diff --git a/core/authelia/configuration.yml b/core/authelia/configuration.yml
index 5c0c2cf..6212d20 100644
--- a/core/authelia/configuration.yml
+++ b/core/authelia/configuration.yml
@@ -3,16 +3,16 @@ server.address: tcp://0.0.0.0:9091
 log:
   level: info
 
-identity_validation.reset_password.jwt_secret: T72Xcxa4d7xpQRypFDZpunlZt0IjqspojmBlxBr69gnkRjzR144YgjZsgFYZK0gS
+identity_validation.reset_password.jwt_secret: ${AUTHELIA_JWT_SECRET}
 
 session:
-  secret: BYksO7YUAJ8gXx9Endgpe46RgB10nkeKpD1qcQPt0GuYGQm2pS2zjJtNOrCEqpav
+  secret: ${AUTHELIA_SESSION_SECRET}
   cookies:
     - domain: lan.ddnsgeek.com
       authelia_url: https://auth.lan.ddnsgeek.com
 
 storage:
-  encryption_key: N7mkWziClgDhLgZDRkRwU6jEHmGF6ciOt53pzoFcZ0meEV1AZCC5bWZd24jeu19y
+  encryption_key: ${AUTHELIA_STORAGE_ENCRYPTION_KEY}
   local:
     path: /config/data/db.sqlite3
 
@@ -23,8 +23,6 @@ authentication_backend:
 access_control:
   default_policy: deny
   rules:
-#    - domain: "*.lan.ddnsgeek.com"
-#      policy: two_factor
     - domain: alertmanager.lan.ddnsgeek.com
       resources:
         - "^/api/.*"
@@ -52,7 +50,6 @@ access_control:
         - "^/metrics"
       policy: bypass
 
-
     - domain: "*.lan.ddnsgeek.com"
       policy: two_factor
 
diff --git a/core/traefik/dynamic.yml b/core/traefik/dynamic.yml
index 47f950e..e95e11f 100644
--- a/core/traefik/dynamic.yml
+++ b/core/traefik/dynamic.yml
@@ -4,7 +4,7 @@ http:
       plugin:
         crowdsec-bouncer:
           crowdsecMode: live
-          crowdsecLapiKey: HeneLa2mazFVzl5+DQRKOdchBuJxKdjrHsHBE/03Acs
+          crowdsecLapiKey: ${CROWDSEC_LAPI_KEY}
           crowdsecLapiHost: crowdsec:8080
           crowdsecLapiScheme: http