Secrets Automation Clarification

Former Member

5 years ago

Hello! These are great questions. Let me try answering them:

Accessing 1Password with Connect & Secrets Automation

You're close! You don't talk directly to 1Password - that's what the Connect server is for. Connect is an intermediary that lives in your infrastructure and takes care of the E2E encryption bits. The Connect Server exposes https://support.1password.com/connect-api-reference/ that your applications call when you want to access secrets in your vaults.

You're spot on about how the token is used.

Token lifetime

Yes, right now you need to manually generate a new access token if the token you are using has a set expiration. You can choose to create long-lived tokens by not setting any expiration, in which case you'll need to revoke the token to cut off access.

Automated token refresh is something we're looking at, and we'll make note of your interest.

Does that answer your question?

Forum Discussion

Featured discussions

September at 1Password: Browser versions, enhanced security, and new integrations

Recent discussions

1PW extension bug: autofill theme detection fails when using oklch color scheme

Environments with custom text file

allowed-signers file not created

FeatureRequest: SSH Agent Key access confirm

Support for SSH Certificates (2024)