feat: allow for permanent refresh_token(s) with config

[bill-robbins-ss]

This is a companion PR for fosite #632

The intention is that this is merged into a new branch (v1.10.7) from v1.10.6; this was branched from the v1.10.6 tag.

• Add new oauth2 configuration property:
  oauth2.refresh_token_rotation.enabled (default true)
• use new config property to set a flag in the context sent to the
  fosite library's refresh token handler

Related issue(s)

#1831

Checklist

• I have read the contributing guidelines.
• I am following the
  contributing code guidelines.
• I have read the security policy.
• I confirm that this pull request does not address a security
  vulnerability. If this pull request addresses a security. vulnerability, I
  confirm that I got green light (please contact
  security@ory.sh) from the maintainers to push
  the changes.
• I have added tests that prove my fix is effective or that my feature
  works.
• I have added or changed the documentation.

Further Comments

I was unsure how the file config.json is generated so I updated it manually. It took me a bit of time to figure out that this file needed an update.

[CLAassistant]

All committers have signed the CLA.

[bill-robbins-ss]

closing in favor of refresh token grace period