server {
        server_name radicale.mydomain.com;
        listen 443 ssl;
        listen 8443 ssl;
        http2 on;

        include "com.mydomain/authelia_location-basic.conf";

        access_log /var/log/nginx/radicale.mydomain.com_access_log main;
        error_log /var/log/nginx/radicale.mydomain.com_error_log info;

        location / { # The trailing / is important!
                proxy_pass        http://127.0.0.1:5232/; # The / is important!
                proxy_set_header  X-Script-Name /;
                proxy_set_header  X-Remote-User $remote_user;
                proxy_set_header  X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_set_header  Host $http_host;
                proxy_pass_header Authorization;
                include "com.mydomain/authelia_proxy.conf";
                include "com.mydomain/authelia_authrequest-basic.conf";
        }

        location /gui/ { # The trailing / is important!
                proxy_pass        http://127.0.0.1:5233/; # The / is important!
                proxy_set_header  X-Script-Name /;
                proxy_set_header  X-Remote-User $remote_user;
                proxy_set_header  X-Forwarded-For $proxy_add_x_forwarded_for;
                proxy_set_header  Host $http_host;
                proxy_pass_header Authorization;
        }
        include com.mydomain/certbot.conf;
}