diff --git a/hosts/nuc/modules/seafile/default.nix b/hosts/nuc/modules/seafile/default.nix
index 0ec6ef0..44833ba 100644
--- a/hosts/nuc/modules/seafile/default.nix
+++ b/hosts/nuc/modules/seafile/default.nix
@@ -3,11 +3,6 @@ let
   domain = "seafile.${config.networking.domain}";
 in
 {
-  age.secrets."seafile/oidc-secret" = {
-    file = ../../../../secrets/nuc/seafile/oidc-secret.age;
-    mode = "0440";
-    group = "seafile";
-  };
   services.seafile = {
     enable = true;
     adminEmail = "admin@rfive.de";
@@ -20,7 +15,7 @@ in
       OAUTH_ENABLE_INSECURE_TRANSPORT = True
 
       OAUTH_CLIENT_ID = "seafile"
-      with open('${config.age.secrets."seafile/oidc-secret".path}') as f:
+      with open('/var/lib/seafile/.oidcSecret') as f:
         OAUTH_CLIENT_SECRET = f.readline().rstrip()
       OAUTH_REDIRECT_URL = 'https://seafile.rfive.de/oauth/callback/'
  
diff --git a/secrets.nix b/secrets.nix
index 8e11522..f73f67b 100644
--- a/secrets.nix
+++ b/secrets.nix
@@ -22,7 +22,6 @@ in
   "secrets/nuc/vaultwarden.age".publicKeys = [ rouven nuc ];
   "secrets/nuc/keycloak/db.age".publicKeys = [ rouven nuc ];
   "secrets/nuc/cache.age".publicKeys = [ rouven nuc ];
-  "secrets/nuc/seafile/oidc-secret.age".publicKeys = [ rouven nuc ];
   "secrets/nuc/borg/passphrase.age".publicKeys = [ rouven nuc ];
   "secrets/nuc/borg/key.age".publicKeys = [ rouven nuc ];
 
diff --git a/secrets/nuc/seafile/oidc-secret.age b/secrets/nuc/seafile/oidc-secret.age
deleted file mode 100644
index 07c0f6c..0000000
Binary files a/secrets/nuc/seafile/oidc-secret.age and /dev/null differ