diff --git a/.agenix_config.nix b/.agenix_config.nix
index a674f22..69aa4dc 100644
Binary files a/.agenix_config.nix and b/.agenix_config.nix differ
diff --git a/nixos/hosts/canigou/default.nix b/nixos/hosts/canigou/default.nix
index b777590..f0a91ca 100644
--- a/nixos/hosts/canigou/default.nix
+++ b/nixos/hosts/canigou/default.nix
@@ -15,6 +15,7 @@ in
     ../../shared/docker-swarm.nix
 
     ./services/wireguard.nix
+    ./services/miniflux.nix
   ];
 
   boot.kernelPackages = pkgs.linuxPackages_6_1;
diff --git a/nixos/hosts/canigou/services/miniflux.nix b/nixos/hosts/canigou/services/miniflux.nix
new file mode 100644
index 0000000..45fb002
--- /dev/null
+++ b/nixos/hosts/canigou/services/miniflux.nix
@@ -0,0 +1,19 @@
+{ config, ... }:
+
+let
+  port = 33001;
+  addr = "0.0.0.0:${toString port}";
+in
+{
+  services.miniflux = {
+    enable = true;
+    adminCredentialsFile = config.age.secrets.miniflux-admin-credentials.path;
+    config = {
+      LISTEN_ADDR = addr;
+    };
+  };
+
+  age.secrets.miniflux-admin-credentials.file = ../../../../secrets/miniflux-admin-credentials.age;
+
+  networking.firewall.allowedTCPPorts = [ port ];
+}
diff --git a/nixos/hosts/magenta/default.nix b/nixos/hosts/magenta/default.nix
index 2ac1d82..68b74fd 100644
--- a/nixos/hosts/magenta/default.nix
+++ b/nixos/hosts/magenta/default.nix
@@ -13,6 +13,7 @@ in
     ../../shared/fail2ban
     ../../shared/garbage-collector.nix
     ../../shared/docker-swarm.nix
+    ../../shared/acme.nix
 
     ./services/mailserver.nix
     ./services/gitea.nix
@@ -29,10 +30,4 @@ in
 
   services.openssh.enable = true;
   users.users.root.openssh.authorizedKeys.keys = data.publicKeys.users.jan;
-
-  security.acme = {
-    acceptTerms = true;
-    defaults.email = "dmitriy@pleshevski.ru";
-  };
-
 }
diff --git a/nixos/shared/acme.nix b/nixos/shared/acme.nix
new file mode 100644
index 0000000..7c3e822
--- /dev/null
+++ b/nixos/shared/acme.nix
@@ -0,0 +1,8 @@
+{ ... }:
+
+{
+  security.acme = {
+    acceptTerms = true;
+    defaults.email = "dmitriy@pleshevski.ru";
+  };
+}
diff --git a/secrets/miniflux-admin-credentials.age b/secrets/miniflux-admin-credentials.age
new file mode 100644
index 0000000..237927a
Binary files /dev/null and b/secrets/miniflux-admin-credentials.age differ