fix: correctly handle expired JWE's in cookies

[frederikprijck]

📋 Changes

We ensured JWE's expire in #2040 , this has the side-effect that when an expired token hits the API, it would throw a 500 because it can not encrypt the JWE due to the expiration.

Instead of this, it should act as if there is no active session.

📎 References

#2081

🎯 Testing

1. Obtain an expired JWT
2. Hit the Next.js server wired up with the Auth0 middleware
3. Boom, HTTP 500

[codecov-commenter]

Codecov Report

Attention: Patch coverage is 95.91837% with 2 lines in your changes missing coverage. Please review.

Project coverage is 82.42%. Comparing base (c44432c) to head (be964d6).

Files with missing lines	Patch %	Lines
src/server/session/stateful-session-store.ts	94.11%	1 Missing ⚠️
src/server/session/stateless-session-store.ts	93.75%	1 Missing ⚠️

Additional details and impacted files

@@            Coverage Diff             @@
##             main    #2082      +/-   ##
==========================================
+ Coverage   82.05%   82.42%   +0.37%     
==========================================
  Files          21       21              
  Lines        1967     1992      +25     
  Branches      343      352       +9     
==========================================
+ Hits         1614     1642      +28     
+ Misses        347      344       -3     
  Partials        6        6              

☔ View full report in Codecov by Sentry.
📢 Have feedback on the report? Share it here.

🚀 New features to boost your workflow:

• ❄️ Test Analytics: Detect flaky tests, report on failures, and find test suite problems.
• 📦 JS Bundle Analysis: Save yourself from yourself by tracking and limiting bundle sizes in JS merges.