migrate example from chi to stdlib + routegroup

- replace go-chi/chi with go-pkgz/routegroup v1.6.0
- update router initialization to use routegroup.New(http.NewServeMux())
- use Go 1.22+ method+path syntax for route definitions
- update fileServer to use stdlib patterns with {file...} wildcard
- mount auth handlers using http.StripPrefix
- update README with routegroup as primary example, chi in collapsible section

Author: paskal

.github/workflows/ci-v2.yml

@@ -22,20 +22,21 @@ jobs:
           sudo systemctl stop mono-xsp4.service || true
           sudo systemctl disable mono-xsp4.service || true
 
+      - name: checkout
+        uses: actions/checkout@v4
+
       - name: set up go
         uses: actions/setup-go@v5
         with:
           go-version: "1.24"
+          cache-dependency-path: v2/go.sum
         id: go
 
       - name: launch mongodb
         uses: wbari/start-mongoDB@v0.2
         with:
           mongoDBVersion: "6.0"
 
-      - name: checkout
-        uses: actions/checkout@v4
-
       - name: build and test
         run: |
           go test -timeout=60s -v -race -p 1 -covermode=atomic -coverprofile=$GITHUB_WORKSPACE/profile.cov ./...

.github/workflows/ci.yml

@@ -22,6 +22,9 @@ jobs:
           sudo systemctl stop mono-xsp4.service || true
           sudo systemctl disable mono-xsp4.service || true
 
+      - name: checkout
+        uses: actions/checkout@v4
+
       - name: set up go
         uses: actions/setup-go@v5
         with:
@@ -33,9 +36,6 @@ jobs:
         with:
           mongoDBVersion: "6.0"
 
-      - name: checkout
-        uses: actions/checkout@v4
-
       - name: build the example
         working-directory: _example
         run: |

.github/workflows/codeql-analysis.yml

@@ -39,7 +39,7 @@ jobs:
 
     # Initializes the CodeQL tools for scanning.
     - name: Initialize CodeQL
-      uses: github/codeql-action/init@v2
+      uses: github/codeql-action/init@v3
       with:
         languages: ${{ matrix.language }}
         # If you wish to specify custom queries, you can do so here or in a config file.
@@ -53,4 +53,4 @@ jobs:
         TZ: "America/Chicago"
 
     - name: Perform CodeQL Analysis
-      uses: github/codeql-action/analyze@v2
+      uses: github/codeql-action/analyze@v3

README.md

@@ -68,7 +68,53 @@ The PR demonstrates how to handle migration for a production application with ex
 
 ## Usage
 
-Example with chi router:
+Example with [routegroup](https://github.com/go-pkgz/routegroup) (stdlib-based router):
+
+```go
+func main() {
+	// define options
+	options := auth.Opts{
+		SecretReader: token.SecretFunc(func(id string) (string, error) { // secret key for JWT
+			return "secret", nil
+		}),
+		TokenDuration:  time.Minute * 5, // token expires in 5 minutes
+		CookieDuration: time.Hour * 24,  // cookie expires in 1 day and will enforce re-login
+		Issuer:         "my-test-app",
+		URL:            "http://127.0.0.1:8080",
+		AvatarStore:    avatar.NewLocalFS("/tmp"),
+		Validator: token.ValidatorFunc(func(_ string, claims token.Claims) bool {
+			// allow only dev_* names
+			return claims.User != nil && strings.HasPrefix(claims.User.Name, "dev_")
+		}),
+	}
+
+	// create auth service with providers
+	service := auth.NewService(options)
+	service.AddProvider("github", "<Client ID>", "<Client Secret>")   // add github provider
+	service.AddProvider("facebook", "<Client ID>", "<Client Secret>") // add facebook provider
+
+	// retrieve auth middleware
+	m := service.Middleware()
+
+	// setup http server
+	router := routegroup.New(http.NewServeMux())
+	router.HandleFunc("GET /open", openRouteHandler) // open api
+	router.Group().Route(func(r *routegroup.Bundle) {
+		r.Use(m.Auth)
+		r.HandleFunc("GET /private", protectedRouteHandler) // protected api
+	})
+
+	// setup auth routes
+	authRoutes, avaRoutes := service.Handlers()
+	router.Handle("/auth/", http.StripPrefix("/auth", authRoutes))   // add auth handlers
+	router.Handle("/avatar/", http.StripPrefix("/avatar", avaRoutes)) // add avatar handler
+
+	log.Fatal(http.ListenAndServe(":8080", router))
+}
+```
+
+<details>
+<summary>Example with chi router</summary>
 
 ```go
 func main() {
@@ -109,6 +155,7 @@ func main() {
 	log.Fatal(http.ListenAndServe(":8080", router))
 }
 ```
+</details>
 
 ## Middleware
 

_example/go.mod

@@ -5,11 +5,11 @@ go 1.24.0
 replace github.com/go-pkgz/auth/v2 => ../v2
 
 require (
-	github.com/go-chi/chi/v5 v5.2.3
 	github.com/go-oauth2/oauth2/v4 v4.5.4
 	github.com/go-pkgz/auth/v2 v2.0.0-00010101000000-000000000000
 	github.com/go-pkgz/lgr v0.12.1
 	github.com/go-pkgz/rest v1.20.4
+	github.com/go-pkgz/routegroup v1.6.0
 	github.com/golang-jwt/jwt/v5 v5.3.0
 	golang.org/x/oauth2 v0.33.0
 )

_example/go.sum

@@ -12,8 +12,6 @@ github.com/fatih/structs v1.1.0 h1:Q7juDM0QtcnhCpeyLGQKyg4TOIghuNXrkL32pHAUMxo=
 github.com/fatih/structs v1.1.0/go.mod h1:9NiDSp5zOcgEDl+j00MP/WkGVPOlPRLejGD8Ga6PJ7M=
 github.com/gavv/httpexpect v2.0.0+incompatible h1:1X9kcRshkSKEjNJJxX9Y9mQ5BRfbxU5kORdjhlA1yX8=
 github.com/gavv/httpexpect v2.0.0+incompatible/go.mod h1:x+9tiU1YnrOvnB725RkpoLv1M62hOWzwo5OXotisrKc=
-github.com/go-chi/chi/v5 v5.2.3 h1:WQIt9uxdsAbgIYgid+BpYc+liqQZGMHRaUwp0JUcvdE=
-github.com/go-chi/chi/v5 v5.2.3/go.mod h1:L2yAIGWB3H+phAw1NxKwWM+7eUH/lU8pOMm5hHcoops=
 github.com/go-oauth2/oauth2/v4 v4.5.4 h1:YjI0tmGW8oxVhn9QSBIxlr641QugWrJY5UWa6XmLcW0=
 github.com/go-oauth2/oauth2/v4 v4.5.4/go.mod h1:BXiOY+QZtZy2ewbsGk2B5P8TWmtz/Rf7ES5ZttQFxfQ=
 github.com/go-pkgz/lgr v0.12.1 h1:8GVfG2rSARq3Eaj5PP158rtBR2LHVGkwioIkQBGbvKg=
@@ -22,6 +20,8 @@ github.com/go-pkgz/repeater v1.2.0 h1:oJFvjyKdTDd5RCzpzxlzYIZFFj6Zfl17rE1aUfu6Uj
 github.com/go-pkgz/repeater v1.2.0/go.mod h1:vypP6xamA53MFmafnGUucqOmALKk36xgKu2hSG73LHM=
 github.com/go-pkgz/rest v1.20.4 h1:8ufcP1IqoDhCvIFdXPtvyX4HSS16SM6THBe2a6L0/kg=
 github.com/go-pkgz/rest v1.20.4/go.mod h1:2/LEZGndSxpVvExsMn48AjUgiTn6kILqjpoaRnl62JU=
+github.com/go-pkgz/routegroup v1.6.0 h1:44XHZgF6JIIldRlv+zjg6SygULASmjifnfIQjwCT0e4=
+github.com/go-pkgz/routegroup v1.6.0/go.mod h1:Pmu04fhgWhRtBMIJ8HXppnnzOPjnL/IEPBIdO2zmeqg=
 github.com/golang-jwt/jwt/v5 v5.3.0 h1:pv4AsKCKKZuqlgs5sUmn4x8UlGa0kEVt/puTpKx9vvo=
 github.com/golang-jwt/jwt/v5 v5.3.0/go.mod h1:fxCRLWMO43lRc8nhHWY6LGqRcf+1gQWArsqaEUEa5bE=
 github.com/golang/snappy v1.0.0 h1:Oy607GVXHs7RtbggtPBnr2RmDArIsAefDwvrdWvRhGs=

_example/main.go

@@ -12,7 +12,6 @@ import (
 	"strings"
 	"time"
 
-	"github.com/go-chi/chi/v5"
 	"github.com/go-oauth2/oauth2/v4/errors"
 	"github.com/go-oauth2/oauth2/v4/generates"
 	"github.com/go-oauth2/oauth2/v4/manage"
@@ -22,6 +21,7 @@ import (
 	log "github.com/go-pkgz/lgr"
 	"github.com/go-pkgz/rest"
 	"github.com/go-pkgz/rest/logger"
+	"github.com/go-pkgz/routegroup"
 	"github.com/golang-jwt/jwt/v5"
 	"golang.org/x/oauth2"
 
@@ -49,7 +49,7 @@ func main() {
 		AvatarStore:       avatar.NewLocalFS("/tmp/demo-auth-service"), // stores avatars locally
 		AvatarResizeLimit: 200,                                         // resizes avatars to 200x200
 		ClaimsUpd: token.ClaimsUpdFunc(func(claims token.Claims) token.Claims { // modify issued token
-			if claims.User != nil && claims.User.Name == "dev_admin" { // set attributes for dev_admin
+			if claims.User != nil && claims.User.Name == "dev_admin" {          // set attributes for dev_admin
 				claims.User.SetAdmin(true)
 				claims.User.SetStrAttr("custom-key", "some value")
 			}
@@ -185,18 +185,18 @@ func main() {
 	m := service.Middleware()
 
 	// setup http server
-	router := chi.NewRouter()
+	router := routegroup.New(http.NewServeMux())
 	// add some external middlewares from go-pkgz/rest
 	router.Use(rest.AppInfo("auth-example", "umputun", "1.0.0"), rest.Ping)
 	router.Use(logger.New(logger.Log(log.Default()), logger.WithBody, logger.Prefix("[INFO]")).Handler) // log all http requests
-	router.Get("/open", openRouteHandler)                                                               // open page
-	router.Group(func(r chi.Router) {
+	router.HandleFunc("GET /open", openRouteHandler)                                                    // open page
+	router.Group().Route(func(r *routegroup.Bundle) {
 		r.Use(m.Auth)
 		r.Use(m.UpdateUser(middleware.UserUpdFunc(func(user token.User) token.User {
 			user.SetStrAttr("some_attribute", "attribute value")
 			return user
 		})))
-		r.Get("/private_data", protectedDataHandler) // protected api
+		r.HandleFunc("GET /private_data", protectedDataHandler) // protected api
 	})
 
 	// static files under ~/web
@@ -206,8 +206,8 @@ func main() {
 
 	// setup auth routes
 	authRoutes, avaRoutes := service.Handlers()
-	router.Mount("/auth", authRoutes)  // add auth handlers
-	router.Mount("/avatar", avaRoutes) // add avatar handler
+	router.Handle("/auth/", http.StripPrefix("/auth", authRoutes))    // add auth handlers
+	router.Handle("/avatar/", http.StripPrefix("/avatar", avaRoutes)) // add avatar handler
 
 	httpServer := &http.Server{
 		Addr:              ":8080",
@@ -240,9 +240,8 @@ func anonymousAuthProvider() provider.CredCheckerFunc {
 	}
 }
 
-// FileServer conveniently sets up a http.FileServer handler to serve static files from a http.FileSystem.
-// Borrowed from https://github.com/go-chi/chi/blob/master/_examples/fileserver/main.go
-func fileServer(r chi.Router, path string, root http.FileSystem) {
+// fileServer conveniently sets up a http.FileServer handler to serve static files from a http.FileSystem.
+func fileServer(r *routegroup.Bundle, path string, root http.FileSystem) {
 	if strings.ContainsAny(path, "{}*") {
 		panic("FileServer does not permit URL parameters.")
 	}
@@ -251,14 +250,11 @@ func fileServer(r chi.Router, path string, root http.FileSystem) {
 	fs := http.StripPrefix(path, http.FileServer(root))
 
 	if path != "/" && path[len(path)-1] != '/' {
-		r.Get(path, http.RedirectHandler(path+"/", http.StatusMovedPermanently).ServeHTTP)
+		r.Handle("GET "+path, http.RedirectHandler(path+"/", http.StatusMovedPermanently))
 		path += "/"
 	}
-	path += "*"
 
-	r.Get(path, func(w http.ResponseWriter, r *http.Request) {
-		fs.ServeHTTP(w, r)
-	})
+	r.Handle("GET "+path+"{file...}", fs)
 }
 
 // GET /open returns a page available without authorization