django csrf token with js

我正在尝试将带有JS的表单添加到HTML页面（就像加载页面时的html令牌{%csrf_token%}一样）：

table += "<td><form action='' method='post'>";
table += "<input type='submit' value='Delete?' />";
table += "</form></td>;
$("#tbody").append(table);

我的问题是我收到CSRF验证错误：

Forbidden (403)
CSRF verification failed. Request aborted.
Help
Reason given for failure:
    CSRF token missing or incorrect.

我尝试添加自定义 CSRF 令牌：

var buf = new Uint8Array(1);
window.crypto.getRandomValues(buf); 
table += "<input type='hidden' name='csrfmiddlewaretoken' value='" + buf[0] + "'>";

但我仍然收到错误。

我的JS文件中还有以下代码（我从Django网站获得的 - 我不知道它实际上是如何工作的..）：

//enable csrf post ajax
//This function gets cookie with a given name
function getCookie(name) {
 var cookieValue = null;
 if (document.cookie && document.cookie != '') {
     var cookies = document.cookie.split(';');
     for (var i = 0; i < cookies.length; i++) {
         var cookie = jQuery.trim(cookies[i]);
         // Does this cookie string begin with the name we want?
         if (cookie.substring(0, name.length + 1) == (name + '=')) {
             cookieValue = decodeURIComponent(cookie.substring(name.length + 1));
         break;
     }
 }
 }
 return cookieValue;
}
var csrftoken = getCookie('csrftoken');
/*
The functions below will create a header with csrftoken
*/
function csrfSafeMethod(method) {
 // these HTTP methods do not require CSRF protection
 return (/^(GET|HEAD|OPTIONS|TRACE)$/.test(method));
}
$.ajaxSetup({ 
 beforeSend: function(xhr, settings) {
     if (!csrfSafeMethod(settings.type) && !this.crossDomain && 
        (!(/^http:.*/.test(settings.url) || /^https:.*/.test(settings.url)))) {
     // Only send the token to relative URLs i.e. locally.
     xhr.setRequestHeader("X-CSRFToken", getCookie('csrftoken'));
     }
 } 
});

有没有办法像我尝试的那样使用 js 添加 CSRF 令牌，或者不能？