Refresh access token hook.
Defaults to hook which ensures that in case device is present in both context and session metadata,
their name and type needs to be equal.
Length of the refresh token.
Because base64 encoding is used underneath, this is not the string length.
For example, to create a token of length 24, you want a byte length of 18.
Value of this option should not be lower than 15.
Important! To prevent brute forcing create long enough session id's.
TTL if the refresh token.
Storage where refresh tokens will be placed.
Cache where invalid access tokens will be stored.