Cloned from https://bugzilla.redhat.com/show_bug.cgi?id=1195622
Description of problem:

sometimes refreshing External AD UserGroups may throw Invalid authenticity token

Processing by UsergroupsController#edit as */*
Parameters: {"id"=>"2"}
Rendered common/_edit_habtm.html.erb (0.1ms)
Rendered common/_edit_habtm.html.erb (7.0ms)
Rendered usergroups/_external.html.erb (4.4ms)
Rendered usergroups/_external.html.erb (3.8ms)
Rendered usergroups/_external.html.erb (3.7ms)
Rendered usergroups/_form.html.erb (52.9ms)
Rendered usergroups/edit.html.erb (53.4ms)
Completed 200 OK in 70ms (Views: 50.1ms | ActiveRecord: 6.1ms)
Processing by ExternalUsergroupsController#refresh as HTML
Parameters: {"authenticity_token"=>"CvNA8E+Hr2FCsnL3yu3mBpA/pmLqL3YDaFBH3qmv7HA=", "id"=>"foobargroup"}
WARNING: Can't verify CSRF token authenticity
Operation FAILED: ERF42-4995 [Foreman::Exception]: Invalid authenticity token
Rendered common/500.html.erb within layouts/application (6.4ms)
Rendered layouts/base.html.erb (1.5ms)
Completed 500 Internal Server Error in 217ms (Views: 213.8ms | ActiveRecord: 0.0ms)

Version-Release number of selected component (if applicable):
sat6.1 beta snap3

How reproducible:

Steps to Reproduce:
1. create user-group
2. add external AD UserGroup
3.

Actual results:
Invalid authenticity token received, but users info gets fetched from AD

Expected results:
No such error as shown above

Additional info: