Automate CLI on headless client

Dedicated Contributor

3 years ago

Service accounts are probably what you're looking for. They're currently in beta, but the idea is you create a service account with access to specific vaults, then set an environment variable for that account's token. Any op operations on items that account has access to can proceed without further authentication.

In addition, I've asked for a headless/non-interactive mode that is guaranteed to hard-fail if no valid authentication (e.g., session token or service account) is present. For example, if your unattended script is using a service account, but there's a typo in the token or that account has been revoked. In that case ideally it would fail rather than hang forever, prompting for authentication (either via console or GUI), so the error can be logged and fixed.

Here's that discussion
https://1password.community/discussion/comment/666122

Forum Discussion

Featured discussions

September at 1Password: Browser versions, enhanced security, and new integrations

Recent discussions

Severe slowdown in Chrome with 1Password extension 8.11.12.27 on pages with many inputs

Educational: TypeScript implementation of 1Password's security model + interactive explainer

OpenSSH Agent like putty

op completion zsh hangs forever

1Password CLI vulnerability?