diff --git a/helm/airflow/values.yaml b/helm/airflow/values.yaml
index b341490..b8e3ab2 100644
--- a/helm/airflow/values.yaml
+++ b/helm/airflow/values.yaml
@@ -10,3 +10,30 @@ ingress:
           enabled: false
     path: "/"
     pathType: "Prefix"
+
+webserverConfig: |
+  from flask_appbuilder.security.manager import AUTH_OAUTH
+
+  AUTH_TYPE = AUTH_OAUTH
+  AUTH_USER_REGISTRATION = True
+  AUTH_USER_REGISTRATION_ROLE = "Viewer"
+
+  OAUTH_PROVIDERS = [
+    {
+      "name": "keycloak",
+      "token_key": "access_token",
+      "icon": "fa-key",
+      "remote_app": {
+        "client_id": "airflow",
+        "client_secret": "kbUXWFjemGqHdfEZg5gxgcCnjK0y6eel",
+        "api_base_url": "http://keycloak.49.13.143.254.nip.io/realms/master/protocol/openid-connect",
+        "request_token_url": None,
+        "access_token_url": "http://keycloak.49.13.143.254.nip.io/realms/master/protocol/openid-connect/token",
+        "authorize_url": "http://keycloak.49.13.143.254.nip.io/realms/master/protocol/openid-connect/auth",
+        "jwks_uri": "http://keycloak.49.13.143.254.nip.io/realms/master/protocol/openid-connect/certs",
+        "client_kwargs": {
+          "scope": "openid email profile"
+        }
+      }
+    }
+  ]