server {
  listen 80;
  server_name {{ server_name }};

  include /etc/nginx/include/certbot.conf;

  location / {
    return 301 https://$host$request_uri;
  }
}

server {
  listen 443 ssl;
  server_name {{ server_name }};

  include /etc/nginx/include/ssl.conf;

  ssl_certificate /etc/nginx/ssl.d/{{ server_name }}/fullchain.pem;
  ssl_certificate_key /etc/nginx/ssl.d/{{ server_name }}/privkey.pem;

  location / {
    # The trailing '/' is important as it causes nginx to send the
    # cleaned URI through to the destination service (double slashes
    # removed, etc.).
    proxy_pass          http://127.0.0.1:3000/;
    include		/etc/nginx/include/proxy.conf;
  }
}