Nexus-FCA is a modern, safe, and advanced Facebook Chat API for Node.js. It is designed for developers who want a reliable, easy-to-use, and actively maintained solution for Messenger automation, bots, and integrations.
-
Modern & Safe:
- Built with ES6+ features and TypeScript. No legacy code.
-
Active Development:
- Regular updates and improvements. Open to contributions.
-
Easy to Use:
- Simple API with clear documentation. Get started quickly.
-
No External Dependencies:
- No need for external libraries. Everything is included.
-
No WebView/Browser Required:
- Directly interacts with Facebook's Messenger API. No browser automation.
-
No CAPTCHA/Verification:
- Bypass CAPTCHA and verification challenges. Use at your own risk.
-
No Rate Limits:
- No restrictions on message sending. Use responsibly.
-
No Account Verification:
- No need to verify your account. Use with caution.
-
All Major Messenger Features:
- Messaging, reactions, group management, user info, and more.
-
Safe & Testable:
- No legacy/unsafe code. Test every feature live in Messenger.
-
Admin & Safety Tools:
- Rate limiting, allow/block lists, Safe Mode.
-
Easy Login:
- Use
appstate.jsonfor secure, passwordless login.
- Use
-
Full Documentation:
- Every feature documented in the
docs/folder with real usage examples.
- Every feature documented in the
Disclaimer: Use responsibly. Nexus-FCA is not affiliated with Facebook. Your account may be at risk if you use this for spam or automation against Facebook's terms.
npm install nexus-fcaconst login = require("nexus-fca");
login({ appState: [] }, (err, api) => {
if (err) return console.error(err);
api.listenMqtt((err, event) => {
if (err) return console.error(err);
api.sendMessage(event.body, event.threadID);
});
});Result:
Various types of message can be sent:
-
Regular: set field
bodyto the desired message as a string. -
Sticker: set a field
stickerto the desired sticker ID. -
File or image: Set field
attachmentto a readable stream or an array of readable streams. -
URL: set a field
urlto the desired URL. -
Emoji: set field
emojito the desired emoji as a string and set fieldemojiSizewith size of the emoji (small,medium,large)
Note that a message can only be a regular message (which can be empty) and optionally one of the following: a sticker, an attachment or a url.
Tip: to find your own ID, you can look inside the cookies. The userID is under the name c_user.
Example (Basic Message)
const login = require("nexus-fca");
login({ appState: [] }, (err, api) => {
if (err) {
console.error("Login Error:", err);
return;
}
let yourID = "000000000000000"; // Replace with actual Facebook ID
let msg = "Hey!";
api.sendMessage(msg, yourID, (err) => {
if (err) console.error("Message Sending Error:", err);
else console.log("Message sent successfully!");
});
});Example (File upload)
const login = require("nexus-fca");
const fs = require("fs"); // ✅ Required the fs module
login({ appState: [] }, (err, api) => {
if (err) {
console.error("Login Error:", err);
return;
}
let yourID = "000000000000000"; // Replace with actual Facebook ID
let imagePath = __dirname + "/image.jpg";
// Check if the file exists before sending
if (!fs.existsSync(imagePath)) {
console.error("Error: Image file not found!");
return;
}
let msg = {
body: "Hey!",
attachment: fs.createReadStream(imagePath)
};
api.sendMessage(msg, yourID, (err) => {
if (err) console.error("Message Sending Error:", err);
else console.log("Message sent successfully!");
});
});To avoid logging in every time you should save AppState (cookies etc.) to a file, then you can use it without having password in your scripts.
Example
const fs = require("fs");
const login = require("nexus-fca");
const credentials = { appState: [] };
login(credentials, (err, api) => {
if (err) {
console.error("Login Error:", err);
return;
}
try {
const appState = JSON.stringify(api.getAppState(), null, 2); // Pretty print for readability
fs.writeFileSync("appstate.json", appState);
console.log("✅ AppState saved successfully!");
} catch (error) {
console.error("Error saving AppState:", error);
}
});Listen watches for messages sent in a chat. By default this won't receive events (joining/leaving a chat, title change etc…) but it can be activated with api.setOptions({listenEvents: true}). This will by default ignore messages sent by the current account, you can enable listening to your own messages with api.setOptions({selfListen: true}).
Example
const fs = require("fs");
const login = require("nexus-fca");
// Simple echo bot: Repeats everything you say. Stops when you say "/stop".
login({ appState: JSON.parse(fs.readFileSync("appstate.json", "utf8")) }, (err, api) => {
if (err) {
console.error("Login Error:", err);
return;
}
api.setOptions({ listenEvents: true });
const stopListening = api.listenMqtt((err, event) => {
if (err) {
console.error("Listen Error:", err);
return;
}
// Mark message as read
api.markAsRead(event.threadID, (err) => {
if (err) console.error("Mark as read error:", err);
});
// Handle different event types
switch (event.type) {
case "message":
if (event.body && event.body.trim().toLowerCase() === "/stop") {
api.sendMessage("Goodbye…", event.threadID);
stopListening();
return;
}
api.sendMessage(`TEST BOT: ${event.body}`, event.threadID);
break;
case "event":
console.log("Event Received:", event);
break;
}
});
});- Global Rate Limiting: Prevents spam and abuse for all sensitive actions (e.g., avatar change, messaging).
-
Safe Mode: Set
NEXUS_FCA_SAFE_MODE=1in your environment to disable risky features (like avatar/group changes) for extra protection. -
Allow/Block List: Control who can use the API with
NEXUS_FCA_ALLOW_LISTandNEXUS_FCA_BLOCK_LIST(comma-separated user IDs). -
Health Check: Use
api.healthCheck((err, status) => { ... })to verify the bot is running and see current safety status.