diff --git a/k8s/README.md b/k8s/README.md
index ae1c76b..0fa5120 100644
--- a/k8s/README.md
+++ b/k8s/README.md
@@ -90,6 +90,41 @@ Currently only for one user:
 kubectl apply -f datalab/rstudio.yaml
 ```
 
+
+## Add private docker registry
+
+*Current state:* Registry of hub.moritzgraf.de:5000 is used.
+
+```sh
+# create secret base64 encoded and put it in htpasswd helm chart
+USER='moritz'
+PASSWORD='xxx'
+docker run --entrypoint htpasswd --rm registry:2 -Bbn $USER $PASSWORD
+# 
+kubectl apply -f development/registry.secret.yaml
+```
+
+### creating docker-pull-secret
+
+Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
+
+```sh
+namespaces="datalab"
+for i in $( echo $namespaces ) ; do
+  kubectl create secret docker-registry registry-haumdaucher-de \
+    -n $i \
+    --docker-server=registry.haumdaucher.de \
+    --docker-username=moritz \
+    --docker-password='xxx' \
+    --docker-email=moritz@moritzgraf.de \
+    --dry-run -o yaml > ./${i}/docker-pull.yaml.secret
+done
+# apply
+for i in $( echo $namespaces ) ; do
+  kubectl apply -f ${i}/docker-pull.yaml.secret
+done
+```
+
 ## auth
 
 Including:
@@ -117,41 +152,6 @@ Migate
 
 Backup
 
-## Add private docker registry
-
-*Current state:* Registry of hub.moritzgraf.de:5000 is used.
-
-```sh
-# create secret base64 encoded
-USER="moritz"
-PASSWORD="password"
-docker run --entrypoint htpasswd --rm registry:2 -Bbn admin admin123 | base64
-# use the output and put it in development/registry.secret.yaml
-kubectl apply -f development/registry.yaml
-
-```
-
-
-### after
-
-Create credentials secret [according to docu](https://kubernetes.io/docs/tasks/configure-pod-container/pull-image-private-registry/#create-a-secret-by-providing-credentials-on-the-command-line):
-
-```sh
-namespaces="datalab"
-for i in $( echo $namespaces ) ; do
-  kubectl create secret docker-registry hub-moritzgraf-de \
-    -n $i \
-    --docker-server=hub.moritzgraf.de:5000 \
-    --docker-username=moritz \
-    --docker-password='xxx' \
-    --docker-email=moritz@moritzgraf.de \
-    --dry-run -o yaml > ./${i}/docker-pull.yaml.secret
-done
-# apply
-for i in $( echo $namespaces ) ; do
-  kubectl apply -f ${i}/docker-pull.yaml.secret
-done
-```
 
 ## Add mopbot & corona & corona-api
 
diff --git a/k8s/datalab/docker-pull.yaml.secret b/k8s/datalab/docker-pull.yaml.secret
index 6e44b7c..2a58f0d 100644
Binary files a/k8s/datalab/docker-pull.yaml.secret and b/k8s/datalab/docker-pull.yaml.secret differ
diff --git a/k8s/development/registry.secret.yaml b/k8s/development/registry.secret.yaml
index 43549df..1a078bd 100644
Binary files a/k8s/development/registry.secret.yaml and b/k8s/development/registry.secret.yaml differ
diff --git a/k8s/development/registry.yaml b/k8s/development/registry.yaml
deleted file mode 100644
index 9ee1437..0000000
--- a/k8s/development/registry.yaml
+++ /dev/null
@@ -1,14 +0,0 @@
----  
-apiVersion: cert-manager.io/v1alpha2
-kind: Certificate
-metadata:
-  name: registry
-  namespace: development
-spec:
-  secretName: registry-haumdaucher-de
-  dnsNames:
-  - registry.haumdaucher.de
-  issuerRef:
-    name: letsencrypt-prod
-    kind: ClusterIssuer
-    group: cert-manager.io
\ No newline at end of file