Firstly that sounds very cool .
I have a setup that works but it may be overkill for solving your specific issue. I am using OpenMRS in the cloud in a stack of apps that want to be available to my users anywhere at port 443 and only with https - which gets around a lot of firewall/port forwarding issues.
So OpenMRS runs on a Debian instance at Google Cloud Platform, it uses tomcat/port 8081 as it it inclined to but only locally, it is firewalled from he outside world, I have a second instance that faces the outside and runs the nginx web server which is simple and fast, it reverse proxies the OpenMRS web server, not as complicated as it sounds. In the process it deals with all the certificates and stuff to run https.
If a similar option is feasible for you I am happy to try to help,