redo ant csrf token

ensure anti csrf token and session is only created after login

Sean/views/inusers.js

@@ -1,6 +1,5 @@
 
 
-
 $(document).ready(function () {
   $('#resetPasswordLink').on('click', function () {
     $('#resetPasswordFormContainer').show();
@@ -429,5 +428,7 @@ $('#resetPasswordForm').on('submit', function (e) {
     });
 });
 
+
+