Asana and Jira Server integration - question about the OAuth token storage and expiration

I was able to setup the Jira Server + Asana integration but I have a couple questions about the OAuth token storage and expiration.

The Admin FAQ in the readme on Github says that the Asana integration stores the tokens in it’s database. Is that in our account?

The Jira Server FAQ says that users are authenticated until OAuth tokens expire or are revoked. When do they expire? Is there a way to control that?

Thank you!