MG-217 - Separate refresh token from the session cookie

[ianmuchyri]

What type of PR is this?

• [x] Refactor
• [ ] Feature
• [x] Bug Fix
• [x] Optimization
• [ ] Documentation Update
• [ ] Dependency Update

What does this do?

Separates the refresh token from the session since the refresh token is only being used in domain login and refresh token endpoints. This optimizes the size of the session to only carry the details that are required by the other endpoints and makes the Refresh token not accessible to all the endpoints.

Which issue(s) does this PR fix/relate to?

• Related Issue #
• Resolves #217

Have you included tests for your changes?

• [ ] Yes
• [x] No, and this is why:

Did you document any new/modified functionality?

• [ ] Yes
• [x] No, and this is why:

Notes

[ianmuchyri]

Also, update magistrala with path prefix. it failed when path prefix is enabled https://jam.dev/c/3f933649-82df-49b1-9cb7-6a1a321ebf9b

https://github.com/absmach/magistrala/pull/2107