Fix side effects with csrf token, add csrf_token to every post form + add ajax (see http://stackoverflow.com/questions/5100539/django-csrf-check-failing-with-an-ajax-post-request), remove django.middleware.csrf.CsrfViewMiddleware ?!
How to create a new set of roles {myroles}
=================================
- create a file named roles_{myroles}.yaml in the fixture directory
- make sure the role with id=1 is a manager
- make sure the role with max id is a single participant with minimum rights