CSRF tokens only seem to be created when accessing site via HTTPS. #1
Description
Either redirect non-HTTPS requests to HTTPS or set up so that the tokens are created even when the site isn't accessed via HTTPS.
{{ message }}
Either redirect non-HTTPS requests to HTTPS or set up so that the tokens are created even when the site isn't accessed via HTTPS.