We recently started using 1Password for Teams in our company, instead of the old-style 1Password. I love the sharing features, but I have one major concern. The web app allows not only access to admin functionality, but also access to all the passwords in one's vaults. That means that a single vulnerability like cross-site scripting anywhere in your app, can compromise all the passwords in all the vaults of a user. That really scares me. I really want to disable access to vault items from the web app; users are using their Mac and iOS apps anyway. We'd like to use the web app just for admin functionality.
How can we do this?
1Password Version: 6.3.5
Extension Version: Not Provided
OS Version: 10.12.1
Sync Type: Not Provided