service-account

Subcommands

service-account create: Create a service account
service-account ratelimit: Retrieve rate limit usage for a service account

service-account create

Create a service account to gain programmatic access to your secrets using 1Password CLI.

Flags

You can specify the vaults the service account can access, as well as the permissions it will have for each vault using the --vault flag. The syntax looks like this:

The permissions can be one of the following:

read_items
write_items (requires read_items)
share_items (requires read_items)

If no permissions are specified, it will default to read_items.

You can set an expiry to a service account using the --expires-in flag.

1Password CLI only returns the service account token once. Save the token in 1Password immediately to avoid losing it. Treat this token like a password, and don't store it in plaintext.

note

You can't grant a service account access to your built-in Personal, Private, or Employee vault.

Examples

Create a new service account:

Create a service account with an expiry:

Create a service account that can create new vaults:

service-account ratelimit

Retrieve hourly and daily rate limit usage for a service account.

service-account

Subcommands​

service-account create​

Flags​

Examples​

service-account ratelimit​

Was this page helpful?

Subcommands

service-account create

Flags

Examples

service-account ratelimit