diff --git a/variables/secrets/default.nix b/variables/secrets/default.nix
new file mode 100644
index 0000000..1b505a5
--- /dev/null
+++ b/variables/secrets/default.nix
@@ -0,0 +1,77 @@
+{ lib, config, ... }:
+{
+  options.secrets = lib.mkOption {
+    type = lib.types.attrs;
+    default = {};
+  };
+
+  config.secrets = {
+    # Define domains
+    jimDomain = "jimbosfiles.com";
+
+    # User account passwords, generated with 'mkpasswd -m sha-512'
+    jimboAccPass = "$6$gYpE.pG/zPXgin06$2kydjDfd0K62Dhf9P0PFvJhRNz6xIC/bHYaf/XYqyKcLyZNzPQpy8uy9tCRcSYlj1wwBhzVtTRyItwajOHCEj0";
+
+    # SSH Keys
+    jimKeys = [
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIC2lMkUd+BbXITE5LTg94hEzmA6UKsIIbaf5YOjGoLzl jimbo@JimDesktop"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIIKC8Uqxb09V3msBgDv6lD/nETMYr/X0OgtpDo8ldcMK jimbo@JimServer"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIJahAoF74BY6GCTsFkt1ADKaraFgJJozW1Y1aBTLK0j9 JimPixel9"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIG9uITpyw5WgxT7UnswueFtyWxAqQCZv4h9DfcDkr+kn jimbo@LenovoLaptop"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAINkTD2hM0YEbc5tHT+zy4NSRvtE2OLhczZFLSyLrry1S jimbo@JimMaclair"
+      "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIK+L723mCLy9/9UAXwkY3+06Oq22dOj+lDnA0lMLbrsR jimbo@JimPinebook"
+    ];
+
+    # Cloudflare API key
+    flareApiKey = "ICUi1Zj0e_boCkeUJbXP9dJusv_qX_zhKWQGPcFe";
+
+    # Wireguard keys, generated with the wg command
+    wgServerPriv = "WHxxi53Yp8NRZhT+BQnvC62BckOeG1x2SOvkWlm0tGo=";
+    wgServerPub = "qnOT/lXOJMaQgDUdXpyfGZB2IEyUouRje2m/bCe9ux8=";
+    wgClientPriv = "MK9j0eYlgv+MZ9sSYO6C3lfqScpLPwcBqEckJ7o7tU4=";
+    wgClientPub = "OKUH/h6YSURI4vgeTZKQD15QsqaygdbTn1mAWzQp9S0=";
+    wgPixel9Pub = "dPCtjm67adMZCnyL1O2L+uUOk0RbjA9T/tht1r+qcE4=";
+    wgOraclePub = "ZCKlYHl7uKjDRsvIDH9hLgiMCpxKG8Jn70gjwmtdqRk=";
+
+    # Icecast, plaintext
+    castAdminPass = "Gw9P8tW$omeq#reZA$b^jDy9VN";
+    castSourcePass = "KkFDeM0SHIL*s6!d4x*a4b#bcq";
+
+    # Photoprism, plaintext
+    prismAdminPass = "gr3SkIqSBjDmypyxU!Zj9*CJ4X";
+
+    # Matrix secrets
+    matrixSecret = "bea7db528a95d8225c5fe6bf92614816fe9d31496b510dff78b1608cfb36f82a";
+    discordBotID = "1277874425810915430";
+    discordBotToken = "MTI3Nzg3NDQyNTgxMDkxNTQzMA.GvnfmN.wmNGJs7_lpkoz-XHkIEPhMh47MfsRZmbfFVOT8";
+
+    # Pixelfed secret, must be 32 characters long
+    pixelfedKey = ''
+      APP_KEY=W9qein6055k9GdvwGbdJ6WxQ71Lr51cQ
+    '';
+
+    # Transmission credentials, plaintext
+    transmissionCredFile = ''
+      {
+        "rpc-username": "jimbo",
+        "rpc-password": "w%QbIEZhoi4jh*j*PKaZLkKk96"
+      }
+    '';
+
+    # Email cleartext passwords
+    noreplyPassword = "5mpEp3P^n6A%r3fznJA5";
+
+    # Email account hashes, generated with 'mkpasswd -m bcrypt'
+    noreplyMailHash = "$2b$05$7VibcFKXy5Ff9sUMh3KWBeSXkInXNeaADa71Md/swt5RCk5s7UnM2";
+    jimboMailHash = "$2a$12$vHeFInRpfp.lpfR/k8ptNecs3ztKjkRTr9hae0DP8yEN1ZHKM2sxe";
+    lunaMailHash = "$2y$10$ksBfmuuojCWnzFqpBDoE/OoGZyqfP.Luo2il7wWcqHemHgqhpQdi6";
+    freecornMailHash = "$2b$05$7EF0TV39XzTYPIdWOoMnlegX8qLkcHxUytkvAt5sRDQE1oquAFTqm";
+    tinyMailHash = "$2a$12$beq/ZO3hRz5mmGe9Cvvx8u/sNJcjVHlQQ5axv8IBmdJav60n7fuK6";
+
+    # IPs
+    jimIP1 = "99.247.177.43";
+    jimIP2 = "184.144.76.19";
+    lunaIP = "71.87.124.226";
+    cornIP = "24.66.98.13";
+  };
+}