diff --git a/authelia/config/configuration.yml b/authelia/config/configuration.yml
index e44a70d..3db57c8 100644
--- a/authelia/config/configuration.yml
+++ b/authelia/config/configuration.yml
@@ -78,6 +78,7 @@ access_control:
         - '192.168.0.0/16'
         - '172.16.0.0/12'
   rules:
+    ## bypass all domains and subdomains from local ips
     - domain:
       - aknlw.com
       - '*.aknlw.com'
@@ -86,11 +87,25 @@ access_control:
       networks:
       - 'internal'
       policy: 'bypass'
-
-    # Rules applied to everyone
-    - domain: 'bitwarden.akanealw.com'
+    ## bypass api paths
+    - domain:
+      - '*.akanealw.com'
+      resources:
+      - "^/api([/?].*)?$"
+      - "^/add([/?].*)?$"  
+      - "^/public([/?].*)?$"
       policy: 'bypass'
-    - domain: '*.akanealw.com'
+    ## bypass domains with own 2fa
+    - domain:
+      - aknlw.com
+      - bitwarden.akanealw.com
+      - gitea.akanealw.com
+      - nextcloud.akanealw.com
+      policy: 'bypass'
+    ## all other domains
+    - domain: 
+      - akanealw.com
+      - '*.akanealw.com'
       policy: 'two_factor'
 
 session: