Automagically secure your Service with help of Caddy webserver and letsencrypt.
Have a Caddyfile
proxy / localhost:8080
To secure a service running on port 8080.
Run Caddy with options -agree -email firstname.lastname@example.org
-agree -email email@example.com
PS: There is also a chef cookbook i wrote for caddy to ease things up