Force NGINX to use ACME certs instead of self signed for LuCI

Hey there!

I'm taking advice from a previous thread and diversifying the number of questions I have for my setup into multiple threads.

At the moment I have installed LuCI with SSL and NGINX support through its metapackage, and after asking to set the domain certificates to the Let's Encrypt acquired ones, I'm still unable to load LuCI with them reporting to the browser.

Ideally, I'd like for the LAN-only UWSGI instance to be serving the certificates while still using UCI for NGINX configuration, with the end result being pointing /cgi-bin to a subdomain of the wildcard certificate (, but the first step would be to get the certificate showing up properly.

Is there any way of achieving this while using UCI?