diff --git a/roles/tandoor/templates/conf.j2 b/roles/tandoor/templates/conf.j2
index 4837105..c87dcdf 100644
--- a/roles/tandoor/templates/conf.j2
+++ b/roles/tandoor/templates/conf.j2
@@ -19,9 +19,8 @@ REMOTE_USER_AUTH=0
 {% if var_tandoor_authentication_kind == 'authelia' %}
 ENABLE_SIGNUP=0
 REMOTE_USER_AUTH=1
-SOCIAL_PROVIDERS=allauth.socialaccount.providers.openid
-# SOCIALACCOUNT_PROVIDERS={"openid_connect": {"OAUTH_PKCE_ENABLED": false, "APPS": [{"provider_id": "authelia", "name": "{{var_tandoor_authentication_data_authelia_label}}", "client_id": "{{var_tandoor_authentication_data_authelia_client_id}}", "secret": "{{var_tandoor_authentication_data_authelia_client_secret}}", "settings": {"server_url":"{{var_tandoor_authentication_data_authelia_url_base}}", "token_auth_method": "client_secret_basic", "oauth_pkce_enabled": false}}]}}
-SOCIALACCOUNT_PROVIDERS={"openid_connect": {"APPS": [{"provider_id": "authelia", "name": "{{var_tandoor_authentication_data_authelia_label}}", "client_id": "{{var_tandoor_authentication_data_authelia_client_id}}", "secret": "{{var_tandoor_authentication_data_authelia_client_secret}}", "settings": {"server_url": "{{var_tandoor_authentication_data_authelia_url_base}}/.well-known/openid-configuration"}}]}}
+SOCIAL_PROVIDERS=allauth.socialaccount.providers.openid_connect
+SOCIALACCOUNT_PROVIDERS={"openid_connect": {"OAUTH_PKCE_ENABLED": true, "APPS": [{"provider_id": "authelia", "name": "{{var_tandoor_authentication_data_authelia_label}}", "client_id": "{{var_tandoor_authentication_data_authelia_client_id}}", "secret": "{{var_tandoor_authentication_data_authelia_client_secret}}", "settings": {"server_url": "{{var_tandoor_authentication_data_authelia_url_base}}/.well-known/openid-configuration", "token_auth_method": "client_secret_basic"}}]}}
 {% endif %}
 
 EMAIL_HOST={{var_tandoor_smtp_host}}