Written by Amado Tejada
unopass is a convenient python module that allows you to retrieve secrets from the 1Password CLI at runtime using your biometrics. (E.g. Touch ID, etc.)
This eliminates the need of storing secrets in env, or conf files and provides a more secured local workflow.
Common use cases:
- Access AWS CLI, Google Cloud Platform secrets
- Access API secrets in your scripts
- Use with other tools like GAM, see: GAMpass
Note: unopass is early alpha software and should be tested extensively.
- 1Password CLI v2.4.1 or higher
- 1Password App v8.7.1 or higher
- Biometrics enabled
Authorization expires after 10 minutes of inactivity in the session. There's a hard limit of 12 hours, after which you must reauthorize.
Learn about 1Password Biometrics Security
pip3 install unopassYou can also import unopass from source.
from unopass import unopass as secret
"""
secret.unopass({VAULT}, {ITEM}, {FIELD})
OPTIONAL: signout of the 1Password CLI session:
call secret.signout() with deauthorize=True to end of the 1Password session
"""
username = secret.unopass("personal", "server", "username")
password = secret.unopass("personal", "server", "password")
secret.signout(deauthorize=True)
print(f"user: {username}\npass: {password}")This software {unopass} has not been endorsed or supported by 1Password, AgileBits Inc. and is in no way associated with them and/or its subsidiaries or affiliate.
unopass is released under the MIT License