Docs Home Pulumi IaC Pulumi ESC Pulumi Cloud Packages Tutorials
  1. Packages
  2. 1Password
  3. Installation & Configuration
1Password v1.1.4 published on Wednesday, Sep 4, 2024 by 1Password
1Password/pulumi-onepassword

1Password: Installation & Configuration

onepassword logo
1Password v1.1.4 published on Wednesday, Sep 4, 2024 by 1Password
1Password/pulumi-onepassword

    The 1Password provider for Pulumi allows you to access and manage items in your 1Password vaults using Pulumi.

    Installation

    The 1Password provider for Pulumi is available as a package in most Pulumi languages:

    Provider Binary

    The 1Password provider binary is a third party binary. It can be installed using the pulumi plugin command.

    pulumi plugin install resource onepassword <version> --server github://api.github.com/1Password/pulumi-onepassword

    Replace the version string with your desired version.

    Configuration

    You must configure the 1Password provider for Pulumi with your 1Password credentials before the provider can be used to access and manage items in your 1Password vaults. You can use one of the following:

    • Service account
      • pulumi-onepassword:service_account_token (environment: OP_SERVICE_ACCOUNT_TOKEN) - the 1Password service account token. Requires 1Password CLI.
    • Connect server
      • pulumi-onepassword:url (environment: OP_CONNECT_HOST) - the URL where your 1Password Connect API can be found.
      • pulumi-onepassword:token (environment: OP_CONNECT_TOKEN) - the token for your Connect API.
    • Personal account

    After you find your credentials, there are two ways to provide them to Pulumi:

    1. Set the environment variables for the preferred method. For example, to set the environment variable for a service account token:

      $ export OP_SERVICE_ACCOUNT_TOKEN=XXXXXXXXXXXXXX

    2. If you prefer to store your credentials alongside your Pulumi stack for easy multi-user access, use configuration to set them.

      $ pulumi config set pulumi-onepassword:service_account_token --secret
Value: <paste token here>

    Make sure to pass --secret when setting any sensitive data (in this example pulumi-onepassword:service_account_token) so that it’s properly encrypted. The complete list of configuration parameters is in the 1Password provider for Pulumi README.

    onepassword logo
    1Password v1.1.4 published on Wednesday, Sep 4, 2024 by 1Password
    1Password/pulumi-onepassword