Add CSRF protection
Created by Alex on April 18, 2016. Copied from redmine (https://bugs.ligo.org/redmine/issues/4038)
There has been interest expressed in implementing cross-site request forgery (CSRF) protection on GraceDB:
https://docs.djangoproject.com/ja/1.9/ref/csrf/
This isn't a bug or an urgent feature request; I'm just documenting this for later.
To upload designs, you'll need to enable LFS and have an admin enable hashed storage. More information