diff --git a/modules/users/crow/secrets.nix b/modules/users/crow/secrets.nix
index f048b69..3a6561c 100644
--- a/modules/users/crow/secrets.nix
+++ b/modules/users/crow/secrets.nix
@@ -37,4 +37,12 @@ lib.mkIf config.user.crow.enable {
     mkdir -p /home/crow/.aws
     ln -s ${config.sops.templates."aws_shared_config".path} /home/crow/.aws/credentials
   '';
+
+  ################
+  # DigitalOcean #
+  ################
+
+  sops.secrets."digitalocean/token" = {
+    owner = config.users.users.crow.name;
+  };
 }
diff --git a/shell.nix b/shell.nix
index 99e4acb..7d004fe 100644
--- a/shell.nix
+++ b/shell.nix
@@ -1,6 +1,7 @@
 {pkgs ? import <nixpkgs> {}, ...}: {
   default = pkgs.mkShell {
     NIX_CONFIG = "extra-experimental-features = nix-command flakes";
+    DIGITALOCEAN_TOKEN = builtins.readFile /run/secrets/digitalocean/token;
     nativeBuildInputs = with pkgs; [
       git
       vim