Topic: question about making a mobile app

We have a rails website, and we are currently developing an iphone app.

For example, we have an action 'mobile_login', but it gets rejected because the csrf_token doesn't exist.  I could easily disable this on the website, but I was curious what is the best strategy in handling this?