It is not up to the generic api to decide on CSRF policy. This must be left to client applications
html, body, div, span, applet, object, iframe,
h1, h2, h3, h4, h5, h6, p, blockquote, pre,
a, abbr, acronym, address, big, cite, code,
del, dfn, em, img, ins, kbd, q, s, samp,
small, strike, strong, sub, sup, tt, var,
b, u, i, center,
dl, dt, dd, ol, ul, li,
fieldset, form, label, legend,
table, caption, tbody, tfoot, thead, tr, th, td,
article, aside, canvas, details, embed,
figure, figcaption, footer, header, hgroup,
menu, nav, output, ruby, section, summary,
time, mark, audio, video {
margin: 0;
padding: 0;
border: 0;
font-size: 100%;
font: inherit;
vertical-align: baseline;
}
img a {
border: none;
}
body {
background-color: #F7F6F6;
color: #003050;
}
body, p, h1, h2, h3 {
font-family: 'Open Sans', Helvetica, Arial, sans-serif;
}
h1 {
margin: 5px 0; text-align: center; font-size: 24px;
}
ul.pageindex {
font-size: 20px; padding-left: 25px; list-style: disc;
}
h2 {
font-size: 20px; margin: 5px 0;
}
#LdtPlayer {
float: left;
margin: 10px;
}
#AnnotationsListContainer {
float: left;
width: 400px;
margin: 10px 0;
}