Hacker News new | past | comments | ask | show | jobs | submit login

Virus scanners and other tools like google will fetch any urls in emails to check their target. So having a direct unsubscribe action behind GET of a link breaks your email list as Gmail will unsubscribe everyone



There must be some additional logic behind that, because I see this regularly behind GET requests and I'm not being unsubscribed from everything.


Is this why they always have a confirm button? That's been a pet-peeve annoyance of mine.


It’s a basic part of HTTP. If you follow a link, that’s a GET request. GET requests are supposed to be safe. A user may not have initiated the action if it’s a GET. If you want something that implies “yes, the user made an intentional choice to take action”, then use another verb, like POST.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: