demo site doesn't work with logged in users #146
Description
If I am logged as a user (via the /admin log-in form), I can't save a form.
Django DRF enforces the CSRF token to be sent.
ref: http://stackoverflow.com/a/26639895
We need to pass the CSRF token in the AJAX query.