diff --git a/modules/sops/default.nix b/modules/sops/default.nix
index d163473..eabc1ec 100644
--- a/modules/sops/default.nix
+++ b/modules/sops/default.nix
@@ -212,7 +212,7 @@ in {
     '';
 
     system.activationScripts.generate-age-key = (mkIf cfg.age.generateKey) (stringAfter [] ''
-      if [[ ! -f "${cfg.age.keyFile}" ]]; then;
+      if [[ ! -f '${cfg.age.keyFile}' ]]; then
         echo generating machine-specific age key...
         mkdir -p $(dirname ${cfg.age.keyFile})
         # age-keygen sets 0600 by default, no need to chmod.
diff --git a/pkgs/sops-install-secrets/nixos-test.nix b/pkgs/sops-install-secrets/nixos-test.nix
index 5ad21e4..7e801eb 100644
--- a/pkgs/sops-install-secrets/nixos-test.nix
+++ b/pkgs/sops-install-secrets/nixos-test.nix
@@ -55,6 +55,11 @@
     sops = {
       defaultSopsFile = ./test-assets/secrets.yaml;
       secrets.test_key = {};
+      # Generate a key and append it to make sure it appending doesn't break anything
+      age = {
+        keyFile = "/tmp/testkey";
+        generateKey = true;
+      };
     };
   };