Should we extent refresh token expiry time while rotation or access token renew? If not user must be kicked out after this expiry time.
