diff --git a/hosts/nixos/HandlerOne/default.nix b/hosts/nixos/HandlerOne/default.nix
index 440d3e3..a83956b 100644
--- a/hosts/nixos/HandlerOne/default.nix
+++ b/hosts/nixos/HandlerOne/default.nix
@@ -133,6 +133,7 @@
       "netbox.wanderingcrow.net" = {};
       "notify.wanderingcrow.net" = {};
       "logs.wanderingcrow.net" = {};
+      "psychal.link" = {};
       # Sites I host for someone else
       "swgalaxyproject.com" = {};
       "nnsbluegrass.com" = {};
diff --git a/modules/services/matrix/default.nix b/modules/services/matrix/default.nix
index 5e8becd..bc980db 100644
--- a/modules/services/matrix/default.nix
+++ b/modules/services/matrix/default.nix
@@ -8,9 +8,11 @@
     "${inputs.nixpkgs-unstable}/nixos/modules/services/matrix/tuwunel.nix"
   ];
 
-  sops.secrets."matrix/registration_token" = {};
+  sops.secrets."matrix/registration_token" = {
+    owner = "tuwunel";
+  };
 
-  services.matrix.tuwunel = {
+  services.matrix-tuwunel = {
     enable = true;
     package = pkgs.unstable.matrix-tuwunel;
     stateDirectory = "tuwunel";
@@ -29,4 +31,19 @@
       };
     };
   };
+
+  services.nginx = {
+    enable = true;
+    recommendedProxySettings = true;
+    virtualHosts = {
+      "psychal.link" = {
+        forceSSL = true;
+        useACMEHost = "psychal.link";
+        locations."/" = {
+          proxyPass = "http://unix:/run/tuwunel/tuwunel.sock";
+          proxyWebsockets = true;
+        };
+      };
+    };
+  };
 }