diff --git a/authentik/core/api/tokens.py b/authentik/core/api/tokens.py
index 5be8478da..25422d5d3 100644
--- a/authentik/core/api/tokens.py
+++ b/authentik/core/api/tokens.py
@@ -49,7 +49,7 @@ class TokenViewSet(ModelViewSet):
         if not tokens.exists():
             raise Http404
         token = tokens.first()
-        Event.new(  # noqa # nosec
-            EventAction.SECRET_VIEW, secret=token
-        ).from_http(request)
+        Event.new(EventAction.SECRET_VIEW, secret=token).from_http(  # noqa # nosec
+            request
+        )
         return Response(TokenViewSerializer({"key": token.key}).data)
diff --git a/authentik/providers/proxy/forms.py b/authentik/providers/proxy/forms.py
index 2c3277253..e1433d6bc 100644
--- a/authentik/providers/proxy/forms.py
+++ b/authentik/providers/proxy/forms.py
@@ -18,7 +18,7 @@ class ProxyProviderForm(forms.ModelForm):
         )
         self.fields["certificate"].queryset = CertificateKeyPair.objects.filter(
             key_data__isnull=False
-        )
+        ).exclude(key_data="")
 
     def save(self, *args, **kwargs):
         actual_save = super().save(*args, **kwargs)