onepasswordconnectsdk
Advanced tools
Access your 1Password items in your Python applications through your self-hosted 1Password Connect server.
The 1Password Connect SDK provides access to 1Password via 1Password Connect hosted in your infrastructure. The library is intended to be used by Python applications to simplify accessing items in 1Password vaults.
Check the Python Connect SDK Example to see an example of item manipulation using the SDK that you can execute on your machine.
Install the 1Password Connect Python SDK:
pip install onepasswordconnectsdk
Export the OP_CONNECT_HOST and OP_CONNECT_TOKEN environment variables:
export OP_CONNECT_HOST=<your-connect-host> && \
export OP_CONNECT_TOKEN=<your-connect-token>
2.1 If you need a higher timeout on the client requests you can export OP_CONNECT_CLIENT_REQ_TIMEOUT environment variable:
# set the timeout to 90 seconds
export OP_CONNECT_CLIENT_REQ_TIMEOUT=90
Use the SDK:
Read a secret:
from onepasswordconnectsdk.client import (
Client,
new_client_from_environment,
)
connect_client: Client = new_client_from_environment()
client.get_item("{item_id}", "{vault_id}")
Write a secret:
from onepasswordconnectsdk.client import (
Client,
new_client_from_environment,
}
from onepasswordconnectsdk.models import (
Item,
ItemVault,
Field
)
connect_client: Client = new_client_from_environment()
# Example item creation. Create an item with your desired arguments.
item = Item(
vault=ItemVault(id=op_vault),
id="custom_id",
title="newtitle",
category="LOGIN",
tags=["1password-connect"],
fields=[Field(value="new_user", purpose="USERNAME")],
)
new_item = connect_client.create_item(op_vault, item)
For more examples of how to use the SDK, check out USAGE.md.
1Password requests you practice responsible disclosure if you discover a vulnerability.
Please file requests via BugCrowd.
For information about security practices, please visit the 1Password Bug Bounty Program.
FAQs
Python SDK for 1Password Connect
We found that onepasswordconnectsdk demonstrated a healthy version release cadence and project activity because the last version was released less than a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Security News
vlt's new "reproduce" tool verifies npm packages against their source code, outperforming traditional provenance adoption in the JavaScript ecosystem.
Research
Security News
Socket researchers uncovered a malicious PyPI package exploiting Deezer’s API to enable coordinated music piracy through API abuse and C2 server control.
Research
The Socket Research Team discovered a malicious npm package, '@ton-wallet/create', stealing cryptocurrency wallet keys from developers and users in the TON ecosystem.