Protect what matters – even after you're gone. Make a plan for your digital legacy today.
CLI hangs when requesting items
the cli had been working without issues for a while but about a day ago it began to indefinitely hang when fetching an item. When I run: op item get XXX --otp --debug I get: 9:35AM | DEBUG | Session delegation enabled 9:35AM | DEBUG | NM request: NmRequestAccounts 9:35AM | DEBUG | NM response: Success 9:35AM | DEBUG | NM request: NmRequestAccounts 9:35AM | DEBUG | NM response: Success 9:35AM | DEBUG | account not signed in, filter=XXXX latest_signin_user=XXXXXXXXXX 9:35AM | DEBUG | not signed in reason: session file not found 9:35AM | DEBUG | NM request: NmRequestAccounts 9:35AM | DEBUG | NM response: Success 9:35AM | DEBUG | NM request: NmRequestAuthorization 9:35AM | DEBUG | NM response: Success 9:35AM | DEBUG | NM request: NmRequestAccounts 9:35AM | DEBUG | NM response: Success 9:35AM | DEBUG | NM request: NmRequestDelegatedSession and it just hangs there. Any idea of what could be wrong here? 1Password Version: 8.10.3 (81003012) Extension Version: 2.15.0 OS Version: macOS 13.2.1 (22D68) Browser:_ zsh
Enabling environments on linux
Im tryin to test envionments in Linux. I reinstalled 1password from the Beta channel (1Password for Linux 8.12.0 81200011, on BETA channel) But I still cannot se any reference to environments in Settings. This is on Ubuntu 24.04. How do debug this? We are using Okta SSO, can that be an issue? Can it be disabled by company policy? How can I see that?
Edit items (json) without losing passkeys
Just came across this fun notice in the docs: "JSON item templates do not support passkeys. If you use a JSON template to update an item that contains a passkey, the passkey will be overwritten. To fix this, you can restore a previous version of the item." Which mean this method of editing an item is out the window for any items which contain passkeys :( Want to bump this issue, and also say that perhaps a different kind of programmatic update without needing to pass in the entire json blob could be useful.Empty date field edit json bug
It seems that when editing an item using the json template method, any empty date fields (no value set) are still having that empty value parsed and coerced, and after the fact get their value set to "1969-12-31" (epoch time 0). In practice I usually remove these extra fields that are generated on the "API Credential" type template, but I'm sure many folks leave them there, considering the empty fields do not show anywhere. More generally, providing a json style update that will merge your changes rather than having to provide the entire thing would be more ergonomic and could help clarify the user intent.
op run fails with "deleted or archived" error when resolving item by name, but op item get works
1Password CLI Version: 2.32.0 OS: macOS (Darwin 25.1.0) Shell: zsh Problem: When using op run with an env file that references items by name, it fails with: [ERROR] could not find item GitLab in vault Employee, because it has been deleted or archived However, the item exists and can be accessed by name with other commands: # This works fine: op item get "GitLab" --vault Employee --fields token # This also confirms the item exists: op item list --vault Employee | grep GitLab # Returns: qf...bq GitLab Employee 3 weeks ago Reproduction: 1. Create secrets.env: GITLAB_TOKEN=op://Employee/GitLab/token 2. Run: op run --env-file=secrets.env -- env | grep GITLAB 3. Error occurs despite the item being accessible via op item get. Workaround: Using the item ID instead of the name works: GITLAB_TOKEN=op://Employee/qf...hq/token Expected: op run should resolve items by name the same way op item get does.regarding the syntax of secret references, would it be possible to support more special characters?
I don't know about others, but I like to use a naming scheme to name the items in my vault, and that naming scheme uses some special characters. the special characters give some semantic meaning to the name (e.g. role:professional[manager].account:mycompany[myteam] , or prsn:my.role:personal.account:gpg.item:key[0xjf9089hf4f43] ). this helps with organization and lookup. the problem is: I'm a developer and use the op cli, and would like to be able to reference vault items by name using 1Password's secret references syntax in my configurations and other places, and be able to inject the real values at run time using op read , op inject and op run , but I find myself unable to do so and have to resort to using their ID instead. I think the reason I cannot reference the items by name is that, currently, only the following special characters are supported by the secret reference syntax: dash - underscore _ period . whitespace (https://developer.1password.com/docs/cli/secrets-template-syntax/#secret-references) Is that true ? Is there currently a way around this ? Else, my question is: would it be possible to have any of the following other special characters supported ? one bracket pair supported (e.g. [ and ] , or < and > , or { and } , or all of them) colons : or semi-colons ; question marks ? Or maybe would it be possible to give us some way of escaping them or encoding them (like for url encodings: %5Bword%5D for [word] , etc.) ? thank you for this great application :) 1Password Version: 8.8.0 Extension Version: Not Provided OS Version: macOS 12.3.1 Browser:_ Chrome Referrer: forum-search:https://1password.community/search?Search=regarding%20the%20syntax%20of%201password%20secret%20references%2C%20would%20it%20be%20possible%20to%20support%20some%20special%20characters%20other%20than%20dash%20%60-%60%2C%20underscore%20%60_%60%2C%20and%20period%20%60.%60%20%3F, underscore _ , and period . ?Is there a way to add a guest user using the CLI?
I'm new to using the CLI and one use case I have is creating guest users. I was curious if there was a flag or something that would allow me to create a guest user rather than a team member, Thanks, Chris 1Password Version: Not Provided Extension Version: Not Provided OS Version: Not Provided Referrer: forum-search:https://1password.community/search?Search=add%20guest%20using%20cli
CLI Slow Performance
I have the 1Password desktop app installed and up to date on my macBook Pro, the `op` CLI is also installed, up to date, and working properly. All expected CLI queries work but they are surprisingly slow. After a bunch of trial and error, it seems that it is making a round-trip online as part of every single CLI query. I added the --debug flag and I can see cache hits, but the round trip online is still occurring. Disabling the network interface causes all queries to fail. Is it possible to get the 1Password CLI working fully offline to avoid all of this unnecessary round-trip business? Surely with the desktop app installed and CLI integration turned on, there has to be a way to make efficient (and offline) use of my 1Password vaults. Otherwise automation tasks that require secrets are simply too cumbersome to handle with 1Password, and I will require a secondary solution. And in that case, I may as well give up on 1Password.
