Protect what matters – even after you're gone. Make a plan for your digital legacy today.
Service Account Permissions Issue: Vault Access Restricted to Read-Only
Hi all, I'm having trouble with the permissions of the service account. Even though I grant it read, write and share permissions on a vault when creating the service account, the account is actually created with read-only permissions. This is evident both from the attached image and from the code I am running (Python SDK) which can access the vault for reading, but not for writing. The error I am getting is: you do not have the right permissions to perform this action: not sufficient permissions for the item update operation I also tried to create the service account again with all the necessary permissions, but the problem persists, even though I grant it permission to create vaults. I have no idea what it could be or what else I could try. ThanksIntroducing 1Password SDKs for Desktop Integrations
We’re excited to announce new authentication capabilities in the 1Password SDKs! Developers can now build integrations that authenticate directly through the 1Password desktop app using the same trusted methods users already know —Touch ID, their account password, or other supported options. 🏗️ What this unlocks: Native and seamless integrations: Build integrations that connect directly with the 1Password desktop app using the SDK. It’s a secure, native way to integrate with 1Password — no extra setup or dependencies required. Human-in-the-loop workflows: Enable user-scoped authentication in your integrations to support secure, approval-based workflows that keep users in control. Easy to build and adopt: Simplifies integration setup and makes authentication effortless for end users. Now available in public beta for macOS and Linux in the SDKs for Go, JavaScript, and Python. Video not displaying? Watch it here. 💬 Share feedback, get swag We’d love to hear how this feature performs in your integrations — is it reliable and easy to use in your workflows? What would you like to see next? 📖 Read the docs to get started 🧢 The first 10 developers to share feedback on the 1Password Developer Community Hub by November 30th will receive exclusive 1Password swag. Be sure to tag your post with #beta-sdk-desktop-integrations.
OpenAI API Keys... Oh mai
Just a heads up, on Github, a crafty person created a query to find OpenAI API keys via search. I'm not going to link to it, but here are some resources if you fall into this camp! We have an entire blog post from 2023 about this topic https://blog.1password.com/openai-chatgpt-exposed-api-keys/ AI Agents + 1Password (Blog) https://developer.1password.com/docs/sdks/ai-agent CLI https://developer.1password.com/docs/cli/secret-references SDK (Python, Go & Typescript/JS) https://developer.1password.com/docs/sdks/load-secrets GitHub Actions with 1Password (hide API keys in CI/CD) https://developer.1password.com/docs/ci-cd/github-actions
Env var loading and validation for 1Password (open source!)
If you are using 1Password to manage any dev/application secrets, you might be interested in our open source tool - https://varlock.dev We just released a new update that introduces a plugin system and our first plugin is for 1Password (of course) - see https://varlock.dev/plugins/1password/ Our tool lets you define a .env.schema file, which can contain decorator style comments to add additional metadata to your env. This is then used to do validation, generate types, etc. The tool also introduces a new function call syntax, and while you can talk to any external cli using the exec() function, the new 1Pass plugin also adds a new op() function which fetches items from 1Password. So how is this different from using `op run`? Uses the SDK and service account tokens for deployed environments, and (optionally) uses op CLI for local dev (with biometric auth via the desktop app) Adds validation and coercion Automatic type generation (right now just for TypeScript, more to come) Understands which items are sensitive, and adds leak detection when possible Supports loading multiple env-specific files (.env.local, .env.production, etc) Supports explicit imports to break up files however you like Drop in integrations for many frameworks You can also use Varlock alongside the new https://developer.1password.com/docs/environments/ by syncing your environment to a local file (such as `.env.local`) and varlock will automatically load those values, and apply its validation on top. Would love for y'all to take a look, and to hear what you think! Oh and please give us a ⭐ on GitHub @ https://github.com/dmno-dev/varlock --- An example .env.schema file using the new 1Password plugin📣 - Local App Authentication in the SDKs
Hi all, Just wanted to drop a quick note about the updated SDKs for Python, Go and Javascript. We recently introduced another beta enabling desktop applications to request an item from 1Password and then 1Password presents an authentication to the end user. Learn more here 👉 https://developer.1password.com/docs/sdks/desktop-app-integrations What do you all think about this? How is it going for you? Have you had a chance to give it a try? Here's a quick video, I recorded introducing the idea and giving a quick example of it in action! Let us know what you think! Thanks! Phil & the 1Password Team! Video not displaying? Watch it here.Improvements to 1Password Community coming May 22nd
Since re-launching 1Password Community in February, we’ve been taking note of every piece of feedback you’ve all shared so we can continue to make improvements. One trend we’ve seen in the feedback is that we need to make it clearer what posts should go where. The feedback also made it clear that we needed to simplify the navigation so people can get where they want to go quickly and easily. To that end, on Thursday, May 22nd we’ll be re-organizing 1Password Community to make it easier to navigate, find what you’re looking for, and know where to post. We’ll be simplifying the discussion board structure, reducing clutter on the 1Password Community homepage and in the navigation bar at the top of every page. We know lots of folks come here for support, so we’ve also added Get help to the main navigation to help you find existing answers, post a new question in the community, or contact 1Password Support. We hope you’ll find these updates helpful! What’s changing? In the new structure, we’ll have the following discussion boards: Announcements: This is a new discussion board where 1Password staff can share news and updates. 1Password at work: If you’re using 1Password products in your business, this is the best place to get help and share what you’ve learned. 1Password at home: This is the place to get help and talk about all things 1Password for personal cybersecurity and privacy. Developers: Just like before, we’ll continue to have a space for developers to chat with each other and members of the 1Password team. Lounge: Just like before, this space is for off-topic, just-for-fun, and 1Password-adjacent topics. Current discussion boards New discussion boards Lounge Lounge Password Manager 1Password at home Device Trust 1Password at work Passage Developers Developers Developers 1Password Administrators 1Password at work 1Password Developers: SDKs Developers Announcements Do I need to do anything? Nope! Your profile and credentials will stay the same. Will any posts be going away? No, any posts in discussion boards that are being retired will be moved to other discussion boards so that nothing is lost. For any bookmarked discussions that are moved, their old url will redirect you to the new one. When will these changes happen? These changes are scheduled for Thursday, May 22nd. We will share any updates if that changes. Staff will be standing by to help with any questions or concerns. If you have any feedback, please don’t hesitate to reply to this thread. We love to hear from you and will continue to make improvements based on your feedback. Beyond these imminent changes, you can also start new discussion threads in the Lounge and use the tag Community Feedback at any time to share your suggestions!Developer Doc "bugs"
As we are starting to develop utilizing 1Password SDK, I have been finding some "bugs" in the documentation. I would love to see these updated (to help other people). We have been having to create our own internal documentation. From: https://developer.1password.com/docs/sdks/manage-items/#update-an-item Update an item To update an item, fetch the item you want to update, specify the changes you want to make, then pass the updated item to the client.Items.Put function. # Update a field in your item item.fields[0].value = "new_value" item.websites.append( Website( label="my custom website 2", url="https://example2.com", autofill_behavior=AutofillBehavior.NEVER, ), ) updated_item = await client.items.put(item) Website is not a data type: NameError: name 'Website' is not defined From the page: https://developer.1password.com/docs/sdks/concepts/#field-types There is no Data Type "Website", but there is a Data Type "Url", which I also tried, and it does not work either: NameError: name 'Url' is not defined I finally, looking at the source code figured out that I had to do yet another "import": from onepassword.types import ItemField, Website, AutofillBehavior to make this work. Is there other documentation pages that go over all the other parts of "types.py" that tell us when they are used, where it is used, and how to do import for them? Same goes for other code pages (secrets, items, errors, vaults, etc..)
