diff --git a/app/controllers/login_controller.rb b/app/controllers/login_controller.rb
index c9644244..119f79c3 100644
--- a/app/controllers/login_controller.rb
+++ b/app/controllers/login_controller.rb
@@ -7,7 +7,7 @@ class LoginController < ApplicationController
   before_filter :login_optional
   before_filter :get_current_user
 
-  protect_from_forgery :except => :check_expiry
+  protect_from_forgery :except => [:check_expiry, :login]
 
   if ( SITE_CONFIG['authentication_schemes'].include? 'cas')
     # This will allow the user to view the index page without authentication