Using EDXAPP_LMS_ROOT_URL instead of EDXAPP_LMS_ISSUER. This removes the need to define another EDXAPP_* override in our secure variables.