Use a confirmation form to avoid CSRF