diff --git a/docker-compose.yml b/docker-compose.yml
index 53103049..5f49548d 100644
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -18,15 +18,23 @@ services:
     labels:
       - "traefik.docker.network=reverse-proxy"
       - "traefik.enable=true"
+      ### <http> ###
+      - "traefik.http.middlewares.nopaque.headers.customrequestheaders.X-Forwarded-Proto=http"
       - "traefik.http.routers.nopaque.entrypoints=web"
-      # Change the next line to match your nopaque domain.
-      - "traefik.http.routers.nopaque.rule=Host(`nopaque.localhost`)"
-      # The next two lines enable HTTPS.
-      # - "traefik.http.routers.nopaque.entrypoints=websecure"
-      # - "traefik.http.routers.nopaque.tls.certresolver=myresolver"
-      # The next two lines add Basic Authentication. More information: https://docs.traefik.io/middlewares/basicauth/
+      - "traefik.http.routers.nopaque.middlewares=nopaque@docker"
+      - "traefik.http.routers.nopaque.rule=Host(`nopaque.localhost`)"  # Change this to match your nopaque domain
+      ### </http> ###
+      ### <https> ###
+      - "traefik.http.middlewares.nopaquesecure.headers.customrequestheaders.X-Forwarded-Proto=https"
+      - "traefik.http.routers.nopaquesecure.entrypoints=websecure"
+      - "traefik.http.routers.nopaquesecure.middlewares=nopaquesecure@docker"
+      - "traefik.http.routers.nopaquesecure.rule=Host(`nopaque.localhost`)"  # Change this to match your nopaque domain
+      - "traefik.http.routers.nopaquesecure.tls=true"
+      ### </https> ###
+      ### <basicauth help="https://docs.traefik.io/middlewares/basicauth/"> ###
       # - "traefik.http.middlewares.nopaque.basicauth.users=name:hashed-password"
-      # - "traefik.http.routers.nopaque.middlewares=nopaque"
+      # - "traefik.http.middlewares.nopaquesecure.basicauth.users=name:hashed-password"
+      ### </basicauth> ###
     networks:
       - default
       - reverse-proxy