Fix security vulnerability in issue-pension-credential contract

When both auth-check and verified are set to "false", the conditional comparison If I verify 'verified' is equal to 'auth-check' evaluates to true because "false" == "false", which means the credential gets signed even though the citizen isn't authenticated.