LOW-5 Malicious JWT access token can crash a thread of the databroker

[lukasmittag]

use safe addition checked_add in decoder.rs to catch overflows and do not panic. Instead returning ClaimsError.

[rafaeling]

Code looks good, some unit test would be good