Fix csrf-tokens

config/packages/csrf.yaml

@@ -1,11 +0,0 @@
-# Enable stateless CSRF protection for forms and logins/logouts
-framework:
-  form:
-    csrf_protection:
-      token_id: submit
-  
-  csrf_protection:
-    stateless_token_ids:
-      - submit
-      - authenticate
-      - logout

config/packages/framework.yaml

@@ -4,7 +4,9 @@ framework:
   
   # Note that the session will be started ONLY if you read or write from it.
   session: true
-  
+  form:
+    csrf_protection:
+      enabled: true
   #esi: true
   #fragments: true