Advanced Facebook Chat API (FCA) library with built-in anti-detection protection and automatic cookie refresh. Pure npm package for building reliable Messenger bots - forked from ws3-fca
💁 biar-fca is a fully refactored Facebook Chat API (FCA) client built for reliable, real-time, and modular interaction with Facebook Messenger. Designed with modern bot development in mind, it offers full control over Messenger automation through a clean, stable interface.
Pure NPM Package - Just npm install biar-fca and start building with built-in advanced anti-detection!
🔀 Forked from ws3-fca - Enhanced and maintained by Jubiar
Full documentation and advanced examples: https://exocore-dev-docs-exocore.hf.space
If you encounter issues or want to give feedback, feel free to message us via Facebook:
See CHANGELOG.md for detailed release notes and version history.
🔐 Precise Login Mechanism Dynamically scrapes Facebook's login form and submits tokens for secure authentication.
💬 Real-time Messaging Send and receive messages (text, attachments, stickers, replies).
📝 Message Editing Edit your bot's messages in-place.
✍️ Typing Indicators Detect and send typing status.
✅ Message Status Handling Mark messages as delivered, read, or seen.
📂 Thread Management
👤 User Info Retrieval Access name, ID, profile picture, and mutual context.
🖼️ Sticker API Search stickers, list packs, fetch store data, AI-stickers.
💬 Post Interaction Comment and reply to public Facebook posts.
➕ Follow/Unfollow Users Automate social interactions.
🌐 Proxy Support Full support for custom proxies with testing utilities.
🧱 Modular Architecture Organized into pluggable models for maintainability.
🛡️ Robust Error Handling Retry logic, consistent logging, and graceful failovers.
Requires Node.js v20+
npm i biar-fca@latest
biar-fca includes built-in advanced anti-detection protection in the core library!
When you use biar-fca, you automatically get:
const { login } = require("biar-fca");
login(credentials, {
advancedProtection: true, // Default: true (always enabled)
autoRotateSession: true, // Default: true (6hr rotation)
randomUserAgent: true, // Default: true (realistic UAs)
updatePresence: true, // Maintain realistic presence
autoMarkDelivery: true, // Realistic delivery receipts
autoMarkRead: true // Realistic read receipts
}, (err, api) => {
// Your bot code here
// Check protection stats
const stats = api.getProtectionStats();
console.log('Protection Status:', stats);
});
Create your bot file (e.g., bot.js):
const { login } = require("biar-fca");
const fs = require("fs");
const credentials = {
appState: JSON.parse(fs.readFileSync("appstate.json", "utf8"))
};
login(credentials, {
advancedProtection: true, // Automatic protection
updatePresence: true,
autoMarkRead: true
}, (err, api) => {
if (err) return console.error(err);
console.log("✅ Bot online with protection!");
api.listenMqtt((err, event) => {
if (err) return console.error(err);
if (event.type !== "message") return;
// Handle messages
console.log("Message:", event.body);
api.sendMessage("Hello!", event.threadID);
});
});
Then run: node bot.js
npm install biar-fca
appstate.jsonThis file contains your Facebook session cookies. Use a browser extension (e.g. "C3C FbState", "CookieEditor") to export cookies after logging in, and save them in this format:
[
{
"key": "c_user",
"value": "your-id"
}
]
If you don't know how to get cookie, you can follow this tutorial here.
Place this file in the root directory as appstate.json.
const fs = require("fs");
const path = require("path");
const { login } = require("biar-fca");
let credentials;
try {
credentials = { appState: JSON.parse(fs.readFileSync("appstate.json", "utf8")) };
} catch (err) {
console.error("❌ appstate.json is missing or malformed.", err);
process.exit(1);
}
console.log("Logging in...");
login(credentials, {
online: true,
updatePresence: true,
selfListen: false,
// Advanced Protection Features (enabled by default)
advancedProtection: true, // Enable anti-detection features
autoRotateSession: true, // Auto-rotate session fingerprints
randomUserAgent: true, // Use realistic random user agents
autoMarkDelivery: true, // Realistic message behavior
autoMarkRead: true // Realistic read behavior
}, async (err, api) => {
if (err) return console.error("LOGIN ERROR:", err);
console.log(`✅ Logged in as: ${api.getCurrentUserID()}`);
const commandsDir = path.join(__dirname, "modules", "commands");
const commands = new Map();
if (!fs.existsSync(commandsDir)) fs.mkdirSync(commandsDir, { recursive: true });
for (const file of fs.readdirSync(commandsDir).filter(f => f.endsWith(".js"))) {
const command = require(path.join(commandsDir, file));
if (command.name && typeof command.execute === "function") {
commands.set(command.name, command);
console.log(`🔧 Loaded command: ${command.name}`);
}
}
api.listenMqtt(async (err, event) => {
if (err || !event.body || event.type !== "message") return;
const prefix = "/";
if (!event.body.startsWith(prefix)) return;
const args = event.body.slice(prefix.length).trim().split(/ +/);
const commandName = args.shift().toLowerCase();
const command = commands.get(commandName);
if (!command) return;
try {
await command.execute({ api, event, args });
} catch (error) {
console.error(`Error executing ${commandName}:`, error);
api.sendMessageMqtt("❌ An error occurred while executing the command.", event.threadID, event.messageID);
}
});
});
Copyright (c) 2015 Avery, Benjamin, David, Maude
MIT – Free to use, modify, and distribute. Attribution appreciated.
For maintainers: To update and republish the package:
# 1. Make your changes
# 2. Update version
npm version patch # For bug fixes (3.5.2 → 3.5.3)
npm version minor # For new features (3.5.2 → 3.6.2)
npm version major # For breaking changes (3.5.2 → 4.0.0)
# 3. Publish
npm publish
# 4. Push to GitHub
git push && git push --tags
📖 Detailed guide: See UPDATE_GUIDE.md
We welcome contributions! Whether it's bug fixes, new features, or documentation improvements:
git checkout -b feature/AmazingFeature)git commit -m 'Add some AmazingFeature')git push origin feature/AmazingFeature)This project is not affiliated with, authorized, maintained, sponsored, or endorsed by Facebook or any of its affiliates. Use this library at your own risk. Automating Facebook accounts may violate Facebook's Terms of Service and could result in account restrictions or bans.
Made with ❤️ by the biar-fca
FAQs
Advanced Facebook Chat API (FCA) library with built-in anti-detection protection and automatic cookie refresh. Pure npm package for building reliable Messenger bots - forked from ws3-fca
The npm package biar-fca receives a total of 76 weekly downloads. As such, biar-fca popularity was classified as not popular.
We found that biar-fca demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
Open source is under attack because of how much value it creates. It has been the foundation of every major software innovation for the last three decades. This is not the time to walk away from it.
Security News
Socket CEO Feross Aboukhadijeh breaks down how North Korea hijacked Axios and what it means for the future of software supply chain security.
Security News
OpenSSF has issued a high-severity advisory warning open source developers of an active Slack-based campaign using impersonation to deliver malware.