diff --git a/authentik/templates/authentik-sealed.yaml b/authentik/templates/authentik-sealed.yaml
new file mode 100644
index 0000000..304ad7f
--- /dev/null
+++ b/authentik/templates/authentik-sealed.yaml
@@ -0,0 +1,16 @@
+apiVersion: bitnami.com/v1alpha1
+kind: SealedSecret
+metadata:
+  creationTimestamp: null
+  name: db-pass
+  namespace: authentik
+spec:
+  encryptedData:
+    dbpass: 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
+    secretkey: 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
+  template:
+    metadata:
+      creationTimestamp: null
+      name: db-pass
+      namespace: authentik
+
diff --git a/authentik/templates/postgre-sealed.yaml b/authentik/templates/postgre-sealed.yaml
new file mode 100644
index 0000000..1c6829c
--- /dev/null
+++ b/authentik/templates/postgre-sealed.yaml
@@ -0,0 +1,16 @@
+apiVersion: bitnami.com/v1alpha1
+kind: SealedSecret
+metadata:
+  creationTimestamp: null
+  name: authentik-postgresql
+  namespace: authentik
+spec:
+  encryptedData:
+    POSTGRES_PASSWORD: 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
+    POSTGRES_POSTGRES_PASSWORD: AgAo7hcegqBnxHV9j/MAIWLpi96X8L+WIjU3s6e9wGcCydTduhClrdRx81FI/ZAYtU8aWQqBzHyOKoLosQWFEv6xaqpGgiIoQqzQfy2N0NsYQgk/eCnZojG+RD7Xp5Gu1IQVXTCtvx4C+FBY7Gr/oOMlwxZ09bSdYhjhN/8UJBwiLOszznspjMcBcuWtZoHybDCqrJbfSkowKMd922VuMfGM5ajsIqcj9N7b0hkU7gT/GH4V6EqVOdwhfEW+gFeIo+fLATQhm+tPAerAa7loHxLJYLPg6aaqV0MlGTyMoHHwTMXSdmpkfnxDtmuRJNAeTMpUZ/YY+L0hKZg9bXswnKZafnoJD7q3q6L8GvAd39reQle9a+33tLncjjLYejqxLxMqDN2O/awgnoc8GOappCZH1CkaQdDSfKI9FJAYS9EjhLO5O6k7gseu/LU7vCTj5GBfUVVQD6DWEfzYv7wiAYW5Xs4XWVFJOElsN0EvH1ZM0O2BupV9EKBJdejJwSS6THr2gt7b87trbo0Liodlq1ffy3ij4sr3uZEApsRnU8g+xmbRf86M09zuG6E2MirkxwMnI1paanaYTMMDxFdZcj3t4mC62mkscC8rEhoeJa4QI+ctEeE/nz2rnAa7hDUsfDJGXb2fpRzlYyjyRUNvyZydxyUZJ2+0AZCRH752lUZHEuU4qZ+rMKZM2i7YfaU/ZWfFGBqnHGHz9z+IR7Q=
+  template:
+    metadata:
+      creationTimestamp: null
+      name: authentik-postgresql
+      namespace: authentik
+
diff --git a/authentik/values.yaml b/authentik/values.yaml
index 409b041..66aca59 100644
--- a/authentik/values.yaml
+++ b/authentik/values.yaml
@@ -32,7 +32,6 @@ authentik:
 
   authentik:
     log_level: info
-    secret_key: "A2dfUl0aqRCrlZS6EumjXsrWPRlm6+Ry7CTnfL0Xw1Jc/W2B"
     geoip: /geoip/GeoLite2-City.mmdb
     avatars: gravatar
     email:
@@ -54,7 +53,6 @@ authentik:
       host: '{{ .Release.Name }}-postgresql'
       name: "authentik"
       user: "authentik"
-      password: "testpassword"
       port: 5432
       s3_backup:
         access_key: ""
@@ -71,7 +69,15 @@ authentik:
 
   envFrom: []
 
-  envValueFrom: {}
+  envValueFrom: 
+    AUTHENTIK_POSTGRESQL__PASSWORD:
+      secretKeyRef:
+        key: db-pass
+        name: dbpass
+    AUTHENTIK_SECRET_KEY:
+      secretKeyRef:
+        key: db-pass
+        name: secretkey
 
   service:
     enabled: true
@@ -135,7 +141,6 @@ authentik:
   postgresql:
     enabled: true
     postgresqlUsername: "authentik"
-    postgresqlPassword: "testpassword"
     postgresqlDatabase: "authentik"
     persistence:
       enabled: true