{
  enableACME = true;
  addSSL = true;
  locations = {
    "/" = {
      proxyPass = "https://youthapp.inuits.dev";
      recommendedProxySettings = false;
      extraConfig = ''
        proxy_ssl_verify off;
        proxy_set_header Host youthapp.inuits.dev;
        proxy_ssl_server_name on;

          more_set_headers 'Access-Control-Allow-Origin: *';
          more_set_headers 'Access-Control-Allow-Methods: *';
          #
          # Custom headers and headers various browsers *should* be OK with but aren't
          #
          more_set_headers 'Access-Control-Allow-Headers: *, Authorization';
          #
          # Tell client that this pre-flight info is valid for 20 days
          # 
          more_set_headers 'Access-Control-Max-Age: 1728000';

        if ($request_method = 'OPTIONS') {
          more_set_headers 'Content-Type: text/plain; charset=utf-8';
          more_set_headers 'Content-Length: 0';
          return 204;
        }
      '';
    };
  };
}