How to manage developer secrets with 1Password

1Password is a secure place to store your passwords, usernames, credit card numbers, software license keys, and everything else that’s important in your digital life. But did you know it can also provide the same level of protection and convenience for your SSH keys, database passwords, and API keys?

1Password Developer Tools

1Password Developer Tools applies the security and simplicity of a password manager to developer secrets. That means you can protect, manage, and retrieve them in a way that fits seamlessly into your existing workflows.

SSH keys can be complicated to set up and use, and infrastructure secrets are often difficult to manage and track – especially if you’re part of a team with multiple members and projects. With 1Password Developer Tools, you can store these secrets and manage access in one secure and convenient place.

1Password SSH agent

Developers around the world use SSH every day to access remote servers and devices, contribute code, and ship new software. But creating and using SSH keys is often more complicated and time-consuming than it needs to be, dragging down your productivity.

You can simplify this process with the 1Password SSH agent. Just like traditional passwords, 1Password can generate, store, and autofill your SSH keys for major Git and cloud platforms like:

  • GitHub
  • GitLab
  • Bitbucket
  • Digital Ocean
  • And more!

You can even authorize access with Touch ID or a quick tap on your Apple Watch.

SSH keys made simple

The 1Password SSH agent keeps your SSH keys organized, secure, and available everywhere you need them. That means no more plaintext keys on your device, and zero hassle when you want to set up SSH on a new machine. And unlike the default ssh-agent, you have full control over which processes have access to your keys.

1Password CLI

1Password CLI helps you work quickly and securely by automating administrative tasks and loading secrets straight from your command line. You can store important secrets in 1Password and then use secret references to securely load them in environment variables, configuration files, and anywhere else you might need them.

This allows you and your team to work collaboratively on projects without putting any plaintext secrets in code. Since 1Password loads secret references into your terminal instead of the secrets themselves, everyone has access to the secrets they need without worrying about whether those secrets are out-of-date.

The command-line tool can also be connected to the 1Password desktop app, allowing you to quickly sign in from the command line with biometrics, an Apple Watch, or your device user password instead of your 1Password account password.

What is Secrets Automation?

1Password SSH agent and 1Password CLI help you work seamlessly and securely with other machines. But what about the secrets that need to be shared between machines, like API tokens, application keys, and private certificates? That’s where Secrets Automation comes in.

Company infrastructures have become incredibly complex. Your team might be shipping lots of different software, operating on multiple cloud platforms, and using a ton of microservices – all of which need to talk to one another. As new deadlines come through thick and fast, it can be hard to balance security with productivity, and avoid storing secrets in less-than-ideal places.

You can solve this problem with Secrets Automation, which automatically supplies infrastructure secrets when and where they’re needed. 1Password will also protect those secrets with the same level of security it provides for your passwords, credit cards, addresses, and other private data. With 1Password, you can manage and protect all of your company’s secrets in one place.

The benefits of Secrets Automation

Secrets Automation helps you secure, orchestrate, and manage your company’s infrastructure secrets by:

  • Storing secrets in encrypted vaults and referencing them in your code with variables that are replaced at runtime.
  • Automating access to your secrets via an API that lets you pass them to services that require authentication through pre-built integrations and client libraries.
  • Connecting the certificates, sign-in keys, OAuth tokens, and other secrets that live in your infrastructure directly with the services that need them.
  • Integrating with infrastructure software like HashiCorp Vault, Terraform, Kubernetes, and Ansible.

And just like any other data you’ve stored in 1Password, you can use vaults to securely share infrastructure secrets with the people and machines who need them – and not the ones who don’t.

Try 1Password for free to start simplifying and securing your development workflows.