Description
To prevent Cross-Site Request Forgery we need to add a double-submit cookie when sending the POST to launch a new instrument.
Acceptance Criteria
- Validate the double-submit cookie. If the double-submit cookie is invalid, then clear the session cookie and redirect to GET /. Otherwise, continue processing the request.
Required
- Unit/Integration tests
- Testing instructions
- Documentation