State string CSRF prevention

You need some sort of session manager or local storage in your app to persist data between reloads.