it('401 if auth token is wrong', function(done) {
    request(api)
    .post('/emails')
    .set('x-authorization-token', '123myapikey')
    .auth('incorrect', 'credentials')