diff --git a/roles/rproxy/tasks/main.yml b/roles/rproxy/tasks/main.yml
index f5a1d8c..a206feb 100644
--- a/roles/rproxy/tasks/main.yml
+++ b/roles/rproxy/tasks/main.yml
@@ -73,6 +73,10 @@
       ansible.builtin.shell:
         cmd: 'openssl x509 -req -CA {{ rproxy_dir }}/certs/RootCA.crt -CAkey {{ rproxy_dir }}/certs/RootCA.key -in {{ rproxy_dir }}/certs/{{ domain.stdout }}.csr -out {{ rproxy_dir }}/certs/{{ domain.stdout }}.crt -CAcreateserial'
 
+    - name: Create fullchain certificate
+      ansible.builtin.shell:
+        cmd: 'cat {{ rproxy_dir }}/certs/RootCA.crt >> {{ rproxy_dir }}/certs/{{ domain.stdout }}.crt'
+
     - name: Delete csr
       ansible.builtin.file:
         path: "{{ rproxy_dir }}/certs/{{ domain.stdout }}.csr"
diff --git a/roles/rproxy/templates/server.conf.j2 b/roles/rproxy/templates/server.conf.j2
index 22a21af..9910c7f 100644
--- a/roles/rproxy/templates/server.conf.j2
+++ b/roles/rproxy/templates/server.conf.j2
@@ -30,6 +30,6 @@ server {
         proxy_set_header X-Real-IP $remote_addr;
         proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
         proxy_set_header X-Forwarded-Proto $scheme;
-        proxy_pass https://{{ rproxy_service_name }}.{{ domain.stdout }}/;
+        proxy_pass http://{{ rproxy_service_name }}.{{ domain.stdout }}/;
      }
 }