diff --git a/helmchart/single-sign-on/values.yaml b/helmchart/single-sign-on/values.yaml
index 39d0df90a88c6994e75899f62443ca417b7fb01d..3cba336d64fff2aed852ba6b2373f6547da965c9 100644
--- a/helmchart/single-sign-on/values.yaml
+++ b/helmchart/single-sign-on/values.yaml
@@ -205,7 +205,7 @@ hydra:
 # Install login panel
 login:
   image:
-    << : &IMAGE_DEFAULTS_SSO { tag: "loginpanel", pullPolicy: "Always" }
+    << : &IMAGE_DEFAULTS_SSO { tag: "116-allow-password-change-without-ssl-public-endpoint-in-startup-job", pullPolicy: "Always" }
     repository: "open.greenhost.net:4567/stackspin/single-sign-on/login"
   podAnnotations: {}
   db:
diff --git a/login/kratos.py b/login/kratos.py
index f9940ade303b383e4d4865d33602974fe4ae8fcf..12a7585360d4b9ec1e39db6f0e5f55583ea7ee45 100644
--- a/login/kratos.py
+++ b/login/kratos.py
@@ -241,6 +241,7 @@ class KratosUser():
             # We override the default Redirect handler with our custom handler to
             # be able to catch the cookies.
             opener = urllib.request.build_opener(RedirectFilter)
+            print(f"Opening: {recovery_url}")
             opener.open(recovery_url)
         # If we do not have a 2xx status, urllib throws an error, as we "stopped"
         # at our redirect, we expect a 3xx status
@@ -249,9 +250,9 @@ class KratosUser():
                 cookies = req.headers.get_all('Set-Cookie')
                 url =  req.headers.get('Location')
             else:
-                raise BackendError('Unable to fetch recovery link') from req
+                raise BackendError(f'Unable to fetch recovery link {recovery_url}') from req
         else:
-            raise BackendError('Unable to fetch recovery link')
+            raise BackendError(f'Unable to fetch recovery link: {recovery_url}')
 
         # Step 2: Extract cookies and data for next step. We expect to have an
         #         authorized session now. We need the cookies for followup calls