Document CSRF protection (for plugins) #827
Description
Plugin authors need to know that if they want to POST a form they should include this:
<input type="hidden" name="csrftoken" value="{{ csrftoken() }}">{{ message }}
Plugin authors need to know that if they want to POST a form they should include this:
<input type="hidden" name="csrftoken" value="{{ csrftoken() }}">