diff --git a/hosts/tadpole/modules/ssh/default.nix b/hosts/tadpole/modules/ssh/default.nix
index d9a975c..37b4a51 100644
--- a/hosts/tadpole/modules/ssh/default.nix
+++ b/hosts/tadpole/modules/ssh/default.nix
@@ -35,26 +35,6 @@ in
       '';
     };
 
-    age.secrets = {
-      "alex.pinwheel-tadpole.pub" = {
-        file = ../../../../secrets/pinwheel/alex.pinwheel-tadpole.pub.age;
-        path = "${authorizedKeysPath}/alex.pinwheel-tadpole.pub";
-      };
-
-      "alex.tadpole-codeberg.org" = {
-        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.age;
-        path = "/home/alex/.ssh/alex.tadpole-codeberg.org";
-        owner = "alex";
-        group = "users";
-      };
-      "alex.tadpole-codeberg.org.pub" = {
-        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.pub.age;
-        path = "/home/alex/.ssh/alex.tadpole-codeberg.org.pub";
-        owner = "alex";
-        group = "users";
-      };
-    };
-
     services = {
       openssh = {
         enable = true;
@@ -80,5 +60,25 @@ in
         allowedTCPPorts = [ 1122 ];
       };
     };
+
+    age.secrets = {
+      "alex.pinwheel-tadpole.pub" = {
+        file = ../../../../secrets/pinwheel/alex.pinwheel-tadpole.pub.age;
+        path = "${authorizedKeysPath}/alex.pinwheel-tadpole.pub";
+      };
+
+      "alex.tadpole-codeberg.org" = {
+        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.age;
+        path = "/home/alex/.ssh/alex.tadpole-codeberg.org";
+        owner = "alex";
+        group = "users";
+      };
+      "alex.tadpole-codeberg.org.pub" = {
+        file = ../../../../secrets/tadpole/alex.tadpole-codeberg.org.pub.age;
+        path = "/home/alex/.ssh/alex.tadpole-codeberg.org.pub";
+        owner = "alex";
+        group = "users";
+      };
+    };
   };
 }