func DoLogin(user *quimby.User, w http.ResponseWriter, req *http.Request) error { goodPassword, err := user.CheckPassword() if !goodPassword || err != nil { return fmt.Errorf("bad request") } params := req.URL.Query() methods, ok := params["auth"] user.TFAData = []byte{} if ok && methods[0] == "jwt" { setToken(w, user) } else { setCookie(w, user) } return nil }