Reverts to changeset 435, and just add {% csrf_token %} to template forgot_pw.html, since CSRF protection seems to be only here (surely because of django.contrib.auth.views).
# django helpers collections
from django.conf import settings
from django.core.urlresolvers import reverse
def absolute_reverse(view_id, args):
return settings.SITE_URL + reverse(view_id, args=args)