diff --git a/bookstack-system/bookstack.yaml b/bookstack-system/bookstack.yaml
index 3f540ed..c0b5e88 100644
--- a/bookstack-system/bookstack.yaml
+++ b/bookstack-system/bookstack.yaml
@@ -243,6 +243,30 @@ spec:
               value: "BookStack"
             - name: MAIL_ENCRYPTION
               value: tls
+            - name: AUTH_METHOD
+              value: "oidc"
+            - name: AUTH_AUTO_INITIATE
+              value: "false"
+            - name: OIDC_NAME
+              value: "authentik"
+            - name: OIDC_DISPLAY_NAME_CLAIMS
+              value: "name"
+            - name: OIDC_CLIENT_ID
+              valueFrom:
+                secretKeyRef:
+                  name: bookstack-oauth
+                  key: client-id
+            - name: OIDC_CLIENT_SECRET
+              valueFrom:
+                secretKeyRef:
+                  name: bookstack-oauth
+                  key: client-secret
+            - name: OIDC_ISSUER
+              value: "https://authentik.dooplex.hu/application/o/bookstack/"
+            - name: OIDC_ISSUER_DISCOVER
+              value: "true"
+            - name: OIDC_END_SESSION_ENDPOINT
+              value: "true"
           ports:
             - name: http
               containerPort: 80