Is my understanding of how to use CSRF tokens correct here? I am writing a Todo App with a Vue frontend and a Django rest framework backend.
