add csrf token header to jquery requests

lib/init.php

@@ -317,7 +317,7 @@ if (CurrentUser::hasSession()) {
 	$new_token = Froxlor::genSessionId(20);
 	UI::twig()->addGlobal('csrf_token', $new_token);
 	if ($_SERVER['REQUEST_METHOD'] === 'POST') {
-		$current_token = $_POST['csrf_token'];
+		$current_token = $_POST['csrf_token'] ?? $_SERVER['HTTP_X_CSRF_TOKEN'] ?? null;
 		if ($current_token != CurrentUser::getField('csrf_token')) {
 			Response::dynamicError('CSRF validation failed');
 		}