Best Resources for secure websockets

[Peter-Fogarty]

Hi All, I have been going around in circles for two weeks now trying to secure websockets working. I have tried makeing a socket subdomain and redirecting to that in nginx, I have tried just doing the

map $http_upgrade $type {
    default "web";
    websocket "websocket";
}

mapping option to proxy to it. I have tried both of these with self signed certs and with LetsEncrypt certs.....

I am deploying with Envoyer, through to forge, with Laravel 9.... but I keep running around in circles as I bound through the same set of three error messages...
websocket connection to URL failed...
Pusher error: cURL error 52: Empty reply from server
and maybe a couple more......

I am just wondering if people can point me to the definitive, guaranteed to work way to set this thing up securely... I have read a few different blogs, most of them say, hey look how easy it is to setup websockets, we will do secure later.... I want secure valet, and a smooth slide into secure envoy/forge.... all cheatsheets, FAQS, lists of know error messages explained, anything at all, will be welcomed.

Thanks