diff --git a/secrets/adminarea.age b/secrets/adminarea.age
index a055b2a..959f0e6 100644
Binary files a/secrets/adminarea.age and b/secrets/adminarea.age differ
diff --git a/secrets/binary-cache.age b/secrets/binary-cache.age
index 35a0cae..dcebcc1 100644
Binary files a/secrets/binary-cache.age and b/secrets/binary-cache.age differ
diff --git a/secrets/cloudflare-api.age b/secrets/cloudflare-api.age
index 03688d0..c36af99 100644
--- a/secrets/cloudflare-api.age
+++ b/secrets/cloudflare-api.age
@@ -1,7 +1,8 @@
 age-encryption.org/v1
--> ssh-ed25519 DCzi1A es6n0xP4sQ03hvUWUJ2FjRu68Xw2H64SirMyXeUR52I
-B5h4pHYbomcgi0B8gIOuoufHXAtE2tZTkqPmUPwisq8
--> ssh-ed25519 oDXHAQ uhhGCBPYeGxhXQ7o4Ibu2i3DV6B53NANw4206mUB7g4
-zeKDRa+2R/yBERunfDXPfMw79wEDWlbR5Y7mGj6PGGE
---- Y7KBu6POO4vD0mUPuImeozACsZskZ4Ouw2Yuzl89orM
-røÜÒJL¦|7ú¤Èñ¶í¦WÚGì*ÉâPÃ¨L'£$M°[’´åàœ|½;†Ò5dÔdOFÀ—:ž§Ÿ‰÷OÛ¤
\ No newline at end of file
+-> ssh-ed25519 DCzi1A lmbxYz8wSuZfDu2DXP/G3JoPdHvJgsa98XdeqWTb3zI
+TymT8yw3nsBHtMeXD/txRRNLDrgOa12TL66lPHDnxI0
+-> ssh-ed25519 oDXHAQ WNFnIo8XkDs8yDii1uIMHlCWtUWQ1FoD+/buP42kX2k
+f51aEQ3yzarzaE/J00F74gfol1U7xKmWe3vd9ngJyrU
+--- jL4LRiB6se3vJ1G2nawoROaJrVo2DbsHCbqYDXhuwv4
+$O
+¨¼ÛÞ[ÚEÀh"•¶ŠCGX‘@áŽ`@9áéúa_+U²	;ö#s¾Op´¸],PŸœóˆ’ŸÖæiý#ß×ë¹5N
\ No newline at end of file
diff --git a/secrets/coturn-secret.age b/secrets/coturn-secret.age
index d274613..f307bc1 100644
Binary files a/secrets/coturn-secret.age and b/secrets/coturn-secret.age differ
diff --git a/secrets/duckdns.age b/secrets/duckdns.age
index 215a9dc..26ff3d8 100644
Binary files a/secrets/duckdns.age and b/secrets/duckdns.age differ
diff --git a/secrets/fileshelter-conf.age b/secrets/fileshelter-conf.age
index f3a50c5..6d95eac 100644
Binary files a/secrets/fileshelter-conf.age and b/secrets/fileshelter-conf.age differ
diff --git a/secrets/github-runner-pw.age b/secrets/github-runner-pw.age
index 195c838..1497bd2 100644
--- a/secrets/github-runner-pw.age
+++ b/secrets/github-runner-pw.age
@@ -1,11 +1,11 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ NqmDEGdi/1jCtPdRl6ms4Q6sWYRf/fL2tVynRdock2c
-29fj5mAO1NPtIg0k0zvytQmMu0wwM19aDRsxTM2DMvw
--> ssh-ed25519 xfrWcQ RsUjk8sykx5felG/XLRYQByAbm+Mm9Z25tR0wEERfDI
-IdokYJ5RRJ8rt5zCut94pWkov63V6qPJpT4jyQ/dKQQ
--> ssh-ed25519 IV3DkQ jE+4D7YvdA0zF2OCX3SCHP319oalOXLPVIy7/XgF4Q8
-83kZ3avYwy7qzaQKLmdkB+RP0L8HrEHMUjTJRWZ4rGs
--> ssh-ed25519 DCzi1A JrVlQDfpVnC1arLkWCbEEY097wAaJUk7gIa+Z8Zqtm4
-tBrkEabmMo4kGPRc2je9kqh7rvxDZcc/arsBg3Flf1c
---- egVRfxDXSxv/DPzBljNztdDUdQYpmRKATCTQPtc4Pak
-õiH­Ô£V?¹Ô(×P"Ý–À¦°• ÙlóGûÛÉ7­©}aL9*eaIN“€BáóX=<Z²­=#û`†g÷äœÍ}ähjmš?éÒ,›[ëm„j3qrt@\˜Ÿ*«VIÀzm½
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ /6/EzanjYr6+n+BFJu3LeOL+V9KKPOqBi3fHLkIuOmA
+RzY5DrQ8d1VDeXdnVPoUg2aNWU8vJ6NEtBBq5owbXDU
+-> ssh-ed25519 xfrWcQ Tm3IHtqg9k5MKIooKd07QkJiDwecxuPBEtClEWH3wT0
+EyKcbuH6JFQgf2NMFBeLU311RoZH/cpRepzE9hY0fI8
+-> ssh-ed25519 IV3DkQ htiarEKngMZSNDnG6OJa9jCHEAjCe5cWenIWXJ74ykA
+UM+ueCiwsTurD2xarywH9mP6qvvlojYS/RFhXY+rR4E
+-> ssh-ed25519 DCzi1A zXkqsk9lE5G8LE+a8I5s4a3ku27QP7FXKb1rlZJbMgw
+AaFh/Y2Z11QcsVcBtXzIHgDxKpEZ6xpBwijeXMphCAA
+--- yosV7Dyrl9P/gpQ0ox/6GGBMzM/0LvetCpZhSrFrpPQ
+A÷°·Ù’˜3ºÙ‡à²çWÏŠvã{WQüá³ÃÉŒ—/Ü-É¼ˆz’ŸÊJù’d‘z¸•ouƒ§mŠªuþBJÑV@;å(—>,‹ºÙÍ»´Cá°(Qo[*íº<·Y¢=¥öj´
\ No newline at end of file
diff --git a/secrets/github-runner-token.age b/secrets/github-runner-token.age
index 38b9106..8cd9723 100644
--- a/secrets/github-runner-token.age
+++ b/secrets/github-runner-token.age
@@ -1,11 +1,11 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ aHsgSN8A4XjdPa3b8EGFzDzTSasHefXb+lWc5Rs6KnI
-+QwfDeCWAzxG3JfVmV0yuagzcfPIDtWwnXU3NerhFs0
--> ssh-ed25519 xfrWcQ /ZQSw8w7hs8T9rrZHL74IzrQ2RN76Nk4dAfG6FU4RVg
-wMRGPIdrhDmaf7h0qbmJvDAOgaHoZ5fO5qdcArRA050
--> ssh-ed25519 IV3DkQ pBg0wCyC4mo6340h4afnDIM1FYzjI/Ljsof0DYuYazU
-2n4fGV3t/emwf3wGfl/H05iich3SE1Td6yi7Fz9dZgk
--> ssh-ed25519 DCzi1A gis3Ndr3x3wYxW49cHyXmO38rumh1D+K4i/F1zYbNWM
-qLhCYMaw0mFy+ZFaA4mAra0UmhlD+Se/g6UzWR61HK8
---- EpvXjH/xNQ9PF3qQ7yRA3tvNV3OVGxInkG+7MArIn5M
-/·‹µŒçLÃP7¦d±Ú™zGÊXeÌŽZÌ4M­³N@¿eCÆZøáá$aŽ©exŠ$›<1É¦”žÊx¥œÜ!}¦-Õ/FÌ^²Îgd& |òCÆ¥}ÊGr¿7š8²ˆûB‘ŸOtO¨=
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ eqrUl8dr1j1v72qTDenJCvgtAdslYaFNgTBl58EOpQU
+8kc8B89mFnY1jaK3BHfPBAtCKwRJRp3klBKB2lHZNNM
+-> ssh-ed25519 xfrWcQ 4dd6GLTv8c/9YdZTFyYduBJXToYY8H9d+2c2405aQw4
+U1N0t6N0tH3ADjqqRkNERcAYlzHYKFNVM2pQ366irhc
+-> ssh-ed25519 IV3DkQ OJ2Qvut5iToSqoe5z2xy5oJMZjIHOkUkhbFekFyV9E4
+w2+dLnlTCIcbHIPL8w/9CNuiZ5lVI80pwU9CE62iqkk
+-> ssh-ed25519 DCzi1A ul7xzhouNfXb16Sgzct9yq66q6669NGgK10/Zc6Jpmw
+J003WNGKz4pwYIcgWQH1Z2xIxqZsHadQ1VdWF/ps870
+--- ZU1Av2cp18FE+0EwwWm6WRq/qZVCf8LCxgt5Vpyg4A4
+tñEe7`ðH†I,Ê'3l)[˜gÄªÛ×ÚW&‰ÛnÊLOªZ¼>JI»¨#(ÛÕ?W“f§Îœ¢”hä£t„YŒÌ/¸¿Aþå	E_Yþ'­«ØHpZl|;ÝÄ3±n=;¸U|yÊ!+Q´¿Î#[»HôÆ…Âs|™
\ No newline at end of file
diff --git a/secrets/grafana-contact-points.age b/secrets/grafana-contact-points.age
index 8ad0125..f6821b9 100644
Binary files a/secrets/grafana-contact-points.age and b/secrets/grafana-contact-points.age differ
diff --git a/secrets/kavita.age b/secrets/kavita.age
index 7544a4b..86a1097 100644
Binary files a/secrets/kavita.age and b/secrets/kavita.age differ
diff --git a/secrets/matrix-registration.age b/secrets/matrix-registration.age
index bf47b00..5c81241 100644
--- a/secrets/matrix-registration.age
+++ b/secrets/matrix-registration.age
@@ -1,11 +1,12 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ r3tGPKJtMOjKeKBkBGSaxHqLr+k0QPO99wm/SyIXNDg
-4XubpJrSsCaduXkeYpMs0EBe0pfw1kUkr9C7z2rLiAg
--> ssh-ed25519 xfrWcQ JMJuUZZoPfpuUid3ufpkriK9mk2xhfeff5w98FBhsVc
-zdWmtguA+fGqYiiYHVKna03VbV1lHTKjjol57Bw3jH4
--> ssh-ed25519 IV3DkQ RTLWsP1C5/VEWScFP02pi7cC/hqOu4heJcD79fpW9W0
-PK4kwFW90HVAU/1iSyowhBg/07ZjRrHSEPpfxZqDUKw
--> ssh-ed25519 DCzi1A jPYOQEbpTqkVQOIU0nTJFDMEgOkYRTEbLAaE/Z3sOyM
-lB8GjtGLSahZJKmoq1MZiwfFjIzI1TnSmXSacSc9n3k
---- QV0CQ4lSRRbfDk8gEbVcrmWn5YWcujzYiW4EOyV20vk
-4¦Ñ;o¯™M-¡FP~4¡ºÚ	:­}äQ‘7wAs”bö“ê5ñ0Ç&CpÔ«jÖP0gÝôÍpž;®GfËÒ¯Å}}ânëŽ!›CÒ†@AQ”Ò°0e8|H}ÚÒ>àD(J°¡,€Â˜SYnË¤+Šþ#ÔÐæÁÒÃO•ƒâ™-»ØòØÆóÍ%†ÖÞ+ŸÑè÷¯ÜáóÑÞ2ÙÓ‡£}µªÔ¼ö|ŽÉÿ]¨!4”}†¯1¾Y
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ JzH0r4wzxDxJFfyqmzsTri6k2as0b9Zlip/NhknhwRk
+NAdCQnKZk5q6L1POb+s7LpHx6KgO7cnJURUl0Ru64MU
+-> ssh-ed25519 xfrWcQ Qpsb3BSPgzmyBeEfuS6vlNBtC9rAdEWUhIVFSMnpSxI
+EeWJ9Wda6Kckk8NuFiVrY55GlXi6VBtE/+wkG3/vA0k
+-> ssh-ed25519 IV3DkQ 4mFAnHwhEia57Fp3pnNVbpCF2emEaLwtiVpDe2JuIXs
+azYwTXC3JiixS5kZOf2Se7Sgr/26MGeegrnVcCZ0xpk
+-> ssh-ed25519 DCzi1A p5M6Ti+KN+3yFOs4xgKu+/drqW1P6VdZ2XHXxV/cLlQ
+2Rj2I2ZucLsDNIpodmAVYYJE13vDW8Q1cGta4gXZkCU
+--- 3TUtvpB2KjdXJlsEcYAKnst7mCiJwb1mO+4K24Ibz58
+Óìbñšk1I)?TÕœ9…7¬š«Gî¯B¡ÛGïMH,li
+bzS'}wSÈtb“DHÉ±ï+Cá¬Ž5ˆÎQÀ0û?†i62;1*A’Ç—7	 µtÿR!€Ò%­¤½!Io¡e¼Øð)_¯3W+­'9—•$:P	ãbº&U«7Œ6–•ý¿ú+˜ªe·¤Í½QV°þcB"r¢¿v±V5Èë‚Gªö­ÚàpER
\ No newline at end of file
diff --git a/secrets/nextcloud-admin.age b/secrets/nextcloud-admin.age
index 308be0f..0b3710f 100644
Binary files a/secrets/nextcloud-admin.age and b/secrets/nextcloud-admin.age differ
diff --git a/secrets/nextcloud-cert.age b/secrets/nextcloud-cert.age
index 1a775a9..fa536de 100644
Binary files a/secrets/nextcloud-cert.age and b/secrets/nextcloud-cert.age differ
diff --git a/secrets/nextcloud-key.age b/secrets/nextcloud-key.age
index b7a439f..db2f7ff 100644
Binary files a/secrets/nextcloud-key.age and b/secrets/nextcloud-key.age differ
diff --git a/secrets/paperless.age b/secrets/paperless.age
index 57a44e6..07b61cf 100644
Binary files a/secrets/paperless.age and b/secrets/paperless.age differ
diff --git a/secrets/plausible-admin.age b/secrets/plausible-admin.age
index 146bc81..4699a63 100644
Binary files a/secrets/plausible-admin.age and b/secrets/plausible-admin.age differ
diff --git a/secrets/plausible-keybase.age b/secrets/plausible-keybase.age
index 8119606..332b3dc 100644
--- a/secrets/plausible-keybase.age
+++ b/secrets/plausible-keybase.age
@@ -1,10 +1,8 @@
 age-encryption.org/v1
--> ssh-ed25519 bqM3xA IZd/My4oUoMWQJWKiJgwsSgOQJvyEhKunQP1W1LRXAo
-Brssx5qyWHeuKbt1Wl/TXzjwCbrUFEPUec1OSavUYW8
--> ssh-ed25519 DCzi1A mILA8bG+mY3ZtCd8u5OqYqYVqx47cW0RPl96l3h/qEk
-6nnd0R+WSwLBaJgcAwczFU8GmaWsTQv8y3LEf0zOXI4
---- W11bJF7QaBKLKRBasOZ4DWRuXtBzblkqj5aDqHQw5Fo
-Ùºì¸
-_òVP‹lEÒÏHï¤Þ.,ù© ¤§Ýà^á6Ó×©„L ²óÓwz#‚ä£„I"\ª˜„HYë:a÷ž{mw©æ/Wùi`¢žA#õgÿÇ4
-ÐK¢ìi1Ö©‘¨
-átámr`¡ªžQöo|
\ No newline at end of file
+-> ssh-ed25519 bqM3xA 62e6x4YPVQk9LkHifBJo76bMftZz3zgbN5l4df8ss34
+tbK5klbYMtBKowj1JAnKrS+Po8GL6hjE6PHgUfV8nqQ
+-> ssh-ed25519 DCzi1A m061QYUItnOkH7mJ9a87FRzM8mMyzUIT1taod/lCnhc
+BAbOPc+dzm3tM7/IZEUZ4Lj7aAX5L25HsTCiPL6mvl8
+--- JeHHahyeYyLUJuxDjtUNihMdiJgUZ1TA/MhbyQcqlhE
+Ž°)dé”HëCŽµ”’,P^sÅªÖ£	¤ï à£+å±° 3xç¯Ûx’HÞ*w±*è«FŒÙþ€Ä
+Û;zÓD{´g~¡þÚîrKõ®±¾l+ÝÕžœ€e“¡‹íhy)«U÷âñgM`|+aÈ8>¯`
\ No newline at end of file
diff --git a/secrets/radicale.age b/secrets/radicale.age
index c1eabf9..53e8e96 100644
--- a/secrets/radicale.age
+++ b/secrets/radicale.age
@@ -1,9 +1,10 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ IUqlcwgjUmAhP1XRrABbO9xsKm7x+KJq6kUv7WpBsWo
-3DBkYwuFR/7tXdZfeB4XoUcahF+HUmsi6bzzqS5Qj+M
--> ssh-ed25519 xfrWcQ emEmTJRswHrF0Csmss2d/4i9ublnC7BczQXlWUkbEF8
-JCQlVMN+0Mp6B64t9rTasPyNv9E8VaB+5K6ayot+NjU
--> ssh-ed25519 DCzi1A 7pcLxGnxbhHktRY61CtBl9nunN2sgcebFWu6u4oz3T4
-fx6WA52D5kr5j8yYexs34ptwf5qsn2p5aY9FFgh6QY4
---- Mk2RumYa6okcK9IQzccrFQb/vHnbujtHBStOwAqAyR8
-~ÏÊèíÅZù2èüÊÕ4ÐL¸‚*Ç~0—ŸâÏZõ<©cÜHQà%”nÊˆýçþLJ¦°Ë„’okü¸®”ôžR§Ðµt´ßm,¤`!êÃ.ëãî2f¸N¤»ŽWg¤ö›- ¥–ØÞ
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ s//mo8jMKWUv1GnGrGRwvWmCnGPDy68mkREDsFB4bBM
+1QXcNk6EWSbLZZs3yRYv9kHx4Ww1C9PHUki/s5zYry8
+-> ssh-ed25519 xfrWcQ fX1tOT0FsAPUMwEUmx0JFI0c1lJ5nvPKPqIEI9BHFk8
+Lgfr/ss5a5xK3TlFe5+UDw6V5hPuXsV7dK/28v/qGeM
+-> ssh-ed25519 DCzi1A DHE6G3ZYlaS1ozNKR+bnFd8uwoukObO+mrWJQFpjFjk
+9NrgTOxzGLS+jkZ7PI2woRg72bDR4K612O2RQL9Vjas
+--- G3U+lyNnwDG6pYGSx7XlUCPRBfdjP/LI+/i7EWO63ic
+Z³é~QÙ€ÃØ
+ÝæLwèµ¿[a<–¦ì'	¾tÑŠvýifBãí¿µáÇ¡§Àà„0v ^0¿[ÞM¦”Ûÿ4¨„	.±ÅcÏ›Í<rkëÂFƒ_j(Å8}
\ No newline at end of file
diff --git a/secrets/restic-gdrive.age b/secrets/restic-gdrive.age
index 2f1e4d0..ecc9139 100644
Binary files a/secrets/restic-gdrive.age and b/secrets/restic-gdrive.age differ
diff --git a/secrets/restic-pw.age b/secrets/restic-pw.age
index 4d48e43..eb9d3de 100644
--- a/secrets/restic-pw.age
+++ b/secrets/restic-pw.age
@@ -1,11 +1,11 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ m+Of2fFXpmWNIcPpld+1M0SeSj9slmaNFM+uYqR5NE0
-a5G+NDQL9kChBEQDTfCFcFaFHiEsFjug2E80F+4nFFM
--> ssh-ed25519 xfrWcQ wtNSw0azb6iJWhWpwAqELWBjt7fFgDHZxTZrbXDxTQ8
-fGt0zSHMq51SRlcy526CTH9IlLG7a0DppYGlRePkyX4
--> ssh-ed25519 IV3DkQ fcsiE5BUqpEnAzZ3QHP0aZLtaoS6gSGkabT4AI4bh28
-Z+pu1qcH7lvh+WLkmSrpoz258MeNxL8vdpg0uzeil8Q
--> ssh-ed25519 DCzi1A GBm/EjD8pKbimUaE3S9XlUeCoRZhgVAfL7D52Uy5PWM
-A1YWX1EUxzoiY/8rcHdoOrKKm4FKm4LZ90NuiIL4iOw
---- 3iHL8TouNqGEBxIKO1zJEa0CO+omewquYlt65E2RpfI
-‘üþá'(|i+ÂløŽ;íóÄâöÊ—<’N]'cÃÉ0Ã‹F÷ŒÎùfâ¥•ï'@‘F^¼½OÍ¨]‘-ä'™(QEÒýRÌ’¸+¯²%
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ MuqtwFqH4EU/2P7ZchODsyPjAqz8RJyGNwBwpWKxIjc
+r0zrW44J2QG2sfN6e4h5YS0vkAwva5fOk5e+HEGYDSA
+-> ssh-ed25519 xfrWcQ Q8eenaoWsCT/axxx/+1OYAL/MDzlBAx0dbEBbGgP1GM
+gndpYRikpiwrjcFsVhu5Uj9Ky5U300wJCZ5KXDewuj4
+-> ssh-ed25519 IV3DkQ Vzd/muE+qu12H1/iY8W15ywxNr7aYUqlkHnb3G9ftgg
+UbMGksnSHKwfAB3KtbPnJoOWci+jTPfZGc2FuC/vzGo
+-> ssh-ed25519 DCzi1A VI2Ei+BKSzddFAa9X1epy+iHogRlR8kWjoBryPtKQlw
+oU3Z/xpFLQ1g8ErrjfRlPaBbMkhMuZWS7d/APN0fKPk
+--- rzpuxfNr3RFxECd8vZ0XW1ytAKJlxzkTVXDt+kfgmV0
+¶„÷äzÀ"tBöÊ^è¸Š0¤@Ü=Äí8–…‹³QNÆG¿avß®0»l ½)ÈüRÕ'{mÖ‡*	Ìœ®ŽÖŠÛÜT|ÛÅ4’Ï¾y
\ No newline at end of file
diff --git a/secrets/restic-s3.age b/secrets/restic-s3.age
index e55e991..a98822c 100644
Binary files a/secrets/restic-s3.age and b/secrets/restic-s3.age differ
diff --git a/secrets/secrets.nix b/secrets/secrets.nix
index dc11ec5..9f33078 100644
--- a/secrets/secrets.nix
+++ b/secrets/secrets.nix
@@ -30,7 +30,7 @@ in
   "step-ca-key.age".publicKeys = [ mini-pc mini-pc-proxmox server kop ];
   "grafana-contact-points.age".publicKeys = [ mini-pc mini-pc-proxmox server kop ];
   "fileshelter-conf.age".publicKeys = [ mini-pc mini-pc-proxmox server kop ];
-  "webhook.age".publicKeys = [ mini-pc mini-pc-proxmox server kop amd-server ];
+  "webhook.age".publicKeys = [ mini-pc mini-pc-proxmox server kop amd-server adam-site ];
   "stash-auth.age".publicKeys = [ mini-pc mini-pc-proxmox server kop ];
   "plausible-admin.age".publicKeys = [ adam-site kop ];
   "plausible-keybase.age".publicKeys = [ adam-site kop ];
diff --git a/secrets/stash-auth.age b/secrets/stash-auth.age
index 90dc8a7..cbe3787 100644
--- a/secrets/stash-auth.age
+++ b/secrets/stash-auth.age
@@ -1,12 +1,13 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ uAg9NDThNura1gXm7o1x235T5M75avWEth7qhGsteEg
-ttULATyCA3T16YH5zB856gejIjnF1kj3SQE/lCzsKvQ
--> ssh-ed25519 xfrWcQ ZSg877NhMzQhFqrLojV2CKwHKy1IlUB1vK1gWcHvAwk
-JqgQLsDqRyoE3THgmv5G4H5TYnhZAigCp74N0iGpHBc
--> ssh-ed25519 IV3DkQ tZt+D5cniWp/moz/10lfB3Ah8QyM75jb7+ZRrgYFXi4
-jkXKAs7XARpKsG3NoJX9D6Dz7ssk9udzDK+S1v9k/KY
--> ssh-ed25519 DCzi1A DmkLfgu+qo/xIckditzzF7YzuKcdVlNcHdclQApomUg
-ozU4KAS11i8rZaiqskC28lX7I1t8wBM5OdcnnZJtkh4
---- 2WkO6pmQUVghd6BnivYkU9TE5fzMmB8vVQlYTk73vRA
-fÆm
-~”÷c}·¹˜©Ma´.tZ(Uº­Ð®ï'ZšÕèL?¢&ªÛèVa?R…€ÂÃâ%…¾º…ËÙixT³~þ3[ÉS×ž!›’uí†o‘ó’;mDñJBóGæ(f
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ hIdcqAT38a9Axil3I9WjmgARzL0xuHB/s7vMa/hxxHM
+swIQBb0MRUjbMpfBjCrwzz8kYmE2SD2XK6B41XdlKhs
+-> ssh-ed25519 xfrWcQ yAbNcRE4yjioclDu2ETOwH9yEXQSA7BcpuDDFuWaKUg
+dChXKywlFJTtuUSQcqMDPHoCNBGYv6B01m7jhnP87i8
+-> ssh-ed25519 IV3DkQ 6JpltL8+XmGXu8O8OgBwqy+wPrwfzUUbVTAcKrUNHkg
+uBiTBFOpC7lLX4cxegjzDb5UBjO/Z+8aO/X8zbhVChs
+-> ssh-ed25519 DCzi1A TNbIcUAGLcjFxeRjjeYbsfKkDXFYW3EP8l4DHtJIC0w
+zmkh/YVne0MWDcQTSk/lEbALPEZ5AeB5Pb9ZPlKLjDY
+--- UxW2w0KMtvqiiAoNzLDnGoUCEQqlosqB33gn++zklOQ
+¤ûúõÑÈC[>ÎeÅ¶¾Ÿà@H¸8§l×õ0Y‹'è')Sc
+ÂÙ–iï”ðð
+³‚›¯Õø'}ZµùÁ~rc»óR?Bµéa¦xhÎº›cb¾KÞIEa9ÖŒ
\ No newline at end of file
diff --git a/secrets/step-ca-key.age b/secrets/step-ca-key.age
index eaa0d53..89f774b 100644
Binary files a/secrets/step-ca-key.age and b/secrets/step-ca-key.age differ
diff --git a/secrets/step-ca-pw.age b/secrets/step-ca-pw.age
index 71c730b..0cadbfd 100644
Binary files a/secrets/step-ca-pw.age and b/secrets/step-ca-pw.age differ
diff --git a/secrets/webhook.age b/secrets/webhook.age
index 254c4cd..334b0f2 100644
--- a/secrets/webhook.age
+++ b/secrets/webhook.age
@@ -1,14 +1,15 @@
 age-encryption.org/v1
--> ssh-ed25519 oDXHAQ YOjThOjyPh8j1zRTG8PSb/Do5NKjchlR0Z5oiYIqTVY
-ecYu7pV2y9k7i4c0UlOha1Oy00mZ0/35CzbHSaTlnNY
--> ssh-ed25519 xfrWcQ ppgMeDOCcqCWpYBaIwqIjnxWFcm8YASNhCd66zfJBkM
-xqjfumnhEqpF0s+L9n0dlZK2BtcKSyZY0n1h4ogyA6E
--> ssh-ed25519 IV3DkQ zPs9zEaCGed/0FlFT/J4IhJ9mK9zgfU31G8gfHA0AE8
-JX8JSDsd4hkMX0iiqKhQf8nFhq5J8Q6QSqceKQjf8G4
--> ssh-ed25519 DCzi1A v02CiKWDStJkaG3HlJ/ubQp/w39qsol0Mwu7nUY74Do
-xH4Ip5MhMFd+vR3ZBa2IJ7OBkDvOJc2wPbSRqEvDYi4
--> ssh-ed25519 lNJElA XXZRMJye6OkJn+ECW2OcpUaJUR+kz5lkDl7F36ff9yw
-OfwpqFqfsJjH927zas1aqy+ZDkL6a5nkbhys6BScqOg
---- Kjk4OMfBNeWo7/L1eAL+IPfaFL8xOp8ws5TOma02NKo
-7’ˆ¢1X>(:wÌûeƒ}Ï°#FÇ5*Þøs»½°êÉ–¹è2ÞÎ!kä‰y`Û4ŒGÀðEPõòÓGU£(à?ÌöåÁö4àm$Á0øx|Ÿ²…œâz¨0{ó•jví?p,IäË.Kò6B
-k½ù³j7OÄh(™³…øP9/½v²A%¦|Q›üñ²_Iß‹ØÂ
\ No newline at end of file
+-> ssh-ed25519 oDXHAQ hNwcR++7U67DANxbo6S4R/QmphRh6EatLLPxwh/wlTI
+q1bEHw78twBAY+yUVFJbiM4oDg4kOMkx3d9LNe9UdDc
+-> ssh-ed25519 xfrWcQ hYpskXEPw/wQR+ByxgBoFQCxoCDoAtu5KCzWPcg7jWs
+AVs/FRubgP5yoWyV+5NQpSkNSCwQtRL40UMIC7wHkE8
+-> ssh-ed25519 IV3DkQ g4ARQKCqmXpSx4b9LccxNZCI2s9evIiTfuAiTr0nvzA
+X3pxupaGgDLzZ4Xjf7L9Em/ljBUvcdyf6GTMupPhtIk
+-> ssh-ed25519 DCzi1A 9DYkElTlKsg6B+p/3k6/hHN0+GBHoVgU71rA/Jwziwk
+LthHTRI2BmIaa4PGcV+n34FO7lyPUWbDY0H2z3H4F+Q
+-> ssh-ed25519 lNJElA N8RG4csLAyE2fSVO2UheJ/TQ2NBbgWYzQhM2iQozpkc
+oW3kaSJoT+ZGsqbhmJ3opHD2wPdHQ+GiFz8utm9/h+o
+-> ssh-ed25519 bqM3xA yEMjx0vHGmvkbeusAszT6NPF8Asi32wnQ9ppsINXHjw
+BHNDDTM2zv+UhWF61BbRSzurD9I48RJZPAlllL98RJo
+--- /imeRqPzC3O4Lwh2hm8bTprgWsQLmuEDAlQ0c88fmrU
+gÁtÃæ—Éä¸º«Û×oNM‚nÜŠm¡V»òù‘[>ôÚ´¬Åü±MÂÀ³Ü=«¤!Óå}+‘Û1 GHú"ÎêâVèR7ØB’¸	õñ¶ØNSAÈ­»)iµ£J?s—	z©`ÙÀ'¶ÏÖÜ5¼€ÌðX‚ìy2ºµ¯ªqÄ]õ"š¼‰ú4ÛªwŒ‘Šc¶ç´_Lõ7ÉÚ™fÔ5Êml
\ No newline at end of file
diff --git a/secrets/wireguard-client.age b/secrets/wireguard-client.age
index 0df1e4a..33edf47 100644
--- a/secrets/wireguard-client.age
+++ b/secrets/wireguard-client.age
@@ -1,7 +1,9 @@
 age-encryption.org/v1
--> ssh-ed25519 DCzi1A zhxFqVyhUdmVvf5Wh/l07dtROYr52vjl464aWp8bbgI
-73lXdktsZ09qD+YzFytm54woaDtLBZGhKnR0l53MmeU
--> ssh-ed25519 FOj4qg k5qqsKIUeJgynfctXXOPZoGCRyWmhfJhxJ7XTH2gwk4
-7lPP00zZhD568yaASlRxsMDR2ORC98YmeJiSEWgearM
---- toz9GNJXrCu59KKF7uDH5whudcVutVyWrfyucaYgbRw
-˜ÿrá{+çá¬Q¡'Aý¦	‘­ägõFìza!1jÏèI\BWN‹.p««ÒLŸÑšZØx¥°9Ž*íÀùÔÄHþö;-½Ac(=
\ No newline at end of file
+-> ssh-ed25519 DCzi1A YZekXLu6/YeUOm/WGdqpdGARWwvrSKEMrcrquuBnrz0
+uGH9LYqs3oQDhC4aW8OaIt+YaDzo8bwpxv+HiD3cEUg
+-> ssh-ed25519 FOj4qg U5oI/FAH0bW8gHY5ULV3nFVYHZWfmVvijZaMIiNtjxw
+uJZfEG/R0At4GeG2Loe41/ivkHMVyun7qIdpi9PUbzc
+--- qmtMY86LK5/XoEVCvLrtsXr+yPNn9/D+v5FhV3qJl6U
+èGxö&¶³Ì>ùÀÀŠ½Ey/Ijòñ-˜¯
+E'¿“Tqë«(N^6[
+vÑ&§§Š=ìëzv5.rV¼…·„Î »Ÿñî“q
\ No newline at end of file
diff --git a/secrets/wireguard-evo-vpn.age b/secrets/wireguard-evo-vpn.age
index c3e8c30..76bea0f 100644
Binary files a/secrets/wireguard-evo-vpn.age and b/secrets/wireguard-evo-vpn.age differ
diff --git a/secrets/wireguard-private.age b/secrets/wireguard-private.age
index c712846..778656c 100644
Binary files a/secrets/wireguard-private.age and b/secrets/wireguard-private.age differ
diff --git a/systems/adam-site/configuration.nix b/systems/adam-site/configuration.nix
index 60d1d9c..335f2af 100644
--- a/systems/adam-site/configuration.nix
+++ b/systems/adam-site/configuration.nix
@@ -68,5 +68,44 @@
     efiSupport = true;
     efiInstallAsRemovable = true;
   };
+  age.secrets.webhook = {
+    file = ../../secrets/webhook.age;
+  };
+  # service that runs all the time, pkgs.kop-monitor
+  systemd.services.kop-monitor = {
+    description = "Kop Monitor";
+    wants = [ "network-online.target" ];
+    after = [ "network.target" "network-online.target" ];
+    wantedBy = [ "multi-user.target" ];
+    path = [ "${pkgs.iputils}" ];
+    serviceConfig = with lib; {
+      Type = "simple";
+      ExecStart = "${(pkgs.kop-monitor.overrideAttrs {
+          src = fetchGit {
+            url = "git@github.com:kropatz/monitor.git";
+            ref = "monitor-homeserver";
+            rev = "14e84874302146690491a8ced7e3c89dce183a74";
+          };
+      })}/bin/monitor";
+      DynamicUser = true;
+      Restart = "on-failure";
+      RestartSec = "5s";
+      EnvironmentFile = config.age.secrets.webhook.path;
+      PrivateMounts = mkDefault true;
+      PrivateTmp = mkDefault true;
+      PrivateUsers = mkDefault true;
+      ProtectClock = mkDefault true;
+      ProtectControlGroups = mkDefault true;
+      ProtectHome = mkDefault true;
+      ProtectHostname = mkDefault true;
+      ProtectKernelLogs = mkDefault true;
+      ProtectKernelModules = mkDefault true;
+      ProtectKernelTunables = mkDefault true;
+      ProtectSystem = mkDefault "strict";
+      # Needs network access
+      PrivateNetwork = mkDefault false;
+    };
+
+  };
   system.stateVersion = "23.11";
 }