No way to do the security check

[amaury1093]

Description

I use this to send 1 message to all my friends, and got blocked by Facebook's spam filter. A recaptcha verification should let me continue to send messages, but there's no way to do that.

Steps to Reproduce

1. Send a lot of messages (e.g. via script)
2. Receive this error:

{ __ar: 1,
  error: 1357007,
  errorSummary: 'Security Check Required',
  errorDescription: 'A security check is required to proceed.',
  payload:
   { __dialogID: 'u_9_0',
     __dialogx:
      { instances:
         [ [ '__inst_33519630_9_0',
             [ 'DialogX',
               'LayerFadeOnHide',
               'LayerHideOnEscape',
               'DialogHideOnSuccess',
               'LayerDestroyOnHide',
               'LayerHideOnTransition',
               'LayerRemoveOnHide',
               '__markup_a588f507_9_0',
               'HTML' ],
             [ { width: 555,
                 autohide: null,
                 titleID: 'u_9_1',
                 redirectURI: null,
                 fixedTopPosition: null,
                 ignoreFixedTopInShortViewport: false,
                 label: null,
                 labelledBy: null,
                 addedBehaviors:
                  [ { __m: 'LayerFadeOnHide' },
                    { __m: 'LayerHideOnEscape' },
                    { __m: 'DialogHideOnSuccess' },
                    { __m: 'LayerDestroyOnHide' },
                    { __m: 'LayerHideOnTransition' },
                    { __m: 'LayerRemoveOnHide' } ],
                 attributes: { id: 'u_9_0' },
                 classNames: [ 'captcha_dialog', '_3pod' ] },
               { __m: '__markup_a588f507_9_0' } ],
             2 ] ],
        markup:
         [ [ '__markup_a588f507_9_0',
             { __html:
                '<div><div class="pvs phm _1yw" id="u_9_1">Security Check</div><div class="pam _13"><div class="mvm uiP fsm">It looks like you’re using this feature in a way it wasn’t meant to be used. Please slow down, or you could be blocked from using it.</div><div id="captcha" class="captcha" data-captcha-class="ReCaptchav2Captcha"><input type="hidden" autocomplete="off" id="captcha_persist_data" name="captcha_persist_data" value="..." /><div><input name="captcha_response" id="captcha_response" type="hidden" /><iframe id="captca-recaptcha" width="400px" height="93px" scrolling="no" frameborder="0"></iframe></div><div class="captcha_input"><a href="#" onclick="CSS.show($(&#039;captcha_whats_this&#039;)); return false;" role="button">Why am I seeing this?</a><div id="captcha_whats_this" class="hidden_elem"><div class="fsl fwb">Security Check</div>This is a standard security test that we use to prevent spammers from creating fake accounts and spamming users.</div></div></div><br />If you think this doesn&#039;t go against our Community Standards <a href="/help/contact/571927962827151?additional_content=... target="_blank">let us know</a>.</div><div class="_14"><div class="pam uiOverlayFooter uiBoxGray topborder"><button value="1" class="_42ft _42fu layerConfirm uiOverlayButton selected _42g- _42gy" id="captcha_dialog_submit_button" type="submit">Submit</button><a role="button" class="_42ft _42fu layerCancel uiOverlayButton _42gy" href="#">Cancel</a></div></div></div>' },
  // ... some other stuff
}

Expected behavior: [What you expect to happen]

Be able to redirect to a webpage to confirm this captcha.

Actual behavior: [What actually happens]

No way to do it.

Versions

Run, and copy-paste the results, of the following:

• npm -v 6.4.2
• node -v 11.1.0
• messer -v 0.4.2

Also, please include the OS and what version of the OS you're running.

macOS 10.14

Additional Information

Any additional information, configuration or data that might be necessary to reproduce the issue.

[cold-logic]

Semi related to this issue... A nice feature would be the ability to use Facebook's "App Password" feature to sign in, instead of the standard account password + MFA flow.

[tomquirk]

Yea these are all good ideas. I'll look at triaging soon 😄