diff --git a/init.sh b/init.sh
index 07cdaa3..53abfd9 100755
--- a/init.sh
+++ b/init.sh
@@ -57,12 +57,12 @@ vault write auth/kubernetes/config \
 
 vault secrets enable database
 vault write database/config/carrramba_encore_rate \
-    plugin_name=postgresql-database-plugin \
-    verify_connection=false \
-    allowed_roles="*" \
-    connection_url="postgresql://{{username}}:{{password}}@postgres:5432/carrramba_encore_rate?sslmode=disable" \
-    username="postgres" \
-    password="password"
+	plugin_name=postgresql-database-plugin \
+	verify_connection=false \
+	allowed_roles="*" \
+	connection_url="postgresql://{{username}}:{{password}}@postgres:5432/carrramba_encore_rate?sslmode=disable" \
+	username="postgres" \
+	password="password"
 
 vault policy write carrramba-encore-rate-api vault-carrramba-encore-rate-api-policy.hcl
 
@@ -70,33 +70,33 @@ vault write --force /database/rotate-root/carrramba_encore_rate
 
 # TODO: Restore default_ttl and max_ttl once the api able to reload env variable on change.
 vault write database/roles/carrramba-encore-rate-api \
-    db_name=carrramba_encore_rate \
-    creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \
-        GRANT SELECT ON ALL TABLES IN SCHEMA public TO \"{{name}}\";" \
-    revocation_statements="ALTER ROLE \"{{name}}\" NOLOGIN;"\
-    default_ttl="768h" \
-    max_ttl="768h"
-    # default_ttl="1h" \
-    # max_ttl="24h"
+	db_name=carrramba_encore_rate \
+	creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \
+		GRANT SELECT ON ALL TABLES IN SCHEMA public TO \"{{name}}\";" \
+	revocation_statements="ALTER ROLE \"{{name}}\" NOLOGIN;"\
+	default_ttl="768h" \
+	max_ttl="768h"
+	# default_ttl="1h" \
+	# max_ttl="24h"
 vault write auth/kubernetes/role/carrramba_encore_rate_api \
-    bound_service_account_names=carrramba-encore-rate-api \
-    bound_service_account_namespaces=default \
-    policies=carrramba-encore-rate-api \
-    ttl=1h
+	bound_service_account_names=carrramba-encore-rate-api \
+	bound_service_account_namespaces=default \
+	policies=carrramba-encore-rate-api \
+	ttl=1h
 
 vault policy write carrramba-encore-rate-admin vault-carrramba-encore-rate-admin-policy.hcl
 vault write database/roles/carrramba-encore-rate-admin \
-    db_name=carrramba_encore_rate \
-    creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \
-        ALTER ROLE \"{{name}}\" SUPERUSER;" \
-    revocation_statements="ALTER ROLE \"{{name}}\" NOLOGIN;"\
-    default_ttl="1h" \
-    max_ttl="24h"
+	db_name=carrramba_encore_rate \
+	creation_statements="CREATE ROLE \"{{name}}\" WITH LOGIN PASSWORD '{{password}}' VALID UNTIL '{{expiration}}'; \
+		ALTER ROLE \"{{name}}\" SUPERUSER;" \
+	revocation_statements="ALTER ROLE \"{{name}}\" NOLOGIN;"\
+	default_ttl="1h" \
+	max_ttl="24h"
 vault write auth/kubernetes/role/carrramba-encore-rate-admin \
-    bound_service_account_names=carrramba-encore-rate-admin \
-    bound_service_account_namespaces=default \
-    policies=carrramba-encore-rate-admin \
-    ttl=1h
+	bound_service_account_names=carrramba-encore-rate-admin \
+	bound_service_account_namespaces=default \
+	policies=carrramba-encore-rate-admin \
+	ttl=1h
 
 vault secrets enable -path="carrramba-encore-rate-api" -description="carrramba-encore-rate secrets" kv
 vault kv put carrramba-encore-rate-api/idfm-api-key key=$(pass dev/idfm_prim_api_token)