diff --git a/README.md b/README.md
index 257d32a..056e0f1 100644
--- a/README.md
+++ b/README.md
@@ -3,4 +3,7 @@
 iac-ansible-private
 
 stolon comes from https://github.com/sorintlab/stolon/blob/master/examples/kubernetes/README.md
-qbittorrent comes from https://github.com/j4ym0/pia-qbittorrent-docker?tab=readme-ov-file
\ No newline at end of file
+qbittorrent comes from https://github.com/j4ym0/pia-qbittorrent-docker?tab=readme-ov-file
+prowlarr comes from https://docs.linuxserver.io/images/docker-prowlarr/#docker-mods 
+                and https://wiki.servarr.com/prowlarr/environment-variables
+
diff --git a/roles/prowlarr/files/prowlarr-deployment.yaml b/roles/prowlarr/files/prowlarr-deployment.yaml
new file mode 100644
index 0000000..5aa374c
--- /dev/null
+++ b/roles/prowlarr/files/prowlarr-deployment.yaml
@@ -0,0 +1,67 @@
+apiVersion: apps/v1
+kind: Deployment
+metadata:
+  name: prowlarr
+  namespace: stack-arr
+spec:
+  replicas: 1
+  selector:
+    matchLabels:
+      app: prowlarr
+  template:
+    metadata:
+      labels:
+        app: prowlarr
+    spec:
+      imagePullSecrets:
+      - name: regcred
+      containers:
+      - name: prowlarr
+        image: lscr.io/linuxserver/prowlarr:latest
+        securityContext:
+          capabilities:
+            add:
+              - NET_ADMIN
+        ports:
+          - containerPort: 9696
+            name: webui
+        env:
+        - name: PUID
+          value: "1013"
+        - name: PGID
+          value: "1013"
+        - name: TZ
+          value: 'Etc/UTC'
+        - name: PROWLARR__POSTGRES__HOST
+          value: 'qbittorrent-service.stack-arr.svc.cluster.local'
+        - name: PROWLARR__POSTGRES__USER
+          valueFrom:
+            secretKeyRef:
+              name: prowlarr-secret
+              key: username
+        - name: PROWLARR__POSTGRES__PASSWORD
+          valueFrom:
+            secretKeyRef:
+              name: prowlarr-secret
+              key: password
+        - name: PROWLARR__POSTGRES__MAINDB
+          valueFrom:
+            secretKeyRef:
+              name: prowlarr-secret
+              key: maindb
+        - name: PROWLARR__POSTGRES__LOGDB
+          valueFrom:
+            secretKeyRef:
+              name: prowlarr-secret
+              key: logsdb
+        volumeMounts:
+        - name: config
+          mountPath: /config
+      volumes:
+      - name: config
+        persistentVolumeClaim:
+          claimName: prowlarr-config-pvc
+
+
+
+
diff --git a/roles/prowlarr/files/prowlarr-nfs-csi.yaml b/roles/prowlarr/files/prowlarr-nfs-csi.yaml
new file mode 100644
index 0000000..ae0054c
--- /dev/null
+++ b/roles/prowlarr/files/prowlarr-nfs-csi.yaml
@@ -0,0 +1,11 @@
+apiVersion: storage.k8s.io/v1
+kind: StorageClass
+metadata:
+  name: prowlarr-nfs-csi
+  namespace: stack-arr
+provisioner: nfs.csi.k8s.io
+parameters:
+  server: 192.168.1.22
+  share: /mnt/fenix-main-nas-pool-0/data/k8s-Volumes/k8s-cluster-iac-deployed/stack-arr/prowlarr
+allowVolumeExpansion: true
+reclaimPolicy: Retain
\ No newline at end of file
diff --git a/roles/prowlarr/files/prowlarr-pvcs.yaml b/roles/prowlarr/files/prowlarr-pvcs.yaml
new file mode 100644
index 0000000..091095e
--- /dev/null
+++ b/roles/prowlarr/files/prowlarr-pvcs.yaml
@@ -0,0 +1,30 @@
+apiVersion: v1
+kind: PersistentVolume
+metadata:
+  name: prowlarr-config-pv
+  namespace: stack-arr
+spec:
+  capacity:
+    storage: 2Gi
+  storageClassName: prowlarr-nfs-csi
+  accessModes:
+    - ReadWriteOnce
+  persistentVolumeReclaimPolicy: Retain
+  nfs:
+    server: 192.168.1.22
+    path: /mnt/fenix-main-nas-pool-0/data/k8s-Volumes/k8s-cluster-iac-deployed/stack-arr/prowlarr/config
+---
+apiVersion: v1
+kind: PersistentVolumeClaim
+metadata:
+  name: prowlarr-config-pvc
+  namespace: stack-arr
+spec:
+  storageClassName: prowlarr-nfs-csi
+  accessModes:
+    - ReadWriteOnce
+  volumeName: prowlarr-config-pv
+  resources:
+    requests:
+      storage: 2Gi
+---
\ No newline at end of file
diff --git a/roles/prowlarr/files/prowlarr-secret.yaml b/roles/prowlarr/files/prowlarr-secret.yaml
new file mode 100644
index 0000000..6551cc0
--- /dev/null
+++ b/roles/prowlarr/files/prowlarr-secret.yaml
@@ -0,0 +1,11 @@
+apiVersion: v1
+kind: Secret
+metadata:
+    name:  prowlarr-secret
+    namespace: stack-arr
+type: Opaque
+data:
+    username: dXNlcm5hbWU=
+    password: cGFzc3dvcmQ=
+    maindb: bWFpbmRiLXByb3dsYXJy
+    logsdb: bG9nZGItcHJvd2xhcnI=
\ No newline at end of file
diff --git a/roles/prowlarr/tasks/main.yml b/roles/prowlarr/tasks/main.yml
new file mode 100644
index 0000000..e21f7b7
--- /dev/null
+++ b/roles/prowlarr/tasks/main.yml
@@ -0,0 +1,51 @@
+- name: Remover o diretório /tmp/stack-arr/prowlarr/kubernetes-files
+  ansible.builtin.file:
+    path: /tmp/stack-arr/prowlarr/kubernetes-files
+    state: absent
+
+- name: Criar diretório temporário no remoto
+  file:
+    path: /tmp/stack-arr/prowlarr/kubernetes-files
+    state: directory
+    mode: '0755'
+
+- name: Copy file with owner and permissions
+  ansible.builtin.copy:
+    src: ../files
+    dest: /tmp/stack-arr/prowlarr/kubernetes-files
+    owner: fenix
+    group: root
+    mode: '0644'
+
+
+- name: Obter várias notas do Bitwarden
+  shell: |
+    echo "unlock"
+    BW_SESSION=$(bw unlock {{ bw_password }} --raw)
+    echo "get item"
+    bw get item "{{ item.id }}" --session $BW_SESSION | jq -r '.notes' > {{ item.dest }}
+  loop:
+    - { id: "iac.ansible.stackarr.prowlarr.secret", dest: "/tmp/stack-arr/prowlarr/kubernetes-files/files/vpn-secret.yaml" }
+  args:
+    executable: /bin/bash
+  environment:
+    BW_PASSWORD: "{{ BW_PASSWORD }}"
+
+
+- name: Listar conteúdo do diretório remoto
+  shell: ls -l /tmp/stack-arr/prowlarr/kubernetes-files/files
+  register: resultado_ls
+
+
+- name: Mostrar resultado do ls
+  debug:
+    var: resultado_ls.stdout_lines
+
+
+- name: Aplicar o stolon
+  become: yes
+  become_user: fenix 
+  shell: |
+    kubectl apply -f /tmp/stack-arr/prowlarr/kubernetes-files/files/
+  environment:
+    KUBECONFIG:  /home/fenix/.kube/config
\ No newline at end of file
diff --git a/roles/prowlarr/vars/main.yml b/roles/prowlarr/vars/main.yml
new file mode 100644
index 0000000..c8fe60b
--- /dev/null
+++ b/roles/prowlarr/vars/main.yml
@@ -0,0 +1,4 @@
+bw_password: "{{ lookup('env', 'BW_PASSWORD') }}"
+VAULTWARDEN_LINK: "{{ lookup('env', 'VAULTWARDEN_LINK') }}"
+BW_CLIENTID: "{{ lookup('env', 'BW_CLIENTID') }}"
+BW_CLIENTSECRET : "{{ lookup('env', 'BW_CLIENTSECRET') }}"
\ No newline at end of file
diff --git a/roles/qbittorrent/files/stolon-nfs-csi.yaml b/roles/qbittorrent/files/qbittorrent-nfs-csi.yaml
similarity index 100%
rename from roles/qbittorrent/files/stolon-nfs-csi.yaml
rename to roles/qbittorrent/files/qbittorrent-nfs-csi.yaml
diff --git a/roles/qbittorrent/tasks/main.yml b/roles/qbittorrent/tasks/main.yml
index afb60a2..152942e 100644
--- a/roles/qbittorrent/tasks/main.yml
+++ b/roles/qbittorrent/tasks/main.yml
@@ -17,11 +17,6 @@
     group: root
     mode: '0644'
 
-- name: Listar conteúdo do diretório remoto
-  shell: ls -l /tmp/stack-arr/qbittorrent/kubernetes-files
-  register: resultado_ls
-
-
 - name: Obter várias notas do Bitwarden
   shell: |
     echo "unlock"
@@ -37,12 +32,16 @@
     BW_PASSWORD: "{{ BW_PASSWORD }}"
 
 
+- name: Listar conteúdo do diretório remoto
+  shell: ls -l /tmp/stack-arr/qbittorrent/kubernetes-files/files
+  register: resultado_ls
+
 - name: Mostrar resultado do ls
   debug:
     var: resultado_ls.stdout_lines
 
 
-- name: Aplicar o stolon
+- name: Aplicar o qbittorrent
   become: yes
   become_user: fenix 
   shell: |