We need to have the active flag on user keys to make sure
the client doesn't use the inactive user keys.
The flags is already kept by the core model, we need to formard to the mail domain
user keys.
MAILAND-2725
We need to enforce that the decrypted tokens of migrated keys
returned by the server have the right format.
They must be 32bytes of randomness encoded in hexadecimal form.
CRYPTO-27