The csrf token can now safely be used in a GET request as weel, due to the absence of characters that will be URL encoded.
Authored by: keess 2017-04-20
Parent: [r2995]
Child: [r2997]