1. Docs
  2. Pulumi ESC
  3. Integrations
  4. Dynamic secrets
  5. 1password-secrets

1password-secrets

    The 1password-secrets provider enables you to dynamically import Secrets from 1Password into your Environment. The provider will return a map of names to Secrets.

    This provider is currently in preview.

    Example

      1password:
        secrets:
          fn::open::1password-secrets:
            login:
              serviceAccountToken:
                fn::secret: "ops_123ABC"
            get:
              email_section_example:
                ref: "op://Management/PagerDuty/Admin/email"
              anna_sans_section_example:
                ref: "op://dev/Stripe/publishable-key"
              olaf_attr_example:
                ref: "op://development/GitHub/Security/one-time password?attribute=otp"
              sven_ssh_example:
                ref: "op://Private/ssh keys/ssh key/private key?ssh-format=openssh"
              nokk_whitespace_example:
                ref: "op://development/aws/Access Keys/access_key_id"
              gale_unique_id_example:
                ref: "op://prod/yj3jfj2vzsbiwqabprflnl27lm/password"
    

    Inputs

    PropertyTypeDescription
    login1PasswordSecretsLoginCredentials used to log in to 1Password.
    getmap[string]1PasswordSecretsGetThe secrets to get.

    1PasswordSecretsLogin

    PropertyTypeDescription
    serviceAccountTokenstringThe service account token to use for authentication.

    1PasswordSecretsGet

    PropertyTypeDescription
    refstringA reference to a secret of the form op://vault-name/item-name/[section-name/]field-name to read from 1Password.

    Outputs

    PropertyTypeDescription
    N/AobjectA map from names to secret values.
      PulumiUP 2024. Watch On Demand.