diff --git a/hosts/common/programs/default.nix b/hosts/common/programs/default.nix
index 661ea75a..46dc2b97 100644
--- a/hosts/common/programs/default.nix
+++ b/hosts/common/programs/default.nix
@@ -264,6 +264,7 @@ in
     ./git.nix
     ./gnome-feeds.nix
     ./gpodder.nix
+    ./jellyfin-media-player.nix
     ./kitty
     ./libreoffice.nix
     ./mpv.nix
@@ -358,11 +359,6 @@ in
           suggestedPrograms = [ "ghostscript" ];
         };
 
-        # jellyfin stores things in a bunch of directories: this one persists auth info.
-        # it *might* be possible to populate this externally (it's Qt stuff), but likely to
-        # be fragile and take an hour+ to figure out.
-        jellyfin-media-player.persist.plaintext = [ ".local/share/Jellyfin Media Player" ];
-
         # actual monero blockchain (not wallet/etc; safe to delete, just slow to regenerate)
         # XXX: is it really safe to persist this? it doesn't have info that could de-anonymize if captured?
         monero-gui.persist.plaintext = [ ".bitmonero" ];
diff --git a/hosts/common/programs/jellyfin-media-player.nix b/hosts/common/programs/jellyfin-media-player.nix
new file mode 100644
index 00000000..e9151224
--- /dev/null
+++ b/hosts/common/programs/jellyfin-media-player.nix
@@ -0,0 +1,13 @@
+{ pkgs, ... }:
+
+{
+  sane.programs.jellyfin-media-player = {
+    package = pkgs.jellyfin-media-player;
+    # package = pkgs.jellyfin-media-player-qt6;
+
+    # jellyfin stores things in a bunch of directories: this one persists auth info.
+    # it *might* be possible to populate this externally (it's Qt stuff), but likely to
+    # be fragile and take an hour+ to figure out.
+    persist.plaintext = [ ".local/share/Jellyfin Media Player" ];
+  };
+}