# Roblox Account Manager ## **WARNING**: Malicious Scripts may be able to abuse this API and possibly cause a ban to your account. In order to prevent this FULLY, you should probably change the port, add a password, and set EveryRequestRequiresPassword to true. Passwords **cannot** contain symbols, letters and numbers only. Found an error or a bug? Report it to the [discord](https://discord.gg/MsEH7smXY8) or [github](https://github.com/ic3w0lf22/Roblox-Account-Manager/issues). ## Roblox Account Manager Settings **Requires Password \*** **These settings can be edited by opening the settings window by clicking the gear button on the top right of the Account Manager.** DevMode: Enables Developer Mode for RAM allowing extra settings such as Copy Cookie EnableWebServer: When RAM is launched, a local web server is opened allowing for using the RAM API WebServerPort: The Web Server's Port (You should probably change this) AllowGetCookie\*: Allow usage of the GetCookie request (DANGEROUS) AllowGetAccounts\*: Allow usage of the GetAccounts request (DANGEROUS) AllowLaunchAccount\*: Allow usage of the LaunchAccount request (DANGEROUS) AllowAccountEditing: Allows the account alias, description, and fields to be edited. Password: Requires 6+ letters in order to use methods that require it. CANNOT BE EDITED WHILE ACCOUNT MANAGER IS RUNNING EveryRequestRequiresPassword: Every request will require you to attach your password. ## Example Code for the given RAMAccount class #### ``` local RAMAccount = loadstring(game:HttpGet'https://raw.githubusercontent.com/ic3w0lf22/Roblox-Account-Manager/master/RAMAccount.lua')() local MyAccount = RAMAccount.new(game:GetService'Players'.LocalPlayer.Name) if MyAccount then print('My Alias: ' .. MyAccount:GetAlias()) print('My Description: ' .. MyAccount:GetDescription()) end ``` ## LaunchAccount `GET` `http://localhost:port/LaunchAccount?Account=ROBLOX&PlaceId=1818&JobId=exam-plej-obid&Password=Whatever` Launches an account from account manager using the given PlaceId\ Requires AllowLaunchAccount setting to be set to true #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------- | ----------- | | Password | string | | | Account\* | string | | | PlaceId\* | number | | | JobId | string | | | FollowUser | boolean | | | JoinVip | boolean | | {% tabs %} {% tab title="200 Launched ROBLOX to 1818" %} ``` Launched ROBLOX to 1818 ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## FollowUser `GET` `http://localhost:port/FollowUser?Account=ROBLOX&Userrname=Shedletsky&Password=Whatever` Follow a user into their game (if they're online) #### Query Parameters | Name | Type | Description | | ------------------------------------------ | ------ | ----------- | | Account\* | string | | | Username\* | string | | | Password | string | | {% tabs %} {% tab title="200: OK Joining Shedletsky's game on ROBLOX" %} ```javascript { // Response } ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% tab title="400: Bad Request Invalid Username Parameter" %} ```javascript { // Response } ``` {% endtab %} {% tab title="400: Bad Request Failed to get UserId" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## SetServer `GET` `http://localhost:port/SetServer?Account=ROBLOX&PlaceId=1818&JobId=exam-plej-obid&Password=Whatever` Sets the next server roblox matchmaking will put you in. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Password | string | | | Account\* | string | | | PlaceId\* | number | | | JobId | string | | {% tabs %} {% tab title="200 Success" %} ``` Launched ROBLOX to 1818 ``` {% endtab %} {% tab title="400: Bad Request " %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## SetRecommendedServer `GET` `http://localhost:port/SetRecommendedServer?Account=ROBLOX&PlaceId=1818&Password=Whatever` Sets the next server roblox matchmaking will put you in. Roblox Account Manager will choose the next smallest server depending on what servers are loaded. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Password | string | | | Account\* | string | | | PlaceId\* | number | | {% tabs %} {% tab title="200 Success" %} ``` Launched ROBLOX to 1818 ``` {% endtab %} {% tab title="400: Bad Request " %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## BlockUser `GET` `http://localhost:port/BlockUser?Account=ROBLOX&UserId=63700903` Blocks a user by their UserId #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | | UserId\* | number | | {% tabs %} {% tab title="200 " %} ``` Success ``` {% endtab %} {% endtabs %} ## UnblockUser `GET` `http://localhost:port/UnblockUser?Account=ROBLOX&UserId=63700903` Unblocks a user by their UserId #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | | UserId\* | number | | {% tabs %} {% tab title="200 " %} ``` Success4 ``` {% endtab %} {% endtabs %} ## UnblockEveryone `GET` `http://localhost:port/UnblockEveryone?Account=ROBLOX` Will unblock everyone. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | {% tabs %} {% tab title="200 Unblocking Everyone" %} ``` Unblocking everyone ``` {% endtab %} {% tab title="400 Failed to unblock everyone" %} ``` Failed to unblock everyone ``` {% endtab %} {% tab title="401: Unauthorized Pin is Locked / Other" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetField `GET` `http://localhost:port/GetField?Account=ROBLOX&Field=PhantomForcesXP` Get a specific field of an account. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | | Field\* | string | | {% tabs %} {% tab title="200 The field's value. (for example, this would be PhantomForcesXP: 2388)" %} ``` 5515 ``` {% endtab %} {% endtabs %} ## SetField `GET` `http://localhost:port/SetField?Account=ROBLOX&Field=PhantomForcesXP&Value=2388` Set an account's field. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | | Field\* | string | | | Value\* | string | | {% tabs %} {% tab title="200 Set Field PhantomForcesXP to 2388 for ROBLOX" %} ``` Set Field PhantomForcesXP to 2388 ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## RemoveField `GET` `http://localhost:port/RemoveField?Account=ROBLOX&Field=PhantomForcesXP` Removes an account's field. #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | | Field\* | string | | {% tabs %} {% tab title="200 Removed Field PhantomForcesXP from ROBLOX" %} ``` Remove Field PhantomForcesXP ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## SetAlias `POST` `http://localhost:port/SetAlias?Account=ROBLOX` Set an account's alias #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | #### Request Body | Name | Type | Description | | --------------------------------------- | ------ | ----------- | | Alias\* | string | | {% tabs %} {% tab title="200 Set Alias of ROBLOX to ..." %} ``` Set Alias of ROBLOX to not roblox ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## SetDescription `POST` `http://localhost:port/SetDescription?Account=ROBLOX` Set an account's description #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | #### Request Body | Name | Type | Description | | --------------------------------------------- | ------ | ----------- | | Description\* | string | | {% tabs %} {% tab title="200 Set Description of ROBLOX to ..." %} ``` Set Description of ROBLOX to Hello, this can be ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## SetAvatar `POST` `http://localhost:port/SetAvatar?Account=ROBLOX` Set an account Avatar with JSON #### Request Body | Name | Type | Description | | --------------------------------------------- | ------ | --------------------------- | | Avatar JSON\* | string | JSON Containing avatar data | {% tabs %} {% tab title="200: OK Attempting to set avatar of ROBLOX to ..." %} ```javascript { // Response } ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## AppendDescription `POST` `http://localhost:port/AppendDescription?Account=ROBLOX` Append something to an account's description #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | #### Request Body | Name | Type | Description | | --------------------------------------------- | ------ | ----------- | | Description\* | string | | {% tabs %} {% tab title="200 Appended Description of ROBLOX with ..." %} ``` Appended Description of ROBLOX with totally not roblox ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetAlias `GET` `http://localhost:port/GetAlias?Account=ROBLOX` Get an account's alias #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | {% tabs %} {% tab title="200 " %} ``` totally not roblox ``` {% endtab %} {% endtabs %} ## GetDescription `GET` `http://localhost:port/GetDescription?Account=ROBLOX` #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | {% tabs %} {% tab title="200 " %} ``` not roblox, or maybe it is ``` {% endtab %} {% endtabs %} ## GetCookie (DANGEROUS) `GET` `http://localhost:port/GetCookie?Account=ROBLOX&Password=Whatever` Get an account's cookie (DANGEROUS, USE A SECURE PASSWORD IF YOU'RE USING THIS)\ Requires AllowGetCookie setting to be set to true #### Query Parameters | Name | Type | Description | | ------------------------------------------ | ------ | ----------- | | Account\* | string | | | Password\* | string | | {% tabs %} {% tab title="200 \_|WARNING..." %} ``` _|WARNING:-DO-NOT-SHARE-THIS.--Sharing-this-will-allow-someone-to-log-in-as-you-and-to-steal-your-ROBUX-and-items.| ``` {% endtab %} {% tab title="401 Invalid Password / Method not allowed" %} ``` Method not allowed ``` {% endtab %} {% tab title="400: Bad Request Invalid Account / Other" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetAccounts (DANGEROUS) `GET` `http://localhost:port/GetAccounts?Password=Whatever` Gets the account names in account manager and returns a list separated by commas.\ Requires AllowGetAccounts setting to be set to true #### Query Parameters | Name | Type | Description | | ------------------------------------------ | ------ | ----------------------------------- | | Password\* | string | | | Group\* | string | Filter the list by a specific group | {% tabs %} {% tab title="200 ROBLOX,Shedletsky,Telamon" %} ``` ROBLOX,Shedletsky,Telamon ``` {% endtab %} {% tab title="401 Invalid Password / Method not allowed" %} ``` Method not allowed ``` {% endtab %} {% tab title="400: Bad Request Invalid Account / Other" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetAccountsJson (DANGEROUS) `GET` `http://localhost:port/GetAccountsJson?Password=Whatever&IncludeCookies=true&Group=Default` Retrieve a list of accounts in the accounts in the account manager including most of the data LastUse value will be in roblox's tick format #### Query Parameters | Name | Type | Description | | -------------- | ------- | ----------------------------------- | | IncludeCookies | boolean | | | Group | string | Filter the list by a specific group | {% tabs %} {% tab title="200: OK \[{"Username":"ROBLOX","UserId":1,"Alias":"","Description":"","Group":"Default","CurrentCSRFToken":null,"LastUsed":-62135596800.0,"Cookie":null,"Fields":{}}]" %} ```javascript { // Response } ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetCSRFToken `GET` `http://localhost:port/GetCSRFToken?Account=ROBLOX&Password=Whatever` Returns the X-CSRF-Token assigned to the account #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | {% tabs %} {% tab title="200: OK Example response: ffOxo/3G7ecR" %} ```javascript { // Response } ``` {% endtab %} {% tab title="401: Unauthorized Invalid Password / Method not allowed" %} ```javascript { // Response } ``` {% endtab %} {% tab title="400: Bad Request Invalid Account / Other" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## GetBlockedList `GET` `http://localhost:port/GetBlockedList?Account=ROBLOX&Password=Whatever` Get the list of people the account has blocked #### Query Parameters | Name | Type | Description | | ----------------------------------------- | ------ | ----------- | | Account\* | string | | {% tabs %} {% tab title="200: OK {"success":true,"userList":\[5,12,3245],"total":3}" %} ```javascript { // Response } ``` {% endtab %} {% tab title="400: Bad Request Invalid Account / Other" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %} ## ImportCookie `GET` `http://localhost:port/ImportCookie?Cookie=.ROBLOSEC...&Password=Whatever` Imports an account using a cookie #### Query Parameters | Name | Type | Description | | ---------------------------------------- | ------ | ----------- | | Cookie\* | string | | {% tabs %} {% tab title="200: OK true" %} ```javascript { // Response } ``` {% endtab %} {% tab title="400: Bad Request false" %} ```javascript { // Response } ``` {% endtab %} {% endtabs %}