diff --git a/.gitea/workflows/pipeline.yml b/.gitea/workflows/pipeline.yml
index b28015a..303beef 100644
--- a/.gitea/workflows/pipeline.yml
+++ b/.gitea/workflows/pipeline.yml
@@ -38,7 +38,7 @@ jobs:
             docker build -t alexmickelson/elixir-demo-backend:$GITHUB_RUN_NUMBER .
             docker push -q alexmickelson/elixir-demo-backend:$GITHUB_RUN_NUMBER
 
-      - name: Deploy to Kubernetes
+      - name: cluster setup
         env:
           KUBECONFIG_CONTENT: ${{ secrets.KUBE_CONFIG_FILE }}
         run: |
@@ -49,7 +49,15 @@ jobs:
           kubectl get secret backend-secret --namespace alex-elixir-demo || \
             kubectl create secret generic backend-secret \
               --namespace alex-elixir-demo \
-              --from-literal=cookie=$(openssl rand -hex 32)
+              --from-literal=cookie=$(openssl rand -hex 32) \
+              --from-literal=secret_key_base=$(openssl rand -hex 64)
+
+      - name: Deploy to Kubernetes
+        env:
+          KUBECONFIG_CONTENT: ${{ secrets.KUBE_CONFIG_FILE }}
+        run: |
+          echo "$KUBECONFIG_CONTENT" > /tmp/elixir-kubeconfig.yml
+          export KUBECONFIG=/tmp/elixir-kubeconfig.yml
 
           for file in kubernetes/*.yml; do
             cat "$file" | envsubst | kubectl apply -f -
diff --git a/kubernetes/node-1.yml b/kubernetes/node-1.yml
index 9520839..c722275 100644
--- a/kubernetes/node-1.yml
+++ b/kubernetes/node-1.yml
@@ -30,6 +30,11 @@ spec:
                 secretKeyRef:
                   name: backend-secret
                   key: cookie
+            - name: SECRET_KEY_BASE
+              valueFrom:
+                secretKeyRef:
+                  name: backend-secret
+                  key: secret_key_base
             - name: CLUSTER_NODES
               value: "backend@node-1,backend@node-2,backend@node-3"
           resources:
diff --git a/kubernetes/node-2.yml b/kubernetes/node-2.yml
index 539b226..43e01af 100644
--- a/kubernetes/node-2.yml
+++ b/kubernetes/node-2.yml
@@ -30,6 +30,11 @@ spec:
                 secretKeyRef:
                   name: backend-secret
                   key: cookie
+            - name: SECRET_KEY_BASE
+              valueFrom:
+                secretKeyRef:
+                  name: backend-secret
+                  key: secret_key_base
             - name: CLUSTER_NODES
               value: "backend@node-1,backend@node-2,backend@node-3"
           resources:
diff --git a/kubernetes/node-3.yml b/kubernetes/node-3.yml
index a99ed3f..befc20b 100644
--- a/kubernetes/node-3.yml
+++ b/kubernetes/node-3.yml
@@ -30,6 +30,11 @@ spec:
                 secretKeyRef:
                   name: backend-secret
                   key: cookie
+            - name: SECRET_KEY_BASE
+              valueFrom:
+                secretKeyRef:
+                  name: backend-secret
+                  key: secret_key_base
             - name: CLUSTER_NODES
               value: "backend@node-1,backend@node-2,backend@node-3"
           resources: