* Add /.well-known location to port 80 server directive
* Make production certificate notify to reload nginx, rather than run
reload every time.
* Add missing chain resource to acme_certificate calls
* Switch warning message to use ruby_block instead of ruby, so it isn't
run every time