The 1password-secrets provider enables you to dynamically import Secrets from 1Password into your Environment. The provider will return a map of names to Secrets.
This provider is currently in preview.
Example
values:
1password:
secrets:
fn::open::1password-secrets:
login:
serviceAccountToken:
fn::secret: "ops_123ABC"
get:
email_section_example:
ref: "op://Management/PagerDuty/Admin/email"
anna_sans_section_example:
ref: "op://dev/Stripe/publishable-key"
olaf_attr_example:
ref: "op://development/GitHub/Security/one-time password?attribute=otp"
sven_ssh_example:
ref: "op://Private/ssh keys/ssh key/private key?ssh-format=openssh"
nokk_whitespace_example:
ref: "op://development/aws/Access Keys/access_key_id"
gale_unique_id_example:
ref: "op://prod/yj3jfj2vzsbiwqabprflnl27lm/password"
Inputs
| Property | Type | Description |
|---|---|---|
login | 1PasswordSecretsLogin | Credentials used to log in to 1Password. |
get | map[string]1PasswordSecretsGet | The secrets to get. |
1PasswordSecretsLogin
| Property | Type | Description |
|---|---|---|
serviceAccountToken | string | The service account token to use for authentication. |
1PasswordSecretsGet
| Property | Type | Description |
|---|---|---|
ref | string | A reference to a secret of the form op://vault-name/item-name/[section-name/]field-name to read from 1Password. |
Outputs
| Property | Type | Description |
|---|---|---|
| N/A | object | A map from names to secret values. |
Thank you for your feedback!
If you have a question about how to use Pulumi, reach out in Community Slack.
Open an issue on GitHub to report a problem or suggest an improvement.