With a Secrets Automation workflow, you can securely access your 1Password items and vaults in your company’s apps and cloud infrastructure using a private REST API provided by a 1Password Connect server.
You can set up Secrets Automation if you’re an owner, administrator, or part of a group with permission to manage Secrets Automation.
Before you get started, you’ll need a deployment environment with Docker or Kubernetes to deploy the Connect server.
Step 1: Set up a Secrets Automation workflow
To get started, set up a Secrets Automation workflow and get your Connect server credentials and first access token. Click Get Started, sign in to your 1Password account, and follow the onscreen instructions.
After you complete the setup process, you’ll see:
- Your 1password-credentials.json file. It contains the credentials you’ll need to deploy the Connect server.
- An access token. You’ll use this in your applications or services to authenticate with the REST API. You can issue additional tokens later.
Step 2: Deploy a 1Password Connect server
Create a Compose file to deploy the 1Password Connect containers in the directory where you saved your 1password-credentials.json file. Download an example docker-compose.yaml file.
Start the Docker containers:
docker-compose up [-d]
Step 3: Set up applications and services to get information from 1Password
Applications and services get information from 1Password through REST API requests to a Connect server. The requests are authenticated with an access token. Create a new token for each application or service you use.
If your language or platform isn’t listed, you can build your own client using the 1Password Connect REST API.
To change the vaults a token has access to, issue a new token.
To get help and share feedback, join the discussion with the 1Password Support Community.