So I'm currently deploying my app via Heroku. I noticed that in my-app-name.herokuapp.com has HTTPS, so if I do config.force_ssl = true in my environments/production.rb it seems like I have wildcare SSL, right?
Now I'm using DNSimple to get my actual name - call it my-app-name.com. Which currently resolves to http://my-app-name.com, but really is just a namespace for .
So I guess I'm wondering, given that I'm technically still hitting my herokuapp, cam I covered by the wildcard SSL certificate?
I just went through this same scenario. The certificate you see in your herokuapp is the wildcard certificate issued for *.herokuapp.com.
If you want to secure a custom domain name http://my-app-name.com, you would need to purchase and install your own wildcard certificate via DNSimple.