The one endpoint that changes state on a GET, instead of linking to /logout we should just put a simple form in the sidebar for logging out, that way only POST requests have any side effects
The one endpoint that changes state on a GET, instead of linking to /logout we should just put a simple form in the sidebar for logging out, that way only POST requests have any side effects