> One of our most highly requested features, Apple Watch can now unlock 1Password on any Mac with a Secure Enclave.

I'm curious how 1Password achieved this as (afaik) Apple hasn't exposed an "Unlock with Apple Watch" API to third parties.

TIL. It looks like 1Password stores the key in the Secure Enclave and uses the "watch" constraint [0] to access it. This triggers the "Approve with Apple Watch" prompt [1].

[0] https://developer.apple.com/documentation/security/secaccess...

[1] https://i.1password.com/media/mac-apple-watch-prompt.png