mod_autht_jwt: Use unsigned rather than signed one-bit fields. Or their non-zero value should be considered -1 rather than 1.