diff --git a/nix/hosts/chaewon/sys.nix b/nix/hosts/chaewon/sys.nix
index dd11238..d053fc7 100644
--- a/nix/hosts/chaewon/sys.nix
+++ b/nix/hosts/chaewon/sys.nix
@@ -58,6 +58,19 @@
   security.acme = {
     acceptTerms = true;
     defaults.email = "lucas@priime.dev";
+    certs = {
+      "priime.dev" = {
+        webroot = "/var/lib/acme/priime.dev";
+        email = "lucas@priime.dev";
+        group = "nginx";
+        extraDomainNames = [ "www.priime.dev" ];
+      };
+      "files.priime.dev" = {
+        webroot = "/var/lib/acme/files.priime.dev";
+        email = "lucas@priime.dev";
+        group = "nginx";
+      };
+    };
   };
 
   networking.firewall.allowedTCPPorts = [ 80 443 ];
@@ -92,14 +105,21 @@
   services.nginx = {
     enable = true;
     virtualHosts = {
+      "_default_" = { locations."/".return = "301 https://priime.dev"; };
       "priime.dev" = {
         forceSSL = true;
-        enableACME = true;
-        locations."/".root = "/home/priime/site/build";
+        useACMEHost = "priime.dev";
+        serverAliases = [ "www.priime.dev" ];
+        acmeRoot = "/var/lib/acme/priime.dev";
+        locations."/" = {
+          root = "/var/www/site";
+          index = "index.html";
+        };
       };
       "files.priime.dev" = {
         forceSSL = true;
-        enableACME = true;
+        useACMEHost = "files.priime.dev";
+        acmeRoot = "/var/lib/acme/files.priime.dev";
         locations."/" = {
           root = "/var/lib/files.priime.dev";
           extraConfig = ''