diff --git a/infrastructure/authentik/docker-compose.yml b/infrastructure/authentik/docker-compose.yml
index 32338c5..42a685b 100644
--- a/infrastructure/authentik/docker-compose.yml
+++ b/infrastructure/authentik/docker-compose.yml
@@ -1,9 +1,9 @@
 services:
   postgresql:
-    image: docker.io/library/postgres:15-alpine
+    image: docker.io/library/postgres:17-alpine
     restart: unless-stopped
     healthcheck:
-      test: ["CMD-SHELL", "pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}"]
+      test: ["CMD-SHELL", "pg_isready -d authentik -U authentik"]
       start_period: 20s
       interval: 30s
       retries: 5
@@ -12,31 +12,10 @@ services:
       - database:/var/lib/postgresql/data
       - backup:/backup
     environment:
-      POSTGRES_PASSWORD: ${PG_PASS:?database password required}
-      POSTGRES_USER: ${PG_USER:-authentik}
-      POSTGRES_DB: ${PG_DB:-authentik}
-    env_file:
-      - .env
-      
-  #postgresql:
-    #image: docker.io/library/postgres:14-alpine
-    #restart: unless-stopped
-    #healthcheck:
-      #test: ["CMD-SHELL", "pg_isready -d $${POSTGRES_DB} -U $${POSTGRES_USER}"]
-      #start_period: 20s
-      #interval: 30s
-      #retries: 5
-      #timeout: 5s
-    #volumes:
-      #- database-14:/var/lib/postgresql/data
-      #- backup:/backup
-    #environment:
-      #POSTGRES_PASSWORD: ${PG_PASS:?database password required}
-      #POSTGRES_USER: ${PG_USER:-authentik}
-      #POSTGRES_DB: ${PG_DB:-authentik}
-    #env_file:
-      #- .env
-    
+      POSTGRES_PASSWORD: "Laura1205"
+      POSTGRES_USER: "authentik"
+      POSTGRES_DB: "authentik"
+
   redis:
     image: docker.io/library/redis:alpine
     command: --save 60 1 --loglevel warning
@@ -49,73 +28,67 @@ services:
       timeout: 3s
     volumes:
       - redis:/data
-      
+
   server:
-    image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.10.1}
+    image: ghcr.io/goauthentik/server:2025.10.3
     restart: unless-stopped
     command: server
     environment:
       AUTHENTIK_REDIS__HOST: redis
       AUTHENTIK_POSTGRESQL__HOST: postgresql
-      AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
-      AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
-      AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS}
+      AUTHENTIK_POSTGRESQL__USER: authentik
+      AUTHENTIK_POSTGRESQL__NAME: authentik
+      AUTHENTIK_POSTGRESQL__PASSWORD: "Laura1205"
+      AUTHENTIK_SECRET_KEY: "H0zJm9+4Z2y7Q8VxKp3s1YqWmBfA0NLEo5DgC6tRrU="
       AUTHENTIK_EMAIL__HOST: smtp.strato.de
       AUTHENTIK_EMAIL__PORT: 587
       AUTHENTIK_EMAIL__USERNAME: michael.scheidel@scheidel.biz
-      AUTHENTIK_EMAIL__PASSWORD: ?EAM?Yes!01
+      AUTHENTIK_EMAIL__PASSWORD: "?EAM?Yes!01"
       AUTHENTIK_EMAIL__FROM: michael.scheidel@scheidel.biz
       AUTHENTIK_EMAIL__USE_TLS: "true"
-
-
-
+      #AUTHENTIK_BOOTSTRAP_PASSWORD: "Laura1205"
+      #AUTHENTIK_BOOTSTRAP_EMAIL: "michael.scheidel@scheidel.biz"
+      #AUTHENTIK_BOOTSTRAP_TOKEN: "bootstrap-token-12345"
 
 
     volumes:
-      - ./media:/media
-      - ./custom-templates:/templates
-    env_file:
-      - .env
+      - media:/media
+      - templates:/templates
     ports:
-      - "${COMPOSE_PORT_HTTP:-9000}:9000"
-      - "${COMPOSE_PORT_HTTPS:-9443}:9443"
+      - "9010:9000"
+      - "9453:9443"
     depends_on:
       - postgresql
       - redis
-      
+
   worker:
-    image: ${AUTHENTIK_IMAGE:-ghcr.io/goauthentik/server}:${AUTHENTIK_TAG:-2025.10.1}
+    image: ghcr.io/goauthentik/server:2025.10.3
     restart: unless-stopped
     command: worker
+    user: root
     environment:
       AUTHENTIK_REDIS__HOST: redis
       AUTHENTIK_POSTGRESQL__HOST: postgresql
-      AUTHENTIK_POSTGRESQL__USER: ${PG_USER:-authentik}
-      AUTHENTIK_POSTGRESQL__NAME: ${PG_DB:-authentik}
-      AUTHENTIK_POSTGRESQL__PASSWORD: ${PG_PASS}
-    # `user: root` and the docker socket volume are optional.
-    # See more for the docker socket integration here:
-    # https://goauthentik.io/docs/outposts/integrations/docker
-    # Removing `user: root` also prevents the worker from fixing the permissions
-    # on the mounted folders, so when removing this make sure the folders have the correct UID/GID
-    # (1000:1000 by default)
-    user: root
+      AUTHENTIK_POSTGRESQL__USER: authentik
+      AUTHENTIK_POSTGRESQL__NAME: authentik
+      AUTHENTIK_POSTGRESQL__PASSWORD: "Laura1205"
+      AUTHENTIK_SECRET_KEY: "H0zJm9+4Z2y7Q8VxKp3s1YqWmBfA0NLEo5DgC6tRrU="
     volumes:
       - /var/run/docker.sock:/var/run/docker.sock
-      - ./media:/media
-      - ./certs:/certs
-      - ./custom-templates:/templates
-    env_file:
-      - .env
+      - media:/media
+      - certs:/certs
+      - templates:/templates
     depends_on:
       - postgresql
       - redis
 
 volumes:
-  #database-14:
-    #driver: local
   redis:
-    driver: local
+    #driver: local
   database:
-    driver: local
+    #driver: local
   backup:
+    #driver: local
+  media:
+  templates:
+  certs: