Send data to the client API, so cookie can be decrypted and used for request auth.
If the server-side proxy refreshed the tokens (e.g. because the stored access
token was expired), the response will include an X-Tokens-Refreshed: true
header. In that case we re-sync the in-memory TokenManager from the cookie so
subsequent client-side calls use the fresh token.
Send data to the client API, so cookie can be decrypted and used for request auth.
If the server-side proxy refreshed the tokens (e.g. because the stored access token was expired), the response will include an
X-Tokens-Refreshed: trueheader. In that case we re-sync the in-memory TokenManager from the cookie so subsequent client-side calls use the fresh token.