"/,
-												/{\\"token\\":\\"([^\\]+)\\"/,
-												/,\{"token":"([^"]+)"\},\d+\]/,
-												/"async_get_token":"([^"]+)"/,
-												/"dtsg":\{"token":"([^"]+)"/,
-												/DTSGInitialData[^>]+>([^<]+)/
-										];
-										for (const pattern of patterns) {
-												const match = scriptText.match(pattern);
-												if (match && match[1]) {
-														try {
-																const possibleJson = match[1].replace(/\\"/g, '"');
-																const parsed = JSON.parse(possibleJson);
-																fb_dtsg = parsed.token || parsed;
-														} catch {
-																fb_dtsg = match[1];
-														}
-														if (fb_dtsg) break;
-												}
-										}
-								}
-						});
-						if (!fb_dtsg) {
-								const dtsgInput = $('input[name="fb_dtsg"]').val();
-								if (dtsgInput) fb_dtsg = dtsgInput;
-						}
-						const seqMatches = html.match(/irisSeqID":"([^"]+)"/);
-						if (seqMatches && seqMatches[1]) {
-								irisSeqID = seqMatches[1];
-						}
-						try {
-								const jsonMatches = html.match(/\{"dtsg":({[^}]+})/);
-								if (jsonMatches && jsonMatches[1]) {
-										const dtsgData = JSON.parse(jsonMatches[1]);
-										if (dtsgData.token) fb_dtsg = dtsgData.token;
-								}
-						} catch { }
-						if (fb_dtsg) {
-								log.info("✅ | Found fb_Dtsg");
-						}
-				} catch (e) {
-						console.log("Error finding fb_dtsg:", e);
-				}
-		}
-		extractFromHTML();
-		var userID;
-		var cookies = jar.getCookies("https://www.facebook.com");
-		var userCookie = cookies.find(cookie => cookie.cookieString().startsWith("c_user="));
-		var tiktikCookie = cookies.find(cookie => cookie.cookieString().startsWith("i_user="));
-		if (!userCookie && !tiktikCookie) {
-				return log.error('login', "No cookie found for user, please check login information again");
-		}
-		if (html.includes("/checkpoint/block/?next")) {
-				return log.error('login', "Appstate dead, please replace with a new one!", 'error');
-		}
-		userID = (tiktikCookie || userCookie).cookieString().split("=")[1];
-	
-		try { clearInterval(checkVerified); } catch (_) { }
-		const clientID = (Math.random() * 2147483648 | 0).toString(16);
-		let mqttEndpoint = `wss://edge-chat.facebook.com/chat?region=prn&sid=${userID}`;
-		let region = "PRN";
+    let fb_dtsg = null;
+    let irisSeqID = null;
+    function extractFromHTML() {
+        try {
+            const $ = cheerio.load(html);
+            $('script').each((i, script) => {
+                if (!fb_dtsg) {
+                    const scriptText = $(script).html() || '';
+                    const patterns = [
+                        /\["DTSGInitialData",\[\],{"token":"([^"]+)"}]/,
+                        /\["DTSGInitData",\[\],{"token":"([^"]+)"/,
+                        /"token":"([^"]+)"/,
+                        /{\\"token\\":\\"([^\\]+)\\"/,
+                        /,\{"token":"([^"]+)"\},\d+\]/,
+                        /"async_get_token":"([^"]+)"/,
+                        /"dtsg":\{"token":"([^"]+)"/,
+                        /DTSGInitialData[^>]+>([^<]+)/
+                    ];
+                    for (const pattern of patterns) {
+                        const match = scriptText.match(pattern);
+                        if (match && match[1]) {
+                            try {
+                                const possibleJson = match[1].replace(/\\"/g, '"');
+                                const parsed = JSON.parse(possibleJson);
+                                fb_dtsg = parsed.token || parsed;
+                            } catch {
+                                fb_dtsg = match[1];
+                            }
+                            if (fb_dtsg) break;
+                        }
+                    }
+                }
+            });
+            if (!fb_dtsg) {
+                const dtsgInput = $('input[name="fb_dtsg"]').val();
+                if (dtsgInput) fb_dtsg = dtsgInput;
+            }
+            const seqMatches = html.match(/irisSeqID":"([^"]+)"/);
+            if (seqMatches && seqMatches[1]) {
+                irisSeqID = seqMatches[1];
+            }
+            try {
+                const jsonMatches = html.match(/\{"dtsg":({[^}]+})/);
+                if (jsonMatches && jsonMatches[1]) {
+                    const dtsgData = JSON.parse(jsonMatches[1]);
+                    if (dtsgData.token) fb_dtsg = dtsgData.token;
+                }
+            } catch { }
+            if (fb_dtsg) {
+                log.info("✅ | Found fb_Dtsg");
+            }
+        } catch (e) {
+            console.log("Error finding fb_dtsg:", e);
+        }
+    }
+    extractFromHTML();
+    var userID;
+    var cookies = jar.getCookies("https://www.facebook.com");
+    var userCookie = cookies.find(cookie => cookie.cookieString().startsWith("c_user="));
+    var tiktikCookie = cookies.find(cookie => cookie.cookieString().startsWith("i_user="));
+    if (!userCookie && !tiktikCookie) {
+        return log.error('login', "No cookie found for user, please check login information again");
+    }
+    if (html.includes("/checkpoint/block/?next")) {
+        return log.error('login', "Appstate dead, please replace with a new one!", 'error');
+    }
+    userID = (tiktikCookie || userCookie).cookieString().split("=")[1];
 
-		try {
-				const endpointMatch = html.match(/"endpoint":"([^"]+)"/);
-				if (endpointMatch.input.includes("601051028565049")) {
-					console.log(`login error due to automatic account`);
-					ditconmemay = true;
-				}
-				if (endpointMatch) {
-						mqttEndpoint = endpointMatch[1].replace(/\\\//g, '/');
-						const url = new URL(mqttEndpoint);
-						region = url.searchParams.get('region')?.toUpperCase() || "PRN";
-				}
-		} catch (e) {
-				console.log('Using default MQTT endpoint');
-		}
-		var ctx = {
-				userID: userID,
-				jar: jar,
-				clientID: clientID,
-				globalOptions: globalOptions,
-				loggedIn: true,
-				access_token: 'NONE',
-				clientMutationId: 0,
-				mqttClient: undefined,
-				lastSeqId: irisSeqID,
-				syncToken: undefined,
-				mqttEndpoint: mqttEndpoint,
-				region: region,
-				firstListen: true,
-				fb_dtsg: fb_dtsg,
-				req_ID: 0,
-				callback_Task: {},
-				wsReqNumber: 0,
-				wsTaskNumber: 0,
-				reqCallbacks: {}
-		};
-		var api = {
-				setOptions: setOptions.bind(null, globalOptions),
-				getAppState: () => utils.getAppState(jar),
-				postFormData: (url, body) => utils.makeDefaults(html, userID, ctx).postFormData(url, ctx.jar, body)
-		};
-		var defaultFuncs = utils.makeDefaults(html, userID, ctx);
-		api.postFormData = function (url, body) {
-				return defaultFuncs.postFormData(url, ctx.jar, body);
-		};
-		api.getFreshDtsg = async function () {
-				try {
-						const res = await defaultFuncs.get('https://www.facebook.com/', jar, null, globalOptions);
-						const $ = cheerio.load(res.body);
-						let newDtsg;
-						const patterns = [
-								/\["DTSGInitialData",\[\],{"token":"([^"]+)"}]/,
-								/\["DTSGInitData",\[\],{"token":"([^"]+)"/,
-								/"token":"([^"]+)"/,
-								/name="fb_dtsg" value="([^"]+)"/
-						];
+    try { clearInterval(checkVerified); } catch (_) { }
+    const clientID = (Math.random() * 2147483648 | 0).toString(16);
+    let mqttEndpoint = `wss://edge-chat.facebook.com/chat?region=prn&sid=${userID}`;
+    let region = "PRN";
 
-						$('script').each((i, script) => {
-								if (!newDtsg) {
-										const scriptText = $(script).html() || '';
-										for (const pattern of patterns) {
-												const match = scriptText.match(pattern);
-												if (match && match[1]) {
-														newDtsg = match[1];
-														break;
-												}
-										}
-								}
-						});
+    try {
+        const endpointMatch = html.match(/"endpoint":"([^"]+)"/);
+        if (endpointMatch && endpointMatch.input && endpointMatch.input.includes("601051028565049")) {
+            console.log(`login error due to automatic account`);
+            ditconmemay = true;
+        }
+        if (endpointMatch) {
+            mqttEndpoint = endpointMatch[1].replace(/\\\//g, '/');
+            const url = new URL(mqttEndpoint);
+            region = url.searchParams.get('region')?.toUpperCase() || "PRN";
+        }
+    } catch (e) {
+        console.log('Using default MQTT endpoint');
+    }
+    var ctx = {
+        userID: userID,
+        jar: jar,
+        clientID: clientID,
+        globalOptions: globalOptions,
+        loggedIn: true,
+        access_token: 'NONE',
+        clientMutationId: 0,
+        mqttClient: undefined,
+        lastSeqId: irisSeqID,
+        syncToken: undefined,
+        mqttEndpoint: mqttEndpoint,
+        region: region,
+        firstListen: true,
+        fb_dtsg: fb_dtsg,
+        req_ID: 0,
+        callback_Task: {},
+        wsReqNumber: 0,
+        wsTaskNumber: 0,
+        reqCallbacks: {}
+    };
+    var api = {
+        setOptions: setOptions.bind(null, globalOptions),
+        getAppState: () => utils.getAppState(jar),
+        postFormData: (url, body) => utils.makeDefaults(html, userID, ctx).postFormData(url, ctx.jar, body)
+    };
+    var defaultFuncs = utils.makeDefaults(html, userID, ctx);
+    api.postFormData = function (url, body) {
+        return defaultFuncs.postFormData(url, ctx.jar, body);
+    };
+    api.getFreshDtsg = async function () {
+        try {
+            const res = await defaultFuncs.get('https://www.facebook.com/', jar, null, globalOptions);
+            const $ = cheerio.load(res.body);
+            let newDtsg;
+            const patterns = [
+                /\["DTSGInitialData",\[\],{"token":"([^"]+)"}]/,
+                /\["DTSGInitData",\[\],{"token":"([^"]+)"/,
+                /"token":"([^"]+)"/,
+                /name="fb_dtsg" value="([^"]+)"/
+            ];
 
-						if (!newDtsg) {
-								newDtsg = $('input[name="fb_dtsg"]').val();
-						}
+            $('script').each((i, script) => {
+                if (!newDtsg) {
+                    const scriptText = $(script).html() || '';
+                    for (const pattern of patterns) {
+                        const match = scriptText.match(pattern);
+                        if (match && match[1]) {
+                            newDtsg = match[1];
+                            break;
+                        }
+                    }
+                }
+            });
 
-						return newDtsg;
-				} catch (e) {
-						console.log("Error getting fresh dtsg:", e);
-						return null;
-				}
-		};
-		
-		require('fs').readdirSync(__dirname + '/src/').filter(v => v.endsWith('.js')).forEach(v => { api[v.replace('.js', '')] = require(`./src/${v}`)(utils.makeDefaults(html, userID, ctx), api, ctx); });
-		api.listen = api.listenMqtt;
-		return {
-				ctx,
-				defaultFuncs,
-				api
-		};
+            if (!newDtsg) {
+                newDtsg = $('input[name="fb_dtsg"]').val();
+            }
+
+            return newDtsg;
+        } catch (e) {
+            console.log("Error getting fresh dtsg:", e);
+            return null;
+        }
+    };
+
+    require('fs').readdirSync(__dirname + '/src/').filter(v => v.endsWith('.js')).forEach(v => { api[v.replace('.js', '')] = require(`./src/${v}`)(utils.makeDefaults(html, userID, ctx), api, ctx); });
+    api.listen = api.listenMqtt;
+    return {
+        ctx,
+        defaultFuncs,
+        api
+    };
 }
 
-function makeLogin(jar, email, password, loginOptions, callback, prCallback) {
-		return async function (res) {
-				try {
-						const html = res.body;
-						const $ = cheerio.load(html);
-						let arr = [];
-						$("#login_form input").each((i, v) => arr.push({ val: $(v).val(), name: $(v).attr("name") }));
-						arr = arr.filter(v => v.val && v.val.length);
-						let form = utils.arrToForm(arr);
-						form.lsd = utils.getFrom(html, "[\"LSD\",[],{\"token\":\"", "\"}");
-						form.lgndim = Buffer.from(JSON.stringify({ w: 1440, h: 900, aw: 1440, ah: 834, c: 24 })).toString('base64');
-						form.email = email;
-						form.pass = password;
-						form.default_persistent = '0';
-						form.lgnrnd = utils.getFrom(html, "name=\"lgnrnd\" value=\"", "\"");
-						form.locale = 'en_US';
-						form.timezone = '240';
-						form.lgnjs = Math.floor(Date.now() / 1000);
-						const willBeCookies = html.split("\"_js_");
-						willBeCookies.slice(1).forEach(val => {
-								const cookieData = JSON.parse("[\"" + utils.getFrom(val, "", "]") + "]");
-								jar.setCookie(utils.formatCookie(cookieData, "facebook"), "https://www.facebook.com");
-						});
-						log.info("login", "Logging in...");
-						const loginRes = await utils.post(
-								"https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110",
-								jar,
-								form,
-								loginOptions
-						);
-						await utils.saveCookies(jar)(loginRes);
-						const headers = loginRes.headers;
-						if (!headers.location) throw new Error("Wrong username/password.");
-						if (headers.location.includes('https://www.facebook.com/checkpoint/')) {
-								log.info("login", "You have login approvals turned on.");
-								const checkpointRes = await utils.get(headers.location, jar, null, loginOptions);
-								await utils.saveCookies(jar)(checkpointRes);
-								const checkpointHtml = checkpointRes.body;
-								const $ = cheerio.load(checkpointHtml);
-								let checkpointForm = [];
-								$("form input").each((i, v) => checkpointForm.push({ val: $(v).val(), name: $(v).attr("name") }));
-								checkpointForm = checkpointForm.filter(v => v.val && v.val.length);
-								const form = utils.arrToForm(checkpointForm);
-								if (checkpointHtml.includes("checkpoint/?next")) {
-										return new Promise((resolve, reject) => {
-												const submit2FA = async (code) => {
-														try {
-																form.approvals_code = code;
-																form['submit[Continue]'] = $("#checkpointSubmitButton").html();
-																const approvalRes = await utils.post(
-																		"https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php",
-																		jar,
-																		form,
-																		loginOptions
-																);
-																await utils.saveCookies(jar)(approvalRes);
-																const approvalError = $("#approvals_code").parent().attr("data-xui-error");
-																if (approvalError) throw new Error("Invalid 2FA code.");
-																form.name_action_selected = 'dont_save';
-																const finalRes = await utils.post(
-																		"https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php",
-																		jar,
-																		form,
-																		loginOptions
-																);
-																await utils.saveCookies(jar)(finalRes);
-																const appState = utils.getAppState(jar);
-																resolve(await loginHelper(appState, email, password, loginOptions, callback));
-														} catch (error) {
-																reject(error);
-														}
-												};
-												throw {
-														error: 'login-approval',
-														continue: submit2FA
-												};
-										});
-								}
-								if (!loginOptions.forceLogin) throw new Error("Couldn't login. Facebook might have blocked this account.");
-								form['submit[This was me]'] = checkpointHtml.includes("Suspicious Login Attempt") ? "This was me" : "This Is Okay";
-								await utils.post("https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php", jar, form, loginOptions);
-								form.name_action_selected = 'save_device';
-								const reviewRes = await utils.post("https://www.facebook.com/checkpoint/?next=https%3A%2F%2Fwww.facebook.com%2Fhome.php", jar, form, loginOptions);
-								const appState = utils.getAppState(jar);
-								return await loginHelper(appState, email, password, loginOptions, callback);
-						}
-						await utils.get('https://www.facebook.com/', jar, null, loginOptions);
-						return await utils.saveCookies(jar);
-				} catch (error) {
-						callback(error);
-				}
-		};
+// Session keeper to prevent logout
+function startSessionKeeper(api, ctx) {
+    // Keep session alive with random activity
+    const keepAliveInterval = setInterval(async () => {
+        try {
+            const actions = [
+                async () => {
+                    const res = await utils.get('https://www.facebook.com/', ctx.jar, null, ctx.globalOptions);
+                    return res;
+                },
+                async () => {
+                    const newDtsg = await api.getFreshDtsg();
+                    if (newDtsg) ctx.fb_dtsg = newDtsg;
+                }
+            ];
+            const randomAction = actions[Math.floor(Math.random() * actions.length)];
+            await randomAction();
+            log.verbose("session", "Keep-alive ping sent");
+        } catch (e) {
+            log.verbose("session", "Keep-alive failed: " + e.message);
+        }
+    }, 240000 + Math.floor(Math.random() * 120000)); // 4-6 minutes
+
+    // Refresh DTSG periodically
+    const dtsgInterval = setInterval(async () => {
+        try {
+            const newDtsg = await api.getFreshDtsg();
+            if (newDtsg) {
+                ctx.fb_dtsg = newDtsg;
+                log.info("session", "DTSG refreshed");
+            }
+        } catch (e) {
+            log.verbose("session", "DTSG refresh failed");
+        }
+    }, 1800000); // 30 minutes
+
+    // Store intervals for cleanup
+    ctx._keepAliveInterval = keepAliveInterval;
+    ctx._dtsgInterval = dtsgInterval;
+}
+
+// Calculate jazoest for Facebook anti-bot
+function calculateJazoest(token) {
+    let sum = 0;
+    for (let i = 0; i < token.length; i++) {
+        sum += token.charCodeAt(i);
+    }
+    return sum.toString();
 }
 
+// Modern authentication function
+async function modernAuthenticate(email, password, jar, loginOptions) {
+    const API_KEYS = [
+        '350685531728|62f8ce9f74b12f84c123cc23437a4a32',
+        '256002347743983|374e60f8b9bb6b8cbb30f78030438895'
+    ];
+    
+    const randomApiKey = API_KEYS[Math.floor(Math.random() * API_KEYS.length)];
+    const [appId, clientToken] = randomApiKey.includes('|') ? randomApiKey.split('|') : ['350685531728', randomApiKey];
+    
+    const pax = Math.random() > 0.5 ? "PWD_BROWSER" : "PWD_FB4A";
+    const adid = [...Array(16)].map(() => Math.floor(Math.random() * 16).toString(16)).join('');
+    const device_id = crypto.randomUUID();
+    const family_device_id = crypto.randomUUID();
+    const machine_id = crypto.randomBytes(16).toString('hex');
+    const session_id = crypto.randomBytes(12).toString('hex');
+    
+    const locales = {
+        "en_US": { code: "US", tz: "-240" },
+        "en_GB": { code: "GB", tz: "0" },
+        "fr_FR": { code: "FR", tz: "60" },
+        "de_DE": { code: "DE", tz: "60" },
+        "es_ES": { code: "ES", tz: "60" },
+        "it_IT": { code: "IT", tz: "60" },
+        "pt_BR": { code: "BR", tz: "-180" }
+    };
+    
+    const localeKeys = Object.keys(locales);
+    const country_locale = localeKeys[Math.floor(Math.random() * localeKeys.length)];
+    const localeData = locales[country_locale];
+    
+    const timestamp = Math.floor(Date.now() / 1000);
+    const connectionToken = `${appId}|${clientToken}`;
+    const jazoest = calculateJazoest(clientToken);
+    
+    const data = {
+        adid: adid,
+        format: 'json',
+        device_id: device_id,
+        email: email,
+        enc_password: `#${pax}:0:${timestamp}:${password}`,
+        generate_analytics_claims: '1',
+        generate_session_cookies: '1',
+        generate_machine_id: '1',
+        machine_id: machine_id,
+        session_id: session_id,
+        credentials_type: 'password',
+        source: 'login',
+        error_detail_type: 'button_with_disabled',
+        enroll_misauth: 'false',
+        currently_logged_in_userid: '0',
+        locale: country_locale,
+        client_country_code: localeData.code,
+        timezone_offset: localeData.tz,
+        screen_resolution: '1920x1080',
+        available_screen_resolution: '1920x1040',
+        fb_api_req_friendly_name: 'authenticate',
+        api_key: clientToken,
+        access_token: connectionToken,
+        jazoest: jazoest,
+        meta_inf_fbmeta: '',
+        skip_api_login: 'false',
+        fb_api_caller_class: 'com.facebook.fblogin',
+        cpl: 'true',
+        try_num: '1',
+        family_device_id: family_device_id,
+        community_id: ''
+    };
+    
+    const userAgents = [
+        'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36',
+        'Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/124.0.0.0 Safari/537.36',
+        'Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36'
+    ];
+    
+    const userAgent = userAgents[Math.floor(Math.random() * userAgents.length)];
+    
+    const headers = {
+        'User-Agent': userAgent,
+        'Accept': 'text/html,application/xhtml+xml,application/xml;q=0.9,image/webp,*/*;q=0.8',
+        'Accept-Language': country_locale.replace('_', '-') + ',en-US;q=0.9',
+        'Accept-Encoding': 'gzip, deflate, br',
+        'Content-Type': 'application/x-www-form-urlencoded',
+        'Host': 'graph.facebook.com',
+        'Origin': 'https://www.facebook.com',
+        'Referer': 'https://www.facebook.com/',
+        'Connection': 'keep-alive',
+        'Sec-Fetch-Dest': 'empty',
+        'Sec-Fetch-Mode': 'cors',
+        'Sec-Fetch-Site': 'same-site',
+        'sec-ch-ua': '"Google Chrome";v="125", "Chromium";v="125", "Not.A/Brand";v="24"',
+        'sec-ch-ua-mobile': '?0',
+        'sec-ch-ua-platform': '"Windows"',
+        'Cache-Control': 'no-cache',
+        'Pragma': 'no-cache',
+        'X-FB-Net-HNI': String(Math.floor(Math.random() * 90000) + 10000),
+        'X-FB-SIM-HNI': String(Math.floor(Math.random() * 90000) + 10000),
+        'Authorization': `OAuth ${connectionToken}`,
+        'X-FB-Connection-Type': 'WIFI',
+        'X-Tigon-Is-Retry': 'False',
+        'x-fb-session-id': `nid=${session_id};pid=Main;tid=132;nc=1;fc=0;bc=0;cid=${clientToken}`,
+        'x-fb-device-group': '5120',
+        'X-FB-Friendly-Name': 'authenticate',
+        'X-FB-Request-Analytics-Tags': 'graphservice',
+        'X-FB-HTTP-Engine': 'Liger',
+        'X-FB-Client-IP': 'True',
+        'X-FB-Server-Cluster': 'True',
+        'x-fb-connection-token': connectionToken
+    };
+    
+    log.info("login", "Attempting modern authentication...");
+    
+    const response = await utils.post(
+        "https://b-graph.facebook.com/auth/login",
+        jar,
+        data,
+        loginOptions,
+        null,
+        headers
+    );
+    
+    return response;
+}
+
+// Handle 2FA checkpoint
+async function handleCheckpoint(checkpointUrl, jar, loginOptions) {
+    log.info("login", "Login approvals are on. Expect an SMS shortly with a code to use for log in");
+    
+    return new Promise((resolve, reject) => {
+        const submit2FA = async (code) => {
+            try {
+                const checkpointRes = await utils.get(checkpointUrl, jar, null, loginOptions);
+                const $ = cheerio.load(checkpointRes.body);
+                
+                let checkpointForm = [];
+                $("form input").each((i, v) => checkpointForm.push({ val: $(v).val(), name: $(v).attr("name") }));
+                checkpointForm = checkpointForm.filter(v => v.val && v.val.length);
+                const form = utils.arrToForm(checkpointForm);
+                
+                form.approvals_code = code;
+                form['submit[Continue]'] = $("#checkpointSubmitButton").html() || "Continue";
+                
+                const approvalRes = await utils.post(
+                    checkpointUrl,
+                    jar,
+                    form,
+                    loginOptions
+                );
+                
+                await utils.saveCookies(jar)(approvalRes);
+                
+                const $approval = cheerio.load(approvalRes.body);
+                const approvalError = $approval("#approvals_code").parent().attr("data-xui-error");
+                if (approvalError) {
+                    reject(new Error("Invalid 2FA code."));
+                    return;
+                }
+                
+                form.name_action_selected = 'save_device';
+                const finalRes = await utils.post(
+                    checkpointUrl,
+                    jar,
+                    form,
+                    loginOptions
+                );
+                
+                await utils.saveCookies(jar)(finalRes);
+                resolve(true);
+            } catch (error) {
+                reject(error);
+            }
+        };
+        
+        reject({
+            error: 'login-approval',
+            continue: submit2FA
+        });
+    });
+}
+
+function makeLogin(jar, email, password, loginOptions, callback, prCallback) {
+    return async function (res) {
+        try {
+            const html = res.body;
+            
+            // Try modern authentication first
+            let loginSuccess = false;
+            let checkpointUrl = null;
+            
+            try {
+                const modernRes = await modernAuthenticate(email, password, jar, loginOptions);
+                await utils.saveCookies(jar)(modernRes);
+                
+                let responseBody;
+                try {
+                    responseBody = JSON.parse(modernRes.body);
+                } catch (e) {
+                    responseBody = { error: true };
+                }
+                
+                if (responseBody.session_cookies) {
+                    responseBody.session_cookies.forEach(cookie => {
+                        jar.setCookie(
+                            `${cookie.name}=${cookie.value}; Domain=.facebook.com; Path=/; Secure; HttpOnly`,
+                            "https://www.facebook.com"
+                        );
+                    });
+                    loginSuccess = true;
+                    log.info("login", "Modern authentication successful");
+                } else if (responseBody.error && responseBody.error.code === 401) {
+                    log.info("login", "Modern auth failed, falling back to traditional login");
+                } else if (responseBody.login_approval_url) {
+                    checkpointUrl = responseBody.login_approval_url;
+                }
+            } catch (e) {
+                log.info("login", "Modern auth error, falling back to traditional: " + e.message);
+            }
+            
+            // Handle checkpoint if needed
+            if (checkpointUrl) {
+                await handleCheckpoint(checkpointUrl, jar, loginOptions);
+                loginSuccess = true;
+            }
+            
+            // Fallback to traditional login if modern fails
+            if (!loginSuccess) {
+                const $ = cheerio.load(html);
+                let arr = [];
+                $("#login_form input").each((i, v) => arr.push({ val: $(v).val(), name: $(v).attr("name") }));
+                arr = arr.filter(v => v.val && v.val.length);
+                let form = utils.arrToForm(arr);
+                form.lsd = utils.getFrom(html, "[\"LSD\",[],{\"token\":\"", "\"");
+                form.lgndim = Buffer.from(JSON.stringify({ w: 1440, h: 900, aw: 1440, ah: 834, c: 24 })).toString('base64');
+                form.email = email;
+                form.pass = password;
+                form.default_persistent = '0';
+                form.lgnrnd = utils.getFrom(html, "name=\"lgnrnd\" value=\"", "\"");
+                form.locale = 'en_US';
+                form.timezone = '240';
+                form.lgnjs = Math.floor(Date.now() / 1000);
+                
+                const willBeCookies = html.split("\"_js_");
+                willBeCookies.slice(1).forEach(val => {
+                    try {
+                        const cookieData = JSON.parse("[\"" + utils.getFrom(val, "", "]") + "]");
+                        jar.setCookie(utils.formatCookie(cookieData, "facebook"), "https://www.facebook.com");
+                    } catch (e) {}
+                });
+                
+                log.info("login", "Logging in via traditional method...");
+                const loginRes = await utils.post(
+                    "https://www.facebook.com/login/device-based/regular/login/?login_attempt=1&lwv=110",
+                    jar,
+                    form,
+                    loginOptions
+                );
+                await utils.saveCookies(jar)(loginRes);
+                
+                const headers = loginRes.headers;
+                if (!headers.location) throw new Error("Wrong username/password.");
+                
+                if (headers.location.includes('https://www.facebook.com/checkpoint/')) {
+                    await handleCheckpoint(headers.location, jar, loginOptions);
+                }
+            }
+            
+            // Final verification
+            await utils.get('https://www.facebook.com/', jar, null, loginOptions);
+            
+            // Add delay to avoid rate limiting
+            await new Promise(resolve => setTimeout(resolve, 2000 + Math.random() * 3000));
+            
+            return await utils.saveCookies(jar);
+            
+        } catch (error) {
+            if (error.error === 'login-approval') {
+                callback(error);
+                return;
+            }
+            callback(error);
+        }
+    };
+}
 
 function loginHelper(appState, email, password, globalOptions, callback, prCallback) {
-		let mainPromise = null;
-		const jar = utils.getJar();
-		if (appState) {
-				try {
-						appState = JSON.parse(appState);
-				} catch (e) {
-						try {
-								appState = appState;
-						} catch (e) {
-								return callback(new Error("Failed to parse appState"));
-						}
-				}
+    let mainPromise = null;
+    const jar = utils.getJar();
+    
+    if (appState) {
+        try {
+            appState = JSON.parse(appState);
+        } catch (e) {
+            try {
+                appState = appState;
+            } catch (e) {
+                return callback(new Error("Failed to parse appState"));
+            }
+        }
 
-				try {
-						appState.forEach(c => {
-								const str = `${c.key}=${c.value}; expires=${c.expires}; domain=${c.domain}; path=${c.path};`;
-								jar.setCookie(str, "http://" + c.domain);
-						});
+        try {
+            appState.forEach(c => {
+                const str = `${c.key}=${c.value}; expires=${c.expires}; domain=${c.domain}; path=${c.path};`;
+                jar.setCookie(str, "http://" + c.domain);
+            });
 
-						mainPromise = utils.get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true })
-								.then(utils.saveCookies(jar));
-				} catch (e) {
-						process.exit(0);
-				}
-		} else {
-				mainPromise = utils
-						.get("https://www.facebook.com/", null, null, globalOptions, { noRef: true })
-						.then(utils.saveCookies(jar))
-						.then(makeLogin(jar, email, password, globalOptions, callback, prCallback))
-						.then(() => utils.get('https://www.facebook.com/', jar, null, globalOptions).then(utils.saveCookies(jar)));
-		}
+            mainPromise = utils.get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true })
+                .then(utils.saveCookies(jar));
+        } catch (e) {
+            process.exit(0);
+        }
+    } else {
+        mainPromise = utils
+            .get("https://www.facebook.com/", null, null, globalOptions, { noRef: true })
+            .then(utils.saveCookies(jar))
+            .then(makeLogin(jar, email, password, globalOptions, callback, prCallback))
+            .then(() => utils.get('https://www.facebook.com/', jar, null, globalOptions).then(utils.saveCookies(jar)));
+    }
 
-		function handleRedirect(res) {
-				const reg = /<meta http-equiv="refresh" content="0;url=([^"]+)[^>]+>/;
-				const redirect = reg.exec(res.body);
-				if (redirect && redirect[1]) {
-						return utils.get(redirect[1], jar, null, globalOptions).then(utils.saveCookies(jar));
-				}
-				return res;
-		}
+    function handleRedirect(res) {
+        const reg = /<meta http-equiv="refresh" content="0;url=([^"]+)[^>]+>/;
+        const redirect = reg.exec(res.body);
+        if (redirect && redirect[1]) {
+            return utils.get(redirect[1], jar, null, globalOptions).then(utils.saveCookies(jar));
+        }
+        return res;
+    }
 
-		let ctx, api;
-		mainPromise = mainPromise
-				.then(handleRedirect)
-				.then(res => {
-						const mobileAgentRegex = /MPageLoadClientMetrics/gs;
-						if (!mobileAgentRegex.test(res.body)) {
-								globalOptions.userAgent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36";
-								return utils.get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true }).then(utils.saveCookies(jar));
-						}
-						return res;
-				})
-				.then(handleRedirect)
-				.then(res => {
-						const html = res.body;
-						const Obj = buildAPI(globalOptions, html, jar);
-						ctx = Obj.ctx;
-						api = Obj.api;
-						return res;
-				});
+    let ctx, api;
+    mainPromise = mainPromise
+        .then(handleRedirect)
+        .then(res => {
+            const mobileAgentRegex = /MPageLoadClientMetrics/gs;
+            if (!mobileAgentRegex.test(res.body)) {
+                globalOptions.userAgent = "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36";
+                return utils.get('https://www.facebook.com/', jar, null, globalOptions, { noRef: true }).then(utils.saveCookies(jar));
+            }
+            return res;
+        })
+        .then(handleRedirect)
+        .then(res => {
+            const html = res.body;
+            const Obj = buildAPI(globalOptions, html, jar);
+            ctx = Obj.ctx;
+            api = Obj.api;
+            return res;
+        });
 
-		if (globalOptions.pageID) {
-				mainPromise = mainPromise
-						.then(() => utils.get(`https://www.facebook.com/${globalOptions.pageID}/messages/?section=messages&subsection=inbox`, jar, null, globalOptions))
-						.then(resData => {
-								let url = utils.getFrom(resData.body, 'window.location.replace("https:\\/\\/www.facebook.com\\', '");').split('\\').join('');
-								url = url.substring(0, url.length - 1);
-								return utils.get('https://www.facebook.com' + url, jar, null, globalOptions);
-						});
-		}
+    if (globalOptions.pageID) {
+        mainPromise = mainPromise
+            .then(() => utils.get(`https://www.facebook.com/${globalOptions.pageID}/messages/?section=messages&subsection=inbox`, jar, null, globalOptions))
+            .then(resData => {
+                let url = utils.getFrom(resData.body, 'window.location.replace("https:\\/\\/www.facebook.com\\', '");').split('\\').join('');
+                url = url.substring(0, url.length - 1);
+                return utils.get('https://www.facebook.com' + url, jar, null, globalOptions);
+            });
+    }
 
-		mainPromise
-				.then(async () => {
-						log.info('Login successful');
-						callback(null, api);
-				})
-				.catch(e => {
-						callback(e);
-				});
+    mainPromise
+        .then(async () => {
+            log.info('Login successful');
+            
+            // Start session keeper to prevent logout
+            startSessionKeeper(api, ctx);
+            
+            callback(null, api);
+        })
+        .catch(e => {
+            callback(e);
+        });
 }
 
-
 function login(loginData, options, callback) {
-		if (utils.getType(options) === 'Function' || utils.getType(options) === 'AsyncFunction') {
-				callback = options;
-				options = {};
-		}
+    if (utils.getType(options) === 'Function' || utils.getType(options) === 'AsyncFunction') {
+        callback = options;
+        options = {};
+    }
 
-		var globalOptions = {
-				selfListen: false,
-				listenEvents: false,
-				listenTyping: false,
-				updatePresence: false,
-				forceLogin: false,
-				autoMarkDelivery: false,
-				autoMarkRead: false,
-				autoReconnect: true,
-				logRecordSize: 100,
-				online: true,
-				emitReady: false,
-				userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36"
-		};
+    var globalOptions = {
+        selfListen: false,
+        listenEvents: false,
+        listenTyping: false,
+        updatePresence: false,
+        forceLogin: false,
+        autoMarkDelivery: false,
+        autoMarkRead: false,
+        autoReconnect: true,
+        logRecordSize: 100,
+        online: true,
+        emitReady: false,
+        userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
+    };
 
-		var prCallback = null;
-		if (utils.getType(callback) !== "Function" && utils.getType(callback) !== "AsyncFunction") {
-				var rejectFunc = null;
-				var resolveFunc = null;
-				var returnPromise = new Promise(function (resolve, reject) {
-						resolveFunc = resolve;
-						rejectFunc = reject;
-				});
-				prCallback = function (error, api) {
-						if (error) return rejectFunc(error);
-						return resolveFunc(api);
-				};
-				callback = prCallback;
-		}
+    var prCallback = null;
+    var returnPromise = null;
+    
+    if (utils.getType(callback) !== "Function" && utils.getType(callback) !== "AsyncFunction") {
+        var rejectFunc = null;
+        var resolveFunc = null;
+        returnPromise = new Promise(function (resolve, reject) {
+            resolveFunc = resolve;
+            rejectFunc = reject;
+        });
+        prCallback = function (error, api) {
+            if (error) return rejectFunc(error);
+            return resolveFunc(api);
+        };
+        callback = prCallback;
+    }
 
-		if (loginData.email && loginData.password) {
-				setOptions(globalOptions, {
-						logLevel: "silent",
-						forceLogin: true,
-						userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/121.0.0.0 Safari/537.36"
-				});
-				loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
-		} else if (loginData.appState) {
-				setOptions(globalOptions, options);
-				return loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
-		}
-		return returnPromise;
+    if (loginData.email && loginData.password) {
+        setOptions(globalOptions, {
+            logLevel: "silent",
+            forceLogin: true,
+            userAgent: "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/125.0.0.0 Safari/537.36"
+        });
+        loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
+    } else if (loginData.appState) {
+        setOptions(globalOptions, options);
+        return loginHelper(loginData.appState, loginData.email, loginData.password, globalOptions, callback, prCallback);
+    }
+    return returnPromise;
 }
 
-
-module.exports = login;
+module.exports = login;