Allow external applications to destroy sessions without requiring a CSRF token
Attach a file by drag & drop or click to upload
