Change the default session key for CSRF token (Lack.Middleware.Csrf).

Keyword cannot be stored in RDBMS and a string would be better.

src/middleware/csrf.lisp

@@ -15,7 +15,7 @@
 
 (defparameter *lack-middleware-csrf*
   (lambda (app &key (block-app #'return-400) one-time
-            (session-key :csrf-token))
+            (session-key "_csrf_token"))
     (lambda (env)
       (let ((*csrf-session-key* session-key))
         (block nil