Having a POST'able API and Django's CSRF Middleware

Question

I have a Django webapp that has both a front-end, web-accessible component and an API that is accessed by a desktop client. However, now with the new CSRF middleware compon

Answer 1

How about just splitting off a view(s) for your desktop client and decorating them with csrf_exempt?