If you want the quick and dirty that still keeps your system secure but somewhat automates a lot of this, there's many videos on YouTube about Cloudflare Tunnels, and none probably specific on using one with Ignition, but one guy who usually describes things well and tries to keep things "fun" is Network Chuck.
His video is older and uses Google Domains (which doesn't exist anymore).
Here's a more recent video and you'd just need to buy a domain name through Cloudflare and it would make things really easy.
When you set up the tunnel you'll need to follow the instructions on Cloudflare for your OS (or find a video showing you based on your OS).
@pturmel's suggestions are good to learn all the ins and outs of how this works as you'll get to play and learn all the building blocks. There are some other tools you could try as stepping stones to bridge the gap between a complete DIY and the Cloudflare tunnels too.
Nginx Proxy Manager (NPM) if you know Docker and want a more GUI interface for setting up Nginx with support for LetsEncrypt SSL certificates built-in: https://nginxproxymanager.com
Another reverse proxy that works on Windows even with LetsEncrypt support built-in that I recently played with (and worked well in my testing) is Zoraxy: https://zoraxy.arozos.com
For the reverse proxy, Phil suggested Nginx, and I'm a big fan of HAProxy. They're configured differently, but Nginx is primarly a web server that can also do reverse proxying, but HAProxy is really only a reverse proxy and load balancer: https://www.haproxy.org
Using these without a VPN connected to a publicly exposed server in the cloud will require you to open/forward port 443 (and possibly 80 depending on how you use LetsEncrypt verification), but definitely explore your options and learn. Ask questions. Don't open/forward 8088 or 8043 directly to Ignition.