[Koha] CSRF tokens are not getting validated