Fix CSRF token bug for old-style batch params form

tailbone/templates/batches/params.mako

@@ -28,6 +28,7 @@
 <div class="form">
 
   ${h.form(request.get_referrer())}
+  ${h.csrf_token(request)}
   ${h.hidden('provider', value=provider)}
   ${h.hidden('params', value='True')}