also swollow you should use tls with a certificate letsencrypt, it's not hard to get it working, particularly assuming you're using nginx as a proxy to something else
or not, you know, whatever
it just takes like five minutes and it's pretty satisfying to see that little green lock on ur own site imo