diff --git a/README.txt b/README.txt
index c3d129c..e522ffb 100644
--- a/README.txt
+++ b/README.txt
@@ -16,7 +16,7 @@ EDITOR=vi rails credentials:edit
 
 SSL
 -------------------
-sudo certbot certonly --webroot -w /home/ikea_foundation/week_2026/public -d ikea-foundation-week-2026.onc.dk
+sudo certbot certonly --webroot -w /home/ikea_foundation_2026/week_2026/public -d ikea-foundation-week-2026.onc.dk
 
 
 Gem
diff --git a/config/nginx.conf b/config/nginx.conf
index d69c741..7be1d44 100644
--- a/config/nginx.conf
+++ b/config/nginx.conf
@@ -45,3 +45,72 @@ upstream puma_ikea_26 {
 
 
 
+# https
+server {
+  listen 443 ssl;
+  http2 on;
+    
+  server_name ikea-foundation-week-2026.onc.dk;
+  
+  # keepalive_timeout 300;
+  keepalive_timeout 5;
+  client_max_body_size 4G;
+    
+  
+  ssl_certificate /etc/letsencrypt/live/ikea-foundation-week-2026.onc.dk/fullchain.pem; # managed by Certbot
+  ssl_certificate_key /etc/letsencrypt/live/ikea-foundation-week-2026.onc.dk/privkey.pem; # managed by Certbot
+  include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot
+  ssl_dhparam /etc/letsencrypt/ssl-dhparams.pem; # managed by Certbot
+
+  access_log  /home/ikea_foundation_2026/week_2026/log/httpd-access.log;
+  error_log   /home/ikea_foundation_2026/week_2026/log/httpd-errors.log;  
+
+  root /home/ikea_foundation_2026/week_2026/public;
+
+  # App server    
+  location @puma_ikea_26 {
+    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
+    proxy_set_header Host $http_host;
+    proxy_set_header X-Forwarded_Proto $scheme;
+    proxy_redirect off;
+    
+    proxy_pass http://puma_ikea_26;
+  }
+
+  # Serve static (compiled) assets directly if they exist (for rails production)
+  location ~ ^/(assets|packs|static)/ {
+    try_files $uri @puma_ikea_26;
+
+    access_log off;
+    gzip_static on; 
+
+    expires max;
+    add_header Cache-Control public;
+
+    # Some browsers still send conditional-GET requests if there's a
+    # Last-Modified header or an ETag header even if they haven't
+    # reached the expiry date sent in the Expires header.
+    add_header Last-Modified "";
+    add_header ETag "";
+    break;
+  }
+
+  # location /cable {
+  #   proxy_pass http://puma_ikea_26;
+  #   proxy_http_version 1.1;
+  #   proxy_set_header Upgrade $http_upgrade;
+  #   proxy_set_header Connection 'upgrade';
+  # } 
+  
+  # Send non-static file requests to the app server
+  location / {
+    try_files $uri @puma_ikea_26;
+  }  
+  
+  # You can override error pages by redirecting the requests to a file in your
+  # application's public folder, if you so desire:
+  error_page 500 502 503 504 /500.html;
+  location = /500.html {
+    root /home/ikea_foundation_2026/week_2026/public;
+  }
+}
\ No newline at end of file