diff --git a/playbook.yml b/playbook.yml
index 4ceab28..f09dbdf 100644
--- a/playbook.yml
+++ b/playbook.yml
@@ -252,7 +252,7 @@
         mode: '0755'
         content: |
           #!/bin/sh
-          /usr/bin/docker exec -i --env SSH_ORIGINAL_COMMAND="$SSH_ORIGINAL_COMMAND" forgejo sh "$@"
+          /usr/bin/docker exec -i -u git --env SSH_ORIGINAL_COMMAND="$SSH_ORIGINAL_COMMAND" forgejo sh "$@"
 
     - name: Create git user for Forgejo
       ansible.builtin.user:
@@ -281,7 +281,7 @@
         content: |
           Match User git
             AuthorizedKeysCommandUser git
-            AuthorizedKeysCommand /usr/bin/docker exec -i forgejo /usr/local/bin/gitea keys -c /etc/gitea/app.ini -e git -u %u -t %t -k %k
+            AuthorizedKeysCommand /usr/bin/docker exec -i -u git forgejo /usr/local/bin/gitea keys -c /data/gitea/conf/app.ini -e git -u %u -t %t -k %k
       notify: restart sshd
 
     - name: Generate Pangolin secret