I think you could achieve this with largely the same method as typical when using Nginx, Caddy, etc.
The main difference is that where you’d usually use ACME/Let’s Encrypt - you’ll likely need to generate your own certs using a took like mkcert. You’ll need to get the CA cert used to generate the SSL certs and install it on any other systems/browsers that will be accessing the apps over https (mkcert will install them for the system you generate from).
“The means are the end,” to quote a line from The Dispossessed by Ursula K Le Guin (anarchist and legendary fiction writer). While I agree that we need most parts if the left for revolution (Andor does a decent job demonstrating this), I’m highly skeptical that lasting change can be built on revolution that is primarily enacted through violence.