diff --git a/hedgedoc/defaults/main.yml b/hedgedoc/defaults/main.yml
index 05607dbae9ce0c08505b2f9c3c83a43f3113d2bf..dac3316d5635d20f67d402da2fd1a8f0c1825813 100644
--- a/hedgedoc/defaults/main.yml
+++ b/hedgedoc/defaults/main.yml
@@ -11,6 +11,7 @@ hedgedoc_db:
 hedgedoc_domain: hedgedoc.example.org
 hedgedoc_urlPath: null
 hedgedoc_allowGravatar: false
+hedgedoc_protocolUseSSL: true
 # hedgedoc_csp
 # hedgedoc_cookiePolicy
 # hedgedoc_extra_config
diff --git a/hedgedoc/templates/config.json.j2 b/hedgedoc/templates/config.json.j2
index 9266c33970bd2af041464f09a0c23fbd8fb6f356..0fedafbc34528ddc194139854e574c5d522a6b9a 100644
--- a/hedgedoc/templates/config.json.j2
+++ b/hedgedoc/templates/config.json.j2
@@ -6,6 +6,7 @@
         "loglevel": "info",
         "uploadsPath": "{{ hedgedoc_data_root }}/uploads",
         "allowGravatar": {{ hedgedoc_allowGravatar|to_json }},
+        "protocolUseSSL": {{ hedgedoc_protocolUseSSL|to_json }},
 {% if hedgedoc_csp is defined %}
         "csp": {{ hedgedoc_csp|to_json }},
 {% endif %}
diff --git a/hedgedoc/templates/hedgedoc.service.j2 b/hedgedoc/templates/hedgedoc.service.j2
index 53d676bc46ccf8d7124d68a93049cb3cdecc8c20..c8878a2d256dc3ee9f41392ecfdfb09ab0c96fb9 100644
--- a/hedgedoc/templates/hedgedoc.service.j2
+++ b/hedgedoc/templates/hedgedoc.service.j2
@@ -14,6 +14,7 @@ Environment=NODE_ENV=production
 Restart=always
 RestartSec=2s
 ExecStart=/usr/bin/yarnpkg start --production
+ExecStartPost=/bin/sh -c "while ! test -e ${RUNTIME_DIRECTORY}/hedgedoc.sock; do sleep 2; done; chmod 666 ${RUNTIME_DIRECTORY}/hedgedoc.sock"
 CapabilityBoundingSet=
 NoNewPrivileges=true
 PrivateDevices=true