Changed error response in case of CSRF attak to 403 - forbidden instead of 500
Authored by: artyom-beilis 2011-08-21
Parent: [r1917]
Child: [r1919]