diff --git a/nixos/roles/gitea.nix b/nixos/roles/gitea.nix
index 5aaaef0..0493580 100644
--- a/nixos/roles/gitea.nix
+++ b/nixos/roles/gitea.nix
@@ -2,6 +2,7 @@
   pkgs,
   lib,
   config,
+  primaryUser,
   ...
 }:
 
@@ -219,6 +220,15 @@ in
     };
   };
 
+  system.activationScripts.gitea-runner-age-key = {
+    text = ''
+      mkdir -p /var/lib/gitea-runner/.config/sops/age
+      cp /home/${primaryUser}/.config/nix/secrets/keys.txt /var/lib/gitea-runner/.config/sops/age/keys.txt
+      chmod 600 /var/lib/gitea-runner/.config/sops/age/keys.txt
+      chown -R gitea-runner:gitea-runner /var/lib/gitea-runner/.config
+    '';
+  };
+
   users = {
     users = {
       gitea = {