play.filters.csrf
Construct a new CSRFActionHelper and determine the TokenProvider from configuration.
Get the header token, that is, the token that should be validated.
Tag incoming requests with the token in the header