User External Account encryption: handle null authdata correctly

Created by: arussellsaw

Right now we will set authdata to an empty string instead of null if we try to encrypt a null authdata, we should fix this to set it to be actually null, and update the OOB migration to recognise null values when checking progress.