Enable forgery protection in Production

### What's the task?

Add `protect_from_forgery` in the [application_controller.rb](../blob/main/app-rails/app/controllers/application_controller.rb)
For reference, here's the [Action controller protect from forgery documentation](https://api.rubyonrails.org/classes/ActionController/RequestForgeryProtection/ClassMethods.html). 