Thank you @rg305, reason why the lock symbol is at the address bar is because you have accepted to proceed anyway from the option given by the browser. A cautious visitor may not want to proceed as (s)he may think it is a dubious website and in respond to your question below:
-
Are there load-balanced systems inline? NO, Load Balancing. I only have reverse proxy to my backend https api server running on the same server.
-
Are you only seeing this problem from one specific network? All networks see that error even when you change IP. You won't see the invalid certificate again once your browser accepted to proceed anyway and you will think your application is working properly until visitors started complaining.
Why I have much issue with the certificate is that it is preventing my backend server to be reached from the browser because of ERR_CERT_COMMON_NAME_INVALID .
Cross Origin Requests keeps blocking the request to reach the https backend server despite the fact that I have allowed cross origin with cors package in my backend.
Thank you