diff --git a/roles/gitea.nix b/roles/gitea.nix
index 34b7298..84491e9 100644
--- a/roles/gitea.nix
+++ b/roles/gitea.nix
@@ -67,15 +67,26 @@
       locations."/".proxyPass = "http://localhost:3002/";   # Proxy Gitea
     };
     virtualHosts."git.mcwhirter.io" = {                     # Hostname to be redirected
+      enableACME = true;                                    # Use ACME certs
+      forceSSL = true;                                      # Force SSL
+      locations."/".proxyPass = "http://localhost:3002/";   # Proxy Gitea
       globalRedirect = "source.mcwhirter.io";               # Redirect permanently to the host
     };
     virtualHosts."code.mcwhirter.io" = {                    # Hostname to be redirected
+      enableACME = true;                                    # Use ACME certs
+      forceSSL = true;                                      # Force SSL
+      locations."/".proxyPass = "http://localhost:3002/";   # Proxy Gitea
       globalRedirect = "source.mcwhirter.io";               # Redirect permanently to the host
     };
   };
 
-  security.acme.certs = {
+  security.acme = {
+    acceptTerms = true;
+    certs = {
+      "code.mcwhirter.io".email   = "craige@mcwhirter.io";
+      "git.mcwhirter.io".email    = "craige@mcwhirter.io";
       "source.mcwhirter.io".email = "craige@mcwhirter.io";
+    };
   };
 
   users.groups.keys.members = [ "gitea" ];   # Required due to NixOps issue #1204