Automate CLI on headless client

Dedicated Contributor

3 years ago

Service accounts are probably what you're looking for. They're currently in beta, but the idea is you create a service account with access to specific vaults, then set an environment variable for that account's token. Any op operations on items that account has access to can proceed without further authentication.

In addition, I've asked for a headless/non-interactive mode that is guaranteed to hard-fail if no valid authentication (e.g., session token or service account) is present. For example, if your unattended script is using a service account, but there's a typo in the token or that account has been revoked. In that case ideally it would fail rather than hang forever, prompting for authentication (either via console or GUI), so the error can be logged and fixed.

Here's that discussion
https://1password.community/discussion/comment/666122

Forum Discussion

Featured discussions

September at 1Password: Browser versions, enhanced security, and new integrations

Recent discussions

Missing op-ssh-sign-wsl on Windows WSL

1password-cli brew installation/upgrade fails

"Connection Refused" when accessing 1Password ssh-agent within DevContainer

Desktop Integration Cannot Find App

Env var loading and validation for 1Password (open source!)