This will allow people to use TLS client certificates.
We'll need to make a copy of the certificate for oragono. This might also be a good time to migrate all certificate copying and reloading / rehashing / restarting to certbot renewal hooks, instead of daily cronjobs (reloading nginx once a day seems to "leak" worker processes, which can't be shut down once they have a stream connection open).
This will allow people to use TLS client certificates.
We'll need to make a copy of the certificate for oragono. This might also be a good time to migrate all certificate copying and reloading / rehashing / restarting to certbot renewal hooks, instead of daily cronjobs (reloading nginx once a day seems to "leak" worker processes, which can't be shut down once they have a stream connection open).