diff --git a/roles/private/files/europa/https.owncloud.internal.simponic.xyz.conf b/roles/private/files/europa/https.owncloud.internal.simponic.xyz.conf
index 1321199..9789ea4 100644
--- a/roles/private/files/europa/https.owncloud.internal.simponic.xyz.conf
+++ b/roles/private/files/europa/https.owncloud.internal.simponic.xyz.conf
@@ -29,4 +29,17 @@ server {
     proxy_set_header X-Forwarded-Proto $http_x_forwarded_proto;
     add_header Strict-Transport-Security "max-age=15552000; includeSubDomains" always;
   }
+
+  location /.well-known/openid-configuration {
+    proxy_pass http://127.0.0.1:24734/index.php/apps/openidconnect/config;
+    proxy_http_version 1.1;
+    proxy_set_header Upgrade $http_upgrade;
+    proxy_set_header Connection "upgrade";
+    proxy_set_header Host $server_name;
+    proxy_buffering off;
+    proxy_set_header X-Real-IP $remote_addr;
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header X-Forwarded-Proto $http_x_forwarded_proto;
+    add_header Strict-Transport-Security "max-age=15552000; includeSubDomains" always;
+  }
 }
diff --git a/roles/webservers/files/nijika/https.authelia.simponic.xyz.conf b/roles/webservers/files/nijika/https.authelia.simponic.xyz.conf
index 7034b0b..95c3cf0 100644
--- a/roles/webservers/files/nijika/https.authelia.simponic.xyz.conf
+++ b/roles/webservers/files/nijika/https.authelia.simponic.xyz.conf
@@ -18,6 +18,11 @@ server {
   ssl_prefer_server_ciphers on;
 
   location / {
+    if ($args ~* (.*)(prompt=select_account%20consent&)(.*)) {
+      set $args $1$3;
+      rewrite ^(.*)$ $1;
+    }
+
     proxy_pass http://127.0.0.1:9091;
 
     client_body_buffer_size 128k;