bug: invalid api key causes unlimited retries

[dannykopping]

Retries are also executed without any kind of backoff.

We probably shouldn't be retrying at all for invalid API creds.

[ammario]

The backoff failure should be addressed in #548 - the second part of the issue (bad error classification) remains but should be less disastrous with the functioning backoff.