@@ -0,0 +1,8 @@
+age-encryption.org/v1
+-> ssh-ed25519 cvV2sw SPh3egEobC/zLslZ8jzE/2GO7j9ZGApCOnlbWKCtcHY
+J0ZF9NRd/8FmEEFxS+pfw5xzBf/hGxBY1/Lzk5/frps
+-> piv-p256 VBDKjg A8eJWaDh1IbVKWCuJwFA1eNiBKqh8jsrTZw81+2kDHTh
+DJma/9xZX6Rs/OjVXs2Xq1LbCPKk4cYBHNtl8OuHbFY
+--- 8DHtoyu+TU7uIGr118GUIdQJcn34rVU97r4Fs8NEpR0
+0�Ӧ�a�ipmD<�
K����q7s����Lr.�i>��C���?Űΰ4�Ъ94�g��zs��i���գ&�ď�-���Ti��w�ѝR�DO"���U%
+���i~p��m�~��^_d��

@@ -28,6 +28,7 @@ cifs-photoprism = [ linde ];
     cifs-paperless = [ linde ];
     cifs-transmission = [ linde ];
     cifs-jellyfin = [ linde ];
+    ntfy = [ linde ];
 
     dyndns = [ nano ];
     syncthing = [ nano ];

@@ -55,6 +55,7 @@ cifs-jellyfin.file = ../../secrets/cifs-jellyfin.age;
     cifs-paperless.file = ../../secrets/cifs-paperless.age;
     cifs-transmission.file = ../../secrets/cifs-transmission.age;
     forgejo-actions-runner.file = ../../secrets/forgejo-actions-runner.age;
+    ntfy.file = ../../secrets/ntfy.age;
     rauthy.file = ../../secrets/rauthy.age;
   };
 
@@ -782,6 +783,11 @@ extraConfig = ''
             reverse_proxy localhost:8096
           '';
         };
+        "ntfy.${domain}" = {
+          extraConfig = ''
+            reverse_proxy ${config.services.ntfy-sh.settings.listen-http}
+          '';
+        };
       };
   };
   systemd.services.caddy.serviceConfig = {
@@ -1267,6 +1273,19 @@ nodejs
         wget
       ];
     };
+  };
+
+  services.ntfy-sh = {
+    enable = true;
+    settings = {
+      base-url = "https://ntfy.alin.ovh";
+      behind-proxy = true;
+      upstream-base-url = "https://ntfy.sh";
+      auth-default-access = "deny";
+      enable-login = true;
+      require-login = true;
+    };
+    environmentFile = config.age.secrets.ntfy.path;
   };
 
   virtualisation.containers = {