Allow setting the experation time for refresh tokens. This is important in environments where security is paramount and would allow for user session to automatically expire after a given amount of time.

Currently this can be done with some work via the admin API, but seems to make much more sense as a setting, in line with other idPs such as Cognito1 and Auth02