I'm trying to set up a POC to prove internally that our team can embed a dashboard using Canvas. Because of this, I don't have time to go through all the internal hoopla to install Tableau Server on one of our hosted servers that is accessible to the public internet. So, what I have to do is get Tableau Server installed on my laptop, at home. I'm generating a self-signed certificate. I'm then going to point Heroku at the public IP address that my ISP has assigned to my house. I'm then going to go to my router and set up a NAT entry to that the inbound request from Heroku to my IP address gets routed to my laptop.
So, so far, I have generated the self signed cert and I have tableau server working using SSL. I can log in and browse the server. However, since my cert is self-signed, my browser throws a huge fit about the SSL error. Is this going to be a problem? The documentation states that any browser warnings need to be addressed before proceeding. Since it is self-signed, my browser will never recognize the authority behind the cert. I can always have my browser ignore the warnings, but I have no idea what that sort of error will do to the sparkle app running on Heroku. Do I need to purchase a cert from Verisign or someone like that? Or is using a self-signed cert a reasonable solution and something I should continue pursuing?
Assuming that it is, I have some questions and hopefully I can generate some tips from the community. Since Heroku will be accessing my tableau server via that ISP public IP address, I think that I will need to generate the cert with the common name of "22.214.171.124" (note, not my real IP address). That way, when my router forwards the request to my laptop, the 'name' attached to the request will match the name of the cert and there shouldn't be any errors from that.
Does anyone see any issues from this? Is there something basic that I am missing? Any thoughts would be appreciated. I understand that the solution I am discussing here is not a *production* solution. I just need to be able to show my boss that this is something we can do without too much trouble. Once I demonstrate that, we will be setting up a more traditional Server instance with a true DNS/etc. for our production instance.
Thanks in advance.