Well it depends on the design of the app and the data being POSTed, of course. I'd not serve a file upload form nor process it without proper authentication, unless I'd purpose being flooded with SPAM of all sorts.

But the requirement "allow POSTing first, authenticate later" looks a bit weird to me, I have to confess.