Application shouldn't crash when authentication fails

This is related to #435 (closed). The application can't crash with a 500 when SMTP authentication fails.

Can be reproduced by changing the SMTP user or password in the packages.yml config (reboot server to take effect). Then test recovery with an existing address email.