Is there any way to automate secrets reading in Gitlab pipeline using service account (add and get)

Hello. We are trying to automate secrets reading in Gitlab pipeline using 1password service account. The issue is the "op add account" needs an email flag, hence I am not able to add an account (after op installation in Gitlab runner) using service account. Any ideas? Or any other alternatives to enable Gitlab pipeline to automate 1password secrets injection?


1Password Version: Not Provided
Extension Version: Not Provided
OS Version: Not Provided
Browser:_ Not Provided
Referrer: forum-search:service account to add 1password account

Comments

  • You shouldn't have to run op add account when using a service account, as the CLI will automatically detect the environment variable OP_SERVICE_ACCOUNT_TOKEN and use that to authenticate. The issue may be that you're not running the beta version of the CLI, which is currently required for service accounts while the feature is in public beta. Could you verify the CLI version that you are using in Gitlab runner? Alternatively, support for service accounts will be included the next production release of the CLI, if you'd prefer to wait for the feature to be out of beta.

This discussion has been closed.