From 12f89b3c2d7a5212eb63f36fadf1b8fd3aaeb933 Mon Sep 17 00:00:00 2001
From: Greg Price <gprice@edx.org>
Date: Mon, 9 Feb 2015 12:13:35 -0500
Subject: [PATCH] Make registration endpoint CSRF exempt

---
 common/djangoapps/student/views.py | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/common/djangoapps/student/views.py b/common/djangoapps/student/views.py
index 774cf23168..9480cabb1b 100644
--- a/common/djangoapps/student/views.py
+++ b/common/djangoapps/student/views.py
@@ -1370,7 +1370,7 @@ def _do_create_account(post_vars, extended_profile=None):
     return (user, profile, registration)
 
 
-@ensure_csrf_cookie
+@csrf_exempt
 def create_account(request, post_override=None):  # pylint: disable-msg=too-many-statements
     """
     JSON call to create new edX account.