diff --git a/app/models/auth_user.rb b/app/models/auth_user.rb
index 89b4a226..5830abc5 100644
--- a/app/models/auth_user.rb
+++ b/app/models/auth_user.rb
@@ -37,7 +37,7 @@ class AuthUser < AuthRecord
   end
 
   def password_required?
-    !uses_omniauth?
+    super && !uses_omniauth?
   end
 
   def self.from_omniauth(auth)
diff --git a/config/environments/production.rb b/config/environments/production.rb
index 6be22103..32d4f8ab 100644
--- a/config/environments/production.rb
+++ b/config/environments/production.rb
@@ -136,7 +136,8 @@ Rails.application.configure do
   config.public_data_root = Rails.root / "public" / "public-data"
 
   # To see NeoPass features, add ?neopass=<SECRET> to relevant pages.
-  config.neopass_access_secret = Rails.credentials.neopass.access_secret
+  config.neopass_access_secret =
+    Rails.application.credentials.neopass.access_secret
 
   # Use the live NeoPass production server.
   config.neopass_origin = "https://oidc.neopets.com"