Not so easy, this time.

This page sends the same request to SSDA that exploits VCWA. But this time, the Django CSRFMiddleware stops the request before the view function gets called.

Pop open your developer tools and check out the response to your POST.