diff --git a/roles/nginx/static/defaults/main.yml b/roles/nginx/static/defaults/main.yml
new file mode 100644
index 0000000..0b68a75
--- /dev/null
+++ b/roles/nginx/static/defaults/main.yml
@@ -0,0 +1,4 @@
+---
+
+# domain: example.com
+root_directory: "{{ global_webservers_directory }}/{{ domain }}"
diff --git a/roles/nginx/static/meta/main.yml b/roles/nginx/static/meta/main.yml
new file mode 100644
index 0000000..4e8a0c7
--- /dev/null
+++ b/roles/nginx/static/meta/main.yml
@@ -0,0 +1,7 @@
+---
+
+allow_duplicates: yes
+
+dependencies:
+  - role: acme/certificate
+  - role: nginx/application
diff --git a/roles/nginx/static/tasks/main.yml b/roles/nginx/static/tasks/main.yml
new file mode 100644
index 0000000..b14e6cd
--- /dev/null
+++ b/roles/nginx/static/tasks/main.yml
@@ -0,0 +1,10 @@
+---
+
+- name: Configure static for {{ domain }}
+  template:
+    src: static.conf
+    dest: "{{ nginx_sites_directory }}/{{ domain }}"
+    owner: root
+    group: root
+    mode: "u=rw,g=r,o=r"
+  notify: reload nginx
diff --git a/roles/nginx/static/templates/static.conf b/roles/nginx/static/templates/static.conf
new file mode 100644
index 0000000..491a48c
--- /dev/null
+++ b/roles/nginx/static/templates/static.conf
@@ -0,0 +1,18 @@
+server {
+  listen 443 ssl http2;
+  listen [::]:443 ssl http2;
+  server_name {{ domain }};
+
+  ssl on;
+  ssl_certificate {{ acme_certificate_location }};
+  ssl_certificate_key {{ acme_key_location }};
+
+  root {{ root_directory }};
+
+  include {{ nginx_snippets_directory }}/https;
+  include {{ nginx_snippets_directory }}/root;
+
+  location / {
+      try_files $uri $uri/ =404;
+  }
+}