HttpOnly cookie-based authorization setup using Symfony, Api Platform, LexikJWTAuthenticationBundle and JWTRefreshTokenBundle