refreshTokenLifetime property

The lifetime of a refresh token.

Once this is expired, no new refresh/access token pair can be created from the previous refresh token.

This is checked whenever a rotation takes place and is not encoded in the refresh token.

Defaults to 14 days. Meaning the refresh tokens needs to be used / rotated at least every 14 days to keep the client with working credentials.