Announcing the 1Password command-line tool public beta

Here at AgileBits, we’ve been working hard over the last few months to bring power users, developers, and administrators more powerful ways to interact with 1Password. We’re proud to announce that we have something that fits the bill. It’s called the 1Password command-line tool, and we can’t wait to see what you build with it. Let me take this opportunity to walk you through the exciting potential.

Introducing op

1Password apps are available on just about every platform, but they’ve always had the same dependency: a graphical interface. Now all of 1Password is available with just two characters: op.

The 1Password command-line tool makes your 1Password account accessible entirely from the command line. A simple op signin will securely authenticate you with the 1Password service and give you access to a wide range of capabilities:

Getting usernames and passwords from items:

> op get item OpenProxy | jq '.details.fields[] | select(.designation=="password").value'
“genuine-adopt-pencil-coaster”

Creating new items and vaults:

> op create item login $(cat aws.json | op encode) --title="AWS"
{“uuid”:”5hinhvejl7wtmbeorfts7ho3di”,”vaultUuid”:”i5imjpvdivbsxo56m2ap2n66gy”}

> op create vault devops
{“uuid”:”ny5khay7t3lmhrp4pjsxl4w34q”}

Working with documents:

> op create document ./devops.pdf --vault=devops --tags=architecture
{“uuid”:”i3rsiwjfh7aryvbu5odr4uleki”,”vaultUuid”:”ny5khay7t3lmhrp4pjsxl4w34q”}

If you’re a team administrator, you can also manage other users and shared vaults — all without leaving your terminal:

> op suspend john@acmecorp.com

One of the most frequent requests we receive from 1Password Teams customers is the ability to export the Activity Log. With the Pro plan, op list events makes it easy to ingest activity data into the application of your choosing. Be it Splunk, Kibana, Papertrail, or your own tool, op outputs JSON, so it’s simple to work with.

But we didn’t just build the tool to solve specific requests. It’s flexible enough to handle use cases we haven’t even thought of. The possibilities are endless, and we know you’ll come up with something amazing.

🎶 Rock, robot rock (solid) 🎶

The command structure is similar to tools you already use, providing easy integration with your workflow. Now automated systems can have access to secure credentials without ever storing them in plaintext. Here at AgileBits, for example, we’ve been using op for the last few months as part of our automated build systems. It’s been super useful for fetching secure keys and tokens required for building and deploying 1Password. After a secure op signin, we have a script that fetches the appropriate signing key from a shared vault and automatically signs new builds.

The tool was written from the ground up with the battle-tested Go programming language, the very same we used to build the 1Password service itself. As with every 1Password client, all encryption and decryption is done on your machine locally, ensuring the highest level of security best practices you’ve come to expect from the entire family of 1Password apps.

Get yo’ *NIX on

Our dreams of late have been filled with penguins. Two weeks ago we shared a treat with Linux users, and this week it becomes a feast. You might have already tried 1Password for Linux and Chrome OS, but we know what really makes developers salivate: a CLI. You can download op for macOS, Linux, FreeBSD, OpenBSD, and NetBSD on i386, ARM, and AMD64 architectures. Oh, and our Windows friends can play too!

What’s next?

If you’re as excited as we are about this, here’s everything you need to get started:

We highly value the thoughts of people using the beta in the real world, so we can continue improving the tool for you. As we work toward a stable release and eventually open source, please bear in mind that there may be breaking changes down the line, but we’re more than happy to work with you to resolve any issues. We look forward to working together to create some truly useful and powerful tools, and we can’t do it without you.

Now let’s get ready to 🎶 pipe it, grep it, cat it, sed it 🎶

Take a tour of the new 1Password.com

When we introduced 1Password Teams near the end of 2015, it included a brand new way to access 1Password right in your browser. Tasks that were impossible before became not only possible but super easy. A few short months later, we introduced 1Password Families, specially tailored for home use. And a year ago, we introduced 1Password memberships for individuals. As 1Password.com grew to support a greater variety of people, it had to meet the needs of everyone — from individuals to small families to giant corporations.

Today, we’re unveiling the new 1Password.com. This redesign prepares us for the future and all the great features still to come. Whether you’re using 1Password.com at home or as an administrator of a large team at work, the new design is just for you. We’re so thankful for all the feedback you’ve provided, and we’ve used it to make your experience even better.

The Admin Console is dead, long live the Admin Console

We know that managing a team can be difficult. Although I can’t help you resolve any office fridge disputes, as the designer for 1Password.com I can make things easier for you in other ways.

If you’re an administrator on your team, 1Password.com just got a whole lot simpler to navigate. You’ll see one of the biggest changes as soon as you sign in. We moved all the features that used to be buried in the Admin Console out to the sidebar on the Home page. Everything you have permission to do is now directly available to you.

Information that used to be hidden in the Admin Console is now visible at a glance. For example, a list of all your groups is now accessible right in the sidebar, so you can instantly give someone access to all the resources they need with the right permissions automatically set.

Your ideas, implemented


One improvement in particular is a direct result of feedback we’ve received. You can now manage vaults right from the Home page. It’s just one more way we’ve put everything right at your fingertips.

Sweating every detail

The redesign touched on just about every element of 1Password.com:

  • The new Quests section helps new team and family members get started more quickly.
  • Higher contrast list views make it easier to find exactly what you’re looking for.
  • Higher density detail views show you more at a glance.
  • Notifications alert you to recoveries and pending team members in a central location on every screen.

All of this is only the beginning. We plan on doing much more with those detail views and notifications. Keep an eye out!

Good afternoon, good evening, and goodnight

One of my favorite parts of my job is adding a little levity. Now when you sign in to 1Password.com, you’ll see different messages in the sidebar based on the time of day. It wasn’t exactly the number one feature request, but I do hope it makes you smile. :)

Thanks for coming on this little tour with me. We’ve come to the end of it, but we don’t have to stop here. Feedback fuels designers like me; we love to hear from people using what we design. I love talking to people about how they’re using 1Password.com and what else they might want to see in the future. Email me your best ideas.

Net neutrality: Keeping the Internet safe and accessible for all

Lo, everyone! Back on October 29, 1969, that two-letter greeting was the first message sent over ARPANET, the predecessor to the World Wide Web. Today, on July 12, 2017, people from around the globe are coming together for a day of action to fight for net neutrality. The principle of net neutrality states that all Internet traffic should be treated equally, but those who control the transmission of that data have been fighting for the right to place their preferred data in the fast lane and leave data they don’t like in a traffic jam. We here at AgileBits care quite a lot about data, and while we’re glad your sensitive data is safely locked away, we think the data we want to share on the Internet should remain accessible to everyone. Read more

1Password for Slackers

As I sit here, I can see at a glance that a Pull Request was just merged to master, our unit tests ran successfully, Tim shut down the staging bastion, and Will’s daughter turned 2 today with a rather delicious looking cake.

What ties all these seemingly random topics together? Why Slack of course (you know, the company with the cool socks).

Channeling your inner Slack

At AgileBits we use Slack for almost all communication. We have dedicated channels for each team, company channels for announcements and even a water-cooler channel for the hot topic of the day.

In addition to team communication we also use Slack as an alert mechanism. We receive alerts when code is merged, builds are deployed, unit tests fail, thresholds are exceeded or errors occur. I find that having a single place to see or be notified by these alerts is indispensable. There is simply no way I’d survive having to switch to each and every tool to see what needs my attention.

There was, however one critical service that was obvious by its omission, and that was 1Password. Happily that is no longer the case :)

Introducing Slack for 1Password

When I set about adding Slack integration to 1Password (yep I still get to code) the challenge was deciding what to send to Slack. As always, our customers helped with great advice and I decided that there were two types of activities to send – alerts and notifications.

An alert is sent to Slack for an activity that requires your action. Confirming a new team member or account recovery are two examples. Simply click the link in the alert and you’ll be brought right to where you need to be to complete that activity.

A notification is an important 1Password event that you may want to review. For example a team member adding a new device to their account, enabling or disabling Travel Mode, or even signing in to their account. This allows you to review this activity and keep an eye out for unexpected behaviour.

You can choose which alerts or notifications to send to Slack and which channels those are sent to.

Keep on Slacking


Slack integrations are available for all Teams on the Pro plan. If you are not already on 1Password Teams there has never been a better time, so sign up today for a free trial :)

I am very excited by the new 1Password Slack integrations and hope you are too. I’d love to hear what other alerts or notifications you’d like to see sent to Slack. Let me know below in the comments!

Introducing Travel Mode: Protect your data when crossing borders

We often get inspired to create new features based on feedback from our customers. Earlier this month, our friends at Basecamp made their Employee Handbook public. We were impressed to see they had a whole section about using 1Password, which included instructions for keeping work information off their devices when travelling internationally.

We knew right away that we wanted to make it easier for everyone to follow this great advice. So we hunkered down and built Travel Mode.

Travel Mode is a new feature we’re making available to everyone with a 1Password membership. It protects your 1Password data from unwarranted searches when you travel. When you turn on Travel Mode, every vault will be removed from your devices except for the ones marked “safe for travel.” All it takes is a single click to travel with confidence.

It’s important for me that my personal data be as secure and private as possible. I have data on my devices that’s ultimately a lot more sensitive than my personal data though. As one of the developers here at AgileBits I’m trusted with access to certain keys and services that we simply can’t take any risks with.

How it works

Let’s say I had an upcoming trip for a technology conference in San Jose. I hear the apples are especially delicious over there this time of year. :) Before Travel Mode, I would have had to sign out of all my 1Password accounts on all my devices. If I needed certain passwords with me, I had to create a temporary travel account. It was a lot of work and not worth it for most people.

Now all I have to do is make sure any of the items I need for travel are in a single vault. I then sign in to my account on 1Password.com, mark that vault as “safe for travel,” and turn on Travel Mode in my profile. I unlock 1Password on my devices so the vaults are removed, and I’m now ready for my trip. Off I go from sunny Winnipeg to hopefully-sunnier San Jose, ready to cross the border knowing that my iPhone and my Mac no longer contain the vast majority of my sensitive information.

After I arrive at my destination, I can sign in again and turn off Travel Mode. The vaults immediately show up on my devices, and I’m back in business.

Not just a magic trick

Your vaults aren’t just hidden; they’re completely removed from your devices as long as Travel Mode is on. That includes every item and all your encryption keys. There are no traces left for anyone to find. So even if you’re asked to unlock 1Password by someone at the border, there’s no way for them to tell that Travel Mode is even enabled.

In 1Password Teams, Travel Mode is even cooler. If you’re a team administrator, you have total control over which secrets your employees can travel with. You can turn Travel Mode on and off for your team members, so you can ensure that company information stays safe at all times.

Travel Mode is going to change how you use 1Password. It’s already changed the way we use it. When we gave a sneak peak to our friends at Basecamp, here’s what their founder, David Heinemeier Hansson, had to say:

International travel while maintaining your privacy (and dignity!) has become increasingly tough. We need better tools to help protect ourselves against unwarranted searches and the leakage of business and personal secrets. 1Password is taking a great step in that direction with their new Travel Mode. Bravo.

Travel Mode is available today, included in every 1Password membership. Give it a shot, and let us know how you travel with 1Password.

Learn how to use Travel Mode on our support site.

Time to make the switch

In light of the recent announcement that Meldium is closing, it’s the perfect time for your team to find a new password manager – and 1Password is here to apply for the position! If you were affected by this closure, are worried about your password manager going away (or being bought out for a third time), then it’s time to make the switch to 1Password.

After all, a password manager is too important to choose one that won’t be here for the long haul.

Why choose us?

We could tell you that we’re the best, that we’ve won all kinds of awards, and that we’ve got the best security and customer support. Or we could give you a free trial, where you could see just how easy it is to fall in love with 1Password. We’ll do both, but first let’s tell you a bit about our company ;)

1Password began 10 years ago when Dave and Roustem had the dream of building an easy, secure way to remember and fill passwords. Since then we’ve grown to over 80 passionate people across 4 continents.

In the many years that 1Password has been around we’ve seen many password managers come and go. Some have been flash-in-the-pan, fly-by-night companies, others have been VC funded exercises in getting bought or acquired. Through it all, 1Password has consistently led the way making password management as beautiful, usable and secure as it can be.

We’ve had a blast building 1Password over the last 10 years and are honoured to have millions of customers call 1Password home. We’d love to have you join us as we look forward to the next 10 years.

After all – password management is what we do. It’s all we do. It’s what we love to do.

Switch now and Save

We know it can be tough to ask for additional budget when you are already paying for a password manager. Don’t worry, we have you covered there too. Switch your team to 1Password by June 30th and send us the remaining invoice for your current password manager and we’ll add DOUBLE the credit to your new 1Password account.

Switch to 1Password Teams for double credit

It’s easy to get started. Once you have signed up for your free trial send your receipt to maketheswitch@1password.com. Our team of amazing people will reach out and help you make the switch. It’s just that easy – almost as easy as using 1Password.

So take this opportunity to switch your team to 1Password. You’ll never have to worry about switching again :)

Get to know 1Password Teams: Security Audit & Watchtower

You’ve moved over to 1Password Teams, invited your team, set up custom groups and laid out a recovery plan. Simply by using 1Password, your company is now far more secure than when you started. But how can you know your team is safe from online security breaches? Your teammates could go through their passwords one by one and make them stronger, but there’s a better way: Security Audit.

Read more

Get to know 1Password Teams: Vaults and sharing

What would 1Password be without vaults? They’re where you put your most important information to keep it safe, and they’ve been a core part of the 1Password experience since the beginning. In 1Password Teams, vaults are more useful than ever. Let’s look at how vaults can help you organize and share information within your team.
Read more

Get to know 1Password Teams: Custom groups and roles

As a 1Password Teams customer, you’re in charge of tens, hundreds, or even thousands of people, passwords, and files. Thankfully we have some fantastic tools that give you flexibility and control. Two such tools are custom groups and roles:

  • Custom groups let you organize your staff in a way that makes sense. You might want to put your IT team in one group, your accounts team in another, and sales in a third. Each group has access to the vaults it needs, so new members will have be able to see the right information as soon as they join.
  • Custom roles let you decide who can perform team-level responsibilities like invite people or recover accounts—-without giving them full admin privileges. You can also grant the ability to manage people and vaults, and a lot more. These roles supersede the built-in permissions, so you can give your team members more power, or take it away. It’s entirely up to you.

Read more

Get to know 1Password Teams: The Activity Log

In this series of posts we’ll be exploring 1Password Teams and the features that make it uniquely suited to the challenges faced by businesses. Today’s article is about the Activity Log, a rich overview of all the activity that takes place in your team.

0ae56d96-003c-11e7-89a4-575f0a89d428

What is activity logging?

Activity Logging is one of those features that you can’t live without once you try it. Simply put, it’s the ability to see, at a glance, anything done by anyone on your team.

Anything?

Just about. Fire up the Activity Log and you’ll be able to find out about:

  • password changes
  • team members joining and leaving
  • device authorizations
  • vault creation and deletion
  • membership changes to groups and vaults

…and more.

For each action, you see exactly when it happened, who was involved, and who was responsible. You can sort the list by date or by person, and you can click on the names of people, vaults, and groups to go right to their details. It’s the simplest and best way to audit your team and improve security and accountability.

The best part? Like everything else in 1Password, the Activity Log is fully end-to-end encrypted. No one apart from your team administrators has access to it.

Read more