diff --git a/configurations/home-manager/default.nix b/configurations/home-manager/default.nix
index 3aa4c0e..a7fa478 100644
--- a/configurations/home-manager/default.nix
+++ b/configurations/home-manager/default.nix
@@ -1,10 +1,12 @@
 {
   lib,
   config,
+  osConfig,
   ...
 }: let
   users = config.host.users;
 in {
   leyla = lib.mkIf users.leyla.isNormalUser (import ./leyla);
   eve = lib.mkIf users.eve.isNormalUser (import ./eve);
+  git = lib.mkIf (osConfig.services.forgejo.enable or false) (import ./git);
 }
diff --git a/configurations/home-manager/git/default.nix b/configurations/home-manager/git/default.nix
new file mode 100644
index 0000000..2276e7a
--- /dev/null
+++ b/configurations/home-manager/git/default.nix
@@ -0,0 +1,20 @@
+{osConfig, ...}: {
+  home = {
+    username = osConfig.users.users.git.name;
+    homeDirectory = osConfig.users.users.git.home;
+
+    # This value determines the Home Manager release that your configuration is
+    # compatible with. This helps avoid breakage when a new Home Manager release
+    # introduces backwards incompatible changes.
+    #
+    # You should not change this value, even if you update Home Manager. If you do
+    # want to update the value, then make sure to first check the Home Manager
+    # release notes.
+    stateVersion = "23.11"; # Please read the comment before changing.
+  };
+
+  programs.ssh.extraConfig = ''
+    AuthorizedKeysFile
+    /var/lib/forgejo/.ssh/authorized_keys
+  '';
+}
diff --git a/flake.nix b/flake.nix
index 8c64e2b..f9cb9a6 100644
--- a/flake.nix
+++ b/flake.nix
@@ -114,7 +114,12 @@
       nixpkgs.lib.attrsets.mapAttrsToList (hostname: system: (
         nixpkgs.lib.attrsets.mapAttrs' (user: _: {
           name = "${user}@${hostname}";
-          value = mkHome user hostname system.pkgs.hostPlatform.system system.config;
+          value = mkHome {
+            user = user;
+            host = hostname;
+            system = system.pkgs.hostPlatform.system;
+            osConfig = system.config;
+          };
         })
         system.config.home-manager.users
       ))
diff --git a/util/default.nix b/util/default.nix
index 028212c..c6e0e06 100644
--- a/util/default.nix
+++ b/util/default.nix
@@ -36,8 +36,13 @@
   home-manager-config = nixpkgs: {
     home-manager.useUserPackages = true;
     home-manager.backupFileExtension = "backup";
-    home-manager.extraSpecialArgs = {inherit inputs outputs util;};
-    home-manager.users = import ../configurations/home-manager nixpkgs;
+    home-manager.extraSpecialArgs = {
+      inherit inputs outputs util;
+    };
+    home-manager.users = import ../configurations/home-manager (nixpkgs
+      // {
+        osConfig = nixpkgs.config;
+      });
     home-manager.sharedModules = home-manager-modules;
   };
 
@@ -61,7 +66,7 @@ in {
     nixpkgs.lib.nixosSystem {
       modules = [
         {
-          # TODO: authorized keys for all users
+          # TODO: authorized keys for all users and hosts
         }
         ../configurations/nixos/${host}
       ];
@@ -97,7 +102,12 @@ in {
         ];
     };
 
-  mkHome = user: host: system: osConfig:
+  mkHome = {
+    user,
+    host,
+    system,
+    osConfig,
+  }:
     home-manager.lib.homeManagerConfiguration {
       pkgs = pkgsFor system;
       extraSpecialArgs = {