Signing back into the Community for the first time? You'll need to reset your password to access your account.  Find out more.

Forum Discussion

Former Member's avatar
Former Member
2 years ago

Running 1Password and the chrome extension using firejail for chrome

Hi guys,

first of all - thanks for the amazing product! :)

As part of hardening my personal computer i wanted to run Chrome in firejail. (https://wiki.archlinux.org/title/firejail)

Initially the extension did not connect to my running 1Password App on my machine, when adding

whitelist ${RUNUSER}/1Password-BrowserSupport.sock to the chrome firejail profile it seems to work, but then i get the error message which was already discussed here: https://1password.community/discussion/126049/browserverificationfailed


💫 Looking for desktop app com.1password.1password background.js:2
📤 Sending <NmRequestAccounts> message to native core <831602045> background.js:2
Received <BrowserVerificationFailed> from the native core

is there anything else i have to allow chrome to do?

linux
  • FrankyO1P's avatar
    FrankyO1P
    Icon for 1Password Team rank1Password Team
    2 years ago

    Hi @alxndr13,

    Currently we do not support sandboxed browsers. Although we are currently working on implementing custom browser support, you can read more here: https://1password.community/discussion/140735/extending-support-for-trusted-web-browsers/p1?new=1

    However, it might be possible to allow a custom browser by adding the binary to a file. You can try adding a custom binary to a file with the following steps:

    1. Open a terminal, and run sudo mkdir /etc/1password (if you've done this already, you can skip it).
    2. Run cd /etc/1password.
    3. Run sudo nano custom_allowed_browsers.
    4. Feel free to use your preferred text editor in place of nano
    5. Paste in the appropriate browser binary name - such as opera or vivaldi-bin.
    6. Save the file - in Nano, this is done by Ctrl+x -> y -> Enter
    7. In terminal, run sudo chown root:root /etc/1password/custom_allowed_browsers && sudo chmod 755 /etc/1password/custom_allowed_browsers
    8. Run 1Password - it will read our new config file and make the appropriate connections.

    Let me know how that goes.

    Franky