Added csrf defense to minimal template.

Author: rouilj

share/roundup/templates/minimal/html/_generic.index.html

@@ -47,6 +47,8 @@
       tal:attributes="action context/designator">
 <textarea rows="15" style="width:90%" name="rows" tal:content="context/csv"></textarea>
 <br>
+<input name="@csrf" type="hidden"
+	     tal:attributes="value python:utils.anti_csrf_nonce()">
 <input type="hidden" name="@action" value="editCSV">
 <input type="submit" value="Edit Items" i18n:attributes="value">
 </form>

share/roundup/templates/minimal/html/page.html

@@ -94,6 +94,8 @@ <h2><span metal:define-slot="body_title">body title</span></h2>
      i18n:attributes="value"><input class="form-small" size="4"
      type="text" name="@number">
     <input type="hidden" name="@type" value="issue">
+    <input name="@csrf" type="hidden"
+	   tal:attributes="value python:utils.anti_csrf_nonce()">
     <input type="hidden" name="@action" value="show">
    </p>
   </form>
@@ -129,6 +131,8 @@ <h2><span metal:define-slot="body_title">body title</span></h2>
     <b i18n:translate="">Login</b><br>
     <input size="10" name="__login_name"><br>
     <input size="10" type="password" name="__login_password"><br>
+    <input name="@csrf" type="hidden"
+	   tal:attributes="value python:utils.anti_csrf_nonce()">
     <input type="hidden" name="@action" value="Login">
     <input type="checkbox" name="remember" id="remember">
     <label for="remember" i18n:translate="">Remember me?</label><br>

share/roundup/templates/minimal/html/user.register.html

@@ -57,6 +57,8 @@
  <tr>
   <td>&nbsp;</td>
   <td>
+    <input name="@csrf" type="hidden"
+	   tal:attributes="value python:utils.anti_csrf_nonce()">
    <input type="hidden" name=":action" value="register">
    <input type="submit" name="submit" value="Register" i18n:attributes="value">
   </td>