We will always include that ‘iss’ query parameter when redirecting to your application from the Okta dashboard.
Question is, does the application work correctly for the user when they are redirected? Like I mentioned in my previous post, unless you have some SSO logic in place, these users will not have tokens until your application initiates the OAuth flow