[cms] Add proposal token validation for line items

[alexlyp]

There have been some recent instances of users entering bad info into proposal token which has caused problems for pi-gui.

Those issues will be addressed, but this will ensure only proper SHA256 proposal tokens may be entered.

[xaur]

Will anything bad happen if a non-existing (illegal) but SHA256-looking token is submitted?