I’m working on implementing authentication using AuthJS (NextAuth) in a Next.js app. I want the session and CSRF cookies to be accessible across subdomains (e.g., *.localhost:3000) as well as the main domain (localhost:3000).