permission implementation has to be client-side and not in the generic api package + deleted duplicate migration
from rest_framework.authentication import SessionAuthentication
class CsrfExemptSessionAuthentication(SessionAuthentication):
"""
Session authentication class to use with Renkan client, as it does not provide a csrf token
"""
def enforce_csrf(self, request):
return