diff --git a/backend/config/settings.py b/backend/config/settings.py
index 5a6992c..b01bd9b 100644
--- a/backend/config/settings.py
+++ b/backend/config/settings.py
@@ -25,9 +25,12 @@ env_file = os.environ.get("PIKU_ENV_FILE", os.path.join(BASE_DIR.parent, ".env")
 if os.path.exists(env_file):
     environ.Env.read_env(env_file, overwrite=False)
 
+# Security Settings
 ALLOWED_HOSTS = env.list("ALLOWED_HOSTS", default=["127.0.0.1"])
 ALLOWED_HOSTS.append(env("FRONTEND_DOMAIN", default="127.0.0.1"))
 ALLOWED_HOSTS.append(env("BACKEND_DOMAIN", default="127.0.0.1"))
+# NOTE: Set to forward https when using reverse proxy
+SECURE_PROXY_SSL_HEADER = ("HTTP_X_FORWARDED_PROTO", "https")
 
 CSRF_TRUSTED_ORIGINS = env.list("CSRF_TRUSTED_ORIGINS", default=[])
 
diff --git a/frontend/Dockerfile b/frontend/Dockerfile
index b9c97b3..b2de877 100644
--- a/frontend/Dockerfile
+++ b/frontend/Dockerfile
@@ -4,15 +4,8 @@ COPY package.json bun.lock* ./
 RUN bun install --frozen-lockfile
 COPY . .
 
-ARG BACKEND_DOMAIN
-ARG BACKEND_PORT
-ARG SSL_ENABLED
 ARG VITE_API_URL
 
-ENV BACKEND_DOMAIN=$BACKEND_DOMAIN
-ENV BACKEND_PORT=$BACKEND_PORT
-ENV SSL_ENABLED=$SSL_ENABLED
-
 ENV VITE_API_URL=$VITE_API_URL
 
 RUN bun run build:prod
@@ -29,4 +22,4 @@ RUN chown -R nginx:nginx /usr/share/nginx/html
 USER nginx
 
 EXPOSE 8080
-ENTRYPOINT ["nginx", "-e", "/tmp/error.log", "-g", "daemon off;"]
\ No newline at end of file
+ENTRYPOINT ["nginx", "-e", "/tmp/error.log", "-g", "daemon off;"]