[Solved]-Sending CSRF Tokens via Postman


You need to set it as a header in the request, not in the body. X-CSRFToken is the key and the value is CSRF token from the cookie. This will work if you are using an API framework like Tastypie or Django Rest Framework.

If you are authenticating without an API layer you would need to actually attach the cookie or create one with the CSRF token. This post explains it.


Try installing the Postman Interceptor Extension on GoogleChrome. It worked for me.



Works for me :

Set in Postman Header :

KEY : Authorization

Value : Token “Your token”


Leave a comment