If this is checked, token verification failures will be tolerated. Meaning, the user is still logged in even if the token could not be verified.

Use this only for initial deployment/testing/whatever - do not use this in production.