Use fail method throughout the Auth class

# Conflicts:
#	src/Cms/Auth.php

src/Cms/Auth.php

@@ -154,9 +154,7 @@ class_exists($class) === true &&
 			}
 		} catch (Throwable $e) {
 			// only throw the exception in auth debug mode
-			if ($this->kirby->option('debug') === true) {
-				throw $e;
-			}
+			$this->fail($e);
 		}
 
 		// always set the email, even if the challenge won't be
@@ -562,11 +560,7 @@ public function validatePassword(string $email, string $password)
 
 			// keep throwing the original error in debug mode,
 			// otherwise hide it to avoid leaking security-relevant information
-			if ($this->kirby->option('debug') === true) {
-				throw $e;
-			} else {
-				throw new PermissionException(['key' => 'access.login']);
-			}
+			$this->fail($e, new PermissionException(['key' => 'access.login']));
 		}
 	}
 
@@ -855,13 +849,11 @@ class_exists(static::$challenges[$challenge]) === true &&
 			// avoid leaking whether the user exists
 			usleep(random_int(10000, 2000000));
 
+			$fallback = new PermissionException(['key' => 'access.code']);
+
 			// keep throwing the original error in debug mode,
 			// otherwise hide it to avoid leaking security-relevant information
-			if ($this->kirby->option('debug') === true) {
-				throw $e;
-			} else {
-				throw new PermissionException(['key' => 'access.code']);
-			}
+			$this->fail($e, $fallback);
 		}
 	}