Add support for saving refresh tokens to AWS Secrets Manager

Kubernetes-hosted deployments will need a way to persist refreshed auth tokens without having to spin up an entire database for ~4 strings. AWS Secrets Manager should allow us to safely persist the necessary information.