# Step 1: set up normal server with HTTPS https://letsencrypt.org/
# Step 2: set up proxy settings as shown below
# Step 3: set custom domain in Intercom Help Center settings

location / {
    # using "set" is important as IP addresses of Intercom servers 
    # changes dynamically. "set" enables nginx to follow dynamic IPs
    set $intercom "https://custom.intercom.help:443"; 
    proxy_set_header Host $host;
    proxy_pass $intercom;
}


# SSL setup - sample based on letsencrypt
listen 443 ssl; # managed by Certbot
ssl_certificate /etc/letsencrypt/live/your-help-site.custom-domain.com-0001/fullchain.pem;   # managed by Certbot
ssl_certificate_key /etc/letsencrypt/live/your-help-site.custom-domain.com-0001/privkey.pem; # managed by Certbot
include /etc/letsencrypt/options-ssl-nginx.conf; # managed by Certbot

# force https 
if ($scheme != "https") {
        return 301 https://$host$request_uri;
} # managed by Certbot