Django requires it so ajax posts to the server require CSRF protection. But CSRF requires cookies to be enabled or django will 404 the request. Assuming that nobody has cookies enabled, how should I handle my ajax posts? I don't want to use the @exempt_csrf decorator for security issues.Django requires it so ajax posts to the server