diff --git a/config/nginx.conf b/config/nginx.conf
index f23bb83..bf88e29 100644
--- a/config/nginx.conf
+++ b/config/nginx.conf
@@ -3,8 +3,8 @@ upstream intra_app_unicorn {
 }
 
 server {
-	listen [::]:80;
-	server_name  intra.quartz.xyz ;
+	listen [::]:443 ssl;
+	server_name  intra.quartz.xyz;
 	root /srv/www/web/intra_app/current/public;
 	try_files $uri/index.html $uri @unicorn;
 
@@ -20,14 +20,32 @@ server {
 	client_max_body_size 4G;
 	keepalive_timeout 10;
   
+  ssl on;
+  ssl_certificate /etc/letsencrypt/live/intra.quartz.xyz/fullchain.pem;
+  ssl_certificate_key /etc/letsencrypt/live/intra.quartz.xyz/privkey.pem;
+  
+  
   include snippets/letsencrypt.conf;
 }
 
 
 server {
 	listen [::]:80;
+  server_name  intra.quartz.xyz *.intra.quartz.xyz;
+  
+  return 301 https://intra.quartz.xyz$request_uri;
+  
+  include snippets/letsencrypt.conf;
+}
+
+server {
+	listen [::]:443 ssl;
   server_name  www.intra.quartz.xyz;
-  rewrite ^(.*) http://intra.quartz.xyz$1 permanent;
+  ssl on;
+  ssl_certificate /etc/letsencrypt/live/intra.quartz.xyz/fullchain.pem;
+  ssl_certificate_key /etc/letsencrypt/live/intra.quartz.xyz/privkey.pem;
+  
+  return 301 https://intra.quartz.xyz$request_uri;
   
   include snippets/letsencrypt.conf;
 }