enforceIp property
If true (default), then JWT's will be considered invalid if used from a different IP than the first user's it was issued to.
This is a security provision. Even if a user's JWT is stolen, a remote attacker will not be able to impersonate anyone.
Implementation
final bool enforceIp;