While the addition of Let's Encrypt was a big step in making HTTPS easier to configure for GitLab users, we can still make further improvements. In particular two gaps remain: 1. Enabling LE by default, if the user has specific HTTPS but did not provide their own certificates. 1. Automatically renewing LE without any user intervention. We have further improvements for LE contained in: https://gitlab.com/groups/gitlab-org/-/epics/143