I'm still new to the 1Password Secret automation and the CLI. So i'm trying to lay out my idea here.
I want to have my nginx/php process wrapped with the
op run -- command, as I want my secrets to only be available on run time for the respective applications.
But for me to use the CLI I need to log in, when I do that with
eval $(op signin) I'm asked to add signin-address, email, secret and password.
This makes it all a little harder to automate things. I would prefer not to haven written secrets to files on disk, therefore I'm hoping to use to
op run -- wrapper, and therefore my servers need to be able to authenticate easily without human interaction.
Do any of you have some suggestions on how to handle this? and if it's even possible.
I would like to have an as secure as possible setup for having e.g. DB credentials used in my PHP application.
I know there are some non-official PHP SDKs out there, but I would prefer not rewriting to much of my applications if possible.
Thanks in advance.
1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Ubuntu 22.04
Browser:_ Not Provided