Thank you for your reply.
I do not agree that it ideally should be a DELETE request. DELETE
should only be used when you're actually deleting the resource
specified by the URI. And since it does not make sense to say, that we
are deleting the users/sign_out resource, I think DELETE should not be
used. POST would be more appropriate.
Have a look at the description of DELETE here:
logout. I can now understand why you chose GET.
without it enabled), and for these sites I'd personally prefer if I
could somehow customize Devise to make sign out a POST request. I'd
then setup the logout link using a technique like the ones I've
For example: <a href="/users/sign_out" class="post">Logout</a>
If you feel this is too much of a "special case" to include it in
Devise, I can understand that.
Ideally, I'd rather write something like <a href="/users/sign_out"
think we'll have to wait a little while before browsers allow us to do