Current standard CSRF functionality is default, with the distributed CSRF tokens able to be enabled through distributed mode flag. Additionally, adding persistence DTO to your default datasource and adding the subsequent table to your database is required. Some extra code is required to enable this functionality on a non-default datasource.
Ported some code for centralized date time functionalities to standardize access to zoned datetimes.