CSRF is short for Cross Site Request Forgery. So your ar app is not passing the restrictions set by django.
You need to pass in the CSRF middleware token with your post request.
You would need to make a request first to call csrf.py => get_token()
Edit: Ok So just read you have the token
Try
As the poster mentions you could be accessing the site non-securely so either with a self signed ssl certificate or even lack of any that might be triggering further problems.
Also important step, are you passing it as csrfmiddlewaretoken in your post request?