diff --git a/.github/workflows/terraform-apply.yml b/.github/workflows/terraform-apply.yml
index ce2fa08..d457f0b 100644
--- a/.github/workflows/terraform-apply.yml
+++ b/.github/workflows/terraform-apply.yml
@@ -5,9 +5,13 @@ on:
   workflow_dispatch:
     inputs:
       operation:
-        description: 'Choose the Terraform operation (apply or destroy)'
+        description: 'Choose the Terraform operation'
         required: true
         default: 'apply'
+        type: choice
+        options:
+          - apply
+          - destroy
   push:
     branches:
       - 'infra_main'
@@ -27,7 +31,8 @@ env:
   TF_VAR_db_domain: ${{ vars.TF_DB_DOMAIN }}
   TF_VAR_traefik_domain: ${{ vars.TF_TRAEFIK_DOMAIN }}
   TF_VAR_cert_email: ${{ secrets.TF_CERT_EMAIL }}
-  TF_VAR_private_key_path: ./${{ vars.TF_KEY_PAIR_NAME }}.pem
+  TF_VAR_private_key_path: ${{ vars.TF_KEY_PAIR_NAME }}.pem
+  POSTGRES_PASSWORD: ${{ secrets.POSTGRES_PASSWORD }}
 
 jobs:
   build-infra:
@@ -41,6 +46,7 @@ jobs:
         run: |
           echo "${{ secrets.PRIVATE_KEY }}" > ${{ vars.TF_KEY_PAIR_NAME }}.pem
           chmod 600 ${{ vars.TF_KEY_PAIR_NAME }}.pem
+        working-directory: ./terraform
 
       - name: Set up Terraform
         uses: hashicorp/setup-terraform@v2
diff --git a/ansible/compose.yml.j2 b/ansible/compose.yml.j2
index f717f70..17399f3 100644
--- a/ansible/compose.yml.j2
+++ b/ansible/compose.yml.j2
@@ -139,6 +139,6 @@ networks:
 volumes:
   postgres_data:
 secrets:
-   postgres_password:
-     file: ./POSTGRES_PASSWORD.txt
+  postgres_password:
+    environment: "POSTGRES_PASSWORD"