Protect what matters β even after you're gone. Make a plan for your digital legacy today.
π£ - Local App Authentication in the SDKs
Hi all, Just wanted to drop a quick note about the updated SDKs for Python, Go and Javascript. We recently introduced another beta enabling desktop applications to request an item from 1Password and then 1Password presents an authentication to the end user. Learn more here π https://developer.1password.com/docs/sdks/desktop-app-integrations What do you all think about this? How is it going for you? Have you had a chance to give it a try? Here's a quick video, I recorded introducing the idea and giving a quick example of it in action! Let us know what you think! Thanks! Phil & the 1Password Team! Video not displaying? Watch it here.Introducing 1Password SDKs for Desktop Integrations
Weβre excited to announce new authentication capabilities in the 1Password SDKs! Developers can now build integrations that authenticate directly through the 1Password desktop app using the same trusted methods users already know βTouch ID, their account password, or other supported options. ποΈ What this unlocks: Native and seamless integrations: Build integrations that connect directly with the 1Password desktop app using the SDK. Itβs a secure, native way to integrate with 1Password β no extra setup or dependencies required. Human-in-the-loop workflows: Enable user-scoped authentication in your integrations to support secure, approval-based workflows that keep users in control. Easy to build and adopt: Simplifies integration setup and makes authentication effortless for end users. Now available in public beta for macOS and Linux in the SDKs for Go, JavaScript, and Python. Video not displaying? Watch it here. π¬ Share feedback, get swag Weβd love to hear how this feature performs in your integrations β is it reliable and easy to use in your workflows? What would you like to see next? π Read the docs to get started π§’ The first 10 developers to share feedback on the 1Password Developer Community Hub by November 30th will receive exclusive 1Password swag. Be sure to tag your post with #beta-sdk-desktop-integrations.
Env var loading and validation for 1Password (open source!)
If you are using 1Password to manage any dev/application secrets, you might be interested in our open source tool - https://varlock.dev We just released a new update that introduces a plugin system and our first plugin is for 1Password (of course) - see https://varlock.dev/plugins/1password/ Our tool lets you define a .env.schema file, which can contain decorator style comments to add additional metadata to your env. This is then used to do validation, generate types, etc. The tool also introduces a new function call syntax, and while you can talk to any external cli using the exec() function, the new 1Pass plugin also adds a new op() function which fetches items from 1Password. So how is this different from using `op run`? Uses the SDK and service account tokens for deployed environments, and (optionally) uses op CLI for local dev (with biometric auth via the desktop app) Adds validation and coercion Automatic type generation (right now just for TypeScript, more to come) Understands which items are sensitive, and adds leak detection when possible Supports loading multiple env-specific files (.env.local, .env.production, etc) Supports explicit imports to break up files however you like Drop in integrations for many frameworks You can also use Varlock alongside the new https://developer.1password.com/docs/environments/ by syncing your environment to a local file (such as `.env.local`) and varlock will automatically load those values, and apply its validation on top. Would love for y'all to take a look, and to hear what you think! Oh and please give us a β on GitHub @ https://github.com/dmno-dev/varlock --- An example .env.schema file using the new 1Password plugin
Attachments not visible when shared
Hello, I am using op cli in powershell (windows) to create new secure note with the password and file attachment. Everything is working at this point. Then I am using another call to share that secure note with external user. Once I share the uri with the end user, he can access the secure note and it's secret, but he does not see any attachments. If I share manually from the desktop app the same secure note, then it works and user sees the file. Interestingly, if I use python SDK and this example https://github.com/1Password/solutions/tree/main/1password/onepassword_sdks/demo-share-script then end user can access file too. So is this a limitation from op.exe? If yes, do you have a roadmap to support it?Developer Doc "bugs"
As we are starting to develop utilizing 1Password SDK, I have been finding some "bugs" in the documentation. I would love to see these updated (to help other people). We have been having to create our own internal documentation. From: https://developer.1password.com/docs/sdks/manage-items/#update-an-item Update an item To update an item, fetch the item you want to update, specify the changes you want to make, then pass the updated item to the client.Items.Put function. # Update a field in your item item.fields[0].value = "new_value" item.websites.append( Website( label="my custom website 2", url="https://example2.com", autofill_behavior=AutofillBehavior.NEVER, ), ) updated_item = await client.items.put(item) Website is not a data type: NameError: name 'Website' is not defined From the page: https://developer.1password.com/docs/sdks/concepts/#field-types There is no Data Type "Website", but there is a Data Type "Url", which I also tried, and it does not work either: NameError: name 'Url' is not defined I finally, looking at the source code figured out that I had to do yet another "import": from onepassword.types import ItemField, Website, AutofillBehavior to make this work. Is there other documentation pages that go over all the other parts of "types.py" that tell us when they are used, where it is used, and how to do import for them? Same goes for other code pages (secrets, items, errors, vaults, etc..)Documentation Correction:
From: https://developer.1password.com/docs/sdks/manage-items Under "Address": fieldType should be field_type, and sdk.ItemFieldType.Address should be ItemFieldType.ADDRESS sectionID should be section_id { id: "address", title: "Address", sectionId: "custom section", fieldType: sdk.ItemFieldType.Address, value: "", details: { type: "Address", content: { street: "1234 Elm St", city: "Springfield", country: "USA", zip: "12345", state: "IL", }, }, },OpenAI API Keys... Oh mai
Just a heads up, on Github, a crafty person created a query to find OpenAI API keys via search. I'm not going to link to it, but here are some resources if you fall into this camp! We have an entire blog post from 2023 about this topic https://blog.1password.com/openai-chatgpt-exposed-api-keys/ AI Agents + 1Password (Blog) https://developer.1password.com/docs/sdks/ai-agent CLI https://developer.1password.com/docs/cli/secret-references SDK (Python, Go & Typescript/JS) https://developer.1password.com/docs/sdks/load-secrets GitHub Actions with 1Password (hide API keys in CI/CD) https://developer.1password.com/docs/ci-cd/github-actions
