diff --git a/crafty-system/crafty.yaml b/crafty-system/crafty.yaml
index d40ddf5..0a833a1 100644
--- a/crafty-system/crafty.yaml
+++ b/crafty-system/crafty.yaml
@@ -147,17 +147,15 @@ metadata:
     app.kubernetes.io/name: craftycontroller
     app.kubernetes.io/instance: crafty
   annotations:
-    cert-manager.io/cluster-issuer: letsencrypt-prod # Or your specific issuer
-    nginx.ingress.kubernetes.io/proxy-body-size: "0"
+    cert-manager.io/cluster-issuer: letsencrypt-prod
     external-dns.alpha.kubernetes.io/hostname: crafty.dooplex.hu,crafty.home
-    nginx.ingress.kubernetes.io/proxy-read-timeout: "3600"
-    nginx.ingress.kubernetes.io/proxy-send-timeout: "3600"
-    # Authentik proxy authentication
-    nginx.ingress.kubernetes.io/auth-url: "http://ak-outpost-crafty-outpost.auth-system.svc.cluster.local:9000/outpost.goauthentik.io/auth/nginx"
-    nginx.ingress.kubernetes.io/auth-signin: "https://crafty.dooplex.hu/outpost.goauthentik.io/start?rd=$escaped_request_uri"
-    nginx.ingress.kubernetes.io/auth-response-headers: "Set-Cookie,X-authentik-username,X-authentik-groups,X-authentik-email,X-authentik-name,X-authentik-uid"
-    nginx.ingress.kubernetes.io/auth-snippet: |
-      proxy_set_header X-Forwarded-Host $http_host;
+    nginx.ingress.kubernetes.io/ssl-redirect: 'true'
+    nginx.ingress.kubernetes.io/proxy-body-size: 200m
+    nginx.ingress.kubernetes.io/auth-url: http://ak-outpost-crafty-outpost.auth-system.svc.cluster.local:9000/outpost.goauthentik.io/auth/nginx
+    nginx.ingress.kubernetes.io/auth-signin: https://crafty.dooplex.hu/outpost.goauthentik.io/start?rd=$escaped_request_uri
+    nginx.ingress.kubernetes.io/auth-snippet: 'proxy_set_header X-Forwarded-Host $http_host;
+
+      '
 spec:
   ingressClassName: nginx-internal
   tls: