diff --git a/machines/core-services-01/dex.nix b/machines/core-services-01/dex.nix
index 6834f07..12c9476 100644
--- a/machines/core-services-01/dex.nix
+++ b/machines/core-services-01/dex.nix
@@ -1,6 +1,6 @@
 { config, ... }:
 let
-  my = config.my
+  my = config.my;
 in
 {
   services.dex = {
@@ -30,8 +30,8 @@ in
         id = "gitea";
         name = "Gitea";
         config = {
-          clientID = ;
-          clientSecret = ;
+          clientID = "Gitea";
+          clientSecret = "b2a1b7ae-2f31-489d-84c3-4d429085db14";
           redirectURL = "http://127.0.0.1:5556/dex/callback";
           baseURL = "https://git.${my.subZone}";
         };
diff --git a/machines/core-services-01/secrets/default.nix b/machines/core-services-01/secrets/default.nix
index 10b41f1..3e4cb37 100644
--- a/machines/core-services-01/secrets/default.nix
+++ b/machines/core-services-01/secrets/default.nix
@@ -3,4 +3,5 @@
   age.secrets.keycloakDatabasePasswordFile.file = ./keycloakDatabasePasswordFile.age;
   age.secrets.oauth2ProxyKeyFile.file = ./oauth2ProxyKeyFile.age;
   age.secrets.droneKeyFile.file = ./droneKeyFile.age;
+  age.secrets.dexGiteaClientSecret.file = ./dexGiteaClientSecret.age;
 }
diff --git a/machines/core-services-01/secrets/secrets.nix b/machines/core-services-01/secrets/secrets.nix
index cd564de..013b959 100644
--- a/machines/core-services-01/secrets/secrets.nix
+++ b/machines/core-services-01/secrets/secrets.nix
@@ -10,5 +10,6 @@ in
     "keycloakDatabasePasswordFile.age".publicKeys = superadmins ++ systems;
     "oauth2ProxyKeyFile.age".publicKeys = superadmins ++ systems;
     "droneKeyFile.age".publicKeys = superadmins ++ systems;
+    "dexGiteaClientSecret.age".publicKeys = superadmins ++ systems;
   }