diff --git a/helmchart/single-sign-on/requirements.yaml b/helmchart/single-sign-on/requirements.yaml
index cd1f9fc6b01da8a9a3a6d6853ee03ef8241311f7..f96d2123baaaad2af7ae9bfe6e6063ce09d72178 100644
--- a/helmchart/single-sign-on/requirements.yaml
+++ b/helmchart/single-sign-on/requirements.yaml
@@ -1,7 +1,7 @@
 # https://k8s.ory.sh/helm/hydra.html
 dependencies:
   - name: hydra
-    version: 0.0.48
+    version: 0.19.5
     repository: "https://k8s.ory.sh/helm/charts"
     tags:
       - single-sign-on
diff --git a/helmchart/single-sign-on/values.yaml b/helmchart/single-sign-on/values.yaml
index 7f4a63d5a54a0e69c68401978e949a9e97ff1c98..27dfcb7528140f4ee45482f05fad9086294614eb 100644
--- a/helmchart/single-sign-on/values.yaml
+++ b/helmchart/single-sign-on/values.yaml
@@ -208,11 +208,14 @@ hydra:
       enabled: true
       annotations:
         kubernetes.io/tls-acme: "true"
+      className: ""
       hosts:
         # hydra.ingress.public.hosts[0].hosts.host is the FQDN of the single sign-on system
         # that will be used by oAuth clients to retrieve userinfo and redirect their users to.
         - host: sso.oas.example.net
-          paths: ["/"]
+          paths:
+            - path: /
+              pathType: ImplementationSpecific
       tls:
         # oAuth2 only works via https. You really need to configure your ingress service to
         # provide access to hydra via https.