diff --git a/apps/authentik-app.yaml b/apps/authentik-app.yaml
index bf5c952..a65299c 100644
--- a/apps/authentik-app.yaml
+++ b/apps/authentik-app.yaml
@@ -20,3 +20,30 @@ spec:
       selfHeal: true
     syncOptions:
       - CreateNamespace=true
+  ignoreDifferences:
+    # Ignoriere automatisch erstellte PVCs von StatefulSets (volumeClaimTemplates)
+    # Diese werden automatisch vom StatefulSet erstellt und müssen nicht im Git sein
+    - group: ""
+      kind: PersistentVolumeClaim
+      name: "postgres-data-authentik-postgresql-*"
+      jqPathExpressions:
+        - .metadata.annotations."pv.kubernetes.io/bind-completed"
+        - .metadata.annotations."pv.kubernetes.io/bound-by-controller"
+        - .metadata.annotations."volume.beta.kubernetes.io/storage-provisioner"
+        - .metadata.annotations."volume.kubernetes.io/storage-provisioner"
+        - .metadata.uid
+        - .metadata.resourceVersion
+        - .status
+        - .spec.storageClassName
+    - group: ""
+      kind: PersistentVolumeClaim
+      name: "redis-data-authentik-redis-*"
+      jqPathExpressions:
+        - .metadata.annotations."pv.kubernetes.io/bind-completed"
+        - .metadata.annotations."pv.kubernetes.io/bound-by-controller"
+        - .metadata.annotations."volume.beta.kubernetes.io/storage-provisioner"
+        - .metadata.annotations."volume.kubernetes.io/storage-provisioner"
+        - .metadata.uid
+        - .metadata.resourceVersion
+        - .status
+        - .spec.storageClassName
diff --git a/apps/authentik/deployment.yaml b/apps/authentik/deployment.yaml
index 50d25a5..1b53cfd 100644
--- a/apps/authentik/deployment.yaml
+++ b/apps/authentik/deployment.yaml
@@ -26,6 +26,7 @@ metadata:
 spec:
   accessModes:
     - ReadWriteOnce
+  storageClassName: longhorn
   resources:
     requests:
       storage: 1Gi