I have a JWT (from a third-party service) stored in an http-only cookie (issued by my next.js endpoint). The JWT has an exp date that I have control over and I have the http-only cookie that i'm using to store it. How do I handle the exp date for the cookie? Should I set it to the same as the JWT or push it out by a minute?