fix genkey returns RWPX key

internal/handler/keys.go

@@ -1,21 +1,80 @@
 package handler
-import ("encoding/json"; "fmt"; "math/rand"; "net/http"; "os"; "sync")
-type KeyData struct { Name string; Key string; Requests int; Tokens int }
-type Store struct { mu sync.Mutex; Keys map[string]*KeyData }
+
+import (
+	"encoding/json"
+	"math/rand"
+	"net/http"
+	"os"
+	"sync"
+)
+
+type KeyData struct {
+	Name     string `json:"name"`
+	Key      string `json:"key"`
+	Requests int    `json:"requests"`
+	Tokens   int    `json:"tokens"`
+}
+
+type Store struct {
+	mu   sync.Mutex
+	Keys map[string]*KeyData `json:"keys"`
+}
+
 var s = &Store{Keys: make(map[string]*KeyData)}
 const p = "/data/keys.json"
-func init() { os.MkdirAll("/data", 0755); f, _ := os.ReadFile(p); json.Unmarshal(f, &s.Keys); if s.Keys == nil { s.Keys = make(map[string]*KeyData) } }
-func save() { b, _ := json.Marshal(s.Keys); os.WriteFile(p, b, 0644) }
-func TrackUsage(k string, t int) { s.mu.Lock(); defer s.mu.Unlock(); if kd, ok := s.Keys[k]; ok { kd.Requests++; kd.Tokens += t; save() } }
-func CheckAndTrack(k string, t int) (bool, string) { if k == "free" { return true, "" }; s.mu.Lock(); defer s.mu.Unlock(); if _, ok := s.Keys[k]; ok { return true, "" }; return false, "Key invalida" }
-func GenerateKey(n string) string { k := fmt.Sprintf("RWPX-%d", rand.Intn(999999)); s.mu.Lock(); defer s.mu.Unlock(); s.Keys[k] = &KeyData{Name: n, Key: k}; save(); return k }
-func HandleGenKey(w http.ResponseWriter, r *http.Request) { n := r.FormValue("name"); if n == "" { n = "User" }; GenerateKey(n); fmt.Fprint(w, "OK") }
-func HandleStats(w http.ResponseWriter, r *http.Request) { s.mu.Lock(); defer s.mu.Unlock(); w.Header().Set("Content-Type", "application/json"); m := make(map[string]interface{}); for _, v := range s.Keys { m[v.Name] = map[string]int{"tokens": v.Tokens} }; json.NewEncoder(w).Encode(map[string]interface{}{"keys": m}) }
+
+func init() {
+	os.MkdirAll("/data", 0755)
+	f, _ := os.ReadFile(p)
+	json.Unmarshal(f, &s)
+	if s.Keys == nil { s.Keys = make(map[string]*KeyData) }
+}
+
+func save() {
+	b, _ := json.MarshalIndent(s, "", "  ")
+	os.WriteFile(p, b, 0644)
+}
+
+func CheckAndTrack(k string, t int) (bool, string) {
+	if k == "free" { return true, "" }
+	s.mu.Lock(); defer s.mu.Unlock()
+	if kd, ok := s.Keys[k]; ok { kd.Requests++; kd.Tokens += t; save(); return true, "" }
+	return false, "Key invalida"
+}
+
+func GenerateKey(n string) string {
+	const chars = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789"
+	b := make([]byte, 8)
+	for i := range b { b[i] = chars[rand.Intn(len(chars))] }
+	k := "RWPX-" + string(b)
+	s.mu.Lock(); defer s.mu.Unlock()
+	s.Keys[k] = &KeyData{Name: n, Key: k}
+	save()
+	return k
+}
+
+func HandleGenKey(w http.ResponseWriter, r *http.Request) {
+	n := r.FormValue("name")
+	if n == "" { n = "User" }
+	k := GenerateKey(n)
+	w.Header().Set("Content-Type", "application/json")
+	resp := map[string]string{"key": k, "name": n}
+	json.NewEncoder(w).Encode(resp)
+}
+
+func HandleStats(w http.ResponseWriter, r *http.Request) {
+	s.mu.Lock(); defer s.mu.Unlock()
+	w.Header().Set("Content-Type", "application/json")
+	json.NewEncoder(w).Encode(s)
+}
+
 func HandleSecretReveal(w http.ResponseWriter, r *http.Request) {
-    if r.URL.Query().Get("token") != "rowlet2026" { w.WriteHeader(403); return }
-    s.mu.Lock(); defer s.mu.Unlock()
-    w.Header().Set("Content-Type", "text/html")
-    fmt.Fprint(w, "<body style='background:#000;color:#0f0;font-family:monospace;'>")
-    for _, k := range s.Keys { fmt.Fprintf(w, "<p>%s: %s</p>", k.Name, k.Key) }
-    fmt.Fprint(w, "</body>")
+	if r.URL.Query().Get("token") != "rowlet2026" { w.WriteHeader(403); return }
+	s.mu.Lock(); defer s.mu.Unlock()
+	w.Header().Set("Content-Type", "text/html")
+	w.Write([]byte("<body style='background:#000;color:#0f0;font-family:monospace;'>"))
+	for _, k := range s.Keys {
+		w.Write([]byte("<p>" + k.Name + ": " + k.Key + "</p>"))
+	}
+	w.Write([]byte("</body>"))
 }