Make email addresses optional in external auth if email feature is turned off

Before this change, external auth such as Keystone would fail if a user without an email address tried to login, even if the email feature was disabled.

endpoints/api/user.py

@@ -163,7 +163,6 @@ class User(ApiResource):
       'required': [
         'username',
         'password',
-        'email',
       ],
       'properties': {
         'username': {
@@ -355,9 +354,14 @@ class User(ApiResource):
     if existing_user:
       raise request_error(message='The username already exists')
 
+    if features.MAILING and not user_data.get('email'):
+      raise request_error(message='Email address is required')
+
     try:
       new_user = model.user.create_user(user_data['username'], user_data['password'],
-                                   user_data['email'], auto_verify=not features.MAILING)
+                                        user_data.get('email'),
+                                        auto_verify=not features.MAILING,
+                                        email_required=features.MAILING)
 
       email_address_confirmed = handle_invite_code(invite_code, new_user)
       if features.MAILING and not email_address_confirmed: