> If you feel confident that you have good security practices on the server that hosts your database, then encrypting the tokens might be an unnecessary complication.

This is very bad advice. You should always hash, not encrypt, tokens. Your server "security" be damned.

Tokens are essentially passwords, and should be treated as such.