From 3b317c4d0f43f7183fbe9c174261869bf6dc5df2 Mon Sep 17 00:00:00 2001
From: soonduck-dreams <nederileni99heits@gmail.com>
Date: Mon, 17 Nov 2025 13:06:54 +0900
Subject: [PATCH 1/6] =?UTF-8?q?chore:=20Kakao=20=EB=A1=9C=EA=B7=B8?=
 =?UTF-8?q?=EC=9D=B8=20API=20=EA=B2=BD=EB=A1=9C=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../apu/saerok_admin/infra/auth/BackendAuthClient.java    | 7 +++----
 .../saerok_admin/infra/auth/BackendAuthClientTest.java    | 8 ++++----
 2 files changed, 7 insertions(+), 8 deletions(-)

diff --git a/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java b/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
index bf820c7..a9f9ab4 100644
--- a/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
+++ b/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
@@ -25,7 +25,6 @@
 public class BackendAuthClient {
 
     private static final Logger log = LoggerFactory.getLogger(BackendAuthClient.class);
-    private static final String ADMIN_CHANNEL = "admin";
 
     private final RestClient authRestClient;
     private final List<String> missingPrefixSegments;
@@ -39,10 +38,10 @@ public BackendAuthClient(
     }
 
     public LoginSuccess kakaoLogin(String authorizationCode) {
-        KakaoLoginPayload payload = new KakaoLoginPayload(authorizationCode, ADMIN_CHANNEL);
+        KakaoLoginPayload payload = new KakaoLoginPayload(authorizationCode);
         log.info("Requesting Kakao login from backend with authorization code length {}", authorizationCode == null ? 0 : authorizationCode.length());
         ResponseEntity<BackendAccessTokenResponse> response = authRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, "auth", "kakao", "login"))
+                .uri(uriBuilder -> buildUri(uriBuilder, "admin", "auth", "kakao", "login"))
                 .contentType(MediaType.APPLICATION_JSON)
                 .body(payload)
                 .retrieve()
@@ -112,7 +111,7 @@ private URI buildUri(UriBuilder builder, String... segments) {
         return builder.build();
     }
 
-    private record KakaoLoginPayload(String authorizationCode, String channel) {
+    private record KakaoLoginPayload(String authorizationCode) {
     }
 
     private record AppleLoginPayload(String authorizationCode) {
diff --git a/src/test/java/apu/saerok_admin/infra/auth/BackendAuthClientTest.java b/src/test/java/apu/saerok_admin/infra/auth/BackendAuthClientTest.java
index 5bec7c7..0195e41 100644
--- a/src/test/java/apu/saerok_admin/infra/auth/BackendAuthClientTest.java
+++ b/src/test/java/apu/saerok_admin/infra/auth/BackendAuthClientTest.java
@@ -42,7 +42,7 @@ void tearDown() {
 
     @Test
     void kakaoLoginSendsRequestIncludingApiPrefix() {
-        wireMockServer.stubFor(post(urlEqualTo("/api/v1/auth/kakao/login"))
+        wireMockServer.stubFor(post(urlEqualTo("/api/v1/admin/auth/kakao/login"))
                 .withRequestBody(equalToJson("{" +
                         "\"authorizationCode\":\"auth-code\"," +
                         "\"channel\":\"admin\"" +
@@ -60,7 +60,7 @@ void kakaoLoginSendsRequestIncludingApiPrefix() {
         assertThat(loginSuccess.accessToken()).isEqualTo("backend-token");
         assertThat(loginSuccess.refreshCookies()).contains("refreshToken=abc; Path=/; HttpOnly");
 
-        wireMockServer.verify(postRequestedFor(urlEqualTo("/api/v1/auth/kakao/login")));
+        wireMockServer.verify(postRequestedFor(urlEqualTo("/api/v1/admin/auth/kakao/login")));
     }
 
     @Test
@@ -73,7 +73,7 @@ void kakaoLoginAddsMissingPrefixWhenBaseUrlOmitsIt() {
                 "http://localhost:" + wireMockServer.port(),
                 "/api/v1"
         ));
-        wireMockServer.stubFor(post(urlEqualTo("/api/v1/auth/kakao/login"))
+        wireMockServer.stubFor(post(urlEqualTo("/api/v1/admin/auth/kakao/login"))
                 .withRequestBody(equalToJson("{" +
                         "\"authorizationCode\":\"auth-code\"," +
                         "\"channel\":\"admin\"" +
@@ -88,6 +88,6 @@ void kakaoLoginAddsMissingPrefixWhenBaseUrlOmitsIt() {
         BackendAuthClient.LoginSuccess loginSuccess = client.kakaoLogin("auth-code");
 
         assertThat(loginSuccess.accessToken()).isEqualTo("backend-token");
-        wireMockServer.verify(postRequestedFor(urlEqualTo("/api/v1/auth/kakao/login")));
+        wireMockServer.verify(postRequestedFor(urlEqualTo("/api/v1/admin/auth/kakao/login")));
     }
 }

From fe0e5de0e85bf922dc2a52cd124022cc47bc3eb3 Mon Sep 17 00:00:00 2001
From: soonduck-dreams <nederileni99heits@gmail.com>
Date: Mon, 17 Nov 2025 15:59:32 +0900
Subject: [PATCH 2/6] =?UTF-8?q?chore:=20=EA=B4=80=EB=A6=AC=EC=9E=90=20?=
 =?UTF-8?q?=EA=B6=8C=ED=95=9C=20=EB=B0=8F=20=EC=97=AD=ED=95=A0=20=EA=B4=80?=
 =?UTF-8?q?=EB=A6=AC=20=EB=A6=AC=ED=8C=A9=ED=86=A0=EB=A7=81,=20=ED=8D=BC?=
 =?UTF-8?q?=EB=AF=B8=EC=85=98=20=EA=B8=B0=EB=B0=98=20=EA=B2=80=EC=A6=9D=20?=
 =?UTF-8?q?=EB=A1=9C=EC=A7=81=20=EC=A0=81=EC=9A=A9=20=EB=B0=8F=20=EA=B4=80?=
 =?UTF-8?q?=EB=A0=A8=20=EC=BD=94=EB=93=9C=20=EC=88=98=EC=A0=95?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../infra/CurrentAdminClient.java             | 105 +++++++++++++-----
 .../infra/auth/BackendAuthClient.java         |   6 +-
 .../apu/saerok_admin/web/AdController.java    |  36 +++---
 .../web/view/CurrentAdminProfile.java         |  56 +++++++++-
 src/main/resources/templates/ads/list.html    |  21 ++--
 .../templates/fragments/_navbar.html          |  10 +-
 .../resources/templates/reports/detail.html   |  36 +++---
 .../resources/templates/reports/list.html     |   3 +-
 8 files changed, 187 insertions(+), 86 deletions(-)

diff --git a/src/main/java/apu/saerok_admin/infra/CurrentAdminClient.java b/src/main/java/apu/saerok_admin/infra/CurrentAdminClient.java
index 58d2a88..3831466 100644
--- a/src/main/java/apu/saerok_admin/infra/CurrentAdminClient.java
+++ b/src/main/java/apu/saerok_admin/infra/CurrentAdminClient.java
@@ -6,7 +6,6 @@
 import java.util.LinkedHashSet;
 import java.util.List;
 import java.util.Locale;
-import java.util.Map;
 import java.util.Optional;
 import java.util.Set;
 import org.slf4j.Logger;
@@ -22,12 +21,6 @@
 public class CurrentAdminClient {
 
     private static final Logger log = LoggerFactory.getLogger(CurrentAdminClient.class);
-    private static final Map<String, String> ROLE_DESCRIPTION_MAP = Map.of(
-            "ADMIN_VIEWER", "열람자",
-            "ADMIN_EDITOR", "운영자"
-    );
-    private static final String UNKNOWN_ROLE_DESCRIPTION = "알 수 없는 관리자 권한";
-
     private final RestClient saerokRestClient;
     private final List<String> missingPrefixSegments;
     private final LoginSessionManager loginSessionManager;
@@ -57,14 +50,19 @@ public Optional<CurrentAdminProfile> fetchCurrentAdminProfile() {
                 return Optional.empty();
             }
 
-            List<String> roles = response.roles() != null ? List.copyOf(response.roles()) : List.of();
+            List<String> backendRoles = response.roles() != null ? List.copyOf(response.roles()) : List.of();
+            AdminRoleInfo roleInfo = fetchAdminRoleInfo();
+            List<String> roleCodes = !roleInfo.roleCodes().isEmpty()
+                    ? roleInfo.roleCodes()
+                    : normalizeRoleCodes(backendRoles);
 
             return Optional.of(new CurrentAdminProfile(
                     response.nickname(),
                     response.email(),
                     response.profileImageUrl(),
-                    toRoleDescriptions(roles),
-                    normalizeRoleCodes(roles)
+                    roleInfo.roleDisplayNames(),
+                    roleCodes,
+                    roleInfo.permissionKeys()
             ));
         } catch (RestClientResponseException exception) {
             log.warn(
@@ -96,30 +94,79 @@ private record BackendUserProfileResponse(
     ) {
     }
 
-    private List<String> toRoleDescriptions(List<String> roles) {
-        if (roles == null || roles.isEmpty()) {
-            return List.of();
-        }
-
-        Set<String> descriptions = new LinkedHashSet<>();
-        for (String role : roles) {
-            if (!StringUtils.hasText(role)) {
-                continue;
-            }
+    private AdminRoleInfo fetchAdminRoleInfo() {
+        try {
+            AdminMyRoleResponse response = saerokRestClient.get()
+                    .uri(uriBuilder -> buildUri(uriBuilder, "admin", "role", "me"))
+                    .retrieve()
+                    .body(AdminMyRoleResponse.class);
 
-            String normalized = role.toUpperCase(Locale.ROOT);
-            String description = ROLE_DESCRIPTION_MAP.get(normalized);
-            if (description != null) {
-                descriptions.add(description);
-                continue;
+            if (response == null) {
+                return AdminRoleInfo.empty();
             }
 
-            if (normalized.startsWith("ADMIN_")) {
-                descriptions.add(UNKNOWN_ROLE_DESCRIPTION);
-            }
+            List<String> roleDisplayNames = response.roles() == null
+                    ? List.of()
+                    : response.roles().stream()
+                            .map(RoleSummaryResponse::displayName)
+                            .filter(StringUtils::hasText)
+                            .map(String::trim)
+                            .toList();
+            List<String> roleCodes = response.roles() == null
+                    ? List.of()
+                    : response.roles().stream()
+                            .map(RoleSummaryResponse::code)
+                            .filter(StringUtils::hasText)
+                            .toList();
+            List<String> permissionKeys = response.permissions() == null
+                    ? List.of()
+                    : response.permissions().stream()
+                            .map(PermissionSummaryResponse::key)
+                            .filter(StringUtils::hasText)
+                            .toList();
+            return new AdminRoleInfo(roleDisplayNames, roleCodes, permissionKeys);
+        } catch (RestClientResponseException exception) {
+            log.warn(
+                    "Failed to fetch current admin roles. status={}, body={}",
+                    exception.getStatusCode(),
+                    exception.getResponseBodyAsString(),
+                    exception
+            );
+        } catch (RestClientException exception) {
+            log.warn("Failed to fetch current admin roles.", exception);
         }
+        return AdminRoleInfo.empty();
+    }
+
+    private record AdminMyRoleResponse(
+            List<RoleSummaryResponse> roles,
+            List<PermissionSummaryResponse> permissions
+    ) {
+    }
 
-        return descriptions.isEmpty() ? List.of() : List.copyOf(descriptions);
+    private record RoleSummaryResponse(
+            Long id,
+            String code,
+            String displayName,
+            String description,
+            Boolean builtin
+    ) {
+    }
+
+    private record PermissionSummaryResponse(
+            String key,
+            String description
+    ) {
+    }
+
+    private record AdminRoleInfo(
+            List<String> roleDisplayNames,
+            List<String> roleCodes,
+            List<String> permissionKeys
+    ) {
+        private static AdminRoleInfo empty() {
+            return new AdminRoleInfo(List.of(), List.of(), List.of());
+        }
     }
 
     private List<String> normalizeRoleCodes(List<String> roles) {
diff --git a/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java b/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
index a9f9ab4..551c0c4 100644
--- a/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
+++ b/src/main/java/apu/saerok_admin/infra/auth/BackendAuthClient.java
@@ -111,7 +111,11 @@ private URI buildUri(UriBuilder builder, String... segments) {
         return builder.build();
     }
 
-    private record KakaoLoginPayload(String authorizationCode) {
+    private record KakaoLoginPayload(String authorizationCode, String channel) {
+
+        private KakaoLoginPayload(String authorizationCode) {
+            this(authorizationCode, "admin");
+        }
     }
 
     private record AppleLoginPayload(String authorizationCode) {
diff --git a/src/main/java/apu/saerok_admin/web/AdController.java b/src/main/java/apu/saerok_admin/web/AdController.java
index 510d4c2..2e2c442 100644
--- a/src/main/java/apu/saerok_admin/web/AdController.java
+++ b/src/main/java/apu/saerok_admin/web/AdController.java
@@ -58,6 +58,8 @@
 public class AdController {
 
     private static final Logger log = LoggerFactory.getLogger(AdController.class);
+    private static final String PERMISSION_ADMIN_AD_WRITE = "ADMIN_AD_WRITE";
+    private static final String PERMISSION_ADMIN_SLOT_DELETE = "ADMIN_SLOT_DELETE";
 
     private final AdminAdClient adminAdClient;
     private final Clock clock;
@@ -168,7 +170,7 @@ public String index(@RequestParam(name = "tab", defaultValue = "ads") String tab
     public String newAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                             Model model,
                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
             return "redirect:/ads";
@@ -194,7 +196,7 @@ public String createAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfil
                            @RequestParam(name = "objectKey") String objectKey,
                            @RequestParam(name = "contentType") String contentType,
                            RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
             return "redirect:/ads?tab=ads";
@@ -229,7 +231,7 @@ public String editAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProf
                              @RequestParam("id") Long adId,
                              Model model,
                              RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
             return "redirect:/ads";
@@ -282,7 +284,7 @@ public String updateAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfil
                            @RequestParam(name = "objectKey", required = false) String objectKey,
                            @RequestParam(name = "contentType", required = false) String contentType,
                            RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
             return "redirect:/ads?tab=ads";
@@ -317,7 +319,7 @@ public String updateAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfil
     public String deleteAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                            @RequestParam("id") Long adId,
                            RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고를 삭제할 권한이 없습니다.");
             return "redirect:/ads?tab=ads";
@@ -344,7 +346,7 @@ public String deleteAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfil
     public String newSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                               Model model,
                               RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -369,7 +371,7 @@ public String createSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProf
                              @RequestParam("fallbackRatio") Double fallbackRatioPercent,
                              @RequestParam("ttlSeconds") Integer ttlSeconds,
                              RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -405,7 +407,7 @@ public String editSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminPr
                                @RequestParam("id") Long slotId,
                                Model model,
                                RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -472,7 +474,7 @@ public String updateSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProf
             failureRedirect = "redirect:/ads/slots/edit?id=" + slotId;
         }
 
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
             return successRedirect;
@@ -507,7 +509,7 @@ public String updateSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProf
     public String deleteSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                              @RequestParam("id") Long slotId,
                              RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_SLOT_DELETE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 삭제할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -535,7 +537,7 @@ public String newPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAdm
                                    @RequestParam(name = "slotId", required = false) Long preselectedSlotId,
                                    Model model,
                                    RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -567,7 +569,7 @@ public String createPlacement(@ModelAttribute("currentAdminProfile") CurrentAdmi
                                   @RequestParam("weight") Short weight,
                                   @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
                                   RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -600,7 +602,7 @@ public String editPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAd
                                     @RequestParam("id") Long placementId,
                                     Model model,
                                     RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -663,7 +665,7 @@ public String updatePlacement(@ModelAttribute("currentAdminProfile") CurrentAdmi
                                   @RequestParam("weight") Short weight,
                                   @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
                                   RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -694,7 +696,7 @@ public String updatePlacement(@ModelAttribute("currentAdminProfile") CurrentAdmi
     public String deletePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                                   @RequestParam("id") Long placementId,
                                   RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 삭제할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -722,7 +724,7 @@ public String togglePlacement(@ModelAttribute("currentAdminProfile") CurrentAdmi
                                   @RequestParam("id") Long placementId,
                                   @RequestParam("enabled") boolean enabled,
                                   RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
             redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태를 변경할 권한이 없습니다.");
             return "redirect:/ads?tab=schedule";
@@ -770,7 +772,7 @@ public String togglePlacement(@ModelAttribute("currentAdminProfile") CurrentAdmi
     @ResponseBody
     public ResponseEntity<?> presignImage(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                                           @RequestBody Map<String, String> payload) {
-        if (!currentAdminProfile.isAdminEditor()) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
             return ResponseEntity.status(HttpStatus.FORBIDDEN)
                     .body(Map.of("message", "이미지 업로드 권한이 없습니다."));
         }
diff --git a/src/main/java/apu/saerok_admin/web/view/CurrentAdminProfile.java b/src/main/java/apu/saerok_admin/web/view/CurrentAdminProfile.java
index d87da27..f03b2dd 100644
--- a/src/main/java/apu/saerok_admin/web/view/CurrentAdminProfile.java
+++ b/src/main/java/apu/saerok_admin/web/view/CurrentAdminProfile.java
@@ -10,8 +10,9 @@ public record CurrentAdminProfile(
         String nickname,
         String email,
         String profileImageUrl,
-        List<String> roleDescriptions,
-        List<String> roleCodes
+        List<String> roleDisplayNames,
+        List<String> roleCodes,
+        List<String> permissionKeys
 ) {
 
     private static final String DEFAULT_PROFILE_IMAGE_URL =
@@ -23,12 +24,13 @@ public record CurrentAdminProfile(
         nickname = StringUtils.hasText(nickname) ? nickname : DEFAULT_NICKNAME;
         email = StringUtils.hasText(email) ? email : DEFAULT_EMAIL;
         profileImageUrl = StringUtils.hasText(profileImageUrl) ? profileImageUrl : DEFAULT_PROFILE_IMAGE_URL;
-        roleDescriptions = roleDescriptions != null ? List.copyOf(roleDescriptions) : List.of();
+        roleDisplayNames = normalizeRoleDisplayNames(roleDisplayNames);
         roleCodes = normalizeRoleCodes(roleCodes);
+        permissionKeys = normalizePermissionKeys(permissionKeys);
     }
 
-    public boolean hasRoleDescriptions() {
-        return !roleDescriptions.isEmpty();
+    public boolean hasRoleDisplayNames() {
+        return !roleDisplayNames.isEmpty();
     }
 
     public boolean hasRole(String roleCode) {
@@ -48,7 +50,15 @@ public boolean isAdminViewerOnly() {
     }
 
     public static CurrentAdminProfile placeholder() {
-        return new CurrentAdminProfile(null, null, null, List.of(), List.of());
+        return new CurrentAdminProfile(null, null, null, List.of(), List.of(), List.of());
+    }
+
+    public boolean hasPermission(String permissionKey) {
+        if (!StringUtils.hasText(permissionKey)) {
+            return false;
+        }
+        String normalized = permissionKey.toUpperCase(Locale.ROOT);
+        return permissionKeys.contains(normalized);
     }
 
     private static List<String> normalizeRoleCodes(List<String> rawRoles) {
@@ -67,4 +77,38 @@ private static List<String> normalizeRoleCodes(List<String> rawRoles) {
         }
         return List.copyOf(normalized);
     }
+
+    private static List<String> normalizePermissionKeys(List<String> rawKeys) {
+        if (rawKeys == null || rawKeys.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String key : rawKeys) {
+            if (!StringUtils.hasText(key)) {
+                continue;
+            }
+            normalized.add(key.toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private static List<String> normalizeRoleDisplayNames(List<String> names) {
+        if (names == null || names.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String name : names) {
+            if (!StringUtils.hasText(name)) {
+                continue;
+            }
+            normalized.add(name.trim());
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
 }
diff --git a/src/main/resources/templates/ads/list.html b/src/main/resources/templates/ads/list.html
index e45fbfc..f1b955a 100644
--- a/src/main/resources/templates/ads/list.html
+++ b/src/main/resources/templates/ads/list.html
@@ -67,7 +67,7 @@ <h2 class="h6 mb-1 fw-semibold">광고</h2>
             <div class="card card-elevated ads-panel">
                 <div class="card-header card-header-tight d-flex justify-content-between align-items-center">
                     <h2 class="h6 mb-0 fw-semibold">광고 목록</h2>
-                    <div th:if="${currentAdminProfile.isAdminEditor()}">
+                    <div th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
                         <a class="btn btn-sm btn-primary" th:href="@{/ads/new}">
                             <i class="bi bi-plus-circle me-1"></i>
                             <span>새 광고 등록</span>
@@ -109,7 +109,7 @@ <h2 class="h6 mb-0 fw-semibold">광고 목록</h2>
                                 <div class="ads-card__meta-label">메모</div>
                                 <div class="text-break" th:text="${#strings.isEmpty(ad.memo()) ? '-' : ad.memo()}">메모</div>
                             </div>
-                            <div class="ads-card__actions" th:if="${currentAdminProfile.isAdminEditor()}">
+                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
                                 <a class="btn btn-sm btn-outline-primary"
                                    th:href="@{/ads/edit(id=${ad.id()})}">수정</a>
                                 <form th:action="@{/ads/delete}" method="post" class="ads-card__action-form">
@@ -162,16 +162,19 @@ <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
                             광고 위치 설명
                         </p>
                     </div>
-                    <div th:if="${currentAdminProfile.isAdminEditor()}" class="d-flex flex-wrap gap-2">
+                    <div class="d-flex flex-wrap gap-2"
+                         th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') or currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE')}">
                         <a class="btn btn-sm btn-outline-primary"
+                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}"
                            th:href="@{/ads/placements/new(slotId=${group.slotId()})}">
                             <i class="bi bi-plus-circle me-1"></i>
                             <span>새 스케줄 등록</span>
                         </a>
                         <a class="btn btn-sm btn-outline-secondary"
-                           th:if="${group.slotId() != null}"
+                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') and group.slotId() != null}"
                            th:href="@{/ads/slots/edit(id=${group.slotId()})}">광고 위치 설정</a>
-                        <form th:if="${group.slotId() != null}" th:action="@{/ads/slots/delete}" method="post" class="d-inline">
+                        <form th:if="${currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE') and group.slotId() != null}"
+                              th:action="@{/ads/slots/delete}" method="post" class="d-inline">
                             <input type="hidden" name="id" th:value="${group.slotId()}">
                             <button type="submit" class="btn btn-sm btn-outline-danger"
                                     th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
@@ -203,7 +206,7 @@ <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
                                 </div>
                             </div>
                             <div class="ads-card__actions"
-                                 th:if="${currentAdminProfile.isAdminEditor() && group.slotId() != null && group.slotCode() != null}">
+                                 th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') && group.slotId() != null && group.slotCode() != null}">
                                 <button type="button" class="btn btn-sm btn-outline-primary"
                                         data-bs-toggle="modal"
                                         data-bs-target="#fallbackRatioModal"
@@ -264,7 +267,7 @@ <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
                                 <div class="ads-card__meta-label">진행 기간</div>
                                 <div class="fw-semibold" th:text="${placement.periodLabel()}">2025.01.01 ~ 2025.01.31</div>
                             </div>
-                            <div class="ads-card__actions" th:if="${currentAdminProfile.isAdminEditor()}">
+                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
                                 <form th:if="${placement.canToggle()}" th:action="@{/ads/placements/toggle}"
                                       method="post" class="ads-card__action-form">
                                     <input type="hidden" name="id" th:value="${placement.id()}">
@@ -290,7 +293,7 @@ <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
                 </div>
             </div>
 
-            <div class="mt-3" th:if="${currentAdminProfile.isAdminEditor()}">
+            <div class="mt-3" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
                 <a class="btn btn-outline-primary w-100" th:href="@{/ads/slots/new}">
                     <i class="bi bi-plus-circle me-1"></i>
                     <span>새 광고 위치 추가</span>
@@ -299,7 +302,7 @@ <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
         </div>
 
         <div class="modal fade" id="fallbackRatioModal" tabindex="-1" aria-hidden="true"
-             th:if="${currentAdminProfile.isAdminEditor()}">
+             th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
             <div class="modal-dialog modal-dialog-centered">
                 <div class="modal-content">
                     <form th:action="@{/ads/slots/edit}" method="post" class="needs-validation" novalidate>
diff --git a/src/main/resources/templates/fragments/_navbar.html b/src/main/resources/templates/fragments/_navbar.html
index fae1ebe..a4475a9 100644
--- a/src/main/resources/templates/fragments/_navbar.html
+++ b/src/main/resources/templates/fragments/_navbar.html
@@ -19,8 +19,8 @@ <h2 class="h5 mb-0 fw-semibold" th:text="${pageTitle}">페이지 제목</h2>
                     <div class="ms-2 text-start d-none d-lg-block">
                         <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
                         <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
-                        <div class="text-muted small" th:if="${currentAdminProfile.hasRoleDescriptions()}"
-                             th:text="${#strings.listJoin(currentAdminProfile.roleDescriptions(), ', ')}">읽기 전용 관리자</div>
+                        <div class="text-muted small" th:if="${currentAdminProfile.hasRoleDisplayNames()}"
+                             th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</div>
                     </div>
                 </button>
                 <ul class="dropdown-menu dropdown-menu-end shadow">
@@ -28,13 +28,13 @@ <h2 class="h5 mb-0 fw-semibold" th:text="${pageTitle}">페이지 제목</h2>
                         <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
                         <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
                     </li>
-                    <li th:if="${currentAdminProfile.hasRoleDescriptions()}">
+                    <li th:if="${currentAdminProfile.hasRoleDisplayNames()}">
                         <span class="dropdown-item-text small text-muted d-flex align-items-start">
                             <i class="bi bi-shield-check text-primary me-2 mt-1"></i>
-                            <span th:text="${#strings.listJoin(currentAdminProfile.roleDescriptions(), ', ')}">읽기 전용 관리자</span>
+                            <span th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</span>
                         </span>
                     </li>
-                    <li th:unless="${currentAdminProfile.hasRoleDescriptions()}">
+                    <li th:unless="${currentAdminProfile.hasRoleDisplayNames()}">
                         <span class="dropdown-item-text small text-muted">권한 정보가 없습니다.</span>
                     </li>
                     <li><hr class="dropdown-divider"></li>
diff --git a/src/main/resources/templates/reports/detail.html b/src/main/resources/templates/reports/detail.html
index d88a906..eef06b2 100644
--- a/src/main/resources/templates/reports/detail.html
+++ b/src/main/resources/templates/reports/detail.html
@@ -139,24 +139,24 @@ <h3 class="h6 mb-0 fw-semibold">댓글 목록</h3>
                     <div class="card-body card-body-comfy">
                         <h3 class="h6 fw-semibold mb-3">처리 옵션</h3>
                         <div class="d-flex flex-wrap flex-gap-sm">
-                            <div class="d-flex flex-wrap flex-gap-sm">
-                                <a class="btn btn-outline-secondary d-inline-flex align-items-center gap-1"
-                                   th:href="@{/reports}" data-bs-toggle="tooltip" data-bs-placement="top" title="목록 보기">
-                                    <i class="bi bi-list"></i>
-                                    <span>목록 보기</span>
-                                </a>
-                                <form th:action="@{${detail.ignoreAction()}}" method="post" class="m-0">
-                                    <input type="hidden" name="redirect" value="detail">
-                                    <button type="submit"
-                                            class="btn btn-outline-primary d-inline-flex align-items-center gap-1"
-                                            th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
-                                            data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
-                                        <i class="bi bi-slash-circle"></i>
-                                        <span>신고 무시</span>
-                                    </button>
-                                </form>
-                            </div>
-                            <form th:action="@{${detail.deleteAction()}}" method="post" class="m-0">
+                            <a class="btn btn-outline-secondary d-inline-flex align-items-center gap-1"
+                               th:href="@{/reports}" data-bs-toggle="tooltip" data-bs-placement="top" title="목록 보기">
+                                <i class="bi bi-list"></i>
+                                <span>목록 보기</span>
+                            </a>
+                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
+                                  th:action="@{${detail.ignoreAction()}}" method="post" class="m-0">
+                                <input type="hidden" name="redirect" value="detail">
+                                <button type="submit"
+                                        class="btn btn-outline-primary d-inline-flex align-items-center gap-1"
+                                        th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
+                                        data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
+                                    <i class="bi bi-slash-circle"></i>
+                                    <span>신고 무시</span>
+                                </button>
+                            </form>
+                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
+                                  th:action="@{${detail.deleteAction()}}" method="post" class="m-0">
                                 <input type="hidden" name="redirect" value="detail">
                                 <input type="hidden" name="reason" value="">
                                 <button type="button"
diff --git a/src/main/resources/templates/reports/list.html b/src/main/resources/templates/reports/list.html
index 0a9bca4..817c30f 100644
--- a/src/main/resources/templates/reports/list.html
+++ b/src/main/resources/templates/reports/list.html
@@ -112,7 +112,8 @@ <h2 class="h6 mb-1 fw-semibold">신고 내역</h2>
                                 </div>
                             </div>
                     </a>
-                    <footer class="report-card__footer border-top d-flex flex-wrap gap-2 justify-content-end align-items-center">
+                    <footer class="report-card__footer border-top d-flex flex-wrap gap-2 justify-content-end align-items-center"
+                            th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}">
                         <form th:action="@{${report.ignoreAction()}}" method="post" class="m-0">
                             <input type="hidden" name="redirect" value="list">
                             <th:block th:each="typeParam : ${selectedTypeParams}">

From 098714771d5801ddb486339a1d50886ae0048ebb Mon Sep 17 00:00:00 2001
From: soonduck-dreams <nederileni99heits@gmail.com>
Date: Mon, 17 Nov 2025 18:20:08 +0900
Subject: [PATCH 3/6] =?UTF-8?q?feat:=20=EC=97=AD=ED=95=A0=EA=B3=BC=20?=
 =?UTF-8?q?=EA=B6=8C=ED=95=9C=20=EB=A9=94=EB=89=B4=20=EC=B6=94=EA=B0=80?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 codebase.txt                                  | 14906 ++++++++++++++++
 .../infra/role/AdminRoleClient.java           |   128 +
 .../infra/role/dto/AdminMyRoleResponse.java   |     9 +
 .../infra/role/dto/AdminRoleListResponse.java |     8 +
 .../role/dto/AdminRoleUserListResponse.java   |     8 +
 .../infra/role/dto/AdminUserRoleResponse.java |    13 +
 .../infra/role/dto/AssignRoleRequest.java     |     6 +
 .../infra/role/dto/CreateRoleRequest.java     |     8 +
 .../role/dto/PermissionSummaryResponse.java   |     7 +
 .../infra/role/dto/RoleDetailResponse.java    |    13 +
 .../infra/role/dto/RoleSummaryResponse.java   |    10 +
 .../dto/UpdateRolePermissionsRequest.java     |     8 +
 .../web/RoleManagementController.java         |   594 +
 .../web/view/role/PermissionOptionView.java   |    26 +
 .../web/view/role/PermissionView.java         |    26 +
 .../web/view/role/RoleDisplay.java            |    34 +
 .../view/role/RolePermissionGroupView.java    |    17 +
 .../web/view/role/RoleTemplateView.java       |    47 +
 .../web/view/role/TeamMemberView.java         |    40 +
 src/main/resources/static/css/admin-theme.css |   242 +
 .../resources/templates/admin-role/index.html |   547 +
 .../templates/fragments/_sidebar.html         |    10 +
 22 files changed, 16707 insertions(+)
 create mode 100644 codebase.txt
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/AdminRoleClient.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java
 create mode 100644 src/main/java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java
 create mode 100644 src/main/java/apu/saerok_admin/web/RoleManagementController.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/PermissionOptionView.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/PermissionView.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/RoleDisplay.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/RoleTemplateView.java
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/TeamMemberView.java
 create mode 100644 src/main/resources/templates/admin-role/index.html

diff --git a/codebase.txt b/codebase.txt
new file mode 100644
index 0000000..32f359c
--- /dev/null
+++ b/codebase.txt
@@ -0,0 +1,14906 @@
+
+// ===== java/apu/saerok_admin/config/SecurityConfig.java =====
+package apu.saerok_admin.config;
+
+import apu.saerok_admin.security.LoginSessionAuthenticationFilter;
+import apu.saerok_admin.security.LoginSessionManager;
+import org.springframework.boot.autoconfigure.security.servlet.PathRequest;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.security.config.annotation.web.builders.HttpSecurity;
+import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
+import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.core.userdetails.UserDetailsService;
+import org.springframework.security.provisioning.InMemoryUserDetailsManager;
+import org.springframework.security.web.SecurityFilterChain;
+import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
+import org.springframework.security.web.context.SecurityContextPersistenceFilter;
+
+@Configuration
+@EnableWebSecurity
+public class SecurityConfig {
+
+    @Bean
+    public SecurityFilterChain securityFilterChain(
+            HttpSecurity http,
+            LoginSessionAuthenticationFilter loginSessionAuthenticationFilter,
+            LoginSessionManager loginSessionManager
+    ) throws Exception {
+        http
+                .csrf(AbstractHttpConfigurer::disable)
+                .formLogin(AbstractHttpConfigurer::disable)
+                .httpBasic(AbstractHttpConfigurer::disable)
+                .authorizeHttpRequests(authorize -> authorize
+                        .requestMatchers(PathRequest.toStaticResources().atCommonLocations()).permitAll()
+                        // ▼ 프록시 엔드포인트 공개
+                        .requestMatchers("/public/**").permitAll()
+                        .requestMatchers("/login", "/auth/callback/**").permitAll()
+                        .anyRequest().authenticated()
+                )
+                .exceptionHandling(exceptionHandling -> exceptionHandling
+                        .authenticationEntryPoint(new LoginUrlAuthenticationEntryPoint("/login"))
+                )
+                .logout(logout -> logout
+                        .logoutUrl("/logout")
+                        .logoutSuccessUrl("/login")
+                        .clearAuthentication(true)
+                        .invalidateHttpSession(true)
+                        .addLogoutHandler((request, response, authentication) -> {
+                            loginSessionManager.clearSession(request);
+                            loginSessionManager.deleteRefreshCookie(response, request.isSecure());
+                        })
+                );
+        http.addFilterAfter(loginSessionAuthenticationFilter, SecurityContextPersistenceFilter.class);
+        return http.build();
+    }
+
+    @Bean
+    public LoginSessionAuthenticationFilter loginSessionAuthenticationFilter(LoginSessionManager loginSessionManager) {
+        return new LoginSessionAuthenticationFilter(loginSessionManager);
+    }
+
+    @Bean
+    public UserDetailsService userDetailsService() {
+        return new InMemoryUserDetailsManager();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/config/SocialLoginProperties.java =====
+package apu.saerok_admin.config;
+
+import java.net.URI;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+
+@ConfigurationProperties(prefix = "oauth")
+public record SocialLoginProperties(Provider kakao, Provider apple) {
+
+    public record Provider(String clientId, URI redirectUri) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/config/UnsplashProperties.java =====
+package apu.saerok_admin.config;
+
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.context.annotation.Configuration;
+
+/**
+ * Unsplash API 설정 바인딩.
+ * application.yml 의 unsplash.* 값을 주입받아 서버에서만 사용한다.
+ * - access-key: Public Access Key (절대 브라우저에 노출하지 않음)
+ * - app-name  : utm_source 로 사용할 앱 이름
+ */
+@Configuration
+@ConfigurationProperties(prefix = "unsplash")
+public class UnsplashProperties {
+    private String accessKey;
+    private String appName;
+
+    public String getAccessKey() { return accessKey; }
+    public void setAccessKey(String accessKey) { this.accessKey = accessKey; }
+
+    public String getAppName() { return appName; }
+    public void setAppName(String appName) { this.appName = appName; }
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/AdminAdClient.java =====
+package apu.saerok_admin.infra.ad;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.ad.dto.AdImagePresignResponse;
+import apu.saerok_admin.infra.ad.dto.AdminAdImagePresignRequest;
+import apu.saerok_admin.infra.ad.dto.AdminAdListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminAdPlacementListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminCreateAdPlacementRequest;
+import apu.saerok_admin.infra.ad.dto.AdminCreateAdRequest;
+import apu.saerok_admin.infra.ad.dto.AdminCreateSlotRequest;
+import apu.saerok_admin.infra.ad.dto.AdminSlotListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateAdPlacementRequest;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateAdRequest;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateSlotRequest;
+import java.net.URI;
+import java.util.List;
+import org.springframework.http.HttpMethod;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminAdClient {
+
+    private static final String[] ADMIN_AD_SEGMENTS = {"admin", "ad"};
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminAdClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        List<String> missing = saerokApiProps.missingPrefixSegments();
+        this.missingPrefixSegments = missing.toArray(new String[0]);
+    }
+
+    public AdminAdListResponse listAds() {
+        return get(AdminAdListResponse.class, "list");
+    }
+
+    public AdminAdListResponse.Item createAd(AdminCreateAdRequest request) {
+        return post(AdminAdListResponse.Item.class, request, "create");
+    }
+
+    public AdminAdListResponse.Item updateAd(Long adId, AdminUpdateAdRequest request) {
+        return put(AdminAdListResponse.Item.class, request, adId.toString());
+    }
+
+    public void deleteAd(Long adId) {
+        delete(adId.toString());
+    }
+
+    public AdImagePresignResponse generateAdImagePresignUrl(AdminAdImagePresignRequest request) {
+        return post(AdImagePresignResponse.class, request, "image", "presign");
+    }
+
+    public AdminSlotListResponse listSlots() {
+        return get(AdminSlotListResponse.class, "slot");
+    }
+
+    public AdminSlotListResponse.Item createSlot(AdminCreateSlotRequest request) {
+        return post(AdminSlotListResponse.Item.class, request, "slot");
+    }
+
+    public AdminSlotListResponse.Item updateSlot(Long slotId, AdminUpdateSlotRequest request) {
+        return put(AdminSlotListResponse.Item.class, request, "slot", slotId.toString());
+    }
+
+    public void deleteSlot(Long slotId) {
+        delete("slot", slotId.toString());
+    }
+
+    public AdminAdPlacementListResponse listPlacements() {
+        return get(AdminAdPlacementListResponse.class, "placement");
+    }
+
+    public AdminAdPlacementListResponse.Item createPlacement(AdminCreateAdPlacementRequest request) {
+        return post(AdminAdPlacementListResponse.Item.class, request, "placement");
+    }
+
+    public AdminAdPlacementListResponse.Item updatePlacement(Long placementId, AdminUpdateAdPlacementRequest request) {
+        return put(AdminAdPlacementListResponse.Item.class, request, "placement", placementId.toString());
+    }
+
+    public void deletePlacement(Long placementId) {
+        delete("placement", placementId.toString());
+    }
+
+    private <T> T get(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.get()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin ad API");
+        }
+        return response;
+    }
+
+    private <T> T post(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin ad API");
+        }
+        return response;
+    }
+
+    private <T> T put(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.method(HttpMethod.PUT)
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin ad API");
+        }
+        return response;
+    }
+
+    private void delete(String... segments) {
+        saerokRestClient.delete()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .toBodilessEntity();
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_AD_SEGMENTS);
+        builder.pathSegment(segments);
+        return builder.build();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdImagePresignResponse.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdImagePresignResponse(
+        String presignedUrl,
+        String objectKey
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdImagePresignRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdminAdImagePresignRequest(String contentType) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdListResponse.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+import java.time.OffsetDateTime;
+import java.util.List;
+
+public record AdminAdListResponse(List<Item> items) {
+
+    public record Item(
+            Long id,
+            String name,
+            String memo,
+            String imageUrl,
+            String contentType,
+            String targetUrl,
+            OffsetDateTime createdAt,
+            OffsetDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdPlacementListResponse.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+import java.time.LocalDate;
+import java.time.OffsetDateTime;
+import java.util.List;
+
+public record AdminAdPlacementListResponse(List<Item> items) {
+
+    public record Item(
+            Long id,
+            Long adId,
+            String adName,
+            String adImageUrl,
+            Long slotId,
+            String slotName,
+            LocalDate startDate,
+            LocalDate endDate,
+            Short weight,
+            Boolean enabled,
+            OffsetDateTime createdAt,
+            OffsetDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateAdPlacementRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+import java.time.LocalDate;
+
+public record AdminCreateAdPlacementRequest(
+        Long adId,
+        Long slotId,
+        LocalDate startDate,
+        LocalDate endDate,
+        Short weight,
+        Boolean enabled
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateAdRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdminCreateAdRequest(
+        String name,
+        String memo,
+        String objectKey,
+        String contentType,
+        String targetUrl
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateSlotRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdminCreateSlotRequest(
+        String name,
+        String memo,
+        Double fallbackRatio,
+        Integer ttlSeconds
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminSlotListResponse.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+import java.time.OffsetDateTime;
+import java.util.List;
+
+public record AdminSlotListResponse(List<Item> items) {
+
+    public record Item(
+            Long id,
+            String name,
+            String memo,
+            Double fallbackRatio,
+            Integer ttlSeconds,
+            OffsetDateTime createdAt,
+            OffsetDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateAdPlacementRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+import java.time.LocalDate;
+
+public record AdminUpdateAdPlacementRequest(
+        Long slotId,
+        LocalDate startDate,
+        LocalDate endDate,
+        Short weight,
+        Boolean enabled
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateAdRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdminUpdateAdRequest(
+        String name,
+        String memo,
+        String objectKey,
+        String contentType,
+        String targetUrl
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateSlotRequest.java =====
+package apu.saerok_admin.infra.ad.dto;
+
+public record AdminUpdateSlotRequest(
+        String memo,
+        Double fallbackRatio,
+        Integer ttlSeconds
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/audit/AdminAuditLogClient.java =====
+package apu.saerok_admin.infra.audit;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.audit.dto.AdminAuditLogListResponse;
+import java.net.URI;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminAuditLogClient {
+
+    private static final String[] ADMIN_AUDIT_SEGMENTS = {"admin", "audit"};
+    private static final String LOGS_SEGMENT = "logs";
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminAuditLogClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
+    }
+
+    public AdminAuditLogListResponse listAuditLogs(Integer page, Integer size) {
+        AdminAuditLogListResponse response = saerokRestClient.get()
+                .uri(uriBuilder -> buildUri(uriBuilder, page, size))
+                .retrieve()
+                .body(AdminAuditLogListResponse.class);
+
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin audit log API");
+        }
+
+        return response;
+    }
+
+    private URI buildUri(UriBuilder builder, Integer page, Integer size) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_AUDIT_SEGMENTS);
+        builder.pathSegment(LOGS_SEGMENT);
+
+        if (page != null && size != null) {
+            builder.queryParam("page", page);
+            builder.queryParam("size", size);
+        }
+
+        return builder.build();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/audit/dto/AdminAuditLogListResponse.java =====
+package apu.saerok_admin.infra.audit.dto;
+
+import java.time.LocalDateTime;
+import java.util.List;
+import java.util.Map;
+
+public record AdminAuditLogListResponse(
+        List<Item> items
+) {
+
+    public record Item(
+            Long id,
+            LocalDateTime createdAt,
+            UserMini admin,
+            String action,
+            String targetType,
+            Long targetId,
+            Long reportId,
+            Map<String, Object> metadata
+    ) {
+    }
+
+    public record UserMini(
+            Long id,
+            String nickname
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/auth/BackendAuthClient.java =====
+package apu.saerok_admin.infra.auth;
+
+import java.net.URI;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Optional;
+import jakarta.servlet.http.Cookie;
+import jakarta.servlet.http.HttpServletRequest;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.beans.factory.annotation.Qualifier;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+import org.springframework.web.util.UriBuilder;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+
+@Component
+public class BackendAuthClient {
+
+    private static final Logger log = LoggerFactory.getLogger(BackendAuthClient.class);
+
+    private final RestClient authRestClient;
+    private final List<String> missingPrefixSegments;
+
+    public BackendAuthClient(
+            @Qualifier("saerokAuthRestClient") RestClient authRestClient,
+            SaerokApiProps saerokApiProps
+    ) {
+        this.authRestClient = authRestClient;
+        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments();
+    }
+
+    public LoginSuccess kakaoLogin(String authorizationCode) {
+        KakaoLoginPayload payload = new KakaoLoginPayload(authorizationCode);
+        log.info("Requesting Kakao login from backend with authorization code length {}", authorizationCode == null ? 0 : authorizationCode.length());
+        ResponseEntity<BackendAccessTokenResponse> response = authRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, "admin", "auth", "kakao", "login"))
+                .contentType(MediaType.APPLICATION_JSON)
+                .body(payload)
+                .retrieve()
+                .toEntity(BackendAccessTokenResponse.class);
+        log.debug("Received Kakao login response with status {} and cookies {}", response.getStatusCode(), response.getHeaders().get(HttpHeaders.SET_COOKIE));
+        return toLoginSuccess(response);
+    }
+
+    public LoginSuccess appleLogin(String authorizationCode) {
+        AppleLoginPayload payload = new AppleLoginPayload(authorizationCode);
+        log.info("Requesting Apple login from backend with authorization code length {}", authorizationCode == null ? 0 : authorizationCode.length());
+        ResponseEntity<BackendAccessTokenResponse> response = authRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, "auth", "apple", "login"))
+                .contentType(MediaType.APPLICATION_JSON)
+                .body(payload)
+                .retrieve()
+                .toEntity(BackendAccessTokenResponse.class);
+        log.debug("Received Apple login response with status {} and cookies {}", response.getStatusCode(), response.getHeaders().get(HttpHeaders.SET_COOKIE));
+        return toLoginSuccess(response);
+    }
+
+    public LoginSuccess refreshAccessToken() {
+        RestClient.RequestHeadersSpec<?> requestSpec = authRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, "auth", "refresh"));
+        extractRefreshCookie().ifPresent(cookie -> requestSpec.header(HttpHeaders.COOKIE, cookie));
+        ResponseEntity<BackendAccessTokenResponse> response = requestSpec.retrieve()
+                .toEntity(BackendAccessTokenResponse.class);
+        log.debug("Refresh token request completed with status {}", response.getStatusCode());
+        return toLoginSuccess(response);
+    }
+
+    private Optional<String> extractRefreshCookie() {
+        ServletRequestAttributes attributes = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
+        if (attributes == null) {
+            return Optional.empty();
+        }
+        HttpServletRequest request = attributes.getRequest();
+        Cookie[] cookies = request.getCookies();
+        if (cookies == null) {
+            return Optional.empty();
+        }
+        return Arrays.stream(cookies)
+                .filter(cookie -> "refreshToken".equals(cookie.getName()))
+                .map(cookie -> cookie.getName() + "=" + cookie.getValue())
+                .findFirst();
+    }
+
+    private LoginSuccess toLoginSuccess(ResponseEntity<BackendAccessTokenResponse> response) {
+        BackendAccessTokenResponse body = response.getBody();
+        if (body == null || !StringUtils.hasText(body.accessToken())) {
+            log.error("Backend response did not contain a valid access token. Response body: {}", body);
+            throw new IllegalStateException("백엔드에서 유효한 액세스 토큰을 받지 못했습니다.");
+        }
+        List<String> cookies = Optional.ofNullable(response.getHeaders().get(HttpHeaders.SET_COOKIE))
+                .map(List::copyOf)
+                .orElse(List.of());
+        log.debug("Converted backend response to LoginSuccess. accessTokenPresent={}, refreshCookieCount={}",
+                StringUtils.hasText(body.accessToken()), cookies.size());
+        return new LoginSuccess(body.accessToken(), cookies);
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (!missingPrefixSegments.isEmpty()) {
+            builder.pathSegment(missingPrefixSegments.toArray(String[]::new));
+        }
+        builder.pathSegment(segments);
+        return builder.build();
+    }
+
+    private record KakaoLoginPayload(String authorizationCode, String channel) {
+
+        private KakaoLoginPayload(String authorizationCode) {
+            this(authorizationCode, "admin");
+        }
+    }
+
+    private record AppleLoginPayload(String authorizationCode) {
+    }
+
+    private record BackendAccessTokenResponse(String accessToken, String signupStatus) {
+    }
+
+    public record LoginSuccess(String accessToken, List<String> refreshCookies) {
+
+        public LoginSuccess {
+            if (!StringUtils.hasText(accessToken)) {
+                throw new IllegalArgumentException("accessToken must not be empty");
+            }
+            refreshCookies = refreshCookies == null ? List.of() : List.copyOf(refreshCookies);
+        }
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/auth/BackendAuthorizationInterceptor.java =====
+package apu.saerok_admin.infra.auth;
+
+import apu.saerok_admin.security.BackendUnauthorizedException;
+import apu.saerok_admin.security.LoginSessionManager;
+import java.io.IOException;
+import java.util.Optional;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.HttpRequest;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.client.ClientHttpRequestExecution;
+import org.springframework.http.client.ClientHttpRequestInterceptor;
+import org.springframework.http.client.ClientHttpResponse;
+import org.springframework.http.client.support.HttpRequestWrapper;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.client.ResourceAccessException;
+
+@Component
+public class BackendAuthorizationInterceptor implements ClientHttpRequestInterceptor {
+
+    private final LoginSessionManager loginSessionManager;
+    private final BackendAuthClient backendAuthClient;
+
+    public BackendAuthorizationInterceptor(LoginSessionManager loginSessionManager, BackendAuthClient backendAuthClient) {
+        this.loginSessionManager = loginSessionManager;
+        this.backendAuthClient = backendAuthClient;
+    }
+
+    @Override
+    public ClientHttpResponse intercept(HttpRequest request, byte[] body, ClientHttpRequestExecution execution)
+            throws IOException {
+        if (isAuthRequest(request)) {
+            return execution.execute(request, body);
+        }
+
+        HttpRequestWrapper authorizedRequest = wrapRequest(request);
+        loginSessionManager.currentAccessToken()
+                .ifPresent(token -> authorizedRequest.getHeaders().setBearerAuth(token));
+
+        ClientHttpResponse response = execution.execute(authorizedRequest, body);
+        if (response.getStatusCode() != HttpStatus.UNAUTHORIZED) {
+            return response;
+        }
+
+        response.close();
+        return retryWithRefreshedToken(request, body, execution);
+    }
+
+    private ClientHttpResponse retryWithRefreshedToken(
+            HttpRequest request,
+            byte[] body,
+            ClientHttpRequestExecution execution
+    ) throws IOException {
+        Optional<String> currentToken = loginSessionManager.currentAccessToken();
+        if (currentToken.isEmpty()) {
+            return execution.execute(request, body);
+        }
+
+        BackendAuthClient.LoginSuccess refreshedTokens;
+        try {
+            refreshedTokens = backendAuthClient.refreshAccessToken();
+        } catch (RestClientResponseException | ResourceAccessException | IllegalStateException ex) {
+            loginSessionManager.clearCurrentSession();
+            throw new BackendUnauthorizedException("토큰 갱신에 실패했습니다.", ex);
+        }
+
+        loginSessionManager.updateAccessToken(refreshedTokens.accessToken());
+        loginSessionManager.writeRefreshCookiesToResponse(refreshedTokens.refreshCookies());
+
+        HttpRequestWrapper retryRequest = wrapRequest(request);
+        loginSessionManager.currentAccessToken()
+                .ifPresent(token -> retryRequest.getHeaders().setBearerAuth(token));
+
+        ClientHttpResponse retryResponse = execution.execute(retryRequest, body);
+        if (retryResponse.getStatusCode() == HttpStatus.UNAUTHORIZED) {
+            retryResponse.close();
+            loginSessionManager.clearCurrentSession();
+            throw new BackendUnauthorizedException("세션이 만료되었습니다. 다시 로그인해주세요.");
+        }
+
+        return retryResponse;
+    }
+
+    private boolean isAuthRequest(HttpRequest request) {
+        String path = request.getURI() != null ? request.getURI().getPath() : null;
+        return path != null && path.contains("/auth/");
+    }
+
+    private HttpRequestWrapper wrapRequest(HttpRequest request) {
+        return new HttpRequestWrapper(request) {
+            private final HttpHeaders headers = new HttpHeaders();
+
+            {
+                headers.putAll(request.getHeaders());
+            }
+
+            @Override
+            public HttpHeaders getHeaders() {
+                return headers;
+            }
+        };
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/CurrentAdminClient.java =====
+package apu.saerok_admin.infra;
+
+import apu.saerok_admin.security.LoginSessionManager;
+import apu.saerok_admin.web.view.CurrentAdminProfile;
+import java.net.URI;
+import java.util.LinkedHashSet;
+import java.util.List;
+import java.util.Locale;
+import java.util.Optional;
+import java.util.Set;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class CurrentAdminClient {
+
+    private static final Logger log = LoggerFactory.getLogger(CurrentAdminClient.class);
+    private final RestClient saerokRestClient;
+    private final List<String> missingPrefixSegments;
+    private final LoginSessionManager loginSessionManager;
+
+    public CurrentAdminClient(
+            RestClient saerokRestClient,
+            SaerokApiProps saerokApiProps,
+            LoginSessionManager loginSessionManager
+    ) {
+        this.saerokRestClient = saerokRestClient;
+        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments();
+        this.loginSessionManager = loginSessionManager;
+    }
+
+    public Optional<CurrentAdminProfile> fetchCurrentAdminProfile() {
+        if (loginSessionManager.currentAccessToken().isEmpty()) {
+            return Optional.empty();
+        }
+
+        try {
+            BackendUserProfileResponse response = saerokRestClient.get()
+                    .uri(uriBuilder -> buildUri(uriBuilder, "user", "me"))
+                    .retrieve()
+                    .body(BackendUserProfileResponse.class);
+
+            if (response == null) {
+                return Optional.empty();
+            }
+
+            List<String> backendRoles = response.roles() != null ? List.copyOf(response.roles()) : List.of();
+            AdminRoleInfo roleInfo = fetchAdminRoleInfo();
+            List<String> roleCodes = !roleInfo.roleCodes().isEmpty()
+                    ? roleInfo.roleCodes()
+                    : normalizeRoleCodes(backendRoles);
+
+            return Optional.of(new CurrentAdminProfile(
+                    response.nickname(),
+                    response.email(),
+                    response.profileImageUrl(),
+                    roleInfo.roleDisplayNames(),
+                    roleCodes,
+                    roleInfo.permissionKeys()
+            ));
+        } catch (RestClientResponseException exception) {
+            log.warn(
+                    "Failed to fetch current admin profile. status={}, body={}",
+                    exception.getStatusCode(),
+                    exception.getResponseBodyAsString(),
+                    exception
+            );
+        } catch (RestClientException exception) {
+            log.warn("Failed to fetch current admin profile.", exception);
+        }
+
+        return Optional.empty();
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (!missingPrefixSegments.isEmpty()) {
+            builder.pathSegment(missingPrefixSegments.toArray(String[]::new));
+        }
+        builder.pathSegment(segments);
+        return builder.build();
+    }
+
+    private record BackendUserProfileResponse(
+            String nickname,
+            String email,
+            String profileImageUrl,
+            List<String> roles
+    ) {
+    }
+
+    private AdminRoleInfo fetchAdminRoleInfo() {
+        try {
+            AdminMyRoleResponse response = saerokRestClient.get()
+                    .uri(uriBuilder -> buildUri(uriBuilder, "admin", "role", "me"))
+                    .retrieve()
+                    .body(AdminMyRoleResponse.class);
+
+            if (response == null) {
+                return AdminRoleInfo.empty();
+            }
+
+            List<String> roleDisplayNames = response.roles() == null
+                    ? List.of()
+                    : response.roles().stream()
+                            .map(RoleSummaryResponse::displayName)
+                            .filter(StringUtils::hasText)
+                            .map(String::trim)
+                            .toList();
+            List<String> roleCodes = response.roles() == null
+                    ? List.of()
+                    : response.roles().stream()
+                            .map(RoleSummaryResponse::code)
+                            .filter(StringUtils::hasText)
+                            .toList();
+            List<String> permissionKeys = response.permissions() == null
+                    ? List.of()
+                    : response.permissions().stream()
+                            .map(PermissionSummaryResponse::key)
+                            .filter(StringUtils::hasText)
+                            .toList();
+            return new AdminRoleInfo(roleDisplayNames, roleCodes, permissionKeys);
+        } catch (RestClientResponseException exception) {
+            log.warn(
+                    "Failed to fetch current admin roles. status={}, body={}",
+                    exception.getStatusCode(),
+                    exception.getResponseBodyAsString(),
+                    exception
+            );
+        } catch (RestClientException exception) {
+            log.warn("Failed to fetch current admin roles.", exception);
+        }
+        return AdminRoleInfo.empty();
+    }
+
+    private record AdminMyRoleResponse(
+            List<RoleSummaryResponse> roles,
+            List<PermissionSummaryResponse> permissions
+    ) {
+    }
+
+    private record RoleSummaryResponse(
+            Long id,
+            String code,
+            String displayName,
+            String description,
+            Boolean builtin
+    ) {
+    }
+
+    private record PermissionSummaryResponse(
+            String key,
+            String description
+    ) {
+    }
+
+    private record AdminRoleInfo(
+            List<String> roleDisplayNames,
+            List<String> roleCodes,
+            List<String> permissionKeys
+    ) {
+        private static AdminRoleInfo empty() {
+            return new AdminRoleInfo(List.of(), List.of(), List.of());
+        }
+    }
+
+    private List<String> normalizeRoleCodes(List<String> roles) {
+        if (roles == null || roles.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String role : roles) {
+            if (!StringUtils.hasText(role)) {
+                continue;
+            }
+            normalized.add(role.toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/AdminReportClient.java =====
+package apu.saerok_admin.infra.report;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.report.dto.AdminDeleteReasonRequest;
+import apu.saerok_admin.infra.report.dto.ReportedCollectionDetailResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCommentDetailResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
+import java.net.URI;
+import org.springframework.http.HttpMethod;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminReportClient {
+
+    private static final String[] ADMIN_REPORTS_SEGMENTS = {"admin", "reports"};
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminReportClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
+    }
+
+    public ReportedCollectionListResponse listCollectionReports() {
+        return get(ReportedCollectionListResponse.class, "collections");
+    }
+
+    public ReportedCommentListResponse listCommentReports() {
+        return get(ReportedCommentListResponse.class, "comments");
+    }
+
+    public ReportedCollectionDetailResponse getCollectionReportDetail(Long reportId) {
+        String id = reportId.toString();
+        return get(ReportedCollectionDetailResponse.class, "collections", id);
+    }
+
+    public ReportedCommentDetailResponse getCommentReportDetail(Long reportId) {
+        String id = reportId.toString();
+        return get(ReportedCommentDetailResponse.class, "comments", id);
+    }
+
+    public void ignoreCollectionReport(Long reportId) {
+        String id = reportId.toString();
+        post("collections", id, "ignore");
+    }
+
+    public void deleteCollectionByReport(Long reportId, String reason) {
+        String id = reportId.toString();
+        deleteWithBody(new AdminDeleteReasonRequest(reason), "collections", id);
+    }
+
+    public void ignoreCommentReport(Long reportId) {
+        String id = reportId.toString();
+        post("comments", id, "ignore");
+    }
+
+    public void deleteCommentByReport(Long reportId, String reason) {
+        String id = reportId.toString();
+        deleteWithBody(new AdminDeleteReasonRequest(reason), "comments", id);
+    }
+
+    private <T> T get(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.get()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin report API");
+        }
+        return response;
+    }
+
+    private void post(String... segments) {
+        saerokRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .toBodilessEntity();
+    }
+
+    private void deleteWithBody(Object body, String... segments) {
+        saerokRestClient.method(HttpMethod.DELETE)
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .toBodilessEntity();
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_REPORTS_SEGMENTS);
+        builder.pathSegment(segments);
+        return builder.build();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/AdminDeleteReasonRequest.java =====
+package apu.saerok_admin.infra.report.dto;
+
+public record AdminDeleteReasonRequest(String reason) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/CollectionCommentsResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDateTime;
+import java.util.List;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record CollectionCommentsResponse(List<Item> items, Boolean isMyCollection) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record Item(
+            Long commentId,
+            Long userId,
+            String nickname,
+            String profileImageUrl,
+            String content,
+            int likeCount,
+            Boolean isLiked,
+            Boolean isMine,
+            LocalDateTime createdAt,
+            LocalDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/CollectionDetailResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDate;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record CollectionDetailResponse(
+        Long collectionId,
+        String imageUrl,
+        LocalDate discoveredDate,
+        Double latitude,
+        Double longitude,
+        String locationAlias,
+        String address,
+        String note,
+        String accessLevel,
+        Long likeCount,
+        Long commentCount,
+        Boolean isLiked,
+        Boolean isMine,
+        BirdInfo bird,
+        UserInfo user
+) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record BirdInfo(
+            Long birdId,
+            String koreanName,
+            String scientificName
+    ) {
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record UserInfo(
+            Long userId,
+            String nickname,
+            String profileImageUrl
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/ReportedCollectionDetailResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record ReportedCollectionDetailResponse(
+        Long reportId,
+        CollectionDetailResponse collection,
+        CollectionCommentsResponse comments
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/ReportedCollectionListResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDateTime;
+import java.util.List;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record ReportedCollectionListResponse(List<Item> items) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record Item(
+            Long reportId,
+            LocalDateTime reportedAt,
+            Long collectionId,
+            UserMini reporter,
+            UserMini reportedUser
+    ) {
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record UserMini(
+            Long userId,
+            String nickname
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/ReportedCommentDetailResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDateTime;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record ReportedCommentDetailResponse(
+        Long reportId,
+        ReportedComment comment,
+        CollectionDetailResponse collection,
+        CollectionCommentsResponse comments
+) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record ReportedComment(
+            Long commentId,
+            Long userId,
+            String nickname,
+            String content,
+            LocalDateTime createdAt,
+            LocalDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/report/dto/ReportedCommentListResponse.java =====
+package apu.saerok_admin.infra.report.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDateTime;
+import java.util.List;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record ReportedCommentListResponse(List<Item> items) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record Item(
+            Long reportId,
+            LocalDateTime reportedAt,
+            Long commentId,
+            Long collectionId,
+            String contentPreview,
+            UserMini reporter,
+            UserMini reportedUser
+    ) {
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record UserMini(
+            Long userId,
+            String nickname
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/AdminRoleClient.java =====
+package apu.saerok_admin.infra.role;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
+import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
+import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
+import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
+import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
+import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
+import java.net.URI;
+import java.util.List;
+import org.springframework.http.HttpMethod;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminRoleClient {
+
+    private static final String[] ADMIN_ROLE_SEGMENTS = {"admin", "role"};
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminRoleClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        List<String> missing = saerokApiProps.missingPrefixSegments();
+        this.missingPrefixSegments = missing.toArray(new String[0]);
+    }
+
+    public AdminMyRoleResponse getMyRoles() {
+        return get(AdminMyRoleResponse.class, "me");
+    }
+
+    public AdminRoleUserListResponse listAdminUsers() {
+        return get(AdminRoleUserListResponse.class, "users");
+    }
+
+    public AdminRoleListResponse listRoles() {
+        return get(AdminRoleListResponse.class);
+    }
+
+    public RoleDetailResponse createRole(CreateRoleRequest request) {
+        return post(RoleDetailResponse.class, request);
+    }
+
+    public RoleDetailResponse updateRolePermissions(String roleCode, UpdateRolePermissionsRequest request) {
+        return put(RoleDetailResponse.class, request, roleCode, "permissions");
+    }
+
+    public void deleteRole(String roleCode) {
+        deleteVoid(roleCode);
+    }
+
+    public AdminUserRoleResponse grantRole(Long userId, AssignRoleRequest request) {
+        return post(AdminUserRoleResponse.class, request, "users", userId.toString(), "roles");
+    }
+
+    public AdminUserRoleResponse revokeRole(Long userId, String roleCode) {
+        return delete(AdminUserRoleResponse.class, "users", userId.toString(), "roles", roleCode);
+    }
+
+    private <T> T get(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.get()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T post(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T put(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.method(HttpMethod.PUT)
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T delete(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.delete()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private void deleteVoid(String... segments) {
+        saerokRestClient.delete()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .toBodilessEntity();
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_ROLE_SEGMENTS);
+        if (segments.length > 0) {
+            builder.pathSegment(segments);
+        }
+        return builder.build();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminMyRoleResponse(
+        List<RoleSummaryResponse> roles,
+        List<PermissionSummaryResponse> permissions
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminRoleListResponse(
+        List<RoleDetailResponse> roles
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminRoleUserListResponse(
+        List<AdminUserRoleResponse> users
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminUserRoleResponse(
+        Long userId,
+        String nickname,
+        String email,
+        boolean superAdmin,
+        List<RoleSummaryResponse> roles,
+        List<PermissionSummaryResponse> permissions
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java =====
+package apu.saerok_admin.infra.role.dto;
+
+public record AssignRoleRequest(
+        String roleCode
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java =====
+package apu.saerok_admin.infra.role.dto;
+
+public record CreateRoleRequest(
+        String code,
+        String displayName,
+        String description
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+public record PermissionSummaryResponse(
+        String key,
+        String description
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record RoleDetailResponse(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin,
+        List<PermissionSummaryResponse> permissions
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java =====
+package apu.saerok_admin.infra.role.dto;
+
+public record RoleSummaryResponse(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java =====
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record UpdateRolePermissionsRequest(
+        List<String> permissions
+) {
+}
+
+
+// ===== java/apu/saerok_admin/infra/SaerokApiClientConfig.java =====
+package apu.saerok_admin.infra;
+
+import apu.saerok_admin.config.SocialLoginProperties;
+import java.time.Clock;
+import org.springframework.beans.factory.ObjectProvider;
+import org.springframework.boot.context.properties.EnableConfigurationProperties;
+import org.springframework.context.annotation.Bean;
+import org.springframework.context.annotation.Configuration;
+import org.springframework.context.annotation.Primary;
+import org.springframework.http.client.ClientHttpRequestInterceptor;
+import org.springframework.web.client.RestClient;
+
+@Configuration
+@EnableConfigurationProperties({SaerokApiProps.class, SocialLoginProperties.class})
+public class SaerokApiClientConfig {
+
+    @Bean
+    @Primary
+    RestClient saerokRestClient(SaerokApiProps props, ObjectProvider<ClientHttpRequestInterceptor> interceptors) {
+        RestClient.Builder builder = RestClient.builder().baseUrl(props.baseUrl());
+        interceptors.orderedStream().forEach(builder::requestInterceptor);
+        return builder.build();
+    }
+
+    @Bean(name = "saerokAuthRestClient")
+    RestClient saerokAuthRestClient(SaerokApiProps props) {
+        return RestClient.builder().baseUrl(props.baseUrl()).build();
+    }
+
+    @Bean
+    Clock systemClock() {
+        return Clock.systemDefaultZone();
+    }
+}
+
+
+
+// ===== java/apu/saerok_admin/infra/SaerokApiProps.java =====
+package apu.saerok_admin.infra;
+
+import java.net.URI;
+import java.util.ArrayList;
+import java.util.Collections;
+import java.util.List;
+import org.springframework.boot.context.properties.ConfigurationProperties;
+import org.springframework.util.StringUtils;
+
+@ConfigurationProperties(prefix = "saerok.api")
+public record SaerokApiProps(String baseUrl, String prefix) {
+
+    public SaerokApiProps {
+        if (!StringUtils.hasText(baseUrl)) {
+            throw new IllegalArgumentException("saerok.api.base-url must not be empty");
+        }
+        prefix = normalizePrefix(prefix);
+    }
+
+    public List<String> missingPrefixSegments() {
+        List<String> prefixSegments = splitSegments(prefix);
+        if (prefixSegments.isEmpty()) {
+            return List.of();
+        }
+        List<String> basePathSegments = splitSegments(URI.create(baseUrl).getPath());
+        if (endsWith(basePathSegments, prefixSegments)) {
+            return List.of();
+        }
+        return prefixSegments;
+    }
+
+    private static boolean endsWith(List<String> base, List<String> suffix) {
+        if (suffix.size() > base.size()) {
+            return false;
+        }
+        for (int i = 0; i < suffix.size(); i++) {
+            String baseSegment = base.get(base.size() - suffix.size() + i);
+            if (!baseSegment.equals(suffix.get(i))) {
+                return false;
+            }
+        }
+        return true;
+    }
+
+    private static String normalizePrefix(String prefix) {
+        if (!StringUtils.hasText(prefix)) {
+            return "";
+        }
+        String trimmed = prefix.trim();
+        if ("/".equals(trimmed)) {
+            return "";
+        }
+        if (!trimmed.startsWith("/")) {
+            trimmed = "/" + trimmed;
+        }
+        while (trimmed.endsWith("/") && trimmed.length() > 1) {
+            trimmed = trimmed.substring(0, trimmed.length() - 1);
+        }
+        return trimmed;
+    }
+
+    private static List<String> splitSegments(String path) {
+        if (!StringUtils.hasText(path)) {
+            return List.of();
+        }
+        String trimmed = path.startsWith("/") ? path.substring(1) : path;
+        if (!StringUtils.hasText(trimmed)) {
+            return List.of();
+        }
+        String[] tokens = trimmed.split("/");
+        List<String> segments = new ArrayList<>(tokens.length);
+        for (String token : tokens) {
+            if (StringUtils.hasText(token)) {
+                segments.add(token);
+            }
+        }
+        return Collections.unmodifiableList(segments);
+    }
+}
+
+
+
+// ===== java/apu/saerok_admin/infra/ServiceHealthClient.java =====
+package apu.saerok_admin.infra;
+
+import apu.saerok_admin.web.view.ServiceHealthStatus;
+import java.time.Clock;
+import java.time.LocalDateTime;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.client.RestClientException;
+
+@Component
+public class ServiceHealthClient {
+
+    private final RestClient saerokRestClient;
+    private final Clock clock;
+
+    public ServiceHealthClient(RestClient saerokRestClient, Clock clock) {
+        this.saerokRestClient = saerokRestClient;
+        this.clock = clock;
+    }
+
+    public ServiceHealthStatus checkHealth() {
+        LocalDateTime checkedAt = LocalDateTime.now(clock);
+        try {
+            ResponseEntity<String> response = saerokRestClient.get()
+                    .uri(uriBuilder -> uriBuilder.replacePath("/health").replaceQuery(null).build())
+                    .retrieve()
+                    .toEntity(String.class);
+
+            boolean alive = response.getStatusCode().is2xxSuccessful();
+            String message = alive
+                    ? extractStatusMessage(response.getBody())
+                    : "HTTP 상태 코드 " + response.getStatusCode().value();
+
+            return new ServiceHealthStatus(alive, message, checkedAt);
+        } catch (RestClientException exception) {
+            String message = exception.getMessage();
+            if (message == null || message.isBlank()) {
+                message = "요청 중 오류가 발생했습니다.";
+            }
+            return new ServiceHealthStatus(false, message, checkedAt);
+        }
+    }
+
+    private String extractStatusMessage(String body) {
+        if (body == null || body.isBlank()) {
+            return "서버가 정상 응답했습니다.";
+        }
+
+        return body;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/stat/AdminStatClient.java =====
+package apu.saerok_admin.infra.stat;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.stat.dto.StatSeriesResponse;
+import java.net.URI;
+import java.time.LocalDate;
+import java.time.format.DateTimeFormatter;
+import java.util.Collection;
+import java.util.Objects;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminStatClient {
+
+    private static final String[] ADMIN_STATS_SEGMENTS = {"admin", "stats"};
+    private static final String SERIES_SEGMENT = "series";
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminStatClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
+    }
+
+    private static final DateTimeFormatter ISO_DATE = DateTimeFormatter.ISO_DATE;
+
+    public StatSeriesResponse fetchSeries(Collection<StatMetric> metrics, LocalDate startDate, LocalDate endDate) {
+        if (metrics == null || metrics.isEmpty()) {
+            throw new IllegalArgumentException("metrics must not be empty");
+        }
+
+        StatSeriesResponse response = saerokRestClient.get()
+                .uri(uriBuilder -> buildSeriesUri(uriBuilder, metrics, startDate, endDate))
+                .retrieve()
+                .body(StatSeriesResponse.class);
+
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin stats API");
+        }
+
+        return response;
+    }
+
+    private URI buildSeriesUri(UriBuilder builder, Collection<StatMetric> metrics, LocalDate startDate, LocalDate endDate) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_STATS_SEGMENTS);
+        builder.pathSegment(SERIES_SEGMENT);
+
+        metrics.stream()
+                .filter(Objects::nonNull)
+                .map(Enum::name)
+                .forEach(metric -> builder.queryParam("metric", metric));
+
+        if (startDate != null || endDate != null) {
+            builder.queryParam("period", buildPeriodQuery(startDate, endDate));
+        }
+
+        return builder.build();
+    }
+
+    private String buildPeriodQuery(LocalDate startDate, LocalDate endDate) {
+        String startToken = startDate != null ? ISO_DATE.format(startDate) : "";
+        String endToken = endDate != null ? ISO_DATE.format(endDate) : "";
+        return startToken + "," + endToken;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/stat/dto/StatSeriesResponse.java =====
+package apu.saerok_admin.infra.stat.dto;
+
+import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
+import java.time.LocalDate;
+import java.util.List;
+
+@JsonIgnoreProperties(ignoreUnknown = true)
+public record StatSeriesResponse(List<Series> series) {
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record Series(
+            String metric,
+            List<Point> points,
+            List<ComponentSeries> components
+    ) {
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record ComponentSeries(
+            String key,
+            List<Point> points
+    ) {
+    }
+
+    @JsonIgnoreProperties(ignoreUnknown = true)
+    public record Point(
+            LocalDate date,
+            Number value
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/stat/StatMetric.java =====
+package apu.saerok_admin.infra.stat;
+
+import java.util.Collections;
+import java.util.LinkedHashMap;
+import java.util.Map;
+
+public enum StatMetric {
+    COLLECTION_TOTAL_COUNT(
+            "새록 총 개수",
+            "등록된 새록의 총 개수",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            true
+    ),
+    COLLECTION_PRIVATE_RATIO(
+            "비공개 새록 비율",
+            "전체 새록 중 비공개로 설정된 비율",
+            MetricUnit.RATIO,
+            false,
+            Map.of(),
+            false
+    ),
+    BIRD_ID_PENDING_COUNT(
+            "진행 중인 동정 요청 개수",
+            "이 날 진행 중인 동정 요청의 개수\n(= \"이름 모를 새 새록\"의 개수)",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            false
+    ),
+    BIRD_ID_RESOLVED_COUNT(
+            "동정 의견 채택 횟수",
+            "이 날 동정 의견이 몇 번 채택됐는지 횟수",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            true
+    ),
+
+    // ✅ 누적 메트릭 제거, 최근 28일 전용만 유지
+    BIRD_ID_RESOLUTION_STATS_28D(
+            "동정 의견 채택 시간",
+            "동정 요청 후 유저가 의견을 채택하기까지 걸린 시간 (28일 이동 평균)",
+            MetricUnit.HOURS,
+            true,
+            orderedComponentLabels(),
+            false
+    ),
+
+    // ===== 유저 지표 =====
+    USER_COMPLETED_TOTAL(
+            "누적 가입자 수",
+            "현재 가입된 총 사용자 수",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            true
+    ),
+    USER_SIGNUP_DAILY(
+            "일일 가입자 수",
+            "이 날 신규 가입한 사용자 수",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            false
+    ),
+    USER_WITHDRAWAL_DAILY(
+            "일일 탈퇴자 수",
+            "이 날 탈퇴한 사용자 수",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            false
+    ),
+    USER_DAU(
+            "DAU",
+            "일일 활성 사용자 수(그 날 서비스에 몇 명이 접속했는지 기준)",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            true
+    ),
+    USER_WAU(
+            "WAU",
+            "주간 활성 사용자 수(최근 7일)",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            false
+    ),
+    USER_MAU(
+            "MAU",
+            "월간 활성 사용자 수(최근 30일)",
+            MetricUnit.COUNT,
+            false,
+            Map.of(),
+            false
+    );
+
+    private final String label;
+    private final String description;
+    private final MetricUnit unit;
+    private final boolean multiSeries;
+    private final Map<String, String> componentLabels;
+    private final boolean defaultActive;
+
+    StatMetric(
+            String label,
+            String description,
+            MetricUnit unit,
+            boolean multiSeries,
+            Map<String, String> componentLabels,
+            boolean defaultActive
+    ) {
+        this.label = label;
+        this.description = description;
+        this.unit = unit;
+        this.multiSeries = multiSeries;
+        this.componentLabels = componentLabels;
+        this.defaultActive = defaultActive;
+    }
+
+    public String label() { return label; }
+    public String description() { return description; }
+    public MetricUnit unit() { return unit; }
+    public boolean multiSeries() { return multiSeries; }
+    public Map<String, String> componentLabels() { return componentLabels; }
+    public boolean defaultActive() { return defaultActive; }
+
+    private static Map<String, String> orderedComponentLabels() {
+        Map<String, String> labels = new LinkedHashMap<>();
+        labels.put("min_hours", "최소");
+        labels.put("max_hours", "최대");
+        labels.put("avg_hours", "평균");
+        labels.put("stddev_hours", "표준편차");
+        return Collections.unmodifiableMap(labels);
+    }
+
+    public enum MetricUnit {
+        COUNT,
+        RATIO,
+        HOURS
+    }
+}
+
+
+// ===== java/apu/saerok_admin/infra/unsplash/UnsplashService.java =====
+package apu.saerok_admin.infra.unsplash;
+
+import apu.saerok_admin.config.UnsplashProperties;
+import com.fasterxml.jackson.databind.JsonNode;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import java.net.URI;
+import java.util.Objects;
+import org.springframework.http.HttpHeaders;
+import org.springframework.stereotype.Service;
+import org.springframework.util.StringUtils;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriComponentsBuilder;
+
+/**
+ * 서버 측에서만 Unsplash API 를 호출한다.
+ * - random photo 조회 (orientation: landscape | portrait)
+ * - download_location 트리거 (사용 이벤트 카운트)
+ * - 브라우저에는 이미지/링크 정보만 내려준다 (키 절대 노출 X)
+ */
+@Service
+public class UnsplashService {
+
+    private final RestClient client;
+    private final UnsplashProperties props;
+    @SuppressWarnings("unused")
+    private final ObjectMapper mapper;
+
+    public UnsplashService(UnsplashProperties props, ObjectMapper mapper) {
+        this.props = Objects.requireNonNull(props, "UnsplashProperties must not be null");
+        this.mapper = mapper;
+        if (!StringUtils.hasText(props.getAccessKey())) {
+            throw new IllegalStateException("Unsplash access key is not configured. Set unsplash.access-key.");
+        }
+        this.client = RestClient.builder()
+                .baseUrl("https://api.unsplash.com")
+                .defaultHeader(HttpHeaders.AUTHORIZATION, "Client-ID " + props.getAccessKey())
+                .defaultHeader("Accept-Version", "v1")
+                .build();
+    }
+
+    /** orientation 값에 따라 한 장만 내려준다 (기본: landscape). */
+    public Photo fetchRandomBird(String orientation) {
+        String normalized = normalizeOrientation(orientation);
+        return fetchOne(normalized);
+    }
+
+    private Photo fetchOne(String orientation) {
+        JsonNode node = client.get()
+                .uri(uriBuilder -> uriBuilder
+                        .path("/photos/random")
+                        .queryParam("query", "bird on branch, small bird, passerine, morning light")
+                        .queryParam("orientation", orientation)   // landscape | portrait
+                        .queryParam("content_filter", "high")
+                        .queryParam("count", 1)
+                        .build())
+                .retrieve()
+                .body(JsonNode.class);
+
+        JsonNode photo = (node != null && node.isArray() && node.size() > 0) ? node.get(0) : node;
+        if (photo == null || photo.isNull()) {
+            throw new IllegalStateException("Empty response from Unsplash random photo API (" + orientation + ")");
+        }
+
+        String baseUrl = chooseBaseUrl(photo);
+        if (!StringUtils.hasText(baseUrl)) {
+            throw new IllegalStateException("Unsplash response missing image URLs (" + orientation + ")");
+        }
+
+        // 링크/저작자/홈 (utm_source=appName, utm_medium=referral)
+        String appName = props.getAppName();
+        String photoHtml = addUtm(textAt(photo, "/links/html"), appName);
+        String photographerName = textAt(photo, "/user/name");
+        String photographerLink = addUtm(textAt(photo, "/user/links/html"), appName);
+        String unsplashHome     = addUtm("https://unsplash.com", appName);
+
+        // 다운로드 트리거 (필수)
+        String downloadLocation = textAt(photo, "/links/download_location");
+        if (StringUtils.hasText(downloadLocation)) {
+            URI dlUri = UriComponentsBuilder.fromUriString(downloadLocation)
+                    .queryParam("utm_source", StringUtils.hasText(appName) ? appName : null)
+                    .queryParam("utm_medium", StringUtils.hasText(appName) ? "referral" : null)
+                    .build(true).toUri();
+            client.get().uri(dlUri).retrieve().toBodilessEntity(); // 응답 바디 불필요
+        }
+
+        return new Photo(baseUrl, photoHtml, photographerName, photographerLink, unsplashHome);
+    }
+
+    private static String normalizeOrientation(String o) {
+        if (!StringUtils.hasText(o)) return "landscape";
+        String v = o.trim().toLowerCase();
+        if ("portrait".equals(v)) return "portrait";
+        return "landscape";
+    }
+
+    private static String chooseBaseUrl(JsonNode photo) {
+        String raw = textAt(photo, "/urls/raw");
+        String full = textAt(photo, "/urls/full");
+        String regular = textAt(photo, "/urls/regular");
+        if (StringUtils.hasText(raw)) return raw;
+        if (StringUtils.hasText(full)) return full;
+        return regular;
+    }
+
+    private static String textAt(JsonNode node, String pointer) {
+        if (node == null) return null;
+        JsonNode n = node.at(pointer);
+        return n.isMissingNode() || n.isNull() ? null : n.asText();
+    }
+
+    private static String addUtm(String url, String app) {
+        if (!StringUtils.hasText(url)) return url;
+        UriComponentsBuilder b = UriComponentsBuilder.fromUriString(url);
+        if (StringUtils.hasText(app)) {
+            b.queryParam("utm_source", app).queryParam("utm_medium", "referral");
+        }
+        return b.build(true).toString();
+    }
+
+    /** 단일 사진 메타 */
+    public record Photo(
+            String imageUrl,          // 원본 CDN base URL (프론트에서 w/h/fit=crop 적용)
+            String htmlLink,          // 사진 상세 페이지 (utm 포함)
+            String photographerName,
+            String photographerLink,  // 작가 페이지 (utm 포함)
+            String unsplashHome       // 홈 (utm 포함)
+    ) {}
+}
+
+
+// ===== java/apu/saerok_admin/SaerokAdminApplication.java =====
+package apu.saerok_admin;
+
+import org.springframework.boot.SpringApplication;
+import org.springframework.boot.autoconfigure.SpringBootApplication;
+
+@SpringBootApplication
+public class SaerokAdminApplication {
+
+	public static void main(String[] args) {
+		SpringApplication.run(SaerokAdminApplication.class, args);
+	}
+
+}
+
+
+// ===== java/apu/saerok_admin/security/BackendUnauthorizedException.java =====
+package apu.saerok_admin.security;
+
+public class BackendUnauthorizedException extends RuntimeException {
+
+    public BackendUnauthorizedException(String message) {
+        super(message);
+    }
+
+    public BackendUnauthorizedException(String message, Throwable cause) {
+        super(message, cause);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/security/LoginSession.java =====
+package apu.saerok_admin.security;
+
+import java.io.Serializable;
+
+public record LoginSession(String accessToken) implements Serializable {
+
+    public static final String ATTRIBUTE_NAME = "SAEROK_LOGIN_SESSION";
+}
+
+
+// ===== java/apu/saerok_admin/security/LoginSessionAuthenticationFilter.java =====
+package apu.saerok_admin.security;
+
+import jakarta.servlet.FilterChain;
+import jakarta.servlet.ServletException;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import java.io.IOException;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
+import org.springframework.web.filter.OncePerRequestFilter;
+
+public class LoginSessionAuthenticationFilter extends OncePerRequestFilter {
+
+    private final LoginSessionManager loginSessionManager;
+
+    public LoginSessionAuthenticationFilter(LoginSessionManager loginSessionManager) {
+        this.loginSessionManager = loginSessionManager;
+    }
+
+    @Override
+    protected void doFilterInternal(
+            HttpServletRequest request,
+            HttpServletResponse response,
+            FilterChain filterChain
+    ) throws ServletException, IOException {
+        if (SecurityContextHolder.getContext().getAuthentication() == null) {
+            loginSessionManager.findSession(request).ifPresent(session -> {
+                SaerokAdminAuthentication authentication = loginSessionManager.createAuthentication(session);
+                authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
+                SecurityContextHolder.getContext().setAuthentication(authentication);
+            });
+        }
+        filterChain.doFilter(request, response);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/security/LoginSessionManager.java =====
+package apu.saerok_admin.security;
+
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import jakarta.servlet.http.HttpSession;
+import java.time.Duration;
+import java.util.List;
+import java.util.Optional;
+import org.springframework.http.HttpHeaders;
+import org.springframework.http.ResponseCookie;
+import org.springframework.security.core.Authentication;
+import org.springframework.security.core.context.SecurityContext;
+import org.springframework.security.core.context.SecurityContextHolder;
+import org.springframework.security.web.context.HttpSessionSecurityContextRepository;
+import org.springframework.stereotype.Component;
+import org.springframework.util.StringUtils;
+import org.springframework.web.context.request.RequestContextHolder;
+import org.springframework.web.context.request.ServletRequestAttributes;
+
+@Component
+public class LoginSessionManager {
+
+    private static final String PRINCIPAL = "SaerokAdmin";
+
+    public void establishSession(HttpServletRequest request, LoginSession loginSession) {
+        HttpSession session = request.getSession(true);
+        session.setAttribute(LoginSession.ATTRIBUTE_NAME, loginSession);
+
+        SaerokAdminAuthentication authentication = createAuthentication(loginSession);
+        SecurityContext context = SecurityContextHolder.createEmptyContext();
+        context.setAuthentication(authentication);
+        SecurityContextHolder.setContext(context);
+        session.setAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY, context);
+    }
+
+    public Optional<LoginSession> findSession(HttpServletRequest request) {
+        HttpSession session = request.getSession(false);
+        if (session == null) {
+            return Optional.empty();
+        }
+        Object attribute = session.getAttribute(LoginSession.ATTRIBUTE_NAME);
+        if (attribute instanceof LoginSession loginSession) {
+            return Optional.of(loginSession);
+        }
+        return Optional.empty();
+    }
+
+    public Optional<LoginSession> currentSession() {
+        ServletRequestAttributes attributes = currentRequestAttributes();
+        if (attributes == null) {
+            return Optional.empty();
+        }
+        HttpSession session = attributes.getRequest().getSession(false);
+        if (session == null) {
+            return Optional.empty();
+        }
+        Object attribute = session.getAttribute(LoginSession.ATTRIBUTE_NAME);
+        if (attribute instanceof LoginSession loginSession) {
+            return Optional.of(loginSession);
+        }
+        return Optional.empty();
+    }
+
+    public Optional<String> currentAccessToken() {
+        return currentSession().map(LoginSession::accessToken);
+    }
+
+    public void updateAccessToken(String accessToken) {
+        if (!StringUtils.hasText(accessToken)) {
+            clearCurrentSession();
+            return;
+        }
+        ServletRequestAttributes attributes = currentRequestAttributes();
+        if (attributes == null) {
+            return;
+        }
+        HttpServletRequest request = attributes.getRequest();
+        HttpSession session = request.getSession(false);
+        if (session == null) {
+            return;
+        }
+        LoginSession updatedSession = new LoginSession(accessToken);
+        session.setAttribute(LoginSession.ATTRIBUTE_NAME, updatedSession);
+
+        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
+        if (authentication instanceof SaerokAdminAuthentication adminAuthentication) {
+            adminAuthentication.updateLoginSession(updatedSession);
+        }
+        session.setAttribute(
+                HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY,
+                SecurityContextHolder.getContext()
+        );
+    }
+
+    public void clearSession(HttpServletRequest request) {
+        HttpSession session = request.getSession(false);
+        if (session != null) {
+            session.removeAttribute(LoginSession.ATTRIBUTE_NAME);
+            session.removeAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY);
+        }
+        SecurityContextHolder.clearContext();
+    }
+
+    public void clearCurrentSession() {
+        ServletRequestAttributes attributes = currentRequestAttributes();
+        if (attributes != null) {
+            HttpSession session = attributes.getRequest().getSession(false);
+            if (session != null) {
+                session.removeAttribute(LoginSession.ATTRIBUTE_NAME);
+                session.removeAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY);
+            }
+        }
+        SecurityContextHolder.clearContext();
+    }
+
+    public void writeRefreshCookiesToResponse(List<String> cookies) {
+        if (cookies == null || cookies.isEmpty()) {
+            return;
+        }
+        ServletRequestAttributes attributes = currentRequestAttributes();
+        if (attributes == null) {
+            return;
+        }
+        HttpServletResponse response = attributes.getResponse();
+        if (response == null) {
+            return;
+        }
+        cookies.forEach(cookie -> response.addHeader(HttpHeaders.SET_COOKIE, cookie));
+    }
+
+    public void deleteRefreshCookie(HttpServletResponse response, boolean secure) {
+        ResponseCookie cookie = ResponseCookie.from("refreshToken", "")
+                .maxAge(Duration.ZERO)
+                .path("/")
+                .httpOnly(true)
+                .secure(secure)
+                .build();
+        response.addHeader(HttpHeaders.SET_COOKIE, cookie.toString());
+    }
+
+    public SaerokAdminAuthentication createAuthentication(LoginSession loginSession) {
+        return new SaerokAdminAuthentication(PRINCIPAL, loginSession);
+    }
+
+    private ServletRequestAttributes currentRequestAttributes() {
+        return (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/security/OAuthStateManager.java =====
+package apu.saerok_admin.security;
+
+import jakarta.servlet.http.HttpSession;
+import java.security.SecureRandom;
+import java.util.Base64;
+import java.util.Objects;
+import org.springframework.stereotype.Component;
+
+@Component
+public class OAuthStateManager {
+
+    public static final String ATTRIBUTE_NAME = "SAEROK_OAUTH_STATE";
+    private static final SecureRandom SECURE_RANDOM = new SecureRandom();
+
+    public String createState(HttpSession session) {
+        String state = generateStateToken();
+        session.setAttribute(ATTRIBUTE_NAME, state);
+        return state;
+    }
+
+    public boolean consumeState(HttpSession session, String providedState) {
+        if (session == null) {
+            return false;
+        }
+        Object stored = session.getAttribute(ATTRIBUTE_NAME);
+        session.removeAttribute(ATTRIBUTE_NAME);
+        if (!(stored instanceof String storedState)) {
+            return false;
+        }
+        return Objects.equals(storedState, providedState);
+    }
+
+    private String generateStateToken() {
+        byte[] randomBytes = new byte[24];
+        SECURE_RANDOM.nextBytes(randomBytes);
+        return Base64.getUrlEncoder().withoutPadding().encodeToString(randomBytes);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/security/SaerokAdminAuthentication.java =====
+package apu.saerok_admin.security;
+
+import java.util.Collection;
+import java.util.List;
+import org.springframework.security.authentication.AbstractAuthenticationToken;
+import org.springframework.security.core.GrantedAuthority;
+import org.springframework.security.core.authority.SimpleGrantedAuthority;
+
+public class SaerokAdminAuthentication extends AbstractAuthenticationToken {
+
+    private final Object principal;
+    private LoginSession loginSession;
+
+    public SaerokAdminAuthentication(Object principal, LoginSession loginSession) {
+        this(principal, loginSession, List.of(new SimpleGrantedAuthority("ROLE_ADMIN")));
+    }
+
+    private SaerokAdminAuthentication(
+            Object principal,
+            LoginSession loginSession,
+            Collection<? extends GrantedAuthority> authorities
+    ) {
+        super(authorities);
+        this.principal = principal;
+        this.loginSession = loginSession;
+        setAuthenticated(true);
+    }
+
+    @Override
+    public Object getCredentials() {
+        return "";
+    }
+
+    @Override
+    public Object getPrincipal() {
+        return principal;
+    }
+
+    public LoginSession getLoginSession() {
+        return loginSession;
+    }
+
+    public String getAccessToken() {
+        return loginSession.accessToken();
+    }
+
+    public void updateLoginSession(LoginSession loginSession) {
+        this.loginSession = loginSession;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/AdController.java =====
+
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.ad.AdminAdClient;
+import apu.saerok_admin.infra.ad.dto.AdImagePresignResponse;
+import apu.saerok_admin.infra.ad.dto.AdminAdImagePresignRequest;
+import apu.saerok_admin.infra.ad.dto.AdminAdListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminAdPlacementListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminCreateAdPlacementRequest;
+import apu.saerok_admin.infra.ad.dto.AdminCreateAdRequest;
+import apu.saerok_admin.infra.ad.dto.AdminCreateSlotRequest;
+import apu.saerok_admin.infra.ad.dto.AdminSlotListResponse;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateAdPlacementRequest;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateAdRequest;
+import apu.saerok_admin.infra.ad.dto.AdminUpdateSlotRequest;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.CurrentAdminProfile;
+import apu.saerok_admin.web.view.ad.AdForm;
+import apu.saerok_admin.web.view.ad.AdListItem;
+import apu.saerok_admin.web.view.ad.AdPlacementForm;
+import apu.saerok_admin.web.view.ad.AdPlacementGroup;
+import apu.saerok_admin.web.view.ad.AdPlacementItem;
+import apu.saerok_admin.web.view.ad.AdSlotForm;
+import apu.saerok_admin.web.view.ad.AdSlotListItem;
+import apu.saerok_admin.web.view.ad.AdSummaryMetrics;
+import apu.saerok_admin.web.view.ad.PlacementTimeStatus;
+import java.time.Clock;
+import java.time.LocalDate;
+import java.util.ArrayList;
+import java.util.Comparator;
+import java.util.LinkedHashMap;
+import java.util.List;
+import java.util.Locale;
+import java.util.Map;
+import java.util.Objects;
+import java.util.Optional;
+import java.util.stream.Collectors;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.http.HttpStatus;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.ModelAttribute;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestBody;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.ResponseBody;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.servlet.mvc.support.RedirectAttributes;
+
+@Controller
+@RequestMapping("/ads")
+public class AdController {
+
+    private static final Logger log = LoggerFactory.getLogger(AdController.class);
+    private static final String PERMISSION_ADMIN_AD_WRITE = "ADMIN_AD_WRITE";
+    private static final String PERMISSION_ADMIN_SLOT_DELETE = "ADMIN_SLOT_DELETE";
+
+    private final AdminAdClient adminAdClient;
+    private final Clock clock;
+
+    public AdController(AdminAdClient adminAdClient, Clock clock) {
+        this.adminAdClient = adminAdClient;
+        this.clock = clock;
+    }
+
+    @GetMapping
+    public String index(@RequestParam(name = "tab", defaultValue = "ads") String tab,
+                        Model model) {
+        model.addAttribute("pageTitle", "광고 관리");
+        model.addAttribute("activeMenu", "ads");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("광고 관리")
+        ));
+        model.addAttribute("toastMessages", List.of());
+
+        LocalDate today = LocalDate.now(clock);
+
+        List<AdListItem> adItems = List.of();
+        String adsLoadError = null;
+        try {
+            AdminAdListResponse response = adminAdClient.listAds();
+            List<AdminAdListResponse.Item> rawItems = Optional.ofNullable(response)
+                    .map(AdminAdListResponse::items)
+                    .orElseGet(List::of);
+            adItems = rawItems.stream()
+                    .map(this::toAdListItem)
+                    .sorted(Comparator.comparing(AdListItem::createdAt, Comparator.nullsLast(Comparator.reverseOrder())))
+                    .toList();
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load ads. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            adsLoadError = "광고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load ads.", exception);
+            adsLoadError = "광고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        }
+
+        List<AdPlacementItem> placementItems = List.of();
+        String placementsLoadError = null;
+        try {
+            AdminAdPlacementListResponse placementResponse = adminAdClient.listPlacements();
+            List<AdminAdPlacementListResponse.Item> rawPlacements = Optional.ofNullable(placementResponse)
+                    .map(AdminAdPlacementListResponse::items)
+                    .orElseGet(List::of);
+            placementItems = rawPlacements.stream()
+                    .map(item -> toPlacementItem(item, today))
+                    .sorted(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())))
+                    .toList();
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load ad placements. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            placementsLoadError = "광고 노출 스케줄을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load ad placements.", exception);
+            placementsLoadError = "광고 노출 스케줄을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        }
+
+        Map<Long, Long> placementCountsBySlot = placementItems.stream()
+                .collect(Collectors.groupingBy(AdPlacementItem::slotId, Collectors.counting()));
+
+        List<AdSlotListItem> slotItems = List.of();
+        String slotsLoadError = null;
+        try {
+            AdminSlotListResponse slotResponse = adminAdClient.listSlots();
+            List<AdminSlotListResponse.Item> rawSlots = Optional.ofNullable(slotResponse)
+                    .map(AdminSlotListResponse::items)
+                    .orElseGet(List::of);
+            slotItems = rawSlots.stream()
+                    .map(item -> toSlotListItem(item, placementCountsBySlot))
+                    .sorted(Comparator.comparing(AdSlotListItem::code, Comparator.nullsLast(String::compareToIgnoreCase)))
+                    .toList();
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load ad slots. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            slotsLoadError = "광고 위치 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load ad slots.", exception);
+            slotsLoadError = "광고 위치 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
+        }
+
+        Map<Long, AdSlotListItem> slotMap = slotItems.stream()
+                .collect(Collectors.toMap(AdSlotListItem::id, item -> item, (left, right) -> left, LinkedHashMap::new));
+
+        List<AdPlacementGroup> placementGroups = buildPlacementGroups(slotItems, slotMap, placementItems);
+
+        int activePlacementCount = (int) placementItems.stream()
+                .filter(item -> item.enabled() && item.timeStatus() == PlacementTimeStatus.ACTIVE)
+                .count();
+        AdSummaryMetrics summaryMetrics = new AdSummaryMetrics(adItems.size(), slotItems.size(), activePlacementCount);
+
+        model.addAttribute("tab", normalizeTab(tab));
+        model.addAttribute("summary", summaryMetrics);
+        model.addAttribute("ads", adItems);
+        model.addAttribute("adsLoadError", adsLoadError);
+        model.addAttribute("slots", slotItems);
+        model.addAttribute("slotsLoadError", slotsLoadError);
+        model.addAttribute("placementsLoadError", placementsLoadError);
+        model.addAttribute("placementGroups", placementGroups);
+        model.addAttribute("hasPlacements", !placementItems.isEmpty());
+        model.addAttribute("toastMessages", List.of());
+
+        return "ads/list";
+    }
+
+    @GetMapping("/new")
+    public String newAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                            Model model,
+                            RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
+            return "redirect:/ads";
+        }
+
+        model.addAttribute("pageTitle", "새 광고 등록");
+        model.addAttribute("activeMenu", "ads");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("광고 관리", "/ads"),
+                Breadcrumb.active("새 광고 등록")
+        ));
+        model.addAttribute("toastMessages", List.of());
+        model.addAttribute("form", new AdForm(null, "", "", "", null, null, null));
+        return "ads/ad-form";
+    }
+
+    @PostMapping
+    public String createAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                           @RequestParam String name,
+                           @RequestParam(name = "targetUrl") String targetUrl,
+                           @RequestParam(name = "memo", required = false) String memo,
+                           @RequestParam(name = "objectKey") String objectKey,
+                           @RequestParam(name = "contentType") String contentType,
+                           RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
+            return "redirect:/ads?tab=ads";
+        }
+
+        if (!StringUtils.hasText(name) || !StringUtils.hasText(targetUrl) || !StringUtils.hasText(objectKey) || !StringUtils.hasText(contentType)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
+            return "redirect:/ads/new";
+        }
+
+        try {
+            adminAdClient.createAd(new AdminCreateAdRequest(name.trim(), trimToNull(memo), objectKey, contentType, targetUrl.trim()));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return "redirect:/ads?tab=ads";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to create ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
+            return "redirect:/ads/new";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to create ad.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
+            return "redirect:/ads/new";
+        }
+    }
+
+    @GetMapping("/edit")
+    public String editAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam("id") Long adId,
+                             Model model,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
+            return "redirect:/ads";
+        }
+
+        try {
+            AdminAdListResponse response = adminAdClient.listAds();
+            Optional<AdminAdListResponse.Item> match = Optional.ofNullable(response)
+                    .map(AdminAdListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(item -> Objects.equals(item.id(), adId))
+                    .findFirst();
+            if (match.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "해당 광고를 찾을 수 없습니다.");
+                return "redirect:/ads";
+            }
+
+            AdminAdListResponse.Item item = match.get();
+            AdForm form = new AdForm(item.id(), item.name(), item.targetUrl(), item.memo(), null, null, item.imageUrl());
+
+            model.addAttribute("pageTitle", "광고 수정");
+            model.addAttribute("activeMenu", "ads");
+            model.addAttribute("breadcrumbs", List.of(
+                    Breadcrumb.of("대시보드", "/"),
+                    Breadcrumb.of("광고 관리", "/ads"),
+                    Breadcrumb.active("광고 수정")
+            ));
+            model.addAttribute("toastMessages", List.of());
+            model.addAttribute("form", form);
+            return "ads/ad-form";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load ad for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load ad for edit.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 정보를 불러오지 못했습니다.");
+        return "redirect:/ads";
+    }
+
+    @PostMapping("/edit")
+    public String updateAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                           @RequestParam("id") Long adId,
+                           @RequestParam String name,
+                           @RequestParam("targetUrl") String targetUrl,
+                           @RequestParam(name = "memo", required = false) String memo,
+                           @RequestParam(name = "objectKey", required = false) String objectKey,
+                           @RequestParam(name = "contentType", required = false) String contentType,
+                           RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
+            return "redirect:/ads?tab=ads";
+        }
+
+        if (!StringUtils.hasText(name) || !StringUtils.hasText(targetUrl)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
+            return "redirect:/ads/edit?id=" + adId;
+        }
+
+        String normalizedObjectKey = StringUtils.hasText(objectKey) ? objectKey : null;
+        String normalizedContentType = StringUtils.hasText(contentType) ? contentType : null;
+
+        try {
+            adminAdClient.updateAd(adId, new AdminUpdateAdRequest(name.trim(), trimToNull(memo), normalizedObjectKey, normalizedContentType, targetUrl.trim()));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return "redirect:/ads?tab=ads";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update ad.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 수정에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        return "redirect:/ads/edit?id=" + adId;
+    }
+
+    @PostMapping("/delete")
+    public String deleteAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                           @RequestParam("id") Long adId,
+                           RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고를 삭제할 권한이 없습니다.");
+            return "redirect:/ads?tab=ads";
+        }
+
+        try {
+            adminAdClient.deleteAd(adId);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to delete ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to delete ad.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        return "redirect:/ads?tab=ads";
+    }
+
+    @GetMapping("/slots/new")
+    public String newSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                              Model model,
+                              RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        model.addAttribute("pageTitle", "새 광고 위치 추가");
+        model.addAttribute("activeMenu", "ads");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
+                Breadcrumb.active("새 광고 위치 추가")
+        ));
+        model.addAttribute("toastMessages", List.of());
+        model.addAttribute("form", new AdSlotForm(null, "", "", 50.0, 60));
+        return "ads/slot-form";
+    }
+
+    @PostMapping("/slots")
+    public String createSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam("code") String code,
+                             @RequestParam(name = "description", required = false) String description,
+                             @RequestParam("fallbackRatio") Double fallbackRatioPercent,
+                             @RequestParam("ttlSeconds") Integer ttlSeconds,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        if (!StringUtils.hasText(code) || fallbackRatioPercent == null || ttlSeconds == null) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
+            return "redirect:/ads/slots/new";
+        }
+
+        double normalizedFallback = Math.max(0, Math.min(100, fallbackRatioPercent));
+        double fallbackRatio = normalizedFallback / 100.0;
+
+        try {
+            adminAdClient.createSlot(new AdminCreateSlotRequest(code.trim(), trimToNull(description), fallbackRatio, ttlSeconds));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return "redirect:/ads?tab=schedule";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to create slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to create slot.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        return "redirect:/ads/slots/new";
+    }
+
+    @GetMapping("/slots/edit")
+    public String editSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                               @RequestParam("id") Long slotId,
+                               Model model,
+                               RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            AdminSlotListResponse response = adminAdClient.listSlots();
+            Optional<AdminSlotListResponse.Item> match = Optional.ofNullable(response)
+                    .map(AdminSlotListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(item -> Objects.equals(item.id(), slotId))
+                    .findFirst();
+            if (match.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "해당 광고 위치를 찾을 수 없습니다.");
+                return "redirect:/ads?tab=schedule";
+            }
+
+            AdminSlotListResponse.Item item = match.get();
+            double fallbackRatioPercent = item.fallbackRatio() != null ? item.fallbackRatio() * 100.0 : 0.0;
+            AdSlotForm form = new AdSlotForm(item.id(), item.name(), item.memo(), fallbackRatioPercent, item.ttlSeconds());
+
+            model.addAttribute("pageTitle", "광고 위치 수정");
+            model.addAttribute("activeMenu", "ads");
+            model.addAttribute("breadcrumbs", List.of(
+                    Breadcrumb.of("대시보드", "/"),
+                    Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
+                    Breadcrumb.active("광고 위치 수정")
+            ));
+            model.addAttribute("toastMessages", List.of());
+            model.addAttribute("form", form);
+            return "ads/slot-form";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load slot for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load slot for edit.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 정보를 불러오지 못했습니다.");
+        return "redirect:/ads?tab=schedule";
+    }
+
+    @PostMapping("/slots/edit")
+    public String updateSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam("id") Long slotId,
+                             @RequestParam(name = "description", required = false) String description,
+                             @RequestParam("fallbackRatio") Double fallbackRatioPercent,
+                             @RequestParam("ttlSeconds") Integer ttlSeconds,
+                             @RequestParam(name = "redirectTab", defaultValue = "slots") String redirectTab,
+                             RedirectAttributes redirectAttributes) {
+        String normalizedRedirectTab = normalizeTab(redirectTab);
+        String successRedirect = "redirect:/ads?tab=" + normalizedRedirectTab;
+        boolean redirectFromSchedule = "schedule".equals(normalizedRedirectTab)
+                && StringUtils.hasText(redirectTab)
+                && !"slots".equalsIgnoreCase(redirectTab);
+        String failureRedirect;
+        if ("ads".equals(normalizedRedirectTab)) {
+            failureRedirect = successRedirect;
+        } else if (redirectFromSchedule) {
+            failureRedirect = successRedirect;
+        } else {
+            failureRedirect = "redirect:/ads/slots/edit?id=" + slotId;
+        }
+
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
+            return successRedirect;
+        }
+
+        if (fallbackRatioPercent == null || ttlSeconds == null) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
+            return failureRedirect;
+        }
+
+        double normalizedFallback = Math.max(0, Math.min(100, fallbackRatioPercent));
+        double fallbackRatio = normalizedFallback / 100.0;
+
+        try {
+            adminAdClient.updateSlot(slotId, new AdminUpdateSlotRequest(trimToNull(description), fallbackRatio, ttlSeconds));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return successRedirect;
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update slot.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 수정에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        return failureRedirect;
+    }
+
+    @PostMapping("/slots/delete")
+    public String deleteSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam("id") Long slotId,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_SLOT_DELETE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 삭제할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            adminAdClient.deleteSlot(slotId);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to delete slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to delete slot.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        return "redirect:/ads?tab=schedule";
+    }
+
+    @GetMapping("/placements/new")
+    public String newPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                   @RequestParam(name = "slotId", required = false) Long preselectedSlotId,
+                                   Model model,
+                                   RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        List<AdListItem> ads = fetchAdOptions();
+        List<AdSlotListItem> slots = fetchSlotOptions();
+
+        model.addAttribute("pageTitle", "새 스케줄 등록");
+        model.addAttribute("activeMenu", "ads");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
+                Breadcrumb.active("새 스케줄 등록")
+        ));
+        model.addAttribute("toastMessages", List.of());
+        model.addAttribute("form", new AdPlacementForm(null, null, preselectedSlotId, null, null, (short) 1, Boolean.TRUE));
+        model.addAttribute("adOptions", ads);
+        model.addAttribute("slotOptions", slots);
+        return "ads/placement-form";
+    }
+
+    @PostMapping("/placements")
+    public String createPlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                  @RequestParam("adId") Long adId,
+                                  @RequestParam("slotId") Long slotId,
+                                  @RequestParam("startDate") String startDate,
+                                  @RequestParam("endDate") String endDate,
+                                  @RequestParam("weight") Short weight,
+                                  @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
+                                  RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            AdminCreateAdPlacementRequest request = new AdminCreateAdPlacementRequest(
+                    adId,
+                    slotId,
+                    LocalDate.parse(startDate),
+                    LocalDate.parse(endDate),
+                    weight,
+                    enabled
+            );
+            adminAdClient.createPlacement(request);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return "redirect:/ads?tab=schedule";
+        } catch (Exception exception) {
+            log.warn("Failed to create placement.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 등록에 실패했습니다. 입력값을 확인해주세요.");
+        return "redirect:/ads/placements/new";
+    }
+
+    @GetMapping("/placements/edit")
+    public String editPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                    @RequestParam("id") Long placementId,
+                                    Model model,
+                                    RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            AdminAdPlacementListResponse response = adminAdClient.listPlacements();
+            Optional<AdminAdPlacementListResponse.Item> match = Optional.ofNullable(response)
+                    .map(AdminAdPlacementListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(item -> Objects.equals(item.id(), placementId))
+                    .findFirst();
+            if (match.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "해당 스케줄을 찾을 수 없습니다.");
+                return "redirect:/ads?tab=schedule";
+            }
+
+            AdminAdPlacementListResponse.Item item = match.get();
+            AdPlacementForm form = new AdPlacementForm(
+                    item.id(),
+                    item.adId(),
+                    item.slotId(),
+                    item.startDate() != null ? item.startDate().toString() : null,
+                    item.endDate() != null ? item.endDate().toString() : null,
+                    item.weight() != null ? item.weight() : (short) 1,
+                    item.enabled()
+            );
+
+            model.addAttribute("pageTitle", "스케줄 수정");
+            model.addAttribute("activeMenu", "ads");
+            model.addAttribute("breadcrumbs", List.of(
+                    Breadcrumb.of("대시보드", "/"),
+                    Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
+                    Breadcrumb.active("스케줄 수정")
+            ));
+            model.addAttribute("toastMessages", List.of());
+            model.addAttribute("form", form);
+            model.addAttribute("adOptions", fetchAdOptions());
+            model.addAttribute("slotOptions", fetchSlotOptions());
+            return "ads/placement-form";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load placement for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load placement for edit.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 정보를 불러오지 못했습니다.");
+        return "redirect:/ads?tab=schedule";
+    }
+
+    @PostMapping("/placements/edit")
+    public String updatePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                  @RequestParam("id") Long placementId,
+                                  @RequestParam("slotId") Long slotId,
+                                  @RequestParam("startDate") String startDate,
+                                  @RequestParam("endDate") String endDate,
+                                  @RequestParam("weight") Short weight,
+                                  @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
+                                  RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            AdminUpdateAdPlacementRequest request = new AdminUpdateAdPlacementRequest(
+                    slotId,
+                    LocalDate.parse(startDate),
+                    LocalDate.parse(endDate),
+                    weight,
+                    enabled
+            );
+            adminAdClient.updatePlacement(placementId, request);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
+            return "redirect:/ads?tab=schedule";
+        } catch (Exception exception) {
+            log.warn("Failed to update placement.", exception);
+        }
+
+        redirectAttributes.addFlashAttribute("flashStatus", "error");
+        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 수정에 실패했습니다. 입력값을 확인해주세요.");
+        return "redirect:/ads/placements/edit?id=" + placementId;
+    }
+
+    @PostMapping("/placements/delete")
+    public String deletePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                  @RequestParam("id") Long placementId,
+                                  RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 삭제할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            adminAdClient.deletePlacement(placementId);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to delete placement. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to delete placement.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        return "redirect:/ads?tab=schedule";
+    }
+
+    @PostMapping("/placements/toggle")
+    public String togglePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                  @RequestParam("id") Long placementId,
+                                  @RequestParam("enabled") boolean enabled,
+                                  RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태를 변경할 권한이 없습니다.");
+            return "redirect:/ads?tab=schedule";
+        }
+
+        try {
+            AdminAdPlacementListResponse response = adminAdClient.listPlacements();
+            Optional<AdminAdPlacementListResponse.Item> match = Optional.ofNullable(response)
+                    .map(AdminAdPlacementListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(item -> Objects.equals(item.id(), placementId))
+                    .findFirst();
+            if (match.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "해당 스케줄을 찾을 수 없습니다.");
+                return "redirect:/ads?tab=schedule";
+            }
+
+            AdminAdPlacementListResponse.Item item = match.get();
+            AdminUpdateAdPlacementRequest request = new AdminUpdateAdPlacementRequest(
+                    item.slotId(),
+                    item.startDate(),
+                    item.endDate(),
+                    item.weight(),
+                    enabled
+            );
+            adminAdClient.updatePlacement(placementId, request);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", enabled ? "이 스케줄을 다시 활성화합니다." : "저장되었습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to toggle placement. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태 변경에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to toggle placement.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태 변경에 실패했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        return "redirect:/ads?tab=schedule";
+    }
+
+    @PostMapping("/image/presign")
+    @ResponseBody
+    public ResponseEntity<?> presignImage(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                          @RequestBody Map<String, String> payload) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
+            return ResponseEntity.status(HttpStatus.FORBIDDEN)
+                    .body(Map.of("message", "이미지 업로드 권한이 없습니다."));
+        }
+
+        String contentType = payload != null ? payload.get("contentType") : null;
+        if (!StringUtils.hasText(contentType)) {
+            return ResponseEntity.badRequest().body(Map.of("message", "contentType이 필요합니다."));
+        }
+
+        try {
+            AdImagePresignResponse presign = adminAdClient.generateAdImagePresignUrl(new AdminAdImagePresignRequest(contentType));
+            return ResponseEntity.ok(Map.of(
+                    "presignedUrl", presign.presignedUrl(),
+                    "objectKey", presign.objectKey()
+            ));
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to request ad image presign. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            return ResponseEntity.status(exception.getStatusCode()).body(Map.of("message", "Presigned URL 발급에 실패했습니다."));
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to request ad image presign.", exception);
+            return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR)
+                    .body(Map.of("message", "Presigned URL 발급에 실패했습니다."));
+        }
+    }
+
+    private String normalizeTab(String tab) {
+        if (!StringUtils.hasText(tab)) {
+            return "ads";
+        }
+        String tabLower = tab.toLowerCase(Locale.ROOT);
+        return switch (tabLower) {
+            case "ads" -> "ads";
+            case "slots", "placements", "schedule" -> "schedule";
+            default -> "ads";
+        };
+    }
+
+    private AdListItem toAdListItem(AdminAdListResponse.Item item) {
+        return new AdListItem(
+                item.id(),
+                item.name(),
+                item.memo(),
+                item.imageUrl(),
+                item.contentType(),
+                item.targetUrl(),
+                item.createdAt(),
+                item.updatedAt()
+        );
+    }
+
+    private AdSlotListItem toSlotListItem(AdminSlotListResponse.Item item, Map<Long, Long> placementCountsBySlot) {
+        double fallbackRatioPercent = item.fallbackRatio() != null ? item.fallbackRatio() * 100.0 : 0.0;
+        int ttlSeconds = item.ttlSeconds() != null ? item.ttlSeconds() : 0;
+        int connectedCount = placementCountsBySlot.getOrDefault(item.id(), 0L).intValue();
+        return new AdSlotListItem(
+                item.id(),
+                item.name(),
+                item.memo(),
+                fallbackRatioPercent,
+                ttlSeconds,
+                item.createdAt(),
+                item.updatedAt(),
+                connectedCount
+        );
+    }
+
+    private AdPlacementItem toPlacementItem(AdminAdPlacementListResponse.Item item, LocalDate today) {
+        PlacementTimeStatus timeStatus = resolveTimeStatus(item, today);
+        boolean enabled = Boolean.TRUE.equals(item.enabled());
+        short weight = item.weight() != null ? item.weight() : (short) 1;
+        return new AdPlacementItem(
+                item.id(),
+                item.adId(),
+                item.adName(),
+                item.adImageUrl(),
+                item.slotId(),
+                item.slotName(),
+                item.startDate(),
+                item.endDate(),
+                weight,
+                enabled,
+                item.createdAt(),
+                item.updatedAt(),
+                timeStatus,
+                0.0
+        );
+    }
+
+    private PlacementTimeStatus resolveTimeStatus(AdminAdPlacementListResponse.Item item, LocalDate today) {
+        LocalDate start = item.startDate();
+        LocalDate end = item.endDate();
+        if (start == null || end == null) {
+            return PlacementTimeStatus.ACTIVE;
+        }
+        if (today.isBefore(start)) {
+            return PlacementTimeStatus.UPCOMING;
+        }
+        if (today.isAfter(end)) {
+            return PlacementTimeStatus.ENDED;
+        }
+        return PlacementTimeStatus.ACTIVE;
+    }
+
+    private List<AdPlacementGroup> buildPlacementGroups(List<AdSlotListItem> slotItems,
+                                                        Map<Long, AdSlotListItem> slotMap,
+                                                        List<AdPlacementItem> placements) {
+        Map<Long, List<AdPlacementItem>> placementsBySlot = placements.stream()
+                .collect(Collectors.groupingBy(AdPlacementItem::slotId, LinkedHashMap::new, Collectors.toCollection(ArrayList::new)));
+
+        List<AdPlacementGroup> groups = new ArrayList<>();
+        for (AdSlotListItem slot : slotItems) {
+            List<AdPlacementItem> slotPlacements = new ArrayList<>(placementsBySlot.getOrDefault(slot.id(), List.of()));
+            slotPlacements.sort(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())));
+            List<AdPlacementItem> enrichedPlacements = applyProbability(slot.fallbackRatioPercent(), slotPlacements);
+            groups.add(new AdPlacementGroup(
+                    slot.id(),
+                    slot.code(),
+                    slot.description(),
+                    slot.fallbackRatioPercent(),
+                    slot.ttlSeconds(),
+                    List.copyOf(enrichedPlacements)
+            ));
+        }
+
+        // Placements whose slot is missing from slot list
+        placementsBySlot.forEach((slotId, items) -> {
+            if (slotId == null || slotMap.containsKey(slotId)) {
+                return;
+            }
+            items.sort(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())));
+            List<AdPlacementItem> enrichedPlacements = applyProbability(0.0, items);
+            AdPlacementItem sample = items.get(0);
+            groups.add(new AdPlacementGroup(slotId, sample.slotName(), null, 0.0, 0, List.copyOf(enrichedPlacements)));
+        });
+
+        return groups;
+    }
+
+    private List<AdPlacementItem> applyProbability(double fallbackRatioPercent, List<AdPlacementItem> placements) {
+        double normalizedFallback = Math.max(0.0, Math.min(100.0, fallbackRatioPercent));
+        double remainingRatio = Math.max(0.0, 100.0 - normalizedFallback);
+        double totalWeight = placements.stream()
+                .filter(AdPlacementItem::isProbabilityEligible)
+                .mapToDouble(AdPlacementItem::weight)
+                .sum();
+
+        List<AdPlacementItem> results = new ArrayList<>(placements.size());
+        for (AdPlacementItem item : placements) {
+            double probability = 0.0;
+            if (item.isProbabilityEligible() && totalWeight > 0.0) {
+                probability = remainingRatio * (item.weight() / totalWeight);
+            }
+            results.add(item.withDisplayProbability(probability));
+        }
+        return results;
+    }
+
+    private List<AdListItem> fetchAdOptions() {
+        try {
+            AdminAdListResponse response = adminAdClient.listAds();
+            return Optional.ofNullable(response)
+                    .map(AdminAdListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(this::toAdListItem)
+                    .sorted(Comparator.comparing(AdListItem::name, Comparator.nullsLast(String::compareToIgnoreCase)))
+                    .toList();
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load ads for options.", exception);
+            return List.of();
+        }
+    }
+
+    private List<AdSlotListItem> fetchSlotOptions() {
+        try {
+            AdminSlotListResponse response = adminAdClient.listSlots();
+            return Optional.ofNullable(response)
+                    .map(AdminSlotListResponse::items)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(item -> toSlotListItem(item, Map.of()))
+                    .sorted(Comparator.comparing(AdSlotListItem::code, Comparator.nullsLast(String::compareToIgnoreCase)))
+                    .toList();
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load slots for options.", exception);
+            return List.of();
+        }
+    }
+
+    private String trimToNull(String value) {
+        if (!StringUtils.hasText(value)) {
+            return null;
+        }
+        String trimmed = value.trim();
+        return trimmed.isEmpty() ? null : trimmed;
+    }
+}
+
+
+
+
+// ===== java/apu/saerok_admin/web/AdminAuditLogController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.audit.AdminAuditLogClient;
+import apu.saerok_admin.infra.audit.dto.AdminAuditLogListResponse;
+import apu.saerok_admin.web.view.AdminAuditLogItem;
+import apu.saerok_admin.web.view.Breadcrumb;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import java.time.LocalDateTime;
+import java.util.ArrayList;
+import java.util.LinkedHashMap;
+import java.util.List;
+import java.util.Locale;
+import java.util.Map;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+
+@Controller
+@RequestMapping("/admin/audit-logs")
+public class AdminAuditLogController {
+
+    private static final Logger log = LoggerFactory.getLogger(AdminAuditLogController.class);
+    private static final int DEFAULT_PAGE_SIZE = 20;
+    private static final List<Integer> PAGE_SIZE_OPTIONS = List.of(10, 20, 50);
+    private static final Map<String, ActionPresentation> ACTION_PRESENTATIONS = Map.ofEntries(
+            Map.entry("REPORT_IGNORED", new ActionPresentation("신고 무시", "신고를 추가 조치 없이 마감했습니다.", "text-bg-secondary")),
+            Map.entry("COLLECTION_DELETED", new ActionPresentation("새록 삭제", "신고된 새록을 삭제했습니다.", "text-bg-danger")),
+            Map.entry("COMMENT_DELETED", new ActionPresentation("댓글 삭제", "신고된 댓글을 삭제했습니다.", "text-bg-danger")),
+            Map.entry("AD_CREATED", new ActionPresentation("광고 등록", "새 광고를 등록했습니다.", "text-bg-success")),
+            Map.entry("AD_UPDATED", new ActionPresentation("광고 수정", "기존 광고 정보를 수정했습니다.", "text-bg-info")),
+            Map.entry("AD_DELETED", new ActionPresentation("광고 삭제", "광고를 삭제했습니다.", "text-bg-danger")),
+            Map.entry("SLOT_CREATED", new ActionPresentation("광고 위치 등록", "새 광고 위치를 등록했습니다.", "text-bg-success")),
+            Map.entry("SLOT_UPDATED", new ActionPresentation("광고 위치 수정", "광고 위치 정보를 수정했습니다.", "text-bg-info")),
+            Map.entry("SLOT_DELETED", new ActionPresentation("광고 위치 삭제", "광고 위치를 삭제했습니다.", "text-bg-danger")),
+            Map.entry("AD_PLACEMENT_CREATED", new ActionPresentation("광고 스케줄 등록", "새 광고 스케줄을 등록했습니다.", "text-bg-success")),
+            Map.entry("AD_PLACEMENT_UPDATED", new ActionPresentation("광고 스케줄 수정", "광고 스케줄을 수정했습니다.", "text-bg-info")),
+            Map.entry("AD_PLACEMENT_DELETED", new ActionPresentation("광고 스케줄 삭제", "광고 스케줄을 삭제했습니다.", "text-bg-danger"))
+    );
+    private static final Map<String, String> TARGET_LABELS = Map.ofEntries(
+            Map.entry("REPORT_COLLECTION", "새록 신고"),
+            Map.entry("REPORT_COMMENT", "댓글 신고"),
+            Map.entry("COLLECTION", "새록"),
+            Map.entry("COMMENT", "댓글"),
+            Map.entry("AD", "광고"),
+            Map.entry("SLOT", "광고 위치"),
+            Map.entry("AD_PLACEMENT", "광고 스케줄")
+    );
+    private static final String UNKNOWN_ACTION_LABEL = "기록되지 않은 작업";
+    private static final String UNKNOWN_ACTION_DESCRIPTION = "정의되지 않은 관리자 활동입니다.";
+    private static final String UNKNOWN_ACTION_BADGE = "text-bg-secondary";
+    private static final String UNKNOWN_TARGET_LABEL = "알 수 없는 대상";
+    private static final ObjectMapper METADATA_MAPPER = new ObjectMapper();
+
+    private final AdminAuditLogClient adminAuditLogClient;
+
+    public AdminAuditLogController(AdminAuditLogClient adminAuditLogClient) {
+        this.adminAuditLogClient = adminAuditLogClient;
+    }
+
+    @GetMapping
+    public String list(@RequestParam(name = "page", required = false) Integer page,
+                       @RequestParam(name = "size", required = false) Integer size,
+                       Model model) {
+        model.addAttribute("pageTitle", "관리자 활동 로그");
+        model.addAttribute("activeMenu", "adminAuditLogs");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("관리자 활동 로그")
+        ));
+        ensureToastMessages(model);
+
+        int resolvedPage = page != null && page >= 1 ? page : 1;
+        int resolvedSize = size != null && size > 0 ? size : DEFAULT_PAGE_SIZE;
+
+        try {
+            AdminAuditLogListResponse response = adminAuditLogClient.listAuditLogs(resolvedPage, resolvedSize);
+            List<AdminAuditLogItem> logs = response != null && response.items() != null
+                    ? response.items().stream().map(this::toViewItem).toList()
+                    : List.of();
+
+            int rangeStart = logs.isEmpty() ? 0 : (resolvedPage - 1) * resolvedSize + 1;
+            int rangeEnd = (resolvedPage - 1) * resolvedSize + logs.size();
+
+            model.addAttribute("logs", logs);
+            model.addAttribute("page", resolvedPage);
+            model.addAttribute("size", resolvedSize);
+            model.addAttribute("hasPrevious", resolvedPage > 1);
+            model.addAttribute("hasNext", logs.size() == resolvedSize);
+            model.addAttribute("rangeStart", rangeStart);
+            model.addAttribute("rangeEnd", rangeEnd);
+            model.addAttribute("loadErrorMessage", null);
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load admin audit logs. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            attachEmptyState(model, resolvedPage, resolvedSize,
+                    "관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException exception) {
+            log.warn("Failed to load admin audit logs.", exception);
+            attachEmptyState(model, resolvedPage, resolvedSize,
+                    "관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        model.addAttribute("pageSizeOptions", PAGE_SIZE_OPTIONS);
+        return "admin-audit/list";
+    }
+
+    private AdminAuditLogItem toViewItem(AdminAuditLogListResponse.Item item) {
+        long id = item.id() != null ? item.id() : 0L;
+        LocalDateTime occurredAt = item.createdAt();
+        String adminNickname = item.admin() != null && StringUtils.hasText(item.admin().nickname())
+                ? item.admin().nickname()
+                : "알 수 없음";
+
+        ActionPresentation presentation = ACTION_PRESENTATIONS.getOrDefault(
+                normalizeKey(item.action()),
+                new ActionPresentation(UNKNOWN_ACTION_LABEL, UNKNOWN_ACTION_DESCRIPTION, UNKNOWN_ACTION_BADGE)
+        );
+
+        String targetLabel = TARGET_LABELS.getOrDefault(normalizeKey(item.targetType()), UNKNOWN_TARGET_LABEL);
+        String targetDisplay = buildTargetDisplay(targetLabel, item.targetId());
+        String reportDisplay = item.reportId() != null ? "신고 #" + item.reportId() : "-";
+
+        List<AdminAuditLogItem.MetadataEntry> metadataEntries = toMetadataEntries(item.metadata());
+
+        return new AdminAuditLogItem(
+                id,
+                occurredAt,
+                adminNickname,
+                presentation.label(),
+                presentation.description(),
+                presentation.badgeClass(),
+                targetDisplay,
+                reportDisplay,
+                metadataEntries
+        );
+    }
+
+    private String buildTargetDisplay(String targetLabel, Long targetId) {
+        boolean hasLabel = StringUtils.hasText(targetLabel) && !UNKNOWN_TARGET_LABEL.equals(targetLabel);
+        if (targetId == null) {
+            return hasLabel ? targetLabel : "-";
+        }
+        if (hasLabel) {
+            return targetLabel + " #" + targetId;
+        }
+        return "#" + targetId;
+    }
+
+    private List<AdminAuditLogItem.MetadataEntry> toMetadataEntries(Map<String, Object> metadata) {
+        if (metadata == null || metadata.isEmpty()) {
+            return List.of();
+        }
+
+        List<AdminAuditLogItem.MetadataEntry> entries = new ArrayList<>();
+        for (Map.Entry<String, Object> entry : new LinkedHashMap<>(metadata).entrySet()) {
+            String key = entry.getKey();
+            String value = formatMetadataValue(entry.getValue());
+            entries.add(new AdminAuditLogItem.MetadataEntry(key, value));
+        }
+        return List.copyOf(entries);
+    }
+
+    private String formatMetadataValue(Object value) {
+        if (value == null) {
+            return "-";
+        }
+        if (value instanceof Map || value instanceof List) {
+            try {
+                return METADATA_MAPPER.writeValueAsString(value);
+            } catch (JsonProcessingException exception) {
+                log.debug("Failed to serialize metadata value to JSON. value={}", value, exception);
+                return value.toString();
+            }
+        }
+        return value.toString();
+    }
+
+    private void attachEmptyState(Model model, int page, int size, String errorMessage) {
+        model.addAttribute("logs", List.of());
+        model.addAttribute("page", page);
+        model.addAttribute("size", size);
+        model.addAttribute("hasPrevious", page > 1);
+        model.addAttribute("hasNext", false);
+        model.addAttribute("rangeStart", 0);
+        model.addAttribute("rangeEnd", 0);
+        model.addAttribute("loadErrorMessage", errorMessage);
+    }
+
+    private void ensureToastMessages(Model model) {
+        if (!model.containsAttribute("toastMessages")) {
+            model.addAttribute("toastMessages", List.of());
+        }
+    }
+
+    private String normalizeKey(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.toUpperCase(Locale.ROOT);
+    }
+
+    private record ActionPresentation(String label, String description, String badgeClass) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/AuthController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.config.SocialLoginProperties;
+import apu.saerok_admin.config.UnsplashProperties;
+import apu.saerok_admin.infra.auth.BackendAuthClient;
+import apu.saerok_admin.security.LoginSession;
+import apu.saerok_admin.security.LoginSessionManager;
+import apu.saerok_admin.security.OAuthStateManager;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import jakarta.servlet.http.HttpServletRequest;
+import jakarta.servlet.http.HttpServletResponse;
+import jakarta.servlet.http.HttpSession;
+import java.util.Optional;
+import java.util.function.Function;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.http.HttpMethod;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestMethod;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.util.UriComponentsBuilder;
+
+@Controller
+public class AuthController {
+
+    private static final Logger log = LoggerFactory.getLogger(AuthController.class);
+
+    private final SocialLoginProperties socialLoginProperties;
+    private final OAuthStateManager oAuthStateManager;
+    private final BackendAuthClient backendAuthClient;
+    private final LoginSessionManager loginSessionManager;
+    private final ObjectMapper objectMapper;
+
+    // ▼ 추가: Unsplash 설정
+    private final UnsplashProperties unsplashProperties;
+
+    public AuthController(
+            SocialLoginProperties socialLoginProperties,
+            OAuthStateManager oAuthStateManager,
+            BackendAuthClient backendAuthClient,
+            LoginSessionManager loginSessionManager,
+            ObjectMapper objectMapper,
+            UnsplashProperties unsplashProperties // ← 추가 주입
+    ) {
+        this.socialLoginProperties = socialLoginProperties;
+        this.oAuthStateManager = oAuthStateManager;
+        this.backendAuthClient = backendAuthClient;
+        this.loginSessionManager = loginSessionManager;
+        this.objectMapper = objectMapper;
+        this.unsplashProperties = unsplashProperties; // ← 보관
+    }
+
+    @RequestMapping(value = "/login", method = {RequestMethod.GET, RequestMethod.HEAD})
+    public String login(HttpServletRequest request, HttpServletResponse response, Model model) {
+        model.addAttribute("pageTitle", "로그인");
+
+        String state;
+        if (HttpMethod.HEAD.matches(request.getMethod())) {
+            response.setHeader("Cache-Control", "no-store, no-cache, must-revalidate");
+            response.setHeader("Pragma", "no-cache");
+            response.setDateHeader("Expires", 0);
+
+            HttpSession existingSession = request.getSession(false);
+            if (existingSession != null) {
+                state = (String) existingSession.getAttribute(OAuthStateManager.ATTRIBUTE_NAME);
+                log.debug("HEAD /login request reusing OAuth state token for session {}", existingSession.getId());
+            } else {
+                state = null;
+                log.debug("HEAD /login request without existing session; skipping OAuth state token creation.");
+            }
+        } else {
+            HttpSession session = request.getSession(true);
+            String existingState = (String) session.getAttribute(OAuthStateManager.ATTRIBUTE_NAME);
+            if (existingState == null) {
+                state = oAuthStateManager.createState(session);
+                log.debug("Created new OAuth state token for session {}", session.getId());
+            } else {
+                state = existingState;
+                log.debug("Reusing existing OAuth state token for session {}", session.getId());
+            }
+        }
+
+        String effectiveState = state != null ? state : "";
+        model.addAttribute("kakaoAuthUrl", buildKakaoAuthorizeUrl(effectiveState));
+        model.addAttribute("appleAuthUrl", buildAppleAuthorizeUrl(effectiveState));
+
+        // ▼ 추가: 템플릿에서 Unsplash 키/앱명을 읽을 수 있도록 전달
+        model.addAttribute("unsplashAccessKey", unsplashProperties.getAccessKey());
+        model.addAttribute("unsplashAppName", unsplashProperties.getAppName());
+
+        return "auth/login";
+    }
+
+    @GetMapping("/auth/callback/kakao")
+    public String handleKakaoCallback(
+            @RequestParam(name = "code", required = false) String code,
+            @RequestParam(name = "state", required = false) String state,
+            HttpServletRequest request
+    ) {
+        return handleSocialCallback(request, code, state, backendAuthClient::kakaoLogin);
+    }
+
+    @RequestMapping(value = "/auth/callback/apple", method = {RequestMethod.POST, RequestMethod.GET})
+    public String handleAppleCallback(
+            @RequestParam(name = "code", required = false) String code,
+            @RequestParam(name = "state", required = false) String state,
+            HttpServletRequest request
+    ) {
+        return handleSocialCallback(request, code, state, backendAuthClient::appleLogin);
+    }
+
+    private String handleSocialCallback(
+            HttpServletRequest request,
+            String code,
+            String state,
+            Function<String, BackendAuthClient.LoginSuccess> loginFunction
+    ) {
+        HttpSession session = request.getSession(false);
+        if (session == null) {
+            log.warn("OAuth callback received without an existing session. Redirecting to login with session error.");
+            return "redirect:/login?error=session";
+        }
+        if (!StringUtils.hasText(code) || !StringUtils.hasText(state)) {
+            log.warn("OAuth callback received without required parameters. codePresent={}, statePresent={}",
+                    StringUtils.hasText(code), StringUtils.hasText(state));
+            return "redirect:/login?error=callback";
+        }
+        if (!oAuthStateManager.consumeState(session, state)) {
+            log.warn("State validation failed for session {} and state {}", session.getId(), state);
+            return "redirect:/login?error=state";
+        }
+        try {
+            log.info("Processing social login with session {}", session.getId());
+            BackendAuthClient.LoginSuccess loginSuccess = loginFunction.apply(code);
+            log.info("Social login succeeded for session {}. Writing access token and refresh cookies.", session.getId());
+            loginSessionManager.establishSession(request, new LoginSession(loginSuccess.accessToken()));
+            loginSessionManager.writeRefreshCookiesToResponse(loginSuccess.refreshCookies());
+            return "redirect:/";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.error("Failed to complete social login due to backend error: {}", exception.getMessage(), exception);
+            loginSessionManager.clearSession(request);
+            String backendMessage = extractBackendErrorMessage(exception).orElse(null);
+            UriComponentsBuilder redirectUriBuilder = UriComponentsBuilder.fromPath("/login")
+                    .queryParam("error", "login");
+            if (StringUtils.hasText(backendMessage)) {
+                redirectUriBuilder.queryParam("message", backendMessage);
+            }
+            return "redirect:" + redirectUriBuilder.toUriString();
+        }
+    }
+
+    private Optional<String> extractBackendErrorMessage(Exception exception) {
+        if (exception instanceof RestClientResponseException responseException) {
+            String responseBody = responseException.getResponseBodyAsString();
+            if (StringUtils.hasText(responseBody)) {
+                try {
+                    BackendErrorResponse errorResponse = objectMapper.readValue(responseBody, BackendErrorResponse.class);
+                    if (StringUtils.hasText(errorResponse.message())) {
+                        return Optional.of(errorResponse.message());
+                    }
+                } catch (JsonProcessingException parsingException) {
+                    log.debug("Failed to parse backend error response body: {}", responseBody, parsingException);
+                }
+            }
+        }
+        return Optional.empty();
+    }
+
+    private record BackendErrorResponse(int status, String message) {}
+
+    private String buildKakaoAuthorizeUrl(String state) {
+        SocialLoginProperties.Provider kakao = socialLoginProperties.kakao();
+        return UriComponentsBuilder.fromHttpUrl("https://kauth.kakao.com/oauth/authorize")
+                .queryParam("response_type", "code")
+                .queryParam("client_id", kakao.clientId())
+                .queryParam("redirect_uri", kakao.redirectUri())
+                .queryParam("state", state)
+                .queryParam("scope", "openid account_email")
+                .encode()
+                .toUriString();
+    }
+
+    private String buildAppleAuthorizeUrl(String state) {
+        SocialLoginProperties.Provider apple = socialLoginProperties.apple();
+        return UriComponentsBuilder.fromHttpUrl("https://appleid.apple.com/auth/authorize")
+                .queryParam("response_type", "code")
+                .queryParam("client_id", apple.clientId())
+                .queryParam("redirect_uri", apple.redirectUri())
+                .queryParam("scope", "openid email name")
+                .queryParam("response_mode", "form_post")
+                .queryParam("state", state)
+                .encode()
+                .toUriString();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/AuthExceptionHandler.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.security.BackendUnauthorizedException;
+import apu.saerok_admin.security.LoginSessionManager;
+import org.springframework.web.bind.annotation.ControllerAdvice;
+import org.springframework.web.bind.annotation.ExceptionHandler;
+
+@ControllerAdvice
+public class AuthExceptionHandler {
+
+    private final LoginSessionManager loginSessionManager;
+
+    public AuthExceptionHandler(LoginSessionManager loginSessionManager) {
+        this.loginSessionManager = loginSessionManager;
+    }
+
+    @ExceptionHandler(BackendUnauthorizedException.class)
+    public String handleBackendUnauthorizedException() {
+        loginSessionManager.clearCurrentSession();
+        return "redirect:/login?error=session";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/CollectionController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.CollectionDetail;
+import apu.saerok_admin.web.view.CollectionListItem;
+import apu.saerok_admin.web.view.ToastMessage;
+import java.time.LocalDateTime;
+import java.util.List;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@Controller
+@RequestMapping("/collections")
+public class CollectionController {
+
+    @GetMapping
+    public String list(@RequestParam(required = false) String q,
+                       @RequestParam(required = false) String status,
+                       @RequestParam(defaultValue = "1") int page,
+                       @RequestParam(defaultValue = "20") int size,
+                       Model model) {
+        model.addAttribute("pageTitle", "새록 관리");
+        model.addAttribute("activeMenu", "collections");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("새록")));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastCollectionBulk", "삭제 완료", "선택한 새록을 삭제했습니다."),
+                ToastMessage.success("toastCollectionAction", "조치 완료", "새록 상태가 업데이트되었습니다.")
+        ));
+        model.addAttribute("query", q);
+        model.addAttribute("statusFilter", status);
+        model.addAttribute("page", page);
+        model.addAttribute("size", size);
+        model.addAttribute("totalPages", 9);
+        model.addAttribute("totalElements", 184);
+        model.addAttribute("statusOptions", List.of("전체", "공개", "비공개", "차단"));
+        model.addAttribute("collections", List.of(
+                new CollectionListItem(872, "솔바람", "초여름 갈대밭 풍경과 관찰 기록", "공개", 3, LocalDateTime.now().minusHours(5)),
+                new CollectionListItem(871, "이끼정원", "비 내린 후 숲 속의 향기", "공개", 0, LocalDateTime.now().minusHours(8)),
+                new CollectionListItem(870, "별빛여행", "야간 탐조 준비물 체크리스트", "비공개", 0, LocalDateTime.now().minusHours(12)),
+                new CollectionListItem(869, "새벽지기", "강변 산책 중 만난 물새들", "공개", 1, LocalDateTime.now().minusDays(1)),
+                new CollectionListItem(868, "느린풍경", "도심 공원에서 만난 작은 새들", "차단", 5, LocalDateTime.now().minusDays(2))
+        ));
+        return "collections/list";
+    }
+
+    @GetMapping("/{id}")
+    public String detail(@PathVariable long id, Model model) {
+        CollectionDetail detail = new CollectionDetail(id, "솔바람",
+                "https://images.unsplash.com/photo-1524504388940-b1c1722653e1",
+                "공개", 3, LocalDateTime.now().minusHours(5), LocalDateTime.now().minusHours(2),
+                List.of("갈대밭", "여름", "탐조"),
+                "초여름 갈대밭을 찾아 새벽부터 움직였습니다. 부드러운 바람과 함께 ...");
+        model.addAttribute("pageTitle", "새록 상세");
+        model.addAttribute("activeMenu", "collections");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("새록", "/collections"),
+                Breadcrumb.active("#" + id)));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastCollectionAction", "조치 완료", "새록 상태가 업데이트되었습니다."),
+                ToastMessage.success("toastCollectionBulk", "삭제 완료", "선택한 새록을 삭제했습니다.")
+        ));
+        model.addAttribute("detail", detail);
+        return "collections/detail";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/CommentController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.CommentListItem;
+import apu.saerok_admin.web.view.ToastMessage;
+import java.time.LocalDateTime;
+import java.util.List;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@Controller
+@RequestMapping("/comments")
+public class CommentController {
+
+    @GetMapping
+    public String list(@RequestParam(required = false) String q,
+                       @RequestParam(required = false) String status,
+                       @RequestParam(defaultValue = "1") int page,
+                       @RequestParam(defaultValue = "20") int size,
+                       Model model) {
+        model.addAttribute("pageTitle", "댓글 관리");
+        model.addAttribute("activeMenu", "comments");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("댓글")));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastCommentBulk", "삭제 완료", "선택한 댓글을 삭제했습니다."),
+                ToastMessage.success("toastCommentHide", "조치 완료", "댓글 상태를 변경했습니다.")
+        ));
+        model.addAttribute("query", q);
+        model.addAttribute("statusFilter", status);
+        model.addAttribute("page", page);
+        model.addAttribute("size", size);
+        model.addAttribute("totalPages", 15);
+        model.addAttribute("totalElements", 312);
+        model.addAttribute("statusOptions", List.of("전체", "정상", "숨김", "삭제"));
+        model.addAttribute("comments", List.of(
+                new CommentListItem(481, "솔바람", 872, "갈대밭의 색감이 정말 아름답네요!", 2, LocalDateTime.now().minusHours(1)),
+                new CommentListItem(480, "별빛여행", 865, "정보 감사합니다. 다음 탐조 때 참고할게요.", 0, LocalDateTime.now().minusHours(3)),
+                new CommentListItem(479, "새벽지기", 872, "현장 사진이 더 있으면 좋겠어요.", 1, LocalDateTime.now().minusHours(6)),
+                new CommentListItem(478, "느린풍경", 860, "도심에서도 이런 새들을 만나다니!", 4, LocalDateTime.now().minusHours(8)),
+                new CommentListItem(477, "솔솔바람", 859, "좋은 정보 감사합니다.", 0, LocalDateTime.now().minusHours(10))
+        ));
+        return "comments/list";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/CurrentAdminProfileAdvice.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.CurrentAdminClient;
+import apu.saerok_admin.web.view.CurrentAdminProfile;
+import org.springframework.web.bind.annotation.ControllerAdvice;
+import org.springframework.web.bind.annotation.ModelAttribute;
+
+@ControllerAdvice
+public class CurrentAdminProfileAdvice {
+
+    private final CurrentAdminClient currentAdminClient;
+
+    public CurrentAdminProfileAdvice(CurrentAdminClient currentAdminClient) {
+        this.currentAdminClient = currentAdminClient;
+    }
+
+    @ModelAttribute("currentAdminProfile")
+    public CurrentAdminProfile currentAdminProfile() {
+        return currentAdminClient.fetchCurrentAdminProfile()
+                .orElseGet(CurrentAdminProfile::placeholder);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/DashboardController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.ServiceHealthClient;
+import apu.saerok_admin.infra.report.AdminReportClient;
+import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.DashboardMetric;
+import java.util.List;
+import java.util.Optional;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+
+@Controller
+public class DashboardController {
+
+    private static final Logger log = LoggerFactory.getLogger(DashboardController.class);
+
+    private final ServiceHealthClient serviceHealthClient;
+    private final AdminReportClient adminReportClient;
+
+    public DashboardController(ServiceHealthClient serviceHealthClient, AdminReportClient adminReportClient) {
+        this.serviceHealthClient = serviceHealthClient;
+        this.adminReportClient = adminReportClient;
+    }
+
+    @GetMapping("/")
+    public String dashboard(Model model) {
+        model.addAttribute("pageTitle", "대시보드");
+        model.addAttribute("activeMenu", "dashboard");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.active("대시보드")));
+        model.addAttribute("toastMessages", List.of());
+        model.addAttribute("serviceHealth", serviceHealthClient.checkHealth());
+
+        ReportCounts reportCounts = fetchReportCounts();
+        DashboardMetric reportMetric = reportCounts != null
+                ? new DashboardMetric(
+                "접수된 신고",
+                reportCounts.formattedTotal(),
+                "bi-flag",
+                "primary",
+                reportCounts.subtitle(),
+                "/reports"
+        )
+                : new DashboardMetric(
+                "접수된 신고",
+                "정보 없음",
+                "bi-flag",
+                "secondary",
+                "신고 데이터를 불러오지 못했습니다.",
+                "/reports"
+        );
+
+        model.addAttribute("metrics", List.of(reportMetric));
+        return "dashboard/index";
+    }
+
+    private ReportCounts fetchReportCounts() {
+        try {
+            List<ReportedCollectionListResponse.Item> collectionItems = Optional.ofNullable(adminReportClient.listCollectionReports())
+                    .map(ReportedCollectionListResponse::items)
+                    .orElseGet(List::of);
+            List<ReportedCommentListResponse.Item> commentItems = Optional.ofNullable(adminReportClient.listCommentReports())
+                    .map(ReportedCommentListResponse::items)
+                    .orElseGet(List::of);
+            return new ReportCounts(collectionItems.size(), commentItems.size());
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load report counts. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load report counts.", exception);
+        }
+        return null;
+    }
+
+    private record ReportCounts(int collectionCount, int commentCount) {
+
+        int total() {
+            return collectionCount + commentCount;
+        }
+
+        String formattedTotal() {
+            return total() + "건";
+        }
+
+        String subtitle() {
+            return "새록 " + collectionCount + "건 · 댓글 " + commentCount + "건";
+        }
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/DexController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.DexDetail;
+import apu.saerok_admin.web.view.DexFormModel;
+import apu.saerok_admin.web.view.DexListItem;
+import apu.saerok_admin.web.view.ToastMessage;
+import java.time.LocalDateTime;
+import java.util.List;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@Controller
+@RequestMapping("/dex")
+public class DexController {
+
+    @GetMapping
+    public String list(@RequestParam(required = false) String q,
+                       @RequestParam(required = false) String rarity,
+                       @RequestParam(required = false) String habitat,
+                       @RequestParam(required = false) String stayType,
+                       @RequestParam(defaultValue = "1") int page,
+                       @RequestParam(defaultValue = "20") int size,
+                       Model model) {
+        model.addAttribute("pageTitle", "도감 관리");
+        model.addAttribute("activeMenu", "dex");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("도감")));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastDexDeleted", "삭제 완료", "도감 항목이 삭제 처리되었습니다.")
+        ));
+        model.addAttribute("query", q);
+        model.addAttribute("rarityFilter", rarity);
+        model.addAttribute("habitatFilter", habitat);
+        model.addAttribute("stayFilter", stayType);
+        model.addAttribute("page", page);
+        model.addAttribute("size", size);
+        model.addAttribute("totalPages", 8);
+        model.addAttribute("totalElements", 146);
+        model.addAttribute("rarityOptions", List.of("전체", "COMMON", "UNCOMMON", "RARE", "EPIC"));
+        model.addAttribute("habitatOptions", List.of("전체", "하천", "산림", "해안", "도심"));
+        model.addAttribute("stayOptions", List.of("전체", "철새", "텃새", "나그네새"));
+        model.addAttribute("entries", List.of(
+                new DexListItem(401, "해오라기", "Striated Heron", "Butorides striata",
+                        "하천", "철새", "RARE", LocalDateTime.now().minusDays(1), List.of("야행성", "대형")),
+                new DexListItem(399, "황조롱이", "Common Kestrel", "Falco tinnunculus",
+                        "도심", "텃새", "EPIC", LocalDateTime.now().minusDays(2), List.of("맹금류", "맑은 날")),
+                new DexListItem(398, "어치", "Eurasian Jay", "Garrulus glandarius",
+                        "산림", "텃새", "UNCOMMON", LocalDateTime.now().minusDays(3), List.of("지능형", "소리 흉내")),
+                new DexListItem(397, "개개비", "Oriental Reed Warbler", "Acrocephalus orientalis",
+                        "습지", "철새", "COMMON", LocalDateTime.now().minusDays(4), List.of("아침 활동", "지저귐")),
+                new DexListItem(396, "쇠백로", "Little Egret", "Egretta garzetta",
+                        "하천", "나그네새", "UNCOMMON", LocalDateTime.now().minusDays(5), List.of("무리 생활", "시각 사냥"))
+        ));
+        return "dex/list";
+    }
+
+    @GetMapping("/new")
+    public String createForm(Model model) {
+        model.addAttribute("pageTitle", "도감 등록");
+        model.addAttribute("activeMenu", "dex");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("도감", "/dex"),
+                Breadcrumb.active("신규 등록")));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastDexSaved", "임시 저장", "변경사항을 저장했습니다.")
+        ));
+        model.addAttribute("form", new DexFormModel(null,
+                List.of("하천", "산림", "해안", "도심"),
+                List.of("철새", "텃새", "나그네새"),
+                List.of("COMMON", "UNCOMMON", "RARE", "EPIC")));
+        return "dex/form";
+    }
+
+    @GetMapping("/{id}")
+    public String detail(@PathVariable long id, Model model) {
+        DexDetail detail = new DexDetail(id, "해오라기", "Striated Heron", "Butorides striata",
+                "얕은 물가에서 주로 활동하는 야행성 물새로, 빠른 반사신경으로 사냥을 한다.",
+                "https://images.unsplash.com/photo-1503264116251-35a269479413",
+                List.of("하천", "습지"), "철새", "RARE", List.of("야행성", "대형"), LocalDateTime.now().minusDays(1));
+        model.addAttribute("pageTitle", "도감 상세");
+        model.addAttribute("activeMenu", "dex");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("도감", "/dex"),
+                Breadcrumb.active("#" + id)));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastDexDeleted", "삭제 완료", "도감 항목이 삭제 처리되었습니다.")
+        ));
+        model.addAttribute("detail", detail);
+        return "dex/detail";
+    }
+
+    @GetMapping("/{id}/edit")
+    public String editForm(@PathVariable long id, Model model) {
+        DexDetail detail = new DexDetail(id, "해오라기", "Striated Heron", "Butorides striata",
+                "얕은 물가에서 주로 활동하는 야행성 물새로, 빠른 반사신경으로 사냥을 한다.",
+                "https://images.unsplash.com/photo-1503264116251-35a269479413",
+                List.of("하천", "습지"), "철새", "RARE", List.of("야행성", "대형"), LocalDateTime.now().minusDays(1));
+        model.addAttribute("pageTitle", "도감 수정");
+        model.addAttribute("activeMenu", "dex");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("도감", "/dex"),
+                Breadcrumb.active("수정")
+        ));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastDexSaved", "저장 완료", "도감 정보가 저장되었습니다.")
+        ));
+        model.addAttribute("form", new DexFormModel(detail,
+                List.of("하천", "산림", "해안", "도심"),
+                List.of("철새", "텃새", "나그네새"),
+                List.of("COMMON", "UNCOMMON", "RARE", "EPIC")));
+        return "dex/form";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/EnvironmentProfileAdvice.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.EnvironmentProfileBadge;
+import java.util.Arrays;
+import java.util.List;
+import org.springframework.core.env.Environment;
+import org.springframework.web.bind.annotation.ControllerAdvice;
+import org.springframework.web.bind.annotation.ModelAttribute;
+
+@ControllerAdvice
+public class EnvironmentProfileAdvice {
+
+    private final Environment environment;
+
+    public EnvironmentProfileAdvice(Environment environment) {
+        this.environment = environment;
+    }
+
+    @ModelAttribute("environmentProfileBadge")
+    public EnvironmentProfileBadge environmentProfileBadge() {
+        List<String> activeProfiles = Arrays.asList(environment.getActiveProfiles());
+        if (activeProfiles.isEmpty()) {
+            activeProfiles = Arrays.asList(environment.getDefaultProfiles());
+        }
+        if (activeProfiles.contains("local")) {
+            return new EnvironmentProfileBadge("로컬", "environment-badge--local");
+        }
+        if (activeProfiles.contains("dev") || activeProfiles.contains("qa")) {
+            return new EnvironmentProfileBadge("개발/QA", "environment-badge--dev");
+        }
+        if (activeProfiles.contains("prod")) {
+            return new EnvironmentProfileBadge("운영", "environment-badge--prod");
+        }
+        return new EnvironmentProfileBadge("운영", "environment-badge--prod");
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/NotificationController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.NotificationTargetOption;
+import apu.saerok_admin.web.view.ToastMessage;
+import java.util.List;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+
+@Controller
+@RequestMapping("/notifications")
+public class NotificationController {
+
+    @GetMapping("/compose")
+    public String compose(Model model) {
+        model.addAttribute("pageTitle", "시스템 알림 발송");
+        model.addAttribute("activeMenu", "notifications");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("시스템 알림")
+        ));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastNotificationPreview", "미리보기 생성", "미리보기가 새 창에서 확인 가능합니다."),
+                ToastMessage.success("toastNotificationSent", "발송 완료", "알림 발송 요청이 접수되었습니다.")
+        ));
+        model.addAttribute("targetOptions", List.of(
+                new NotificationTargetOption("ALL", "전체 사용자", "모든 사용자에게 발송"),
+                new NotificationTargetOption("ACTIVE", "최근 30일 활동", "최근 30일 내 활동한 사용자"),
+                new NotificationTargetOption("PREMIUM", "프리미엄", "프리미엄 구독자 대상"),
+                new NotificationTargetOption("CUSTOM", "조건 직접 설정", "세그먼트 규칙으로 지정")
+        ));
+        return "notifications/compose";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/ReportController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.report.AdminReportClient;
+import apu.saerok_admin.infra.report.dto.CollectionCommentsResponse;
+import apu.saerok_admin.infra.report.dto.CollectionDetailResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCollectionDetailResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCommentDetailResponse;
+import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.ReportDetail;
+import apu.saerok_admin.web.view.ReportListItem;
+import apu.saerok_admin.web.view.ReportType;
+import java.time.LocalDateTime;
+import java.util.ArrayList;
+import java.util.Comparator;
+import java.util.EnumSet;
+import java.util.HashMap;
+import java.util.LinkedHashSet;
+import java.util.List;
+import java.util.Locale;
+import java.util.Map;
+import java.util.Optional;
+import java.util.Set;
+import java.util.stream.Collectors;
+import java.util.stream.Stream;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.http.HttpStatus;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.servlet.mvc.support.RedirectAttributes;
+
+@Controller
+@RequestMapping("/reports")
+public class ReportController {
+
+    private static final Logger log = LoggerFactory.getLogger(ReportController.class);
+    private static final Map<String, ReportType> TYPE_PARAM_MAP = Map.of(
+            "collection", ReportType.COLLECTION,
+            "collections", ReportType.COLLECTION,
+            "comment", ReportType.COMMENT,
+            "comments", ReportType.COMMENT
+    );
+
+    private final AdminReportClient adminReportClient;
+
+    public ReportController(AdminReportClient adminReportClient) {
+        this.adminReportClient = adminReportClient;
+    }
+
+    @GetMapping
+    public String list(@RequestParam(name = "type", required = false) List<String> types,
+                       Model model) {
+        model.addAttribute("pageTitle", "신고 관리");
+        model.addAttribute("activeMenu", "reports");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("신고 관리")));
+        ensureToastMessages(model);
+
+        List<String> normalizedTypes = normalizeTypeParams(types);
+        Set<ReportType> selectedTypes = toReportTypes(normalizedTypes);
+        boolean includeCollections = selectedTypes.isEmpty() || selectedTypes.contains(ReportType.COLLECTION);
+        boolean includeComments = selectedTypes.isEmpty() || selectedTypes.contains(ReportType.COMMENT);
+        model.addAttribute("collectionFilterActive", includeCollections);
+        model.addAttribute("commentFilterActive", includeComments);
+        model.addAttribute("selectedTypeParams", normalizedTypes);
+
+        try {
+            List<ReportedCollectionListResponse.Item> rawCollectionReports = Optional.ofNullable(adminReportClient.listCollectionReports())
+                    .map(ReportedCollectionListResponse::items)
+                    .orElseGet(List::of);
+            List<ReportedCommentListResponse.Item> rawCommentReports = Optional.ofNullable(adminReportClient.listCommentReports())
+                    .map(ReportedCommentListResponse::items)
+                    .orElseGet(List::of);
+
+            Map<Long, CollectionListSupplement> collectionSupplements = includeCollections
+                    ? loadCollectionSupplements(rawCollectionReports)
+                    : Map.of();
+
+            List<ReportListItem> collectionReports = rawCollectionReports.stream()
+                    .map(item -> toCollectionListItem(item, collectionSupplements.get(item.reportId())))
+                    .toList();
+            List<ReportListItem> commentReports = rawCommentReports.stream()
+                    .map(this::toCommentListItem)
+                    .toList();
+
+            List<ReportListItem> combined = Stream.concat(collectionReports.stream(), commentReports.stream())
+                    .sorted(Comparator.comparing(ReportListItem::reportedAt, Comparator.nullsLast(Comparator.reverseOrder())))
+                    .collect(Collectors.toCollection(ArrayList::new));
+
+            List<ReportListItem> filtered = combined;
+            if (!selectedTypes.isEmpty()) {
+                filtered = combined.stream()
+                        .filter(item -> selectedTypes.contains(item.type()))
+                        .toList();
+            }
+
+            model.addAttribute("reports", filtered);
+            model.addAttribute("totalCount", combined.size());
+            model.addAttribute("filteredCount", filtered.size());
+            model.addAttribute("collectionCount", collectionReports.size());
+            model.addAttribute("commentCount", commentReports.size());
+            model.addAttribute("loadErrorMessage", null);
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load reports from backend. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            model.addAttribute("reports", List.of());
+            model.addAttribute("loadErrorMessage", "신고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load reports from backend.", exception);
+            model.addAttribute("reports", List.of());
+            model.addAttribute("loadErrorMessage", "신고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
+        }
+
+        return "reports/list";
+    }
+
+    @GetMapping("/collections/{reportId}")
+    public String collectionDetail(@PathVariable long reportId,
+                                   Model model,
+                                   RedirectAttributes redirectAttributes) {
+        model.addAttribute("pageTitle", "신고 상세");
+        model.addAttribute("activeMenu", "reports");
+        ensureToastMessages(model);
+
+        try {
+            ReportedCollectionDetailResponse detailResponse = adminReportClient.getCollectionReportDetail(reportId);
+            ReportedCollectionListResponse.Item metadata = findCollectionReportMetadata(reportId);
+
+            ReportDetail detail = buildCollectionDetail(detailResponse, metadata);
+            model.addAttribute("detail", detail);
+            model.addAttribute("breadcrumbs", List.of(
+                    Breadcrumb.of("대시보드", "/"),
+                    Breadcrumb.of("신고 관리", "/reports"),
+                    Breadcrumb.active("새록 신고 #" + reportId)
+            ));
+            attachFlashDefaults(model);
+            return "reports/detail";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load collection report detail. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load collection report detail.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
+        }
+
+        return "redirect:/reports";
+    }
+
+    @GetMapping("/comments/{reportId}")
+    public String commentDetail(@PathVariable long reportId,
+                                Model model,
+                                RedirectAttributes redirectAttributes) {
+        model.addAttribute("pageTitle", "신고 상세");
+        model.addAttribute("activeMenu", "reports");
+        ensureToastMessages(model);
+
+        try {
+            ReportedCommentDetailResponse detailResponse = adminReportClient.getCommentReportDetail(reportId);
+            ReportedCommentListResponse.Item metadata = findCommentReportMetadata(reportId);
+
+            ReportDetail detail = buildCommentDetail(detailResponse, metadata);
+            model.addAttribute("detail", detail);
+            model.addAttribute("breadcrumbs", List.of(
+                    Breadcrumb.of("대시보드", "/"),
+                    Breadcrumb.of("신고 관리", "/reports"),
+                    Breadcrumb.active("댓글 신고 #" + reportId)
+            ));
+            attachFlashDefaults(model);
+            return "reports/detail";
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load comment report detail. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load comment report detail.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
+        }
+
+        return "redirect:/reports";
+    }
+
+    @PostMapping("/collections/{reportId}/ignore")
+    public String ignoreCollection(@PathVariable long reportId,
+                                   @RequestParam(name = "redirect", defaultValue = "list") String redirect,
+                                   @RequestParam(name = "returnType", required = false) List<String> returnTypes,
+                                   RedirectAttributes redirectAttributes) {
+        return performAction(() -> adminReportClient.ignoreCollectionReport(reportId),
+                reportId,
+                "신고 #" + reportId + "을(를) 무시 처리했습니다.",
+                "신고 #" + reportId + " 무시 처리에 실패했습니다.",
+                redirect,
+                returnTypes,
+                "/reports/collections/" + reportId,
+                redirectAttributes);
+    }
+
+    @PostMapping("/collections/{reportId}/delete")
+    public String deleteCollectionByReport(@PathVariable long reportId,
+                                           @RequestParam(name = "redirect", defaultValue = "list") String redirect,
+                                           @RequestParam(name = "returnType", required = false) List<String> returnTypes,
+                                           @RequestParam(name = "reason", required = false) String reason,
+                                           RedirectAttributes redirectAttributes) {
+        String trimmedReason = reason != null ? reason.trim() : "";
+        if (!StringUtils.hasText(trimmedReason)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제 사유를 입력해주세요.");
+            return determineRedirectUrl(redirect, returnTypes, "/reports/collections/" + reportId);
+        }
+
+        return performAction(() -> adminReportClient.deleteCollectionByReport(reportId, trimmedReason),
+                reportId,
+                "신고 대상 새록을 삭제했습니다.",
+                "신고 대상 새록 삭제에 실패했습니다.",
+                redirect,
+                returnTypes,
+                "/reports/collections/" + reportId,
+                redirectAttributes);
+    }
+
+    @PostMapping("/comments/{reportId}/ignore")
+    public String ignoreComment(@PathVariable long reportId,
+                                @RequestParam(name = "redirect", defaultValue = "list") String redirect,
+                                @RequestParam(name = "returnType", required = false) List<String> returnTypes,
+                                RedirectAttributes redirectAttributes) {
+        return performAction(() -> adminReportClient.ignoreCommentReport(reportId),
+                reportId,
+                "신고 #" + reportId + "을(를) 무시 처리했습니다.",
+                "신고 #" + reportId + " 무시 처리에 실패했습니다.",
+                redirect,
+                returnTypes,
+                "/reports/comments/" + reportId,
+                redirectAttributes);
+    }
+
+    @PostMapping("/comments/{reportId}/delete")
+    public String deleteCommentByReport(@PathVariable long reportId,
+                                        @RequestParam(name = "redirect", defaultValue = "list") String redirect,
+                                        @RequestParam(name = "returnType", required = false) List<String> returnTypes,
+                                        @RequestParam(name = "reason", required = false) String reason,
+                                        RedirectAttributes redirectAttributes) {
+        String trimmedReason = reason != null ? reason.trim() : "";
+        if (!StringUtils.hasText(trimmedReason)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제 사유를 입력해주세요.");
+            return determineRedirectUrl(redirect, returnTypes, "/reports/comments/" + reportId);
+        }
+
+        return performAction(() -> adminReportClient.deleteCommentByReport(reportId, trimmedReason),
+                reportId,
+                "신고 대상 댓글을 삭제했습니다.",
+                "신고 대상 댓글 삭제에 실패했습니다.",
+                redirect,
+                returnTypes,
+                "/reports/comments/" + reportId,
+                redirectAttributes);
+    }
+
+    private String performAction(Runnable action,
+                                 long reportId,
+                                 String successMessage,
+                                 String failureMessage,
+                                 String redirect,
+                                 List<String> returnTypes,
+                                 String detailPath,
+                                 RedirectAttributes redirectAttributes) {
+        try {
+            action.run();
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", successMessage);
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to process report action. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage",
+                    resolveFailureMessage(exception, failureMessage));
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to process report action.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", failureMessage);
+        }
+
+        return determineRedirectUrl(redirect, returnTypes, detailPath);
+    }
+
+    private String determineRedirectUrl(String redirect,
+                                        List<String> returnTypes,
+                                        String detailPath) {
+        if ("detail".equalsIgnoreCase(redirect)) {
+            return "redirect:" + detailPath;
+        }
+
+        StringBuilder url = new StringBuilder("redirect:/reports");
+        List<String> normalized = normalizeTypeParams(returnTypes);
+        if (!normalized.isEmpty() && normalized.size() < ReportType.values().length) {
+            String separator = "?";
+            for (String value : normalized) {
+                url.append(separator).append("type=").append(value);
+                separator = "&";
+            }
+        }
+        return url.toString();
+    }
+
+    private List<String> normalizeTypeParams(List<String> types) {
+        if (types == null || types.isEmpty()) {
+            return List.of();
+        }
+        LinkedHashSet<String> normalized = new LinkedHashSet<>();
+        for (String type : types) {
+            if (!StringUtils.hasText(type)) {
+                continue;
+            }
+            String lowerCase = type.toLowerCase(Locale.ROOT);
+            if ("all".equals(lowerCase)) {
+                return List.of();
+            }
+            ReportType reportType = TYPE_PARAM_MAP.get(lowerCase);
+            if (reportType != null) {
+                normalized.add(canonicalParam(reportType));
+            }
+        }
+        return List.copyOf(normalized);
+    }
+
+    private Set<ReportType> toReportTypes(List<String> normalized) {
+        if (normalized.isEmpty()) {
+            return EnumSet.noneOf(ReportType.class);
+        }
+        EnumSet<ReportType> result = EnumSet.noneOf(ReportType.class);
+        for (String value : normalized) {
+            ReportType type = TYPE_PARAM_MAP.get(value);
+            if (type != null) {
+                result.add(type);
+            }
+        }
+        return result;
+    }
+
+    private String canonicalParam(ReportType type) {
+        return switch (type) {
+            case COLLECTION -> "collection";
+            case COMMENT -> "comment";
+        };
+    }
+
+    private String resolveFailureMessage(RestClientResponseException exception, String defaultMessage) {
+        int status = exception.getRawStatusCode();
+        if (status == HttpStatus.FORBIDDEN.value()) {
+            return "권한이 없어 해당 작업을 수행할 수 없습니다.";
+        }
+        return defaultMessage;
+    }
+
+    private ReportListItem toCollectionListItem(ReportedCollectionListResponse.Item item,
+                                                CollectionListSupplement supplement) {
+        String detailPath = "/reports/collections/" + item.reportId();
+        String note = supplement != null ? supplement.note() : null;
+        String imageUrl = supplement != null ? supplement.imageUrl() : null;
+        String preview = abbreviate(note, 80);
+        return new ReportListItem(
+                item.reportId(),
+                ReportType.COLLECTION,
+                item.reportedAt(),
+                "새록 #" + item.collectionId(),
+                preview,
+                imageUrl,
+                item.reporter() != null ? item.reporter().nickname() : "-",
+                item.reportedUser() != null ? item.reportedUser().nickname() : "-",
+                detailPath,
+                detailPath + "/ignore",
+                detailPath + "/delete"
+        );
+    }
+
+    private ReportListItem toCommentListItem(ReportedCommentListResponse.Item item) {
+        String detailPath = "/reports/comments/" + item.reportId();
+        String preview = abbreviate(item.contentPreview(), 80);
+        return new ReportListItem(
+                item.reportId(),
+                ReportType.COMMENT,
+                item.reportedAt(),
+                "댓글 #" + item.commentId() + " (새록 #" + item.collectionId() + ")",
+                preview,
+                null,
+                item.reporter() != null ? item.reporter().nickname() : "-",
+                item.reportedUser() != null ? item.reportedUser().nickname() : "-",
+                detailPath,
+                detailPath + "/ignore",
+                detailPath + "/delete"
+        );
+    }
+
+    private Map<Long, CollectionListSupplement> loadCollectionSupplements(List<ReportedCollectionListResponse.Item> reports) {
+        Map<Long, CollectionListSupplement> details = new HashMap<>();
+        for (ReportedCollectionListResponse.Item item : reports) {
+            if (item == null || item.reportId() == null) {
+                continue;
+            }
+            try {
+                ReportedCollectionDetailResponse detail = adminReportClient.getCollectionReportDetail(item.reportId());
+                if (detail != null && detail.collection() != null) {
+                    details.put(item.reportId(), new CollectionListSupplement(
+                            detail.collection().note(),
+                            detail.collection().imageUrl()
+                    ));
+                }
+            } catch (RestClientResponseException ex) {
+                log.warn("Failed to fetch collection note for report {}. status={}, body={}",
+                        item.reportId(), ex.getStatusCode(), ex.getResponseBodyAsString(), ex);
+            } catch (RestClientException | IllegalStateException ex) {
+                log.warn("Failed to fetch collection note for report {}.", item.reportId(), ex);
+            }
+        }
+        return details;
+    }
+
+    private ReportDetail buildCollectionDetail(ReportedCollectionDetailResponse detailResponse,
+                                               ReportedCollectionListResponse.Item metadata) {
+        ReportDetail.Person reporter = metadata != null && metadata.reporter() != null
+                ? new ReportDetail.Person(metadata.reporter().userId(), metadata.reporter().nickname())
+                : null;
+        ReportDetail.Person reportedUser = metadata != null && metadata.reportedUser() != null
+                ? new ReportDetail.Person(metadata.reportedUser().userId(), metadata.reportedUser().nickname())
+                : null;
+        List<ReportDetail.Comment> comments = mapComments(detailResponse.comments());
+
+        return new ReportDetail(
+                detailResponse.reportId(),
+                ReportType.COLLECTION,
+                metadata != null ? metadata.reportedAt() : null,
+                reporter,
+                reportedUser,
+                mapCollection(detailResponse.collection()),
+                comments,
+                null,
+                "/reports/collections/" + detailResponse.reportId() + "/ignore",
+                "/reports/collections/" + detailResponse.reportId() + "/delete"
+        );
+    }
+
+    private ReportDetail buildCommentDetail(ReportedCommentDetailResponse detailResponse,
+                                            ReportedCommentListResponse.Item metadata) {
+        ReportDetail.Person reporter = metadata != null && metadata.reporter() != null
+                ? new ReportDetail.Person(metadata.reporter().userId(), metadata.reporter().nickname())
+                : null;
+        ReportDetail.Person reportedUser = metadata != null && metadata.reportedUser() != null
+                ? new ReportDetail.Person(metadata.reportedUser().userId(), metadata.reportedUser().nickname())
+                : null;
+        List<ReportDetail.Comment> comments = mapComments(detailResponse.comments());
+        ReportedCommentDetailResponse.ReportedComment comment = detailResponse.comment();
+        ReportDetail.ReportedComment reportedComment = comment != null
+                ? new ReportDetail.ReportedComment(
+                comment.commentId(),
+                comment.userId(),
+                comment.nickname(),
+                comment.content(),
+                comment.createdAt(),
+                comment.updatedAt())
+                : null;
+
+        LocalDateTime reportedAt = metadata != null ? metadata.reportedAt() : null;
+
+        return new ReportDetail(
+                detailResponse.reportId(),
+                ReportType.COMMENT,
+                reportedAt,
+                reporter,
+                reportedUser,
+                mapCollection(detailResponse.collection()),
+                comments,
+                reportedComment,
+                "/reports/comments/" + detailResponse.reportId() + "/ignore",
+                "/reports/comments/" + detailResponse.reportId() + "/delete"
+        );
+    }
+
+    private ReportDetail.Collection mapCollection(CollectionDetailResponse collection) {
+        if (collection == null) {
+            return null;
+        }
+        String accessLevel = collection.accessLevel();
+        String accessLevelLabel = toAccessLevelLabel(accessLevel);
+        CollectionDetailResponse.BirdInfo bird = collection.bird();
+        CollectionDetailResponse.UserInfo user = collection.user();
+        return new ReportDetail.Collection(
+                collection.collectionId(),
+                bird != null ? bird.birdId() : null,
+                bird != null ? bird.koreanName() : null,
+                bird != null ? bird.scientificName() : null,
+                collection.discoveredDate(),
+                collection.latitude(),
+                collection.longitude(),
+                collection.locationAlias(),
+                collection.address(),
+                collection.note(),
+                accessLevel,
+                accessLevelLabel,
+                collection.likeCount(),
+                collection.commentCount(),
+                collection.isLiked(),
+                collection.isMine(),
+                user != null ? user.userId() : null,
+                user != null ? user.nickname() : null,
+                user != null ? user.profileImageUrl() : null,
+                collection.imageUrl()
+        );
+    }
+
+    private List<ReportDetail.Comment> mapComments(CollectionCommentsResponse commentsResponse) {
+        if (commentsResponse == null || commentsResponse.items() == null) {
+            return List.of();
+        }
+        return commentsResponse.items().stream()
+                .map(item -> new ReportDetail.Comment(
+                        item.commentId(),
+                        item.userId(),
+                        item.nickname(),
+                        item.content(),
+                        item.likeCount(),
+                        item.createdAt(),
+                        item.updatedAt()
+                ))
+                .collect(Collectors.toCollection(ArrayList::new));
+    }
+
+    private ReportedCollectionListResponse.Item findCollectionReportMetadata(long reportId) {
+        return Optional.ofNullable(adminReportClient.listCollectionReports())
+                .map(ReportedCollectionListResponse::items)
+                .orElse(List.of())
+                .stream()
+                .filter(item -> item.reportId() != null && item.reportId() == reportId)
+                .findFirst()
+                .orElse(null);
+    }
+
+    private ReportedCommentListResponse.Item findCommentReportMetadata(long reportId) {
+        return Optional.ofNullable(adminReportClient.listCommentReports())
+                .map(ReportedCommentListResponse::items)
+                .orElse(List.of())
+                .stream()
+                .filter(item -> item.reportId() != null && item.reportId() == reportId)
+                .findFirst()
+                .orElse(null);
+    }
+
+    private String abbreviate(String value, int maxLength) {
+        if (!StringUtils.hasText(value)) {
+            return null;
+        }
+        if (value.length() <= maxLength) {
+            return value;
+        }
+        return value.substring(0, maxLength - 1) + "…";
+    }
+
+    private String toAccessLevelLabel(String accessLevel) {
+        if (!StringUtils.hasText(accessLevel)) {
+            return "-";
+        }
+        return switch (accessLevel.toUpperCase(Locale.ROOT)) {
+            case "PUBLIC" -> "공개";
+            case "PRIVATE" -> "비공개";
+            default -> accessLevel;
+        };
+    }
+
+    private void ensureToastMessages(Model model) {
+        if (!model.containsAttribute("toastMessages")) {
+            model.addAttribute("toastMessages", List.of());
+        }
+    }
+
+    private void attachFlashDefaults(Model model) {
+        if (!model.containsAttribute("flashStatus")) {
+            model.addAttribute("flashStatus", null);
+        }
+        if (!model.containsAttribute("flashMessage")) {
+            model.addAttribute("flashMessage", null);
+        }
+    }
+
+    private record CollectionListSupplement(String note, String imageUrl) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/RoleManagementController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.role.AdminRoleClient;
+import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
+import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
+import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
+import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
+import apu.saerok_admin.infra.role.dto.PermissionSummaryResponse;
+import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
+import apu.saerok_admin.infra.role.dto.RoleSummaryResponse;
+import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.CurrentAdminProfile;
+import apu.saerok_admin.web.view.role.PermissionOptionView;
+import apu.saerok_admin.web.view.role.PermissionView;
+import apu.saerok_admin.web.view.role.RoleDisplay;
+import apu.saerok_admin.web.view.role.RolePermissionGroupView;
+import apu.saerok_admin.web.view.role.RoleTemplateView;
+import apu.saerok_admin.web.view.role.TeamMemberView;
+import java.util.ArrayList;
+import java.util.Comparator;
+import java.util.LinkedHashMap;
+import java.util.LinkedHashSet;
+import java.util.List;
+import java.util.Locale;
+import java.util.Map;
+import java.util.Objects;
+import java.util.Optional;
+import java.util.Set;
+import java.util.stream.Collectors;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.ModelAttribute;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.servlet.mvc.support.RedirectAttributes;
+import org.springframework.web.util.UriComponentsBuilder;
+
+@Controller
+@RequestMapping("/admin/roles")
+public class RoleManagementController {
+
+    private static final Logger log = LoggerFactory.getLogger(RoleManagementController.class);
+    private static final String TAB_MY = "my";
+    private static final String TAB_TEAM = "team";
+    private static final String TAB_MANAGE = "manage";
+    private static final String PERMISSION_ADMIN_ROLE_MY_READ = "ADMIN_ROLE_MY_READ";
+    private static final String PERMISSION_ADMIN_ROLE_READ = "ADMIN_ROLE_READ";
+    private static final String PERMISSION_ADMIN_ROLE_WRITE = "ADMIN_ROLE_WRITE";
+
+    private final AdminRoleClient adminRoleClient;
+
+    public RoleManagementController(AdminRoleClient adminRoleClient) {
+        this.adminRoleClient = adminRoleClient;
+    }
+
+    @GetMapping
+    public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                        @RequestParam(name = "tab", required = false) String tab,
+                        @RequestParam(name = "selectedUserId", required = false) Long selectedUserId,
+                        @RequestParam(name = "selectedRoleCode", required = false) String selectedRoleCode,
+                        Model model) {
+        model.addAttribute("pageTitle", "역할과 권한");
+        model.addAttribute("activeMenu", "adminRoles");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("역할과 권한")
+        ));
+        model.addAttribute("toastMessages", List.of());
+
+        boolean canViewMyRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_MY_READ);
+        boolean canViewTeamRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_READ);
+        boolean canManageRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE);
+
+        List<RoleTemplateView> roleTemplates = List.of();
+        Map<String, RoleTemplateView> roleTemplatesByCode = Map.of();
+        List<PermissionOptionView> permissionOptions = List.of();
+        String roleTemplatesLoadError = null;
+
+        if (canViewTeamRoles || canManageRoles) {
+            try {
+                AdminRoleListResponse response = adminRoleClient.listRoles();
+                roleTemplates = Optional.ofNullable(response)
+                        .map(AdminRoleListResponse::roles)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toRoleTemplateView)
+                        .sorted(roleTemplateComparator())
+                        .toList();
+                roleTemplatesByCode = roleTemplates.stream()
+                        .collect(Collectors.toMap(
+                                RoleTemplateView::code,
+                                template -> template,
+                                (left, right) -> left,
+                                LinkedHashMap::new
+                        ));
+                permissionOptions = buildPermissionOptions(roleTemplates);
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load role templates. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load role templates.", exception);
+                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            }
+        }
+
+        String normalizedRoleCode = normalizeRoleCode(selectedRoleCode);
+        RoleTemplateView selectedRoleTemplate = roleTemplatesByCode.get(normalizedRoleCode);
+        if (selectedRoleTemplate == null && !roleTemplates.isEmpty()) {
+            selectedRoleTemplate = roleTemplates.get(0);
+            normalizedRoleCode = selectedRoleTemplate.code();
+        }
+
+        List<RoleDisplay> myRoles = List.of();
+        List<RolePermissionGroupView> myRolePermissionGroups = List.of();
+        String myRolesLoadError = null;
+
+        if (canViewMyRoles) {
+            try {
+                AdminMyRoleResponse myRoleResponse = adminRoleClient.getMyRoles();
+                myRoles = Optional.ofNullable(myRoleResponse)
+                        .map(AdminMyRoleResponse::roles)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toRoleDisplay)
+                        .toList();
+                Map<String, RoleTemplateView> mapping = roleTemplatesByCode;
+                myRolePermissionGroups = myRoles.stream()
+                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mapping)))
+                        .toList();
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load my roles. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load my roles.", exception);
+                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            }
+        } else {
+            myRolesLoadError = "내 역할을 조회할 권한이 없습니다.";
+        }
+
+        List<TeamMemberView> teamMembers = List.of();
+        TeamMemberView selectedTeamMember = null;
+        String teamMembersLoadError = null;
+        Long resolvedSelectedUserId = selectedUserId;
+
+        if (canViewTeamRoles) {
+            try {
+                AdminRoleUserListResponse userResponse = adminRoleClient.listAdminUsers();
+                teamMembers = Optional.ofNullable(userResponse)
+                        .map(AdminRoleUserListResponse::users)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toTeamMemberView)
+                        .sorted(teamMemberComparator())
+                        .toList();
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load team members. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load team members.", exception);
+                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+            }
+        } else {
+            teamMembersLoadError = "팀원 역할을 조회할 권한이 없습니다.";
+        }
+
+        if (!teamMembers.isEmpty()) {
+            Long currentSelection = resolvedSelectedUserId;
+            boolean hasSelectedMember = currentSelection != null && teamMembers.stream()
+                    .anyMatch(member -> Objects.equals(member.id(), currentSelection));
+            if (!hasSelectedMember) {
+                resolvedSelectedUserId = teamMembers.get(0).id();
+            }
+            Long candidateId = resolvedSelectedUserId;
+            selectedTeamMember = teamMembers.stream()
+                    .filter(member -> Objects.equals(member.id(), candidateId))
+                    .findFirst()
+                    .orElse(null);
+        } else {
+            resolvedSelectedUserId = null;
+        }
+
+        List<RoleDisplay> assignableRoles = roleTemplates.stream()
+                .map(RoleTemplateView::role)
+                .toList();
+
+        boolean teamRoleEditorAvailable = canManageRoles
+                && selectedTeamMember != null
+                && !assignableRoles.isEmpty();
+
+        String normalizedTab = normalizeTab(tab, canViewTeamRoles, canManageRoles);
+
+        model.addAttribute("tab", normalizedTab);
+        model.addAttribute("canViewMyRoles", canViewMyRoles);
+        model.addAttribute("canViewTeamTab", canViewTeamRoles);
+        model.addAttribute("canManageRoles", canManageRoles);
+        model.addAttribute("hasRoleStructureAccess", canViewTeamRoles || canManageRoles);
+
+        model.addAttribute("myRoles", myRoles);
+        model.addAttribute("myRolePermissionGroups", myRolePermissionGroups);
+        model.addAttribute("myRolesLoadError", myRolesLoadError);
+
+        model.addAttribute("teamMembers", teamMembers);
+        model.addAttribute("teamMemberCount", teamMembers.size());
+        model.addAttribute("teamMembersLoadError", teamMembersLoadError);
+        model.addAttribute("selectedTeamMemberId", resolvedSelectedUserId);
+        Map<String, RoleTemplateView> mappingForTeam = roleTemplatesByCode;
+        List<RolePermissionGroupView> selectedTeamMemberRoleGroups = selectedTeamMember == null
+                ? List.of()
+                : selectedTeamMember.roles().stream()
+                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mappingForTeam)))
+                        .toList();
+
+        model.addAttribute("selectedTeamMember", selectedTeamMember);
+        model.addAttribute("selectedTeamMemberRoleGroups", selectedTeamMemberRoleGroups);
+        model.addAttribute("assignableRoles", assignableRoles);
+        model.addAttribute("teamRoleEditorAvailable", teamRoleEditorAvailable);
+
+        model.addAttribute("roleTemplates", roleTemplates);
+        model.addAttribute("roleTemplateCount", roleTemplates.size());
+        model.addAttribute("selectedRoleTemplate", selectedRoleTemplate);
+        model.addAttribute("selectedRoleCode", normalizedRoleCode);
+        model.addAttribute("roleTemplatesLoadError", roleTemplatesLoadError);
+        model.addAttribute("permissionOptions", permissionOptions);
+
+        return "admin-role/index";
+    }
+
+    @PostMapping("/team-members/{userId}/roles")
+    public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                        @PathVariable Long userId,
+                                        @RequestParam(name = "roleCodes", required = false) List<String> roleCodes,
+                                        RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
+            return redirectToTeam(userId);
+        }
+
+        Set<String> desiredRoles = new LinkedHashSet<>(normalizeRoleCodes(roleCodes));
+
+        try {
+            AdminRoleUserListResponse response = adminRoleClient.listAdminUsers();
+            Optional<AdminUserRoleResponse> targetUser = Optional.ofNullable(response)
+                    .map(AdminRoleUserListResponse::users)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(user -> Objects.equals(user.userId(), userId))
+                    .findFirst();
+            if (targetUser.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "선택한 팀원을 찾을 수 없습니다.");
+                return redirectToTeam(userId);
+            }
+
+            Set<String> currentRoles = Optional.of(targetUser.get())
+                    .map(AdminUserRoleResponse::roles)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(RoleSummaryResponse::code)
+                    .map(this::normalizeRoleCode)
+                    .filter(StringUtils::hasText)
+                    .collect(Collectors.toCollection(LinkedHashSet::new));
+
+            Set<String> toGrant = new LinkedHashSet<>(desiredRoles);
+            toGrant.removeAll(currentRoles);
+            Set<String> toRevoke = new LinkedHashSet<>(currentRoles);
+            toRevoke.removeAll(desiredRoles);
+
+            for (String code : toGrant) {
+                adminRoleClient.grantRole(userId, new AssignRoleRequest(code));
+            }
+            for (String code : toRevoke) {
+                adminRoleClient.revokeRole(userId, code);
+            }
+
+            String message = toGrant.isEmpty() && toRevoke.isEmpty()
+                    ? "변경 사항이 없어 기존 구성을 유지했습니다."
+                    : "팀원 역할 구성을 업데이트했습니다.";
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", message);
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update team member roles. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update team member roles.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        }
+
+        return redirectToTeam(userId);
+    }
+
+    @PostMapping("/new")
+    public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam String code,
+                             @RequestParam String displayName,
+                             @RequestParam String description,
+                             @RequestParam(name = "permissions", required = false) List<String> permissions,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 생성할 권한이 없습니다.");
+            return redirectToManage(null);
+        }
+
+        String normalizedCode = normalizeRoleCode(code);
+        String normalizedDisplayName = StringUtils.hasText(displayName) ? displayName.trim() : "";
+        String normalizedDescription = StringUtils.hasText(description) ? description.trim() : "";
+
+        if (!StringUtils.hasText(normalizedCode) || !StringUtils.hasText(normalizedDisplayName)
+                || !StringUtils.hasText(normalizedDescription)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 코드, 이름, 설명을 모두 입력해 주세요.");
+            return redirectToManage(normalizedCode);
+        }
+
+        try {
+            adminRoleClient.createRole(new CreateRoleRequest(normalizedCode, normalizedDisplayName, normalizedDescription));
+            List<String> permissionKeys = normalizePermissionKeys(permissions);
+            if (!permissionKeys.isEmpty()) {
+                adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
+            }
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to create role. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 입력값을 확인해 주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to create role.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        }
+
+        return redirectToManage(normalizedCode);
+    }
+
+    @PostMapping("/{roleCode}/permissions")
+    public String updateRolePermissions(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                        @PathVariable String roleCode,
+                                        @RequestParam(name = "permissions", required = false) List<String> permissions,
+                                        RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
+            return redirectToManage(roleCode);
+        }
+
+        String normalizedCode = normalizeRoleCode(roleCode);
+        List<String> permissionKeys = normalizePermissionKeys(permissions);
+
+        try {
+            adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한 구성을 업데이트했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update role permissions. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update role permissions.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+        }
+
+        return redirectToManage(normalizedCode);
+    }
+
+    @PostMapping("/{roleCode}/delete")
+    public String deleteRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @PathVariable String roleCode,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제할 권한이 없습니다.");
+            return redirectToManage(roleCode);
+        }
+
+        String normalizedCode = normalizeRoleCode(roleCode);
+        if (!StringUtils.hasText(normalizedCode)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제할 역할 코드를 확인해 주세요.");
+            return redirectToManage(null);
+        }
+
+        try {
+            adminRoleClient.deleteRole(normalizedCode);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to delete role. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to delete role.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+        }
+
+        return redirectToManage(null);
+    }
+
+    private Comparator<RoleTemplateView> roleTemplateComparator() {
+        return Comparator
+                .comparing(RoleTemplateView::displayName, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
+                .thenComparing(RoleTemplateView::code, String.CASE_INSENSITIVE_ORDER);
+    }
+
+    private Comparator<TeamMemberView> teamMemberComparator() {
+        return Comparator
+                .comparing(TeamMemberView::nickname, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
+                .thenComparing(TeamMemberView::id, Comparator.nullsLast(Long::compareTo));
+    }
+
+    private List<PermissionView> resolvePermissions(String roleCode, Map<String, RoleTemplateView> mapping) {
+        if (!StringUtils.hasText(roleCode) || mapping.isEmpty()) {
+            return List.of();
+        }
+        String normalized = normalizeRoleCode(roleCode);
+        RoleTemplateView template = mapping.get(normalized);
+        if (template == null || template.permissions() == null) {
+            return List.of();
+        }
+        return template.permissions();
+    }
+
+    private RoleTemplateView toRoleTemplateView(RoleDetailResponse response) {
+        RoleDisplay display = new RoleDisplay(
+                response.id(),
+                response.code(),
+                response.displayName(),
+                response.description(),
+                response.builtin()
+        );
+        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toPermissionView)
+                .toList();
+        return new RoleTemplateView(display, permissions);
+    }
+
+    private RoleDisplay toRoleDisplay(RoleSummaryResponse response) {
+        if (response == null) {
+            return new RoleDisplay(null, "", "", "", false);
+        }
+        return new RoleDisplay(
+                response.id(),
+                response.code(),
+                response.displayName(),
+                response.description(),
+                response.builtin()
+        );
+    }
+
+    private PermissionView toPermissionView(PermissionSummaryResponse response) {
+        if (response == null) {
+            return new PermissionView("", "");
+        }
+        return new PermissionView(response.key(), response.description());
+    }
+
+    private TeamMemberView toTeamMemberView(AdminUserRoleResponse response) {
+        List<RoleDisplay> roles = Optional.ofNullable(response.roles())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toRoleDisplay)
+                .toList();
+        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toPermissionView)
+                .toList();
+        return new TeamMemberView(
+                response.userId(),
+                response.nickname(),
+                response.email(),
+                response.superAdmin(),
+                roles,
+                permissions
+        );
+    }
+
+    private List<PermissionOptionView> buildPermissionOptions(List<RoleTemplateView> templates) {
+        if (templates.isEmpty()) {
+            return List.of();
+        }
+        Map<String, PermissionOptionView> deduplicated = new LinkedHashMap<>();
+        for (RoleTemplateView template : templates) {
+            for (PermissionView permission : template.permissions()) {
+                deduplicated.putIfAbsent(permission.key(), new PermissionOptionView(permission.key(), permission.description()));
+            }
+        }
+        Comparator<PermissionOptionView> comparator = Comparator
+                .comparing(PermissionOptionView::label, String.CASE_INSENSITIVE_ORDER)
+                .thenComparing(PermissionOptionView::key, String.CASE_INSENSITIVE_ORDER);
+        return deduplicated.values().stream().sorted(comparator).toList();
+    }
+
+    private String normalizeTab(String requestedTab, boolean canViewTeamRoles, boolean canManageRoles) {
+        List<String> order = new ArrayList<>();
+        order.add(TAB_MY);
+        if (canViewTeamRoles) {
+            order.add(TAB_TEAM);
+        }
+        if (canManageRoles) {
+            order.add(TAB_MANAGE);
+        }
+        String normalized = StringUtils.hasText(requestedTab) ? requestedTab.trim().toLowerCase(Locale.ROOT) : TAB_MY;
+        if (!order.contains(normalized)) {
+            normalized = order.get(0);
+        }
+        return normalized;
+    }
+
+    private String normalizeRoleCode(String code) {
+        if (!StringUtils.hasText(code)) {
+            return "";
+        }
+        return code.trim().toUpperCase(Locale.ROOT);
+    }
+
+    private List<String> normalizeRoleCodes(List<String> rawCodes) {
+        if (rawCodes == null || rawCodes.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String raw : rawCodes) {
+            String value = normalizeRoleCode(raw);
+            if (StringUtils.hasText(value)) {
+                normalized.add(value);
+            }
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private List<String> normalizePermissionKeys(List<String> rawKeys) {
+        if (rawKeys == null || rawKeys.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String raw : rawKeys) {
+            if (!StringUtils.hasText(raw)) {
+                continue;
+            }
+            normalized.add(raw.trim().toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private String redirectToTeam(Long selectedUserId) {
+        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
+                .queryParam("tab", TAB_TEAM);
+        if (selectedUserId != null) {
+            builder.queryParam("selectedUserId", selectedUserId);
+        }
+        return "redirect:" + builder.toUriString();
+    }
+
+    private String redirectToManage(String selectedRoleCode) {
+        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
+                .queryParam("tab", TAB_MANAGE);
+        if (StringUtils.hasText(selectedRoleCode)) {
+            builder.queryParam("selectedRoleCode", normalizeRoleCode(selectedRoleCode));
+        }
+        return "redirect:" + builder.toUriString();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightAjaxResponse.java =====
+package apu.saerok_admin.web.serviceinsight;
+
+import apu.saerok_admin.web.view.ServiceInsightViewModel;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import java.time.LocalDate;
+
+public record ServiceInsightAjaxResponse(
+        @JsonProperty("viewModel") ServiceInsightViewModel viewModel,
+        @JsonProperty("selectedRange") String selectedRange,
+        @JsonProperty("customRangeActive") boolean customRangeActive,
+        @JsonProperty("startDate") LocalDate startDate,
+        @JsonProperty("endDate") LocalDate endDate,
+        @JsonProperty("error") boolean error
+) {
+}
+
+
+// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightQuery.java =====
+package apu.saerok_admin.web.serviceinsight;
+
+import java.time.LocalDate;
+
+public record ServiceInsightQuery(LocalDate startDate, LocalDate endDate) {
+
+    public static ServiceInsightQuery all() {
+        return new ServiceInsightQuery(null, null);
+    }
+
+    public boolean hasRange() {
+        return startDate != null && endDate != null;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightRangePreset.java =====
+package apu.saerok_admin.web.serviceinsight;
+
+import java.time.LocalDate;
+import java.util.Arrays;
+import java.util.List;
+import java.util.Locale;
+import java.util.Optional;
+
+public enum ServiceInsightRangePreset {
+
+    LAST_7_DAYS("recent-7", "최근 1주", 7),
+    LAST_14_DAYS("recent-14", "최근 2주", 14),
+    LAST_30_DAYS("recent-30", "최근 1달", 30),
+    ALL("all", "전체", null),
+    CUSTOM("custom", "사용자 지정", null);
+
+    private final String paramValue;
+    private final String displayLabel;
+    private final Integer days;
+
+    ServiceInsightRangePreset(String paramValue, String displayLabel, Integer days) {
+        this.paramValue = paramValue;
+        this.displayLabel = displayLabel;
+        this.days = days;
+    }
+
+    public String paramValue() {
+        return paramValue;
+    }
+
+    public String displayLabel() {
+        return displayLabel;
+    }
+
+    public boolean isCustom() {
+        return this == CUSTOM;
+    }
+
+    public boolean isAll() {
+        return this == ALL;
+    }
+
+    public Optional<RangeWindow> toWindow(LocalDate today) {
+        if (days == null) {
+            return Optional.empty();
+        }
+        if (today == null) {
+            return Optional.empty();
+        }
+        if (days <= 0) {
+            return Optional.empty();
+        }
+        LocalDate endDate = today;
+        LocalDate startDate = today.minusDays(days - 1L);
+        return Optional.of(new RangeWindow(startDate, endDate));
+    }
+
+    public static Optional<ServiceInsightRangePreset> fromParameter(String parameter) {
+        if (parameter == null || parameter.isBlank()) {
+            return Optional.empty();
+        }
+        String normalized = parameter.trim().toLowerCase(Locale.ROOT);
+        return Arrays.stream(values())
+                .filter(preset -> preset.paramValue.equalsIgnoreCase(normalized) || preset.name().equalsIgnoreCase(normalized))
+                .findFirst();
+    }
+
+    public static List<ServiceInsightRangePreset> quickSelections() {
+        return List.of(LAST_7_DAYS, LAST_14_DAYS, LAST_30_DAYS, ALL);
+    }
+
+    public record RangeWindow(LocalDate startDate, LocalDate endDate) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightService.java =====
+package apu.saerok_admin.web.serviceinsight;
+
+import apu.saerok_admin.infra.stat.AdminStatClient;
+import apu.saerok_admin.infra.stat.StatMetric;
+import apu.saerok_admin.infra.stat.dto.StatSeriesResponse;
+import apu.saerok_admin.web.view.ServiceInsightViewModel;
+import apu.saerok_admin.web.view.ServiceInsightViewModel.ComponentSeries;
+import apu.saerok_admin.web.view.ServiceInsightViewModel.MetricOption;
+import apu.saerok_admin.web.view.ServiceInsightViewModel.Point;
+import apu.saerok_admin.web.view.ServiceInsightViewModel.Series;
+import java.time.LocalDate;
+import java.util.ArrayList;
+import java.util.LinkedHashMap;
+import java.util.List;
+import java.util.Map;
+import java.util.Objects;
+import java.util.Optional;
+import java.util.stream.Collectors;
+import org.springframework.stereotype.Service;
+
+@Service
+public class ServiceInsightService {
+
+    private final AdminStatClient adminStatClient;
+
+    public ServiceInsightService(AdminStatClient adminStatClient) {
+        this.adminStatClient = adminStatClient;
+    }
+
+    public ServiceInsightViewModel loadViewModel() {
+        return loadViewModel(ServiceInsightQuery.all());
+    }
+
+    public ServiceInsightViewModel loadViewModel(ServiceInsightQuery query) {
+        LocalDate startDate = query != null ? query.startDate() : null;
+        LocalDate endDate = query != null ? query.endDate() : null;
+        StatSeriesResponse response = adminStatClient.fetchSeries(List.of(StatMetric.values()), startDate, endDate);
+        return buildViewModel(response);
+    }
+
+    public ServiceInsightViewModel defaultViewModel() {
+        return buildViewModel(null);
+    }
+
+    private ServiceInsightViewModel buildViewModel(StatSeriesResponse response) {
+        Map<String, StatSeriesResponse.Series> responseMap = Optional.ofNullable(response)
+                .map(StatSeriesResponse::series)
+                .orElseGet(List::of)
+                .stream()
+                .filter(Objects::nonNull)
+                .collect(Collectors.toMap(
+                        StatSeriesResponse.Series::metric,
+                        series -> series,
+                        (left, right) -> right,
+                        LinkedHashMap::new
+                ));
+
+        List<MetricOption> metricOptions = new ArrayList<>();
+        List<Series> chartSeries = new ArrayList<>();
+        Map<String, Map<String, String>> componentLabels = new LinkedHashMap<>();
+
+        for (StatMetric metric : StatMetric.values()) {
+            metricOptions.add(toMetricOption(metric));
+            chartSeries.add(toSeries(metric, responseMap.get(metric.name())));
+            if (metric.multiSeries()) {
+                componentLabels.put(metric.name(), metric.componentLabels());
+            }
+        }
+
+        return new ServiceInsightViewModel(metricOptions, chartSeries, componentLabels);
+    }
+
+    private MetricOption toMetricOption(StatMetric metric) {
+        return new MetricOption(
+                metric.name(),
+                metric.label(),
+                metric.description(),
+                metric.unit(),
+                metric.multiSeries(),
+                metric.defaultActive()
+        );
+    }
+
+    private Series toSeries(StatMetric metric, StatSeriesResponse.Series source) {
+        List<Point> points = new ArrayList<>();
+        List<ComponentSeries> components = new ArrayList<>();
+
+        if (source != null) {
+            if (source.points() != null) {
+                for (StatSeriesResponse.Point point : source.points()) {
+                    if (point == null || point.date() == null || point.value() == null) {
+                        continue;
+                    }
+                    points.add(new Point(point.date(), point.value().doubleValue()));
+                }
+            }
+            if (source.components() != null) {
+                for (StatSeriesResponse.ComponentSeries component : source.components()) {
+                    if (component == null || component.key() == null) {
+                        continue;
+                    }
+                    List<Point> componentPoints = new ArrayList<>();
+                    if (component.points() != null) {
+                        for (StatSeriesResponse.Point point : component.points()) {
+                            if (point == null || point.date() == null || point.value() == null) {
+                                continue;
+                            }
+                            componentPoints.add(new Point(point.date(), point.value().doubleValue()));
+                        }
+                    }
+                    components.add(new ComponentSeries(component.key(), componentPoints));
+                }
+            }
+        }
+
+        if (!metric.multiSeries()) {
+            components = List.of();
+        }
+
+        return new Series(metric.name(), points, components);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/ServiceInsightController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.serviceinsight.ServiceInsightAjaxResponse;
+import apu.saerok_admin.web.serviceinsight.ServiceInsightQuery;
+import apu.saerok_admin.web.serviceinsight.ServiceInsightRangePreset;
+import apu.saerok_admin.web.serviceinsight.ServiceInsightService;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.ServiceInsightViewModel;
+import apu.saerok_admin.web.view.ToastMessage;
+import com.fasterxml.jackson.core.JsonProcessingException;
+import com.fasterxml.jackson.databind.ObjectMapper;
+import com.fasterxml.jackson.databind.SerializationFeature;
+import com.fasterxml.jackson.datatype.jsr310.JavaTimeModule;
+import java.time.LocalDate;
+import java.time.ZoneId;
+import java.util.ArrayList;
+import java.util.List;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.format.annotation.DateTimeFormat;
+import org.springframework.http.MediaType;
+import org.springframework.http.ResponseEntity;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+
+@Controller
+public class ServiceInsightController {
+
+    private static final Logger log = LoggerFactory.getLogger(ServiceInsightController.class);
+    private static final String ERROR_TOAST_ID = "toastServiceInsightError";
+    private static final ZoneId DEFAULT_ZONE = ZoneId.of("Asia/Seoul");
+    private static final ServiceInsightRangePreset DEFAULT_PRESET = ServiceInsightRangePreset.LAST_14_DAYS;
+
+    private final ServiceInsightService serviceInsightService;
+    private final ObjectMapper objectMapper;
+
+    public ServiceInsightController(ServiceInsightService serviceInsightService, ObjectMapper objectMapper) {
+        this.serviceInsightService = serviceInsightService;
+        // ObjectMapper 설정 강화
+        this.objectMapper = objectMapper.copy()
+                .registerModule(new JavaTimeModule())
+                .disable(SerializationFeature.WRITE_DATES_AS_TIMESTAMPS);
+    }
+
+    @GetMapping(value = "/service-insight", produces = MediaType.TEXT_HTML_VALUE)
+    public String serviceInsight(
+            Model model,
+            @RequestParam(value = "range", required = false) String rangeParam,
+            @RequestParam(value = "startDate", required = false)
+            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate startDate,
+            @RequestParam(value = "endDate", required = false)
+            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate endDate
+    ) {
+        model.addAttribute("pageTitle", "서비스 인사이트");
+        model.addAttribute("activeMenu", "serviceInsight");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("서비스 인사이트")
+        ));
+        ensureToastMessages(model);
+
+        PageData pageData = loadPageData(rangeParam, startDate, endDate);
+        ServiceInsightViewModel viewModel = pageData.viewModel();
+        RangeSelection rangeSelection = pageData.rangeSelection();
+        if (pageData.hadError()) {
+            attachErrorToast(model);
+        }
+
+        model.addAttribute("serviceInsight", viewModel);
+        String chartDataJson = toJson(viewModel);
+        model.addAttribute("chartDataJson", chartDataJson);
+        model.addAttribute("rangeQuickOptions", ServiceInsightRangePreset.quickSelections());
+        model.addAttribute("selectedRange", rangeSelection.preset().paramValue());
+        model.addAttribute("customRangeActive", rangeSelection.preset() == ServiceInsightRangePreset.CUSTOM);
+        model.addAttribute("selectedStartDate", rangeSelection.query().startDate());
+        model.addAttribute("selectedEndDate", rangeSelection.query().endDate());
+
+        log.debug("Chart data JSON length: {}", chartDataJson.length());
+
+        return "service-insight/index";
+    }
+
+    @GetMapping(value = "/service-insight", produces = MediaType.APPLICATION_JSON_VALUE)
+    public ResponseEntity<ServiceInsightAjaxResponse> serviceInsightData(
+            @RequestParam(value = "range", required = false) String rangeParam,
+            @RequestParam(value = "startDate", required = false)
+            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate startDate,
+            @RequestParam(value = "endDate", required = false)
+            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate endDate
+    ) {
+        PageData pageData = loadPageData(rangeParam, startDate, endDate);
+        RangeSelection rangeSelection = pageData.rangeSelection();
+
+        ServiceInsightAjaxResponse response = new ServiceInsightAjaxResponse(
+                pageData.viewModel(),
+                rangeSelection.preset().paramValue(),
+                rangeSelection.preset() == ServiceInsightRangePreset.CUSTOM,
+                rangeSelection.query().startDate(),
+                rangeSelection.query().endDate(),
+                pageData.hadError()
+        );
+
+        return ResponseEntity.ok(response);
+    }
+
+    private void ensureToastMessages(Model model) {
+        if (!model.containsAttribute("toastMessages")) {
+            model.addAttribute("toastMessages", List.of());
+        }
+    }
+
+    private PageData loadPageData(String rangeParam, LocalDate startDate, LocalDate endDate) {
+        RangeSelection rangeSelection = resolveRange(rangeParam, startDate, endDate);
+
+        try {
+            ServiceInsightViewModel viewModel = serviceInsightService.loadViewModel(rangeSelection.query());
+            log.info("Successfully loaded service insight view model with {} metrics (range: {} - {}, preset: {})",
+                    viewModel.metricOptions().size(),
+                    rangeSelection.query().startDate(),
+                    rangeSelection.query().endDate(),
+                    rangeSelection.preset().name());
+            return new PageData(rangeSelection, viewModel, false);
+        } catch (RestClientResponseException exception) {
+            log.warn(
+                    "Failed to load service insight stats. status={}, body={}",
+                    exception.getStatusCode(),
+                    exception.getResponseBodyAsString(),
+                    exception
+            );
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load service insight stats.", exception);
+        }
+
+        ServiceInsightViewModel fallback = serviceInsightService.defaultViewModel();
+        return new PageData(rangeSelection, fallback, true);
+    }
+
+    private RangeSelection resolveRange(String rangeParam, LocalDate startDate, LocalDate endDate) {
+        LocalDate today = LocalDate.now(DEFAULT_ZONE);
+
+        ServiceInsightRangePreset requestedPreset = ServiceInsightRangePreset.fromParameter(rangeParam)
+                .orElse(DEFAULT_PRESET);
+
+        if (startDate != null || endDate != null) {
+            requestedPreset = ServiceInsightRangePreset.CUSTOM;
+        }
+
+        if (requestedPreset == ServiceInsightRangePreset.ALL) {
+            return new RangeSelection(ServiceInsightRangePreset.ALL, ServiceInsightQuery.all());
+        }
+
+        if (requestedPreset == ServiceInsightRangePreset.CUSTOM) {
+            if (startDate == null || endDate == null) {
+                log.debug("Incomplete custom range supplied (start={}, end={}), falling back to default preset {}",
+                        startDate,
+                        endDate,
+                        DEFAULT_PRESET.name());
+                return buildPresetSelection(DEFAULT_PRESET, today);
+            }
+
+            LocalDate effectiveStart = startDate;
+            LocalDate effectiveEnd = endDate;
+
+            if (effectiveEnd.isBefore(effectiveStart)) {
+                effectiveStart = endDate;
+                effectiveEnd = startDate;
+            }
+
+            if (effectiveEnd.isAfter(today)) {
+                effectiveEnd = today;
+            }
+
+            if (effectiveStart.isAfter(effectiveEnd)) {
+                effectiveStart = effectiveEnd;
+            }
+
+            return new RangeSelection(ServiceInsightRangePreset.CUSTOM, new ServiceInsightQuery(effectiveStart, effectiveEnd));
+        }
+
+        return buildPresetSelection(requestedPreset, today);
+    }
+
+    private RangeSelection buildPresetSelection(ServiceInsightRangePreset preset, LocalDate today) {
+        return preset.toWindow(today)
+                .map(window -> new RangeSelection(preset, new ServiceInsightQuery(window.startDate(), window.endDate())))
+                .orElseGet(() -> new RangeSelection(ServiceInsightRangePreset.ALL, ServiceInsightQuery.all()));
+    }
+
+    private void attachErrorToast(Model model) {
+        ToastMessage errorToast = new ToastMessage(
+                ERROR_TOAST_ID,
+                "데이터 로드 실패",
+                "통계 데이터를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.",
+                "danger",
+                false
+        );
+        List<ToastMessage> messages = new ArrayList<>();
+        Object existing = model.getAttribute("toastMessages");
+        if (existing instanceof List<?> list) {
+            for (Object item : list) {
+                if (item instanceof ToastMessage toastMessage && !ERROR_TOAST_ID.equals(toastMessage.id())) {
+                    messages.add(toastMessage);
+                }
+            }
+        }
+        messages.add(errorToast);
+        model.addAttribute("toastMessages", List.copyOf(messages));
+    }
+
+    private String toJson(ServiceInsightViewModel viewModel) {
+        try {
+            String json = objectMapper.writeValueAsString(viewModel);
+            log.debug("Serialized view model to JSON successfully");
+            return json;
+        } catch (JsonProcessingException exception) {
+            log.error("Failed to serialize service insight payload.", exception);
+            return "{\"metricOptions\":[],\"series\":[],\"componentLabels\":{}}";
+        }
+    }
+
+    private record RangeSelection(ServiceInsightRangePreset preset, ServiceInsightQuery query) {
+    }
+
+    private record PageData(RangeSelection rangeSelection, ServiceInsightViewModel viewModel, boolean hadError) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/UnsplashController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.unsplash.UnsplashService;
+import apu.saerok_admin.infra.unsplash.UnsplashService.Photo;
+import org.springframework.http.MediaType;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.bind.annotation.RestController;
+
+/**
+ * 인증 없이 접근 가능한 프록시 엔드포인트.
+ * - /public/unsplash/random-bird?orientation=landscape|portrait
+ * 브라우저에는 키를 절대 노출하지 않고 단일 사진 메타만 반환한다.
+ */
+@RestController
+public class UnsplashController {
+
+    private final UnsplashService unsplashService;
+
+    public UnsplashController(UnsplashService unsplashService) {
+        this.unsplashService = unsplashService;
+    }
+
+    @GetMapping(path = "/public/unsplash/random-bird", produces = MediaType.APPLICATION_JSON_VALUE)
+    public Photo randomBird(@RequestParam(name = "orientation", required = false) String orientation) {
+        return unsplashService.fetchRandomBird(orientation);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/UserController.java =====
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.UserActivity;
+import apu.saerok_admin.web.view.UserDetail;
+import apu.saerok_admin.web.view.UserListItem;
+import apu.saerok_admin.web.view.ToastMessage;
+import java.time.LocalDateTime;
+import java.util.List;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+
+@Controller
+@RequestMapping("/users")
+public class UserController {
+
+    @GetMapping
+    public String list(@RequestParam(required = false) String q,
+                       @RequestParam(required = false) String status,
+                       @RequestParam(defaultValue = "1") int page,
+                       @RequestParam(defaultValue = "20") int size,
+                       Model model) {
+        model.addAttribute("pageTitle", "사용자 관리");
+        model.addAttribute("activeMenu", "users");
+        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("사용자")));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastUserAction", "조치 완료", "사용자 상태를 업데이트했습니다."),
+                ToastMessage.success("toastUserNotify", "알림 발송", "사용자에게 알림을 전송했습니다.")
+        ));
+        model.addAttribute("query", q);
+        model.addAttribute("statusFilter", status);
+        model.addAttribute("page", page);
+        model.addAttribute("size", size);
+        model.addAttribute("totalPages", 14);
+        model.addAttribute("totalElements", 512);
+        model.addAttribute("statusOptions", List.of("전체", "정상", "휴면", "차단"));
+        model.addAttribute("users", List.of(
+                new UserListItem(501, "솔바람", "sol@saerok.app", LocalDateTime.now().minusMonths(5), "정상", 48, 2),
+                new UserListItem(502, "별빛여행", "star@saerok.app", LocalDateTime.now().minusMonths(3), "정상", 36, 0),
+                new UserListItem(503, "느린풍경", "slow@saerok.app", LocalDateTime.now().minusMonths(8), "차단", 12, 7),
+                new UserListItem(504, "새벽지기", "dawn@saerok.app", LocalDateTime.now().minusMonths(1), "정상", 18, 1),
+                new UserListItem(505, "이끼정원", "moss@saerok.app", LocalDateTime.now().minusMonths(10), "휴면", 5, 0)
+        ));
+        return "users/list";
+    }
+
+    @GetMapping("/{id}")
+    public String detail(@PathVariable long id, Model model) {
+        UserDetail detail = new UserDetail(id, "솔바람", "sol@saerok.app", "010-1234-5678", "정상",
+                LocalDateTime.now().minusMonths(5), LocalDateTime.now().minusDays(1), 48, 2,
+                List.of(
+                        new UserActivity("새록", "초여름 갈대밭 일지", LocalDateTime.now().minusDays(1), "공개"),
+                        new UserActivity("댓글", "강변 산책 중 만난 물새들", LocalDateTime.now().minusDays(2), "공개"),
+                        new UserActivity("신고", "댓글 신고 #2041", LocalDateTime.now().minusDays(3), "검토중"),
+                        new UserActivity("새록", "가을철 맹금류 관찰 노트", LocalDateTime.now().minusDays(7), "공개")
+                ));
+        model.addAttribute("pageTitle", "사용자 상세");
+        model.addAttribute("activeMenu", "users");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("사용자", "/users"),
+                Breadcrumb.active("#" + id)));
+        model.addAttribute("toastMessages", List.of(
+                ToastMessage.success("toastUserAction", "조치 완료", "사용자 상태를 업데이트했습니다."),
+                ToastMessage.success("toastUserNotify", "알림 발송", "사용자에게 알림을 전송했습니다.")
+        ));
+        model.addAttribute("detail", detail);
+        return "users/detail";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdForm.java =====
+package apu.saerok_admin.web.view.ad;
+
+import org.springframework.util.StringUtils;
+
+public record AdForm(
+        Long id,
+        String name,
+        String targetUrl,
+        String memo,
+        String objectKey,
+        String contentType,
+        String imageUrl
+) {
+
+    public boolean hasExistingImage() {
+        return StringUtils.hasText(imageUrl);
+    }
+
+    public boolean hasUploadedImage() {
+        return StringUtils.hasText(objectKey) && StringUtils.hasText(contentType);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdListItem.java =====
+package apu.saerok_admin.web.view.ad;
+
+import java.time.OffsetDateTime;
+import org.springframework.util.StringUtils;
+
+public record AdListItem(
+        Long id,
+        String name,
+        String memo,
+        String imageUrl,
+        String contentType,
+        String targetUrl,
+        OffsetDateTime createdAt,
+        OffsetDateTime updatedAt
+) {
+
+    public boolean hasImage() {
+        return StringUtils.hasText(imageUrl);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdPlacementForm.java =====
+package apu.saerok_admin.web.view.ad;
+
+public record AdPlacementForm(
+        Long id,
+        Long adId,
+        Long slotId,
+        String startDate,
+        String endDate,
+        Short weight,
+        Boolean enabled
+) {
+
+    public boolean isEdit() {
+        return id != null;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdPlacementGroup.java =====
+package apu.saerok_admin.web.view.ad;
+
+import java.util.List;
+
+public record AdPlacementGroup(
+        Long slotId,
+        String slotCode,
+        String slotDescription,
+        double fallbackRatioPercent,
+        int slotTtlSeconds,
+        List<AdPlacementItem> placements
+) {
+
+    public boolean hasPlacements() {
+        return placements != null && !placements.isEmpty();
+    }
+
+    public String fallbackProbabilityLabel() {
+        if (!hasPlacements()) {
+            return "100%";
+        }
+        return Math.round(fallbackRatioPercent) + "%";
+    }
+
+    public boolean hasFallbackProbability() {
+        if (!hasPlacements()) {
+            return true;
+        }
+        return fallbackRatioPercent > 0.0;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdPlacementItem.java =====
+package apu.saerok_admin.web.view.ad;
+
+import java.time.LocalDate;
+import java.time.OffsetDateTime;
+import java.time.format.DateTimeFormatter;
+
+public record AdPlacementItem(
+        Long id,
+        Long adId,
+        String adName,
+        String adImageUrl,
+        Long slotId,
+        String slotName,
+        LocalDate startDate,
+        LocalDate endDate,
+        short weight,
+        boolean enabled,
+        OffsetDateTime createdAt,
+        OffsetDateTime updatedAt,
+        PlacementTimeStatus timeStatus,
+        double displayProbabilityPercent
+) {
+
+    private static final DateTimeFormatter PERIOD_FORMATTER = DateTimeFormatter.ofPattern("yyyy.MM.dd");
+    private static final double PROBABILITY_EPSILON = 1.0E-6;
+
+    public String periodLabel() {
+        // 시작/종료일이 모두 없는 경우
+        if (startDate == null && endDate == null) {
+            return "기간 미지정";
+        }
+
+        // 시작일만 없는 경우: 열린 시작
+        if (startDate == null) {
+            return "~ " + PERIOD_FORMATTER.format(endDate);
+        }
+
+        // 종료일만 없는 경우: 열린 종료
+        if (endDate == null) {
+            return PERIOD_FORMATTER.format(startDate) + " ~";
+        }
+
+        // 둘 다 있는 경우
+        return PERIOD_FORMATTER.format(startDate) + " ~ " + PERIOD_FORMATTER.format(endDate);
+    }
+
+    public AdPlacementItem withDisplayProbability(double probabilityPercent) {
+        return new AdPlacementItem(
+                id,
+                adId,
+                adName,
+                adImageUrl,
+                slotId,
+                slotName,
+                startDate,
+                endDate,
+                weight,
+                enabled,
+                createdAt,
+                updatedAt,
+                timeStatus,
+                probabilityPercent
+        );
+    }
+
+    public boolean isActiveNow() {
+        return timeStatus == PlacementTimeStatus.ACTIVE;
+    }
+
+    public boolean isProbabilityEligible() {
+        return isActiveNow() && enabled;
+    }
+
+    public boolean hasPositiveProbability() {
+        return displayProbabilityPercent > PROBABILITY_EPSILON;
+    }
+
+    public boolean canToggle() {
+        return isActiveNow();
+    }
+
+    public String displayStatusLabel() {
+        if (isActiveNow()) {
+            return enabled ? "진행 중" : "일시 중지";
+        }
+        return switch (timeStatus) {
+            case UPCOMING -> "시작 예정";
+            case ENDED -> "종료";
+            case ACTIVE -> "진행 중";
+        };
+    }
+
+    public String timeStatusLabel() {
+        return switch (timeStatus) {
+            case ACTIVE -> "진행 중";
+            case UPCOMING -> "시작 예정";
+            case ENDED -> "종료";
+        };
+    }
+
+    public String timeStatusBadgeClass() {
+        return switch (timeStatus) {
+            case ACTIVE -> "text-bg-success";
+            case UPCOMING -> "text-bg-info";
+            case ENDED -> "text-bg-secondary";
+        };
+    }
+
+    public String statusBadgeClass() {
+        if (isActiveNow()) {
+            return enabled ? "text-bg-success" : "text-bg-warning";
+        }
+        return switch (timeStatus) {
+            case UPCOMING -> "text-bg-info";
+            case ENDED -> "text-bg-secondary";
+            case ACTIVE -> enabled ? "text-bg-success" : "text-bg-warning";
+        };
+    }
+
+    public String weightLabel() {
+        return switch (weight) {
+            case 1 -> "매우 낮음";
+            case 2 -> "낮음";
+            case 3 -> "보통";
+            case 4 -> "높음";
+            case 5 -> "매우 높음";
+            default -> Short.toString(weight);
+        };
+    }
+
+    public String priorityBadgeClass() {
+        return switch (weight) {
+            case 1 -> "ads-priority-badge--very-low";
+            case 2 -> "ads-priority-badge--low";
+            case 3 -> "ads-priority-badge--medium";
+            case 4 -> "ads-priority-badge--high";
+            case 5 -> "ads-priority-badge--very-high";
+            default -> "ads-priority-badge--unknown";
+        };
+    }
+
+    public boolean hasImage() {
+        return adImageUrl != null && !adImageUrl.isBlank();
+    }
+
+    public String probabilityLabel() {
+        return Math.round(displayProbabilityPercent) + "%";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdSlotForm.java =====
+package apu.saerok_admin.web.view.ad;
+
+public record AdSlotForm(
+        Long id,
+        String code,
+        String description,
+        Double fallbackRatioPercent,
+        Integer ttlSeconds
+) {
+
+    public boolean isEdit() {
+        return id != null;
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdSlotListItem.java =====
+package apu.saerok_admin.web.view.ad;
+
+import java.time.OffsetDateTime;
+
+public record AdSlotListItem(
+        Long id,
+        String code,
+        String description,
+        double fallbackRatioPercent,
+        int ttlSeconds,
+        OffsetDateTime createdAt,
+        OffsetDateTime updatedAt,
+        int connectedScheduleCount
+) {
+
+    public String fallbackRatioLabel() {
+        return String.format("%.1f%%", fallbackRatioPercent);
+    }
+
+    public String fallbackProbabilityLabel() {
+        return Math.round(fallbackRatioPercent) + "%";
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/AdSummaryMetrics.java =====
+package apu.saerok_admin.web.view.ad;
+
+public record AdSummaryMetrics(
+        int adCount,
+        int slotCount,
+        int activePlacementCount
+) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ad/PlacementTimeStatus.java =====
+package apu.saerok_admin.web.view.ad;
+
+public enum PlacementTimeStatus {
+    ACTIVE,
+    UPCOMING,
+    ENDED
+}
+
+
+// ===== java/apu/saerok_admin/web/view/AdminAuditLogItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record AdminAuditLogItem(
+        long id,
+        LocalDateTime occurredAt,
+        String adminNickname,
+        String actionLabel,
+        String actionDescription,
+        String actionBadgeClass,
+        String targetDisplay,
+        String reportDisplay,
+        List<MetadataEntry> metadataEntries
+) {
+
+    public record MetadataEntry(String key, String value) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/Breadcrumb.java =====
+package apu.saerok_admin.web.view;
+
+public record Breadcrumb(String label, String href, boolean active) {
+    public static Breadcrumb of(String label, String href) {
+        return new Breadcrumb(label, href, false);
+    }
+
+    public static Breadcrumb active(String label) {
+        return new Breadcrumb(label, null, true);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/CollectionDetail.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record CollectionDetail(long id, String author, String avatarUrl, String status, int reportCount,
+                               LocalDateTime createdAt, LocalDateTime updatedAt, List<String> tags,
+                               String content) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/CollectionListItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record CollectionListItem(long id, String author, String excerpt, String status,
+                                 int reportCount, LocalDateTime createdAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/CommentListItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record CommentListItem(long id, String author, long parentId, String excerpt,
+                              int reportCount, LocalDateTime createdAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/CurrentAdminProfile.java =====
+package apu.saerok_admin.web.view;
+
+import java.util.LinkedHashSet;
+import java.util.List;
+import java.util.Locale;
+import java.util.Set;
+import org.springframework.util.StringUtils;
+
+public record CurrentAdminProfile(
+        String nickname,
+        String email,
+        String profileImageUrl,
+        List<String> roleDisplayNames,
+        List<String> roleCodes,
+        List<String> permissionKeys
+) {
+
+    private static final String DEFAULT_PROFILE_IMAGE_URL =
+            "https://images.unsplash.com/photo-1524504388940-b1c1722653e1";
+    private static final String DEFAULT_NICKNAME = "운영자";
+    private static final String DEFAULT_EMAIL = "admin@saerok.app";
+
+    public CurrentAdminProfile {
+        nickname = StringUtils.hasText(nickname) ? nickname : DEFAULT_NICKNAME;
+        email = StringUtils.hasText(email) ? email : DEFAULT_EMAIL;
+        profileImageUrl = StringUtils.hasText(profileImageUrl) ? profileImageUrl : DEFAULT_PROFILE_IMAGE_URL;
+        roleDisplayNames = normalizeRoleDisplayNames(roleDisplayNames);
+        roleCodes = normalizeRoleCodes(roleCodes);
+        permissionKeys = normalizePermissionKeys(permissionKeys);
+    }
+
+    public boolean hasRoleDisplayNames() {
+        return !roleDisplayNames.isEmpty();
+    }
+
+    public boolean hasRole(String roleCode) {
+        if (!StringUtils.hasText(roleCode)) {
+            return false;
+        }
+        String normalized = roleCode.toUpperCase(Locale.ROOT);
+        return roleCodes.contains(normalized);
+    }
+
+    public boolean isAdminEditor() {
+        return hasRole("ADMIN_EDITOR");
+    }
+
+    public boolean isAdminViewerOnly() {
+        return hasRole("ADMIN_VIEWER") && !isAdminEditor();
+    }
+
+    public static CurrentAdminProfile placeholder() {
+        return new CurrentAdminProfile(null, null, null, List.of(), List.of(), List.of());
+    }
+
+    public boolean hasPermission(String permissionKey) {
+        if (!StringUtils.hasText(permissionKey)) {
+            return false;
+        }
+        String normalized = permissionKey.toUpperCase(Locale.ROOT);
+        return permissionKeys.contains(normalized);
+    }
+
+    private static List<String> normalizeRoleCodes(List<String> rawRoles) {
+        if (rawRoles == null || rawRoles.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String role : rawRoles) {
+            if (!StringUtils.hasText(role)) {
+                continue;
+            }
+            normalized.add(role.toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private static List<String> normalizePermissionKeys(List<String> rawKeys) {
+        if (rawKeys == null || rawKeys.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String key : rawKeys) {
+            if (!StringUtils.hasText(key)) {
+                continue;
+            }
+            normalized.add(key.toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private static List<String> normalizeRoleDisplayNames(List<String> names) {
+        if (names == null || names.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String name : names) {
+            if (!StringUtils.hasText(name)) {
+                continue;
+            }
+            normalized.add(name.trim());
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/DashboardMetric.java =====
+package apu.saerok_admin.web.view;
+
+public record DashboardMetric(
+        String label,
+        String value,
+        String icon,
+        String variant,
+        String subtitle,
+        String linkHref
+) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/DexDetail.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record DexDetail(long id, String koreanName, String englishName, String scientificName,
+                        String description, String imageUrl, List<String> habitats, String stayType, String rarity,
+                        List<String> tags, LocalDateTime updatedAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/DexFormModel.java =====
+package apu.saerok_admin.web.view;
+
+import java.util.List;
+
+public record DexFormModel(DexDetail detail, List<String> habitatOptions, List<String> stayOptions,
+                           List<String> rarityOptions) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/DexListItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record DexListItem(long id, String koreanName, String englishName, String scientificName,
+                          String habitat, String stayType, String rarity, LocalDateTime updatedAt, List<String> tags) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/EnvironmentProfileBadge.java =====
+package apu.saerok_admin.web.view;
+
+public record EnvironmentProfileBadge(String label, String cssClass) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/NotificationTargetOption.java =====
+package apu.saerok_admin.web.view;
+
+public record NotificationTargetOption(String value, String label, String description) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/RecentDexEntry.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDate;
+
+public record RecentDexEntry(long id, String koreanName, String englishName, LocalDate updatedAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/RecentReport.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record RecentReport(long id, String type, String targetId, String reason, String status, LocalDateTime createdAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ReportDetail.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDate;
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record ReportDetail(
+        long reportId,
+        ReportType type,
+        LocalDateTime reportedAt,
+        Person reporter,
+        Person reportedUser,
+        Collection collection,
+        List<Comment> comments,
+        ReportedComment reportedComment,
+        String ignoreAction,
+        String deleteAction
+) {
+
+    public record Person(Long userId, String nickname) {
+    }
+
+    public record Collection(
+            long collectionId,
+            Long birdId,
+            String birdKoreanName,
+            String birdScientificName,
+            LocalDate discoveredDate,
+            Double latitude,
+            Double longitude,
+            String locationAlias,
+            String address,
+            String note,
+            String accessLevel,
+            String accessLevelLabel,
+            Long likeCount,
+            Long commentCount,
+            Boolean liked,
+            Boolean mine,
+            Long authorId,
+            String authorNickname,
+            String authorProfileImageUrl,
+            String imageUrl
+    ) {
+    }
+
+    public record Comment(
+            Long commentId,
+            Long userId,
+            String nickname,
+            String content,
+            int likeCount,
+            LocalDateTime createdAt,
+            LocalDateTime updatedAt
+    ) {
+    }
+
+    public record ReportedComment(
+            Long commentId,
+            Long userId,
+            String nickname,
+            String content,
+            LocalDateTime createdAt,
+            LocalDateTime updatedAt
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ReportListItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record ReportListItem(
+        long reportId,
+        ReportType type,
+        LocalDateTime reportedAt,
+        String targetSummary,
+        String contentPreview,
+        String collectionImageUrl,
+        String reporterNickname,
+        String reportedUserNickname,
+        String detailPath,
+        String ignoreAction,
+        String deleteAction
+) {
+
+    public boolean hasContentPreview() {
+        return contentPreview != null && !contentPreview.isBlank();
+    }
+
+    public boolean hasCollectionImage() {
+        return collectionImageUrl != null && !collectionImageUrl.isBlank();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ReportType.java =====
+package apu.saerok_admin.web.view;
+
+public enum ReportType {
+    COLLECTION("새록", "primary"),
+    COMMENT("댓글", "warning");
+
+    private final String displayName;
+    private final String badgeVariant;
+
+    ReportType(String displayName, String badgeVariant) {
+        this.displayName = displayName;
+        this.badgeVariant = badgeVariant;
+    }
+
+    public String displayName() {
+        return displayName;
+    }
+
+    public String badgeVariant() {
+        return badgeVariant;
+    }
+
+    public boolean isCollection() {
+        return this == COLLECTION;
+    }
+
+    public boolean isComment() {
+        return this == COMMENT;
+    }
+
+    public String targetNoun() {
+        return switch (this) {
+            case COLLECTION -> "새록";
+            case COMMENT -> "댓글";
+        };
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/PermissionOptionView.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record PermissionOptionView(
+        String key,
+        String description
+) {
+
+    public PermissionOptionView {
+        key = normalizeKey(key);
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(description) ? description : key;
+    }
+
+    private static String normalizeKey(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/PermissionView.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record PermissionView(
+        String key,
+        String description
+) {
+
+    public PermissionView {
+        key = normalizeKey(key);
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(description) ? description : key;
+    }
+
+    private static String normalizeKey(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/RoleDisplay.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record RoleDisplay(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin
+) {
+
+    public RoleDisplay {
+        code = normalizeCode(code);
+        displayName = StringUtils.hasText(displayName) ? displayName.trim() : code;
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(displayName) ? displayName : code;
+    }
+
+    public boolean hasDescription() {
+        return StringUtils.hasText(description);
+    }
+
+    private static String normalizeCode(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+
+public record RolePermissionGroupView(
+        RoleDisplay role,
+        List<PermissionView> permissions
+) {
+
+    public RolePermissionGroupView {
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/RoleTemplateView.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record RoleTemplateView(
+        RoleDisplay role,
+        List<PermissionView> permissions
+) {
+
+    public RoleTemplateView {
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public Long id() {
+        return role.id();
+    }
+
+    public String code() {
+        return role.code();
+    }
+
+    public String displayName() {
+        return role.displayName();
+    }
+
+    public String description() {
+        return role.description();
+    }
+
+    public boolean builtin() {
+        return role.builtin();
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+
+    public boolean hasPermission(String permissionKey) {
+        if (!StringUtils.hasText(permissionKey)) {
+            return false;
+        }
+        String normalized = permissionKey.trim().toUpperCase(Locale.ROOT);
+        return permissions.stream().anyMatch(permission -> normalized.equals(permission.key()));
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/role/TeamMemberView.java =====
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record TeamMemberView(
+        Long id,
+        String nickname,
+        String email,
+        boolean superAdmin,
+        List<RoleDisplay> roles,
+        List<PermissionView> permissions
+) {
+
+    public TeamMemberView {
+        roles = roles == null ? List.of() : List.copyOf(roles);
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public String initials() {
+        if (!StringUtils.hasText(nickname)) {
+            return "팀";
+        }
+        String trimmed = nickname.trim();
+        return trimmed.substring(0, Math.min(2, trimmed.length()));
+    }
+
+    public boolean hasRole(String roleCode) {
+        if (!StringUtils.hasText(roleCode)) {
+            return false;
+        }
+        String normalized = roleCode.trim().toUpperCase(Locale.ROOT);
+        return roles.stream().anyMatch(role -> normalized.equals(role.code()));
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ServiceHealthStatus.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record ServiceHealthStatus(boolean alive, String message, LocalDateTime checkedAt) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ServiceInsightViewModel.java =====
+package apu.saerok_admin.web.view;
+
+import apu.saerok_admin.infra.stat.StatMetric.MetricUnit;
+import com.fasterxml.jackson.annotation.JsonProperty;
+import java.time.LocalDate;
+import java.util.List;
+import java.util.Map;
+
+public record ServiceInsightViewModel(
+        @JsonProperty("metricOptions") List<MetricOption> metricOptions,
+        @JsonProperty("series") List<Series> series,
+        @JsonProperty("componentLabels") Map<String, Map<String, String>> componentLabels
+) {
+
+    public record MetricOption(
+            @JsonProperty("metric") String metric,
+            @JsonProperty("label") String label,
+            @JsonProperty("description") String description,
+            @JsonProperty("unit") MetricUnit unit,
+            @JsonProperty("multiSeries") boolean multiSeries,
+            @JsonProperty("defaultActive") boolean defaultActive
+    ) {
+    }
+
+    public record Series(
+            @JsonProperty("metric") String metric,
+            @JsonProperty("points") List<Point> points,
+            @JsonProperty("components") List<ComponentSeries> components
+    ) {
+    }
+
+    public record Point(
+            @JsonProperty("date") LocalDate date,
+            @JsonProperty("value") double value
+    ) {
+    }
+
+    public record ComponentSeries(
+            @JsonProperty("key") String key,
+            @JsonProperty("points") List<Point> points
+    ) {
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/ToastMessage.java =====
+package apu.saerok_admin.web.view;
+
+public record ToastMessage(String id, String title, String body, String variant, boolean autohide) {
+    public static ToastMessage success(String id, String title, String body) {
+        return new ToastMessage(id, title, body, "success", true);
+    }
+
+    public static ToastMessage info(String id, String title, String body) {
+        return new ToastMessage(id, title, body, "info", true);
+    }
+}
+
+
+// ===== java/apu/saerok_admin/web/view/UserActivity.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record UserActivity(String type, String title, LocalDateTime createdAt, String status) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/UserDetail.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+import java.util.List;
+
+public record UserDetail(long id, String nickname, String email, String phone, String status,
+                         LocalDateTime joinedAt, LocalDateTime lastLoginAt, int postCount,
+                         int reportCount, List<UserActivity> recentActivities) {
+}
+
+
+// ===== java/apu/saerok_admin/web/view/UserListItem.java =====
+package apu.saerok_admin.web.view;
+
+import java.time.LocalDateTime;
+
+public record UserListItem(long id, String nickname, String email, LocalDateTime joinedAt,
+                           String status, int postCount, int reportCount) {
+}
+
+
+// ===== resources/application-codex.yml =====
+server:
+  port: 8081
+
+oauth:
+  kakao:
+    client-id: ${KAKAO_CLIENT_ID}
+    redirect-uri: ${KAKAO_REDIRECT_URI}
+  apple:
+    client-id: ${APPLE_CLIENT_ID}
+    redirect-uri: ${APPLE_REDIRECT_URI}
+
+saerok:
+  api:
+    base-url: ${SAEROK_API_BASE_URL}
+    prefix: /api/v1
+
+unsplash:
+  access-key: ${UNSPLASH_ACCESS_KEY}
+  app-name: ${UNSPLASH_APP_NAME}
+
+
+// ===== resources/application.yml =====
+spring:
+  application:
+    name: saerok-admin
+
+server:
+  port: 8081
+
+oauth:
+  kakao:
+    client-id: ${KAKAO_CLIENT_ID}
+    redirect-uri: ${KAKAO_REDIRECT_URI}
+  apple:
+    client-id: ${APPLE_CLIENT_ID}
+    redirect-uri: ${APPLE_REDIRECT_URI}
+
+saerok:
+  api:
+    base-url: ${SAEROK_API_BASE_URL}
+    prefix: ${SAEROK_API_PREFIX}
+
+unsplash:
+  access-key: ${UNSPLASH_ACCESS_KEY}
+  app-name: ${UNSPLASH_APP_NAME}
+
+
+// ===== resources/static/css/admin-theme.css =====
+:root {
+    color-scheme: light;
+    --font-sans: 'Pretendard', 'Apple SD Gothic Neo', 'Noto Sans KR', sans-serif;
+    --surface-page: #f5f6fa;
+    --surface-primary: #ffffff;
+    --surface-muted: #f1f5f9;
+    --surface-subtle: #e2e8f0;
+    --surface-sidebar: #0f172a;
+    --surface-sidebar-active: rgba(59, 130, 246, 0.18);
+    --surface-sidebar-hover: rgba(59, 130, 246, 0.12);
+    --surface-overlay: rgba(15, 23, 42, 0.75);
+    --surface-overlay-strong: rgba(15, 23, 42, 0.85);
+    --border-subtle: #e2e8f0;
+    --border-strong: rgba(59, 130, 246, 0.4);
+    --shadow-soft: 0 10px 30px rgba(15, 23, 42, 0.08);
+    --shadow-overlay: 0 24px 48px rgba(15, 23, 42, 0.24);
+    --text-primary: #1f2a37;
+    --text-muted: #64748b;
+    --text-inverse: #f8fafc;
+    --accent-primary: #3b82f6;
+    --accent-primary-strong: #1d4ed8;
+    --accent-success: #22c55e;
+    --accent-warning: #f97316;
+    --accent-danger: #ef4444;
+    --radius-sm: 0.5rem;
+    --radius-md: 0.75rem;
+    --radius-lg: 1rem;
+    --radius-xl: 1.5rem;
+    --spacing-xs: 0.375rem;
+    --spacing-sm: 0.75rem;
+    --spacing-md: 1.25rem;
+    --spacing-lg: 2rem;
+    --spacing-xl: 3rem;
+
+    /* 추가: 아바타 이미지 변수 기본값 */
+    --avatar-image: none;
+}
+
+body {
+    font-family: var(--font-sans);
+    background: var(--surface-page);
+    color: var(--text-primary);
+}
+
+p,
+span,
+small,
+label,
+input,
+select,
+textarea,
+button {
+    font-family: inherit;
+}
+
+a { color: var(--accent-primary); }
+a:hover, a:focus { color: var(--accent-primary-strong); }
+
+.app-shell {
+    min-height: 100vh;
+    background: linear-gradient(180deg, rgba(248, 250, 252, 0.98) 0%, rgba(248, 250, 252, 0.6) 100%);
+}
+
+.app-sidebar {
+    width: 260px;
+    min-height: 100vh;
+    background: var(--surface-sidebar);
+    color: var(--text-inverse);
+    padding: var(--spacing-lg) var(--spacing-md);
+    box-shadow: var(--shadow-soft);
+}
+
+.app-sidebar__brand {
+    display: flex;
+    align-items: center;
+    gap: 0.75rem;
+    margin-bottom: var(--spacing-lg);
+}
+.app-sidebar__title { font-size: 1.25rem; font-weight: 700; }
+
+.app-sidebar__nav { display: flex; flex-direction: column; gap: 0.5rem; }
+
+.app-sidebar__link {
+    display: flex; align-items: center; gap: 0.75rem;
+    padding: 0.75rem 1rem; border-radius: var(--radius-md);
+    color: rgba(248, 250, 252, 0.74);
+    font-weight: 500; text-decoration: none;
+    transition: background 0.2s ease, color 0.2s ease;
+}
+.app-sidebar__link:hover, .app-sidebar__link:focus { background: var(--surface-sidebar-hover); color: var(--text-inverse); }
+.app-sidebar__link.is-active {
+    background: var(--surface-sidebar-active); color: var(--text-inverse);
+    border-left: 4px solid var(--accent-primary);
+    padding-left: calc(1rem - 4px + 0.25rem);
+}
+.app-sidebar__link.is-disabled { color: rgba(248, 250, 252, 0.35); cursor: not-allowed; opacity: 0.65; }
+
+.app-sidebar__footer {
+    margin-top: auto; padding-top: var(--spacing-lg);
+    font-size: 0.85rem; color: rgba(248, 250, 252, 0.5);
+}
+
+.app-content {
+    flex-grow: 1; min-height: 100vh;
+    display: flex; flex-direction: column; background: transparent;
+}
+@media (min-width: 992px) { .app-content { margin-left: 260px; } }
+
+.app-main { padding: 1.5rem 1.5rem 2.5rem; }
+@media (min-width: 992px) { .app-main { padding: 2rem 2.5rem 3.5rem; } }
+
+.card-elevated {
+    border: none !important; background: var(--surface-primary);
+    border-radius: var(--radius-lg); box-shadow: var(--shadow-soft);
+}
+.card-elevated .card-header, .card-elevated .card-body { border: none; background: transparent; }
+
+.section-heading { font-weight: 600; font-size: 2rem; }
+
+.badge-soft { background: rgba(59,130,246,0.15) !important; color: var(--accent-primary-strong) !important; }
+
+/* ===== Environment badge ===== */
+.environment-badge {
+    display: inline-flex; align-items: center; gap: .4ch;
+    padding: 0.22rem 0.66rem; border-radius: 999px;
+    font-size: .78rem; font-weight: 700; letter-spacing: -.01em;
+    line-height: 1.15; white-space: nowrap;
+    text-shadow: 0 1px 0 rgba(0,0,0,.35);
+}
+.environment-badge--local{--badge-start:#06b6d4;--badge-end:#3b82f6;--badge-ring:rgba(56,189,248,.55);--badge-glow:rgba(56,189,248,.32);color:#fff;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
+.environment-badge--dev  {--badge-start:#e879f9;--badge-end:#8b5cf6;--badge-ring:rgba(232,121,249,.55);--badge-glow:rgba(139,92,246,.32);color:#fff;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
+.environment-badge--prod {--badge-start:#a3e635;--badge-end:#22c55e;--badge-ring:rgba(163,230,53,.55);--badge-glow:rgba(34,197,94,.30);color:#0b1b13;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
+@media (prefers-color-scheme: light){
+    .app-content .environment-badge--local,.card .environment-badge--local{box-shadow:0 0 0 1px rgba(56,189,248,.35) inset;}
+    .app-content .environment-badge--dev,.card .environment-badge--dev{box-shadow:0 0 0 1px rgba(232,121,249,.35) inset;}
+    .app-content .environment-badge--prod,.card .environment-badge--prod{box-shadow:0 0 0 1px rgba(163,230,53,.35) inset;}
+}
+
+.table-modern thead th {
+    background: var(--surface-muted); font-size: 0.875rem; font-weight: 600;
+    color: var(--text-muted); border-bottom: 1px solid var(--border-subtle);
+}
+.table-modern tbody tr:hover { background: rgba(59,130,246,0.06); }
+.table-modern tbody td { vertical-align: middle; }
+.table-responsive { border-radius: var(--radius-lg); overflow: hidden; }
+.table-responsive .table { margin-bottom: 0; }
+.table-shell { border-radius: var(--radius-lg); overflow: hidden; border: 1px solid var(--border-subtle); }
+.table-shell .table { margin-bottom: 0; }
+
+.btn-icon {
+    width: 2.5rem; height: 2.5rem;
+    display: inline-flex; align-items: center; justify-content: center;
+    border-radius: var(--radius-md);
+}
+
+.status-dot { width: 10px; height: 10px; border-radius: 999px; display: inline-block; margin-right: 0.5rem; }
+.status-active { background: var(--accent-success); }
+.status-pending{ background: var(--accent-warning); }
+.status-danger { background: var(--accent-danger); }
+.status-muted  { background: rgba(148, 163, 184, 1); }
+
+.form-control::placeholder { color: rgba(148,163,184,0.9); }
+
+.breadcrumb-item + .breadcrumb-item::before {
+    content: "\f285"; font-family: "Bootstrap-icons"; font-size: 0.75rem;
+}
+
+.tooltip-bubble .tooltip-inner {
+    background-color: #1f2937; color: #ffffff;
+    border-radius: var(--radius-md); box-shadow: var(--shadow-soft);
+    padding: 0.5rem 0.75rem;
+}
+.tooltip-bubble .tooltip-arrow::before {
+    border-width: 0.5rem 0.5rem 0; border-top-color: #1f2937;
+    filter: drop-shadow(0 6px 6px rgba(15, 23, 42, 0.2));
+}
+
+.upcoming-feature { opacity: 0.55; cursor: not-allowed !important; }
+.upcoming-feature:hover, .upcoming-feature:focus { opacity: 0.55; }
+
+.tooltip-wrapper { display: block; width: 100%; cursor: not-allowed; }
+.tooltip-wrapper .btn { pointer-events: none; }
+
+.media-thumb { border-radius: var(--radius-lg); object-fit: cover; display: block; }
+.media-thumb--square-lg { width: 72px; height: 72px; }
+
+.text-truncate-md { max-width: 260px; }
+
+.collection-image-thumbnail {
+    max-height: 320px; object-fit: cover; width: 100%; border-radius: var(--radius-xl);
+}
+.collection-image-modal { position: fixed; inset: 0; display: flex; align-items: center; justify-content: center; z-index: 1080; }
+.collection-image-modal.d-none { display: none !important; }
+.collection-image-modal .collection-image-backdrop { position: absolute; inset: 0; background: var(--surface-overlay); }
+.collection-image-modal .collection-image-dialog { position: relative; max-width: min(90vw, 1024px); max-height: 90vh; box-shadow: var(--shadow-overlay); }
+.collection-image-modal .collection-image-dialog img { width: 100%; height: auto; max-height: 90vh; object-fit: contain; border-radius: var(--radius-xl); }
+.collection-image-modal .btn-close {
+    position: absolute; top: -16px; right: -16px; background-color: var(--surface-overlay-strong);
+    border-radius: 999px; padding: 0.75rem; opacity: 1;
+}
+
+.collection-note-highlight {
+    background: rgba(59, 130, 246, 0.08);
+    border: 1px solid rgba(59, 130, 246, 0.2);
+    border-radius: var(--radius-xl);
+    padding: var(--spacing-md);
+}
+.note-label {
+    font-size: 0.75rem; letter-spacing: 0.08em; text-transform: uppercase;
+    color: var(--accent-primary-strong); font-weight: 600;
+}
+.collection-one-line-note { white-space: pre-line; font-weight: 600; font-size: 1rem; }
+.collection-detail-meta dl { font-size: 0.9rem; }
+
+.surface-muted { background: var(--surface-muted) !important; color: var(--text-primary); }
+.rounded-lg { border-radius: var(--radius-lg) !important; }
+
+.profile-avatar {
+    width: 64px; height: 64px; border-radius: 50%;
+    background: rgba(148, 163, 184, 0.35);
+    display: flex; align-items: center; justify-content: center;
+    color: var(--text-muted); font-size: 1.5rem;
+    background-image: var(--avatar-image, none);
+    background-size: cover; background-position: center; background-repeat: no-repeat;
+}
+
+.table-empty-state { padding: 3rem 0; color: var(--text-muted); }
+
+.metric-card { transition: transform 0.2s ease, box-shadow 0.2s ease; }
+.metric-card--interactive { cursor: pointer; }
+.metric-card--interactive:hover, .metric-card--interactive:focus-visible {
+    transform: translateY(-4px); box-shadow: var(--shadow-soft);
+}
+.metric-card--interactive:focus-visible { outline: 2px solid var(--accent-primary); outline-offset: 4px; }
+
+.report-card { border: none; background: transparent; }
+.report-card + .report-card { border-top: 1px solid var(--border-subtle); }
+.report-card__link {
+    display: block; padding: var(--spacing-md); border-radius: var(--radius-lg);
+    transition: background-color 0.2s ease, box-shadow 0.2s ease, transform 0.2s ease;
+}
+.report-card__link:hover, .report-card__link:focus-visible {
+    background: var(--surface-muted); box-shadow: var(--shadow-soft); transform: translateY(-2px);
+}
+.report-card__link:focus-visible { outline: 2px solid var(--accent-primary); outline-offset: 2px; }
+.report-card:hover .report-card__link, .report-card:focus-within .report-card__link {
+    background: var(--surface-muted); box-shadow: var(--shadow-soft);
+}
+.report-card__footer { padding: var(--spacing-sm) var(--spacing-md) var(--spacing-md); border-color: var(--border-subtle) !important; }
+
+.audit-log-card { border: none; background: transparent; }
+.audit-log-card + .audit-log-card { border-top: 1px solid var(--border-subtle); }
+.audit-log-card__content { padding: var(--spacing-md); display: flex; flex-direction: column; gap: var(--spacing-md); }
+.audit-log-details { display: block; }
+.audit-log-details__summary {
+    display: inline-flex; align-items: center; gap: var(--spacing-xs);
+    cursor: pointer; font-weight: 600; color: var(--accent-primary); text-decoration: none;
+}
+.audit-log-details__summary:hover, .audit-log-details__summary:focus-visible { color: var(--accent-primary-strong); outline: none; }
+.audit-log-details__summary::-webkit-details-marker { display: none; }
+.audit-log-details__summary::after { content: '\25BC'; font-size: 0.75rem; transition: transform 0.2s ease; }
+.audit-log-details[open] .audit-log-details__summary::after { transform: rotate(-180deg); }
+.audit-log-details__content { margin-top: var(--spacing-sm); }
+
+.offcanvas .app-sidebar__link { color: var(--text-primary); }
+.offcanvas .app-sidebar__link.is-disabled { color: rgba(100, 116, 139, 0.6); }
+.offcanvas .app-sidebar__link.is-active {
+    color: var(--accent-primary); border-left: none; background: rgba(59, 130, 246, 0.12);
+}
+
+.text-muted-soft { color: rgba(100, 116, 139, 0.85) !important; }
+.alert-elevated { border-radius: var(--radius-md); border: none; box-shadow: var(--shadow-soft); }
+.card-header-tight { padding: var(--spacing-sm) var(--spacing-md); border-bottom: 1px solid rgba(15, 23, 42, 0.06); }
+.card-body-comfy { padding: var(--spacing-md); }
+.flex-gap-sm { gap: var(--spacing-sm); }
+.flex-gap-md { gap: var(--spacing-md); }
+.btn-ghost { background: transparent; border: 1px solid var(--border-subtle); color: var(--text-primary); }
+.btn-ghost:hover, .btn-ghost:focus { background: var(--surface-muted); }
+.shadow-soft { box-shadow: var(--shadow-soft) !important; }
+.border-subtle { border: 1px solid var(--border-subtle) !important; }
+.bg-overlay-muted { background: rgba(15, 23, 42, 0.04) !important; }
+.th-text-muted { color: var(--text-muted) !important; }
+.form-legend { font-size: 0.875rem; font-weight: 600; color: var(--text-muted); text-transform: uppercase; letter-spacing: 0.08em; }
+.app-section-title { font-size: 1.125rem; font-weight: 600; }
+
+/* ===== Service Insight ===== */
+.service-insight {
+    display: flex; flex-direction: column; gap: var(--spacing-lg);
+}
+.service-insight__container {
+    /* ← 여기서 좌우 스크롤 분리용 컨테이너 고정 높이 + 내부 스크롤 */
+    display: grid;
+    grid-template-columns: 280px 1fr;
+    gap: var(--spacing-lg);
+    overflow: hidden;          /* 내부 컬럼만 스크롤 */
+    min-height: 0;             /* 그리드 자식 overflow 동작 보장 */
+    /* 높이는 JS가 런타임에 직접 설정 (뷰포트-오프셋 계산) */
+}
+@media (min-width: 992px) { .service-insight__container { grid-template-columns: 280px 1fr; } }
+@media (max-width: 991.98px) { .service-insight__container { grid-template-columns: 1fr; } }
+
+/* 좌우 컬럼을 각각 스크롤 */
+.service-insight__metrics,
+.service-insight__chart {
+    height: 100%;          /* 컨테이너 높이를 채움 (JS가 container 높이 세팅) */
+    overflow-y: auto;      /* 각자 스크롤 */
+    min-height: 0;
+}
+
+.service-insight__metrics { display: flex; flex-direction: column; gap: var(--spacing-md); }
+.service-insight__metrics-header { display: flex; flex-direction: column; gap: 0.25rem; }
+
+.service-insight__metric-list { display: flex; flex-direction: column; gap: 0.75rem; }
+.service-insight__metric-button {
+    width: 100%; text-align: left; background: transparent;
+    border: 1px solid var(--border-subtle); border-radius: var(--radius-lg);
+    padding: var(--spacing-sm) var(--spacing-md);
+    display: flex; flex-direction: column; gap: 0.35rem;
+    color: inherit; transition: border-color 0.2s, box-shadow 0.2s, transform 0.2s;
+}
+.service-insight__metric-button:hover,
+.service-insight__metric-button:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: 0 12px 32px rgba(59,130,246,0.12);
+    transform: translateY(-1px); outline: none;
+}
+.service-insight__metric-button.is-active {
+    border-color: var(--accent-primary);
+    background: rgba(59,130,246,0.08);
+    box-shadow: 0 16px 32px rgba(59,130,246,0.18);
+}
+.service-insight__metric-label { font-weight: 600; }
+.service-insight__metric-badge { align-self: flex-start; }
+
+.service-insight__chart { min-width: 0; }
+
+.service-insight__chart-surface { position: relative; height: 360px; }
+@media (min-width: 1200px) { .service-insight__chart-surface { height: 420px; } }
+.service-insight__chart-surface canvas { width: 100% !important; height: 100%; display: block; }
+
+.service-insight__unit { font-weight: 600; }
+.service-insight__empty-state {
+    border: 1px dashed var(--border-subtle); border-radius: var(--radius-lg);
+    background: rgba(15, 23, 42, 0.02);
+}
+
+/* 질문형 인사이트(호환) */
+.siq-grid { display: grid; gap: var(--spacing-lg); }
+@media (min-width: 992px) { .siq-grid--two { grid-template-columns: 1fr 1fr; } }
+.siq-card__surface { position: relative; height: 360px; }
+@media (min-width: 1200px) { .siq-card__surface { height: 420px; } }
+.siq-card__surface canvas { width: 100% !important; height: 100%; display: block; }
+
+/* ===== DnD 플롯/그룹 UI ===== */
+.si-sidebar { display: flex; flex-direction: column; gap: var(--spacing-md); }
+.si-sidebar__header { display: flex; align-items: baseline; justify-content: space-between; padding: 0 var(--spacing-sm); }
+.si-sidebar__title { font-weight: 700; }
+.si-sidebar__hint  { color: var(--text-muted); font-size: 0.85rem; }
+.si-groups { display: flex; flex-direction: column; gap: var(--spacing-sm); }
+
+.si-group { border: 1px solid var(--border-subtle); border-radius: var(--radius-lg); background: var(--surface-primary); overflow: hidden; }
+.si-group[open] .si-group__summary { border-bottom: 1px solid var(--border-subtle); }
+.si-group__summary {
+    display: flex; align-items: center; justify-content: space-between; gap: var(--spacing-sm);
+    padding: var(--spacing-sm) var(--spacing-md); cursor: pointer;
+}
+.si-group__title { font-weight: 600; }
+.si-group__tools { display: inline-flex; gap: 0.25rem; }
+.si-group__btn {
+    border: 1px solid var(--border-subtle); background: transparent; border-radius: var(--radius-sm);
+    padding: 0.25rem 0.5rem; font-size: 0.8rem; color: var(--text-muted);
+}
+.si-group__btn:hover { color: var(--accent-primary); border-color: var(--accent-primary); }
+.si-group__body { padding: var(--spacing-sm) var(--spacing-md); }
+.si-chip-list { display: flex; flex-direction: column; gap: 0.5rem; }
+
+.si-chip {
+    display: flex; align-items: center; gap: 0.6rem;
+    border: 1px dashed var(--border-subtle);
+    background: rgba(15,23,42,0.02);
+    border-radius: var(--radius-md);
+    padding: 0.45rem 0.6rem;
+    cursor: grab; user-select: none;
+}
+.si-chip:active { cursor: grabbing; }
+.si-chip:hover { border-color: var(--accent-primary); background: rgba(59,130,246,0.06); }
+.si-chip__dot { width: 10px; height: 10px; border-radius: 999px; flex: 0 0 10px; }
+.si-chip__label { flex: 1 1 auto; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; font-weight: 600; }
+.si-chip__meta { color: var(--text-muted); font-size: 0.8rem; }
+.si-grip { font-family: ui-monospace, SFMono-Regular, Menlo, monospace; opacity: .6; }
+
+.si-plots { display: flex; flex-direction: column; gap: var(--spacing-md); }
+.si-plots__toolbar { display: flex; justify-content: space-between; align-items: center; padding: 0 0.25rem; }
+.si-size { display: inline-flex; gap: 0.4rem; }
+.si-size__btn.is-active { border-color: var(--accent-primary); color: var(--accent-primary); }
+
+.si-plot-grid { display: grid; gap: var(--spacing-lg); grid-template-columns: 1fr; }
+@media (min-width: 1200px) { .si-plot-grid { grid-template-columns: 1fr 1fr; } }
+
+.si-plot-card {
+    border: 1px solid var(--border-subtle); border-radius: var(--radius-lg);
+    background: var(--surface-primary); box-shadow: var(--shadow-soft); overflow: hidden;
+}
+.si-plot__header {
+    display: flex; align-items: center; justify-content: space-between; gap: var(--spacing-sm);
+    padding: var(--spacing-sm) var(--spacing-md); border-bottom: 1px solid var(--border-subtle);
+}
+.si-plot__title { font-weight: 600; }
+.si-plot__tools { display: inline-flex; gap: 0.35rem; }
+
+.si-plot__datasets {
+    display: flex; flex-wrap: wrap; gap: 0.35rem;
+    padding: 0.5rem var(--spacing-md);
+    border-bottom: 1px dashed var(--border-subtle);
+    background: rgba(15,23,42,0.02);
+}
+.si-ds-chip {
+    display: inline-flex; align-items: center; gap: 0.4rem;
+    border: 1px solid var(--border-subtle);
+    border-radius: 999px; padding: 0.2rem 0.5rem;
+    font-size: 0.85rem; background: #fff; cursor: grab;
+}
+.si-ds-chip:active { cursor: grabbing; }
+.si-ds-chip__dot { width: 8px; height: 8px; border-radius: 999px; }
+.si-ds-chip__rm { border: none; background: transparent; color: var(--text-muted); padding: 0; line-height: 1; font-size: 1rem; cursor: pointer; }
+.si-ds-chip__rm:hover { color: var(--accent-danger); }
+
+.si-dropzone {
+    display: flex; align-items: center; justify-content: center;
+    padding: var(--spacing-md);
+    border: 2px dashed var(--border-subtle);
+    border-radius: var(--radius-lg);
+    color: var(--text-muted); font-weight: 600;
+    transition: border-color .15s ease, background-color .15s ease;
+}
+.si-dropzone.is-dragover { border-color: var(--accent-primary); background: rgba(59,130,246,0.06); }
+
+.si-plot__surface { position: relative; }
+.si-plots[data-size="compact"] .si-plot__surface { height: 240px; }
+.si-plots[data-size="cozy"]    .si-plot__surface { height: 300px; }
+.si-plots[data-size="roomy"]   .si-plot__surface { height: 420px; }
+.si-plot__surface canvas { width: 100% !important; height: 100%; display: block; }
+
+.si-empty {
+    position: absolute; inset: 0;
+    display: flex; align-items: center; justify-content: center;
+    color: var(--text-muted); pointer-events: none;
+}
+
+/* ===== Role management ===== */
+.role-tab-nav {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.75rem;
+}
+.role-tab {
+    flex: 1;
+    min-width: 200px;
+    text-decoration: none;
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1rem 1.25rem;
+    color: inherit;
+    transition: all 0.2s ease;
+    background: #fff;
+}
+.role-tab.is-active {
+    border-color: var(--accent-primary);
+    box-shadow: 0 10px 30px rgba(15, 23, 42, 0.08);
+}
+.role-tab.is-disabled {
+    cursor: not-allowed;
+    opacity: 0.6;
+    background: var(--surface-muted);
+}
+.role-pill-wrap,
+.role-chip-row {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.75rem;
+}
+.role-pill,
+.role-chip {
+    border: 1px solid var(--border-subtle);
+    border-radius: 999px;
+    padding: 0.35rem 0.85rem;
+    background: var(--surface-muted);
+    font-size: 0.9rem;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.35rem;
+    line-height: 1.2;
+}
+.role-chip--action {
+    cursor: pointer;
+    background: var(--surface-primary);
+    border-color: rgba(59, 130, 246, 0.24);
+    box-shadow: 0 6px 18px rgba(15, 23, 42, 0.08);
+    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+}
+.role-chip--action:hover,
+.role-chip--action:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: 0 12px 30px rgba(59, 130, 246, 0.16);
+    transform: translateY(-1px);
+    outline: none;
+}
+.role-chip__cta {
+    font-size: 0.75rem;
+    color: var(--accent-primary);
+    text-transform: uppercase;
+    letter-spacing: 0.06em;
+    font-weight: 600;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.15rem;
+}
+.role-permission-list {
+    list-style: none;
+    padding: 0;
+    margin: 0;
+    display: flex;
+    flex-direction: column;
+    gap: 0.75rem;
+}
+.role-permission-trigger-grid {
+    display: grid;
+    gap: 1rem;
+    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
+}
+.role-permission-trigger {
+    width: 100%;
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-xl);
+    padding: 1.15rem 1.25rem;
+    background: var(--surface-primary);
+    display: flex;
+    flex-direction: column;
+    gap: 0.85rem;
+    text-align: left;
+    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+}
+.role-permission-trigger:hover,
+.role-permission-trigger:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: var(--shadow-soft);
+    transform: translateY(-2px);
+    outline: none;
+}
+.role-permission-trigger__title {
+    font-size: 1.05rem;
+    font-weight: 600;
+}
+.role-permission-trigger__meta {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    gap: 0.5rem;
+    font-size: 0.85rem;
+}
+.role-permission-trigger__cta {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.15rem;
+    font-weight: 600;
+    color: var(--accent-primary);
+}
+.role-permission-modal {
+    border-radius: var(--radius-xl);
+    border: none;
+    box-shadow: var(--shadow-overlay);
+    overflow: hidden;
+}
+.role-permission-modal__eyebrow {
+    font-size: 0.75rem;
+    font-weight: 700;
+    letter-spacing: 0.12em;
+    color: var(--accent-primary-strong);
+    margin-bottom: 0.35rem;
+}
+.role-permission-modal__description {
+    font-size: 0.95rem;
+}
+.permission-modal-list {
+    list-style: none;
+    margin: 0;
+    padding: 0;
+    display: flex;
+    flex-direction: column;
+    gap: 0.85rem;
+}
+.permission-modal-item {
+    border: 1px solid rgba(59, 130, 246, 0.25);
+    border-radius: var(--radius-lg);
+    padding: 0.85rem 1rem;
+    background: linear-gradient(135deg, rgba(59, 130, 246, 0.08), rgba(15, 23, 42, 0.02));
+    box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.4);
+}
+.permission-modal-description {
+    font-weight: 600;
+    font-size: 1rem;
+    margin-bottom: 0.35rem;
+}
+.permission-modal-key {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.25rem;
+    font-family: 'JetBrains Mono', 'SFMono-Regular', Consolas, monospace;
+    font-size: 0.75rem;
+    letter-spacing: 0.08em;
+    text-transform: uppercase;
+    color: var(--text-muted);
+    background: rgba(15, 23, 42, 0.05);
+    border-radius: 999px;
+    padding: 0.1rem 0.75rem;
+}
+.permission-modal-empty {
+    border: 1px dashed var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1rem;
+    color: var(--text-muted);
+    text-align: center;
+}
+.team-member-grid {
+    display: grid;
+    gap: 0.85rem;
+    grid-template-columns: repeat(auto-fill, minmax(220px, 1fr));
+}
+.team-member-card {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 0.75rem;
+    display: flex;
+    gap: 0.85rem;
+    text-decoration: none;
+    color: inherit;
+    transition: border-color 0.2s ease, box-shadow 0.2s ease;
+}
+.team-member-card.is-active {
+    border-color: var(--accent-primary);
+    box-shadow: var(--shadow-soft);
+}
+.team-member-card__avatar {
+    width: 48px;
+    height: 48px;
+    border-radius: 999px;
+    background: var(--surface-muted);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    font-weight: 600;
+}
+.team-member-card__body {
+    flex: 1;
+    min-width: 0;
+}
+.role-editor-panel summary {
+    cursor: pointer;
+    font-weight: 600;
+}
+.permission-grid {
+    display: grid;
+    gap: 0.75rem;
+    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
+}
+.role-option,
+.permission-option {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-md);
+    padding: 0.65rem;
+    gap: 0.5rem;
+    align-items: flex-start;
+}
+.role-template-list {
+    display: flex;
+    flex-direction: column;
+    gap: 0.5rem;
+}
+.role-template-item {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-md);
+    padding: 0.75rem;
+    text-decoration: none;
+    color: inherit;
+    display: block;
+}
+.role-template-item.is-active {
+    border-color: var(--accent-primary);
+    background: rgba(59, 130, 246, 0.08);
+}
+
+
+// ===== resources/static/css/ads.css =====
+:root {
+    color-scheme: light;
+}
+
+.ads-page {
+    display: flex;
+    flex-direction: column;
+    gap: 1.75rem;
+}
+
+.ads-page-header h1 {
+    font-weight: 700;
+    color: #0f172a;
+}
+
+.ads-page-header p {
+    color: #64748b;
+}
+
+.ads-summary-row {
+    --ads-card-radius: 1.25rem;
+}
+
+.ads-summary-card {
+    position: relative;
+    border: 0;
+    border-radius: var(--ads-card-radius);
+    background: linear-gradient(135deg, var(--ads-card-start, #eef2ff), var(--ads-card-end, #dbeafe));
+    box-shadow: 0 18px 40px rgba(15, 23, 42, 0.12);
+    overflow: hidden;
+    transition: transform 0.2s ease, box-shadow 0.2s ease;
+}
+
+.ads-summary-card:hover {
+    transform: translateY(-4px);
+    box-shadow: 0 22px 48px rgba(15, 23, 42, 0.16);
+}
+
+.ads-summary-card::after {
+    content: "";
+    position: absolute;
+    inset: 0;
+    background: radial-gradient(circle at top right, rgba(255, 255, 255, 0.45), transparent 55%);
+    pointer-events: none;
+}
+
+.ads-summary-card--ads {
+    --ads-card-start: #eef2ff;
+    --ads-card-end: #e0f2fe;
+    --ads-icon-bg: rgba(79, 70, 229, 0.16);
+    --ads-icon-color: #4338ca;
+}
+
+.ads-summary-card--slots {
+    --ads-card-start: #f1f5f9;
+    --ads-card-end: #d9f99d;
+    --ads-icon-bg: rgba(34, 197, 94, 0.16);
+    --ads-icon-color: #15803d;
+}
+
+.ads-summary-card--placements {
+    --ads-card-start: #fef3c7;
+    --ads-card-end: #e0e7ff;
+    --ads-icon-bg: rgba(245, 158, 11, 0.18);
+    --ads-icon-color: #b45309;
+}
+
+.ads-summary-icon {
+    width: 3rem;
+    height: 3rem;
+    border-radius: 50%;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    background-color: var(--ads-icon-bg, rgba(15, 23, 42, 0.1));
+    color: var(--ads-icon-color, #1d4ed8);
+    font-size: 1.5rem;
+    margin-bottom: 1rem;
+}
+
+.ads-summary-label {
+    font-weight: 600;
+    color: #334155;
+    margin-bottom: 0.25rem;
+}
+
+.ads-summary-value {
+    font-size: 2.25rem;
+    font-weight: 700;
+    color: #0f172a;
+}
+
+.ads-tabs {
+    border: 0;
+    background: rgba(226, 232, 240, 0.6);
+    padding: 0.4rem;
+    border-radius: 999px;
+    display: inline-flex;
+    gap: 0.25rem;
+}
+
+.ads-tabs .nav-link {
+    border: 0;
+    border-radius: 999px;
+    color: #64748b;
+    font-weight: 500;
+    padding: 0.55rem 1.4rem;
+    transition: color 0.2s ease, background 0.2s ease, box-shadow 0.2s ease;
+}
+
+.ads-tabs .nav-link:hover {
+    color: #1e293b;
+}
+
+.ads-tabs .nav-link.active {
+    background: linear-gradient(135deg, #6366f1, #22d3ee);
+    color: #ffffff;
+    box-shadow: 0 12px 30px rgba(14, 165, 233, 0.35);
+}
+
+.ads-panel {
+    border: 0;
+    border-radius: 1.25rem;
+    box-shadow: 0 18px 36px rgba(15, 23, 42, 0.12);
+    background-color: #ffffff;
+}
+
+.ads-panel .card-header {
+    border: 0;
+    background: linear-gradient(180deg, rgba(148, 163, 184, 0.18), rgba(255, 255, 255, 0));
+    padding: 1.5rem 1.5rem 1.1rem;
+}
+
+.ads-panel .card-body {
+    padding: 1.6rem 1.6rem 1.9rem;
+}
+
+.ads-panel .table-responsive {
+    border-radius: 1rem;
+}
+
+.ads-table thead th {
+    background: #f8fafc;
+    border-bottom: none;
+    font-weight: 600;
+    color: #475569;
+}
+
+.ads-table tbody td {
+    border-top-color: rgba(226, 232, 240, 0.7);
+    color: #1f2937;
+}
+
+.ads-table tbody tr:hover {
+    background: rgba(226, 232, 240, 0.35);
+}
+
+.ads-thumb-surface {
+    border-radius: 1rem;
+    overflow: hidden;
+    border: 1px solid rgba(148, 163, 184, 0.35);
+    box-shadow: 0 12px 28px rgba(15, 23, 42, 0.12);
+    background: #ffffff;
+}
+
+.ads-thumb-surface--lg {
+    width: 120px;
+}
+
+.ads-thumb-surface--sm {
+    width: 64px;
+}
+
+.ads-thumb-placeholder {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    border-radius: 1rem;
+    background: linear-gradient(135deg, rgba(226, 232, 240, 0.6), rgba(148, 163, 184, 0.3));
+    border: 1px dashed rgba(148, 163, 184, 0.6);
+    color: #94a3b8;
+    box-shadow: inset 0 0 0 1px rgba(255, 255, 255, 0.4);
+}
+
+.ads-thumb-placeholder--lg {
+    width: 120px;
+    height: 90px;
+}
+
+.ads-thumb-placeholder--sm {
+    width: 64px;
+    height: 64px;
+}
+
+.ads-thumb-placeholder i {
+    font-size: 1.6rem;
+}
+
+.ads-form-page {
+    max-width: 780px;
+    margin: 0 auto;
+}
+
+.ads-form-card {
+    border: 0;
+    border-radius: 1.5rem;
+    background: linear-gradient(180deg, #ffffff 0%, #f5f7ff 100%);
+    box-shadow: 0 28px 56px rgba(15, 23, 42, 0.15);
+}
+
+.ads-form-card__header {
+    border-bottom: 0;
+    padding: 1.85rem 1.85rem 0;
+    background: transparent;
+}
+
+.ads-form-card__body {
+    padding: 1.85rem;
+}
+
+.ads-form-card__body .form-control,
+.ads-form-card__body .form-select,
+.ads-form-card__body .form-range {
+    border-radius: 0.75rem;
+    border-color: rgba(148, 163, 184, 0.45);
+    box-shadow: none;
+    transition: border-color 0.2s ease, box-shadow 0.2s ease;
+}
+
+.ads-slider-group .form-range {
+    accent-color: #6366f1;
+}
+
+.ads-form-card__body .form-control:focus,
+.ads-form-card__body .form-select:focus,
+.ads-form-card__body .form-range:focus {
+    border-color: #6366f1;
+    box-shadow: 0 0 0 0.25rem rgba(99, 102, 241, 0.18);
+}
+
+.ads-upload-area {
+    border-radius: 1rem;
+    border: 1px dashed rgba(99, 102, 241, 0.25);
+    background: rgba(226, 232, 240, 0.45);
+    padding: 1.1rem;
+}
+
+.ads-image-preview {
+    width: 200px;
+    border-radius: 1rem;
+    overflow: hidden;
+    border: 1px solid rgba(99, 102, 241, 0.25);
+    box-shadow: 0 18px 34px rgba(15, 23, 42, 0.14);
+    background: linear-gradient(135deg, rgba(99, 102, 241, 0.15), rgba(14, 165, 233, 0.1));
+}
+
+.ads-upload-status {
+    color: #475569;
+}
+
+.ads-form-actions .btn {
+    min-width: 120px;
+    border-radius: 999px;
+}
+
+.ads-weight-group {
+    gap: 0.4rem;
+}
+
+.ads-weight-group .btn {
+    border-radius: 999px;
+    border-width: 2px;
+    font-weight: 600;
+    color: #475569;
+    background: rgba(148, 163, 184, 0.12);
+}
+
+.ads-weight-group .btn:hover {
+    color: #111827;
+}
+
+.ads-weight-group .btn-check:checked + .btn {
+    color: #ffffff;
+    background: linear-gradient(135deg, #6366f1, #22d3ee);
+    border-color: transparent;
+    box-shadow: 0 12px 28px rgba(99, 102, 241, 0.35);
+}
+
+.ads-status-switch .form-check-input {
+    width: 3.25rem;
+    height: 1.6rem;
+    background-color: #e2e8f0;
+    border: none;
+}
+
+.ads-status-switch .form-check-input:focus {
+    box-shadow: 0 0 0 0.2rem rgba(99, 102, 241, 0.2);
+}
+
+.ads-status-switch .form-check-input:checked {
+    background-color: #6366f1;
+}
+
+.ads-status-switch .form-check-label {
+    font-weight: 600;
+    color: #334155;
+}
+
+.ads-panel .badge {
+    border-radius: 999px;
+    padding: 0.45rem 0.9rem;
+    font-weight: 600;
+}
+
+.ads-period-badge,
+.ads-status-badge {
+    display: inline-flex;
+    align-items: center;
+    border-radius: 999px;
+    padding: 0.35rem 0.75rem;
+    font-size: 0.78rem;
+    font-weight: 600;
+    letter-spacing: 0.02em;
+}
+
+.ads-status-badge {
+    font-size: 0.8rem;
+}
+
+.ads-priority-badge {
+    --ads-priority-bg: rgba(226, 232, 240, 0.85);
+    --ads-priority-border: rgba(148, 163, 184, 0.45);
+    --ads-priority-color: #334155;
+    --ads-priority-shadow: 0 12px 24px rgba(148, 163, 184, 0.18);
+    --ads-priority-shadow-hover: 0 16px 32px rgba(148, 163, 184, 0.24);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-width: 3.5rem;
+    padding: 0.45rem 1.15rem;
+    border-radius: 999px;
+    font-size: 0.85rem;
+    font-weight: 700;
+    letter-spacing: 0.01em;
+    text-transform: none;
+    background: var(--ads-priority-bg);
+    color: var(--ads-priority-color);
+    border: 1px solid var(--ads-priority-border);
+    box-shadow: var(--ads-priority-shadow);
+    transition: transform 0.2s ease, box-shadow 0.2s ease;
+}
+
+.ads-priority-badge:hover {
+    transform: translateY(-2px);
+    box-shadow: var(--ads-priority-shadow-hover);
+}
+
+.ads-priority-badge--very-low {
+    --ads-priority-bg: rgba(148, 163, 184, 0.22);
+    --ads-priority-border: rgba(148, 163, 184, 0.38);
+    --ads-priority-color: #475569;
+    --ads-priority-shadow: 0 12px 26px rgba(148, 163, 184, 0.26);
+    --ads-priority-shadow-hover: 0 16px 34px rgba(148, 163, 184, 0.3);
+}
+
+.ads-priority-badge--low {
+    --ads-priority-bg: rgba(110, 231, 183, 0.24);
+    --ads-priority-border: rgba(16, 185, 129, 0.32);
+    --ads-priority-color: #047857;
+    --ads-priority-shadow: 0 12px 26px rgba(16, 185, 129, 0.28);
+    --ads-priority-shadow-hover: 0 16px 34px rgba(16, 185, 129, 0.32);
+}
+
+.ads-priority-badge--medium {
+    --ads-priority-bg: rgba(253, 230, 138, 0.28);
+    --ads-priority-border: rgba(217, 119, 6, 0.32);
+    --ads-priority-color: #b45309;
+    --ads-priority-shadow: 0 12px 26px rgba(217, 119, 6, 0.26);
+    --ads-priority-shadow-hover: 0 16px 34px rgba(217, 119, 6, 0.3);
+}
+
+.ads-priority-badge--high {
+    --ads-priority-bg: rgba(96, 165, 250, 0.28);
+    --ads-priority-border: rgba(37, 99, 235, 0.35);
+    --ads-priority-color: #1d4ed8;
+    --ads-priority-shadow: 0 12px 26px rgba(59, 130, 246, 0.3);
+    --ads-priority-shadow-hover: 0 16px 34px rgba(59, 130, 246, 0.35);
+}
+
+.ads-priority-badge--very-high {
+    --ads-priority-bg: rgba(248, 113, 113, 0.26);
+    --ads-priority-border: rgba(225, 29, 72, 0.35);
+    --ads-priority-color: #be123c;
+    --ads-priority-shadow: 0 12px 26px rgba(225, 29, 72, 0.3);
+    --ads-priority-shadow-hover: 0 16px 34px rgba(225, 29, 72, 0.34);
+}
+
+.ads-priority-badge--unknown {
+    --ads-priority-bg: rgba(226, 232, 240, 0.85);
+    --ads-priority-border: rgba(148, 163, 184, 0.45);
+    --ads-priority-color: #334155;
+    --ads-priority-shadow: 0 12px 24px rgba(148, 163, 184, 0.18);
+    --ads-priority-shadow-hover: 0 16px 32px rgba(148, 163, 184, 0.24);
+}
+
+.ads-probability-badge {
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    min-width: 3.25rem;
+    padding: 0.45rem 0.95rem;
+    border-radius: 999px;
+    font-size: 0.95rem;
+    font-weight: 700;
+    font-variant-numeric: tabular-nums;
+    transition: transform 0.2s ease, box-shadow 0.2s ease;
+}
+
+.ads-probability-badge--active {
+    background: linear-gradient(135deg, #1d4ed8, #6366f1);
+    color: #ffffff;
+    box-shadow: 0 14px 28px rgba(99, 102, 241, 0.3);
+}
+
+.ads-probability-badge--active:hover {
+    transform: translateY(-2px);
+    box-shadow: 0 18px 36px rgba(99, 102, 241, 0.35);
+}
+
+.ads-probability-badge--muted {
+    background: #e2e8f0;
+    color: #475569;
+}
+
+.ads-fallback-row {
+    background: linear-gradient(90deg, rgba(99, 102, 241, 0.08), rgba(14, 165, 233, 0.05));
+}
+
+.ads-fallback-row td {
+    border-top: none;
+}
+
+.ads-fallback-icon {
+    width: 48px;
+    height: 48px;
+    border-radius: 16px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    background: linear-gradient(135deg, rgba(59, 130, 246, 0.2), rgba(99, 102, 241, 0.18));
+    color: #1d4ed8;
+    font-size: 1.5rem;
+    box-shadow: 0 14px 28px rgba(59, 130, 246, 0.18);
+}
+
+.ads-card-list {
+    display: flex;
+    flex-direction: column;
+    gap: 1rem;
+}
+
+.ads-card-list .list-group-item {
+    border: none;
+    background: transparent;
+}
+
+.ads-card {
+    border: none;
+    background: transparent;
+}
+
+.ads-card__content {
+    display: flex;
+    flex-direction: column;
+    gap: 1rem;
+    padding: 1.25rem;
+    border-radius: 1rem;
+    border: 1px solid rgba(226, 232, 240, 0.7);
+    background: #ffffff;
+    box-shadow: 0 12px 28px rgba(15, 23, 42, 0.12);
+}
+
+.ads-card__header {
+    display: flex;
+    gap: 1rem;
+    align-items: flex-start;
+}
+
+.ads-card__thumb {
+    border-radius: 1rem;
+    overflow: hidden;
+    border: 1px solid rgba(148, 163, 184, 0.35);
+    box-shadow: 0 10px 24px rgba(15, 23, 42, 0.1);
+    background: #ffffff;
+}
+
+.ads-card__thumb--wide {
+    width: 120px;
+}
+
+.ads-card__thumb--wide .ratio {
+    width: 100%;
+}
+
+.ads-card__thumb--square {
+    width: 72px;
+    height: 72px;
+    display: flex;
+}
+
+.ads-card__thumb--square img {
+    width: 100%;
+    height: 100%;
+    object-fit: cover;
+}
+
+.ads-card__thumb-placeholder {
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    background: linear-gradient(135deg, rgba(226, 232, 240, 0.6), rgba(148, 163, 184, 0.3));
+    border-style: dashed;
+    border-color: rgba(148, 163, 184, 0.6);
+    color: #94a3b8;
+    box-shadow: inset 0 0 0 1px rgba(255, 255, 255, 0.4);
+}
+
+.ads-card__thumb--wide.ads-card__thumb-placeholder {
+    height: 90px;
+}
+
+.ads-card__thumb--square.ads-card__thumb-placeholder {
+    height: 72px;
+}
+
+.ads-card__thumb-placeholder i {
+    font-size: 1.5rem;
+}
+
+.ads-card__body {
+    display: flex;
+    flex-direction: column;
+    gap: 0.5rem;
+    flex: 1 1 auto;
+}
+
+.ads-card__meta {
+    display: flex;
+    flex-direction: column;
+    gap: 0.35rem;
+}
+
+.ads-card__meta-label,
+.ads-card__metric-label {
+    font-size: 0.75rem;
+    letter-spacing: 0.06em;
+    text-transform: uppercase;
+    color: #64748b;
+    font-weight: 600;
+}
+
+.ads-card__metrics {
+    display: flex;
+    flex-direction: column;
+    gap: 0.75rem;
+}
+
+.ads-card__metric {
+    display: flex;
+    flex-direction: column;
+    gap: 0.4rem;
+}
+
+.ads-card__metric-value {
+    display: flex;
+    align-items: center;
+    gap: 0.5rem;
+}
+
+.ads-card__actions {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.5rem;
+}
+
+.ads-card__actions .btn {
+    flex: 1 1 auto;
+}
+
+.ads-card__action-form {
+    flex: 1 1 auto;
+}
+
+.ads-card__action-form .btn {
+    width: 100%;
+}
+
+.ads-card--fallback .ads-card__content {
+    background: linear-gradient(135deg, rgba(99, 102, 241, 0.08), rgba(14, 165, 233, 0.06));
+    border-color: rgba(99, 102, 241, 0.2);
+}
+
+@media (min-width: 992px) {
+    .ads-card__metrics {
+        display: grid;
+        grid-template-columns: repeat(auto-fit, minmax(180px, 1fr));
+        gap: 0.85rem;
+        align-items: stretch;
+    }
+
+    .ads-card__metric {
+        flex-direction: row;
+        align-items: stretch;
+        justify-content: space-between;
+        padding: 0.85rem 1rem;
+        border-radius: 0.9rem;
+        background: linear-gradient(135deg, rgba(226, 232, 240, 0.35), rgba(248, 250, 252, 0.4));
+        box-shadow: inset 0 0 0 1px rgba(148, 163, 184, 0.18);
+        gap: 0.75rem;
+    }
+
+    .ads-card__metric-value {
+        margin-left: auto;
+    }
+
+    .ads-card__metric--probability {
+        background: linear-gradient(135deg, rgba(99, 102, 241, 0.18), rgba(56, 189, 248, 0.18));
+        box-shadow: inset 0 0 0 1px rgba(99, 102, 241, 0.26);
+    }
+
+    .ads-card__metric--probability .ads-card__metric-label {
+        color: #4338ca;
+    }
+
+    .ads-card__metric--probability .ads-card__metric-value {
+        justify-content: flex-end;
+        width: 50%;
+    }
+}
+
+@media (max-width: 575.98px) {
+    .ads-card__thumb--wide {
+        width: 100px;
+    }
+}
+
+@media (max-width: 991.98px) {
+    .ads-tabs {
+        width: 100%;
+        justify-content: space-between;
+    }
+
+    .ads-tabs .nav-link {
+        flex: 1 1 0;
+        text-align: center;
+    }
+
+    .ads-summary-row {
+        gap: 1rem;
+    }
+
+    .ads-form-card__header,
+    .ads-form-card__body {
+        padding: 1.5rem;
+    }
+
+    .ads-form-actions {
+        flex-direction: column;
+        align-items: stretch;
+    }
+
+    .ads-form-actions .btn {
+        width: 100%;
+    }
+}
+
+@media (min-width: 768px) {
+    .ads-card__actions {
+        justify-content: flex-end;
+    }
+
+    .ads-card__actions .btn,
+    .ads-card__action-form {
+        flex: 0 0 auto;
+    }
+
+    .ads-card__action-form .btn {
+        width: auto;
+    }
+}
+
+
+// ===== resources/static/css/service-insight.css =====
+/* ===== Service Insight 전용 ===== */
+.service-insight { --x: 0px; --y: 0px; }
+
+.service-insight .si-group__summary {
+    position: relative;
+    cursor: pointer;
+    user-select: none;
+}
+.service-insight .si-group__summary::-webkit-details-marker { display: none; }
+.service-insight .si-group__summary::before {
+    content: "";
+    width: .55rem; height: .55rem;
+    border-right: 2px solid #94a3b8;
+    border-bottom: 2px solid #94a3b8;
+    transform: rotate(45deg);
+    margin-right: .4rem;
+    display: inline-block;
+    transition: transform .18s ease, border-color .18s ease;
+}
+.service-insight .si-group[open] .si-group__summary::before { transform: rotate(225deg); }
+.service-insight .si-group__summary:hover::before { border-color: #334155; }
+
+/* 플롯 영역 여백 + 포커스 그림자 */
+.service-insight .service-insight__chart { margin-left: 16px; }
+.service-insight .si-plots__toolbar {
+    display: flex;
+    align-items: flex-start;
+    justify-content: space-between;
+    gap: 1rem;
+    flex-wrap: wrap;
+}
+.service-insight .si-range {
+    display: flex;
+    flex-direction: column;
+    gap: .5rem;
+    margin-right: auto;
+}
+.service-insight .si-range__bar {
+    display: flex;
+    flex-wrap: wrap;
+    align-items: center;
+    gap: .5rem;
+}
+.service-insight .si-range__label {
+    font-size: .82rem;
+    font-weight: 600;
+    color: #334155;
+    letter-spacing: .02em;
+    text-transform: uppercase;
+}
+.service-insight .si-range__quick {
+    display: flex;
+    flex-wrap: wrap;
+    gap: .35rem;
+}
+.service-insight .si-range__btn {
+    border-radius: 999px;
+    padding-inline: .85rem;
+    font-weight: 500;
+    transition: color .18s ease, background-color .18s ease, box-shadow .18s ease;
+}
+.service-insight .si-range__custom-toggle {
+    border-radius: 999px;
+    display: inline-flex;
+    align-items: center;
+    gap: .35rem;
+    transition: color .18s ease, background-color .18s ease, box-shadow .18s ease;
+}
+.service-insight .si-range__btn:hover,
+.service-insight .si-range__btn:focus-visible,
+.service-insight .si-range__custom-toggle:hover,
+.service-insight .si-range__custom-toggle:focus-visible {
+    box-shadow: 0 4px 12px rgba(59, 130, 246, .18);
+}
+.service-insight .si-range__form {
+    display: none;
+    align-items: center;
+    gap: .75rem;
+    flex-wrap: wrap;
+    padding: .65rem .75rem;
+    border-radius: .75rem;
+    border: 1px solid rgba(148, 163, 184, .45);
+    background: rgba(248, 250, 252, .9);
+}
+.service-insight .si-range__form.is-open {
+    display: flex;
+}
+.service-insight .si-range__fields {
+    display: flex;
+    align-items: center;
+    gap: .5rem;
+    flex-wrap: wrap;
+}
+.service-insight .si-range__fields .form-control {
+    min-width: 9rem;
+}
+.service-insight .si-range__dash {
+    font-weight: 600;
+    color: #64748b;
+}
+.service-insight .si-range__actions {
+    display: flex;
+    align-items: center;
+    gap: .5rem;
+}
+.service-insight .si-range__apply {
+    border-radius: 999px;
+    padding-inline: 1.1rem;
+    font-weight: 600;
+}
+.service-insight .si-plot-card { transition: box-shadow .22s ease, border-color .22s ease, transform .12s ease; will-change: box-shadow, transform; }
+.service-insight .si-plot-card.si-plot--active{
+    box-shadow:
+            0 2px 8px rgba(0,0,0,.06),
+            0 10px 24px rgba(15,23,42,.08),
+            0 0 0 2px rgba(99,102,241,.18),
+            0 0 0 10px rgba(99,102,241,.06);
+    border-color: rgba(99,102,241,.25);
+}
+
+/* 데이터셋 스트립 */
+.service-insight .si-plot__datasets{
+    display:flex;flex-wrap:wrap;gap:.35rem;
+    padding:.35rem .5rem .5rem .5rem;min-height:40px;
+    background:#f8fafc;border-radius:.5rem;border:1px dashed rgba(148,163,184,.45);
+}
+.service-insight .si-plot__datasets[data-empty="true"]{position:relative;}
+.service-insight .si-plot__datasets[data-empty="true"]::before{
+    content:"여기에 데이터를 드래그해서 놓으세요";color:#64748b;font-size:.9rem;
+}
+
+/* aside 칩 */
+.service-insight__metrics .si-chip.si-chip--toggle{
+    appearance:none;border:1px solid rgba(15,23,42,.08);
+    background:linear-gradient(180deg,#fff,#fbfdff);color:#0b0f1a;
+    padding:.38rem .6rem;border-radius:999px;display:inline-flex;align-items:center;gap:.45rem;
+    line-height:1;font-size:.92rem;cursor:pointer!important;
+    box-shadow:0 1px 1px rgba(0,0,0,.03), inset 0 1px 0 rgba(255,255,255,.9);
+    transition:background .15s ease,border-color .15s ease,box-shadow .15s ease,transform .02s ease;
+}
+.service-insight__metrics .si-chip.si-chip--toggle:hover{
+    background:#f9fbff;border-color:rgba(59,130,246,.18);box-shadow:0 2px 6px rgba(30,64,175,.06);
+}
+.service-insight__metrics .si-chip.si-chip--toggle:active{transform:translateY(1px);}
+.service-insight__metrics .si-chip.si-chip--toggle .si-chip__dot{
+    width:.55rem;height:.55rem;border-radius:50%;box-shadow:0 0 0 2px #fff,0 0 0 3px rgba(15,23,42,.05);
+}
+.service-insight__metrics .si-chip.si-chip--toggle .si-chip__check{
+    width:1rem;height:1rem;display:inline-flex;align-items:center;justify-content:center;border-radius:50%;
+    border:1px solid rgba(15,23,42,.12);background:#fff;position:relative;flex:0 0 1rem;box-sizing:border-box;
+}
+.service-insight__metrics .si-chip.si-chip--toggle.is-active .si-chip__check{
+    border-color:rgba(34,197,94,.35);
+    background:linear-gradient(180deg,rgba(34,197,94,.18),rgba(34,197,94,.28));
+}
+.service-insight__metrics .si-chip.si-chip--toggle.is-active .si-chip__check::after{
+    content:"";width:.7rem;height:.7rem;display:block;
+    background:conic-gradient(from 0deg at 50% 50%,#22c55e,#16a34a);
+    -webkit-mask:url("data:image/svg+xml,%3Csvg width='14' height='14' viewBox='0 0 20 20' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='M6.5 11.6 4 9.1l-1.4 1.4 3.9 3.9L17.4 3.5 16 2.1 6.5 11.6z' fill='black'/%3E%3C/svg%3E") center/100% 100% no-repeat;
+    mask:url("data:image/svg+xml,%3Csvg width='14' height='14' viewBox='0 0 20 20' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='M6.5 11.6 4 9.1l-1.4 1.4 3.9 3.9L17.4 3.5 16 2.1 6.5 11.6z' fill='black'/%3E%3C/svg%3E") center/100% 100% no-repeat;
+}
+
+/* 플롯 상단 칩 */
+.service-insight .si-ds-chip{
+    display:inline-flex;align-items:center;gap:.45rem;padding:.28rem .55rem;border-radius:.55rem;
+    border:1px solid rgba(15,23,42,.1);background:#fff;box-shadow:0 1px 2px rgba(0,0,0,.04);cursor:grab;user-select:none;
+}
+.service-insight .si-ds-chip:active{cursor:grabbing;}
+.service-insight .si-ds-chip .si-grip{display:inline-block;font-weight:700;color:#94a3b8;margin-right:.1rem;}
+.service-insight .si-ds-chip__dot{width:.55rem;height:.55rem;border-radius:50%;box-shadow:0 0 0 2px #fff,0 0 0 3px rgba(15,23,42,.05);}
+.service-insight .si-ds-chip__rm{margin-left:.25rem;width:1.15rem;height:1.15rem;border-radius:.5rem;border:1px solid rgba(15,23,42,.1);background:#fff;color:#0b0f1a;line-height:1;font-size:.95rem;padding:0;}
+.service-insight .si-ds-chip__rm:hover{background:#fee2e2;border-color:#fecaca;}
+.service-insight .si-ds-chip__label{white-space:nowrap;}
+
+/* 드래그 고스트 & 드랍 강조 */
+.service-insight .si-chip--ghost{
+    position:fixed;left:0;top:0;
+    transform:translate3d(var(--x,0px),var(--y,0px),0);
+    pointer-events:none;z-index:999999;border:1px solid rgba(148,163,184,.45);
+    background:linear-gradient(180deg,rgba(255,255,255,.98),rgba(255,255,255,.92));
+    color:#0b0c0f;border-radius:.6rem;box-shadow:0 12px 36px rgba(0,0,0,.35);
+    padding:.3rem .55rem;will-change:transform;transition:transform 160ms cubic-bezier(.2,.8,.2,1);
+}
+.service-insight .si-drop-target{outline:2px dashed rgba(91,140,255,.7);outline-offset:4px;}
+body.is-dragging{cursor:grabbing;} body.is-dragging *{user-select:none!important;}
+
+/* 이미지/링크 네이티브 드래그 억제 */
+.service-insight img, .service-insight a{-webkit-user-drag:none;}
+
+/* 기타 */
+.service-insight .si-chip__meta, .service-insight .si-chip .si-chip__unit{display:none!important;}
+
+
+// ===== resources/static/css/service-insight.mobile.css =====
+/* ===== Service Insight: 모바일 전용 오버라이드 =====
+   - 사이드바 숨김, DnD 힌트 제거, 차트 컴팩트, FAB(모바일만) 등
+*/
+
+.service-insight__container { height: auto !important; overflow: visible !important; }
+.service-insight__metrics,
+.service-insight__chart    { height: auto !important; min-height: 0 !important; overflow: visible !important; }
+
+/* 사이드바는 모바일에서 숨김(바텀시트 이용) */
+.service-insight__metrics { display: none !important; }
+
+/* DnD affordance 제거 */
+.service-insight .si-plot__datasets,
+.service-insight .si-dropzone { display: none !important; }
+
+/* 차트 높이 컴팩트 */
+.si-plots .si-plot__surface { height: 280px !important; }
+
+/* FAB: 모바일에서만 표출 */
+#si-fab {
+    display: inline-flex !important;
+    position: fixed; right: max(16px, env(safe-area-inset-right));
+    bottom: calc(max(16px, env(safe-area-inset-bottom)) + 8px);
+    width: 56px; height: 56px; z-index: 1055;
+    align-items: center; justify-content: center;
+    border-radius: 50%; padding: 0; line-height: 1;
+}
+
+/* 바텀시트 */
+.offcanvas.offcanvas-bottom#siDataPicker {
+    height: 75vh; border-top-left-radius: 1rem; border-top-right-radius: 1rem;
+    box-shadow: var(--shadow-overlay);
+}
+.offcanvas.offcanvas-bottom#siDataPicker .offcanvas-header { padding: 0.75rem 1rem; }
+.offcanvas.offcanvas-bottom#siDataPicker .offcanvas-body   { padding: 0.5rem 1rem 1rem; overflow: auto; }
+
+/* 툴바 줄바꿈 */
+.si-plots__toolbar { flex-direction: column; align-items: stretch; gap: 1rem; }
+.si-range { width: 100%; gap: .75rem; }
+.si-range__bar { width: 100%; align-items: stretch; gap: .6rem; }
+.si-range__label { font-size: .78rem; letter-spacing: .06em; }
+.si-range__quick { flex: 1 1 auto; width: 100%; overflow-x: auto; padding-bottom: .15rem; gap: .5rem; }
+.si-range__quick::-webkit-scrollbar { height: 6px; }
+.si-range__quick::-webkit-scrollbar-thumb { background: rgba(148,163,184,.55); border-radius: 999px; }
+.si-range__btn,
+.si-range__custom-toggle { flex: 0 0 auto; }
+.si-range__form { width: 100%; flex-direction: column; align-items: stretch; gap: .65rem; }
+.si-range__fields { width: 100%; flex-direction: column; align-items: stretch; gap: .65rem; }
+.si-range__fields .form-control { width: 100%; min-width: 0; }
+.si-range__dash { display: none; }
+.si-range__actions { width: 100%; justify-content: stretch; }
+.si-range__apply { width: 100%; padding-block: .65rem; }
+.si-plots__toolbar .si-actions { display: flex; gap: .5rem; flex-wrap: wrap; }
+
+/* 안전 여백 */
+.service-insight { padding-bottom: max(72px, env(safe-area-inset-bottom)); }
+
+
+// ===== resources/static/css/service-insight.target.css =====
+/* ===== resources/static/css/service-insight.target.css ===== */
+/* ===== 전역(PC/모바일 공통) ===== */
+
+/* FAB는 PC 기본 숨김, 모바일 전용 CSS에서만 표출 */
+#si-fab { display: none !important; }
+
+/* "플롯 n 데이터 선택" – 인라인 타이틀 */
+.si-targettitle {
+    display: inline-flex;
+    align-items: center;
+    gap: .55rem;
+    font-size: 1rem;
+    font-weight: 800;
+    letter-spacing: -0.2px;
+}
+.si-targettitle__prefix,
+.si-targettitle__suffix { font-weight: 800; }
+
+/* 숫자 Select: 클릭감 강화 */
+.si-targettitle__select {
+    -webkit-appearance: none;
+    appearance: none;
+    cursor: pointer;
+    min-width: 4.5rem;
+    width: auto;
+    border-radius: 999px;
+    padding-inline: 1.25rem 2rem; /* 오른쪽 캐럿 공간 */
+    padding-block: .35rem;
+    line-height: 1.2;
+    border: 1px solid var(--border-strong, #c4cbd3);
+    background:
+            linear-gradient(to bottom, rgba(0,0,0,0.02), rgba(0,0,0,0)) padding-box,
+            url("data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='0 0 16 16'%3E%3Cpath fill='%23666' d='M3.2 6l4.8 5L12.8 6z'/%3E%3C/svg%3E")
+            no-repeat right .6rem center/12px 12px;
+    box-shadow: 0 1px 0 rgba(0,0,0,.02);
+    transition: box-shadow .15s ease, transform .04s ease, border-color .15s ease;
+    font-weight: 700;
+}
+.si-targettitle__select:hover {
+    border-color: var(--accent, #0d6efd);
+    box-shadow: 0 0 0 .2rem rgba(13,110,253,.12);
+}
+.si-targettitle__select:active { transform: translateY(1px); }
+.si-targettitle__select:focus {
+    outline: none;
+    border-color: var(--accent, #0d6efd);
+    box-shadow: 0 0 0 .24rem rgba(13,110,253,.16);
+}
+
+/* 데이터 패널 레이아웃 */
+.si-data-panel { display: flex; flex-direction: column; gap: .75rem; }
+
+/* ========== ✅ 체크 인디케이터: "오른쪽 단일"로 통일 ========== */
+/* (1) 좌측 체크를 만들던 예전 커스텀 규칙들 강제 무력화 */
+.si-data-panel .si-chip::before,
+.si-data-panel [data-si-chip]::before,
+.si-data-panel .si-chip--toggle::before { content: none !important; }
+
+/* (2) 우측 ::after 하나만 사용 (PC/모바일 공통) */
+.si-data-panel .si-chip,
+.si-data-panel [data-si-chip],
+.si-data-panel .si-chip--toggle {
+    position: relative;
+    padding-right: 28px; /* 오른쪽 체크 공간 확보 */
+}
+
+.si-data-panel .si-chip::after,
+.si-data-panel [data-si-chip]::after,
+.si-data-panel .si-chip--toggle::after {
+    content: "";
+    position: absolute;
+    right: 8px;
+    top: 50%;
+    transform: translateY(-50%);
+    width: 16px; height: 16px;
+    border-radius: 999px;
+    border: 1.5px solid var(--border-subtle, #cfd4d9);
+    background: var(--surface-primary, #fff);
+    pointer-events: none; /* 클릭 간섭 방지 */
+    transition: background-color .12s ease, border-color .12s ease, box-shadow .12s ease;
+}
+
+/* (3) 활성 조건: .is-active 또는 [data-checked="true"] 중 하나라도 true면 체크 표시 */
+.si-data-panel .si-chip.is-active::after,
+.si-data-panel [data-si-chip].is-active::after,
+.si-data-panel .si-chip--toggle.is-active::after,
+.si-data-panel .si-chip[data-checked="true"]::after,
+.si-data-panel [data-si-chip][data-checked="true"]::after,
+.si-data-panel .si-chip--toggle[data-checked="true"]::after {
+    content: "✓";
+    font-weight: 700;
+    font-size: 12px;
+    text-align: center;
+    line-height: 16px;
+    color: var(--accent-contrast, #fff);
+    background: var(--accent, #0d6efd);
+    border-color: var(--accent, #0d6efd);
+    box-shadow: 0 0 0 2px rgba(13,110,253,.15);
+}
+
+/* 키보드 포커스 접근성 */
+.si-chip.si-chip--toggle:focus-visible {
+    outline: none;
+    box-shadow: 0 0 0 .2rem rgba(59,130,246,.20);
+    border-color: rgba(59,130,246,.35);
+}
+
+/* 모바일 폰트 톤 조정 */
+@media (max-width: 991.98px) {
+    .si-targettitle { font-size: 1.05rem; }
+}
+
+
+// ===== resources/static/images/kakao-symbol.svg =====
+<?xml version="1.0" encoding="UTF-8"?>
+<svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" role="img" aria-labelledby="title">
+    <title>카카오 심볼</title>
+    <circle cx="12" cy="12" r="12" fill="#FEE500" />
+    <path fill="#381E1F" d="M12 5C7.305 5 3.5 8.027 3.5 11.76c0 2.246 1.383 4.248 3.56 5.5l-.533 3.72a.4.4 0 00.6.41l3.94-2.12c.654.1 1.327.15 1.996.15 4.695 0 8.5-3.027 8.5-6.76C21.063 8.027 16.695 5 12 5zm3.12 10.247l-.84-2.238c-.087-.231-.134-.377-.134-.44 0-.064.01-.105.031-.124.02-.02.074-.034.16-.044l.75-.09v-.59h-3.226v.59l.78.09c.083.01.136.028.16.054.023.025.034.066.034.12 0 .054-.035.176-.105.367l-.883 2.304-.988-2.53c-.173-.441-.26-.707-.26-.794 0-.074.02-.126.059-.153.04-.028.119-.048.238-.061l.583-.063v-.59H8.01v.59l.527.063c.128.015.214.044.257.086.043.042.094.14.153.294l1.68 4.295h.83l1.12-2.9 1.12 2.9h.83l1.68-4.295c.066-.172.123-.28.17-.324.047-.045.13-.075.248-.09l.528-.063v-.59h-2.707v.59l.523.063c.126.016.211.045.254.088.043.044.099.154.168.329l-1.074 2.74z"/>
+</svg>
+
+
+// ===== resources/static/js/ads-image-upload.js =====
+(function () {
+    var form = document.getElementById('adForm');
+    if (!form) {
+        return;
+    }
+
+    var fileInput = document.getElementById('adImageFile');
+    var objectKeyInput = document.getElementById('adObjectKey');
+    var contentTypeInput = document.getElementById('adContentType');
+    var statusElement = document.getElementById('adImageUploadStatus');
+    var previewImage = document.getElementById('adImagePreview');
+
+    var setStatus = function (message, variantClass) {
+        if (!statusElement) {
+            return;
+        }
+        statusElement.textContent = message;
+        statusElement.classList.remove('text-success', 'text-danger', 'text-muted');
+        statusElement.classList.add(variantClass || 'text-muted');
+    };
+
+    var uploadFile = function (file) {
+        if (!file) {
+            return;
+        }
+        var contentType = file.type || 'application/octet-stream';
+        setStatus('이미지 업로드 URL을 요청하고 있습니다...', 'text-muted');
+
+        fetch('/ads/image/presign', {
+            method: 'POST',
+            headers: { 'Content-Type': 'application/json' },
+            body: JSON.stringify({ contentType: contentType })
+        }).then(function (response) {
+            if (!response.ok) {
+                throw new Error('Presign failed');
+            }
+            return response.json();
+        }).then(function (data) {
+            if (!data || !data.presignedUrl || !data.objectKey) {
+                throw new Error('Invalid presign response');
+            }
+            setStatus('이미지를 업로드하는 중입니다...', 'text-muted');
+            return fetch(data.presignedUrl, {
+                method: 'PUT',
+                headers: { 'Content-Type': contentType },
+                body: file
+            }).then(function (uploadResponse) {
+                if (!uploadResponse.ok) {
+                    throw new Error('Upload failed');
+                }
+                objectKeyInput.value = data.objectKey;
+                contentTypeInput.value = contentType;
+                if (previewImage) {
+                    var objectUrl = URL.createObjectURL(file);
+                    previewImage.src = objectUrl;
+                    previewImage.onload = function () {
+                        URL.revokeObjectURL(objectUrl);
+                    };
+                }
+                setStatus('이미지 업로드가 완료되었습니다.', 'text-success');
+            });
+        }).catch(function () {
+            setStatus('이미지 업로드에 실패했습니다. 잠시 후 다시 시도해주세요.', 'text-danger');
+        });
+    };
+
+    if (fileInput) {
+        fileInput.addEventListener('change', function () {
+            var file = fileInput.files && fileInput.files[0];
+            if (!file) {
+                return;
+            }
+            uploadFile(file);
+        });
+    }
+})();
+
+
+// ===== resources/static/js/service-insight.js =====
+// ===== resources/static/js/service-insight.js =====
+(function () {
+    // ---------- 0) 데이터 파싱 ----------
+    const dataElement = document.getElementById('serviceInsightData');
+    if (!dataElement) return;
+
+    const dataEndpoint = dataElement.dataset?.endpoint || window.location.pathname;
+
+    let payload = {};
+    try { payload = JSON.parse(dataElement.textContent || '{}'); }
+    catch (err) { console.warn('Failed to parse service insight payload.', err); }
+
+    let metricOptions = [];
+    let seriesList = [];
+    let componentLabels = {};
+    let optionMap = new Map();
+    let seriesMap = new Map();
+
+    function applyViewModelPayload(source) {
+        payload = (source && typeof source === 'object') ? source : {};
+        metricOptions = Array.isArray(payload.metricOptions) ? payload.metricOptions : [];
+        seriesList = Array.isArray(payload.series) ? payload.series : [];
+        componentLabels = (payload.componentLabels && typeof payload.componentLabels === 'object') ? payload.componentLabels : {};
+        optionMap = new Map(metricOptions.map(o => [o.metric, o]));
+        seriesMap = new Map(seriesList.map(s => [s.metric, s]));
+        try {
+            dataElement.textContent = JSON.stringify(payload);
+        } catch (err) {
+            console.warn('Failed to cache service insight payload JSON.', err);
+        }
+    }
+
+    applyViewModelPayload(payload);
+
+    const rangeQuickContainer = document.querySelector('.si-range__quick');
+    const rangeForm = document.querySelector('.si-range__form');
+    const rangeStartInput = rangeForm?.querySelector('input[name="startDate"]') || null;
+    const rangeEndInput = rangeForm?.querySelector('input[name="endDate"]') || null;
+    const rangeApplyButton = rangeForm?.querySelector('button[type="submit"]') || null;
+    const rangeCustomToggle = document.getElementById('si-range-custom-toggle');
+
+    function setCustomRangeOpen(open) {
+        const next = !!open;
+        if (rangeForm) {
+            rangeForm.classList.toggle('is-open', next);
+        }
+        if (rangeCustomToggle) {
+            rangeCustomToggle.setAttribute('aria-expanded', next ? 'true' : 'false');
+            rangeCustomToggle.classList.toggle('btn-primary', next);
+            rangeCustomToggle.classList.toggle('btn-outline-secondary', !next);
+        }
+        if (rangeApplyButton) {
+            rangeApplyButton.classList.toggle('btn-primary', next);
+            rangeApplyButton.classList.toggle('btn-outline-secondary', !next);
+        }
+    }
+
+    setCustomRangeOpen(rangeForm ? rangeForm.classList.contains('is-open') : false);
+
+    // 서버 enum 키
+    const METRICS = {
+        TOTAL_COUNT:      'COLLECTION_TOTAL_COUNT',
+        PRIVATE_RATIO:    'COLLECTION_PRIVATE_RATIO',
+        PENDING_COUNT:    'BIRD_ID_PENDING_COUNT',
+        RESOLVED_COUNT:   'BIRD_ID_RESOLVED_COUNT',
+        // ✅ 누적 제거 → 28일 지표로 박스플롯 분기 키를 교체
+        RESOLUTION_STATS: 'BIRD_ID_RESOLUTION_STATS_28D', // components: min_hours, avg_hours, max_hours, stddev_hours
+
+        // ===== 유저 지표 =====
+        USER_COMPLETED_TOTAL: 'USER_COMPLETED_TOTAL',
+        USER_SIGNUP_DAILY:    'USER_SIGNUP_DAILY',
+        USER_WITHDRAWAL_DAILY:'USER_WITHDRAWAL_DAILY',
+        USER_DAU:             'USER_DAU',
+        USER_WAU:             'USER_WAU',
+        USER_MAU:             'USER_MAU',
+    };
+
+    // (아래부터는 기존 로직 그대로입니다. 색상/그룹/플롯/툴팁/박스플롯 렌더링 등 전체 원본 유지)
+
+    // 컬러 팔레트
+    const PALETTE = ['#2563eb','#16a34a','#dc2626','#f97316','#9333ea','#0ea5e9','#059669','#ea580c','#3b82f6','#14b8a6'];
+    const colorCache = new Map();
+    const colorForMetric = key => {
+        if (colorCache.has(key)) return colorCache.get(key);
+        const idx = colorCache.size % PALETTE.length;
+        const c = PALETTE[idx]; colorCache.set(key, c); return c;
+    };
+
+    // ---------- 레이아웃: 좌·우 스크롤 분리 ----------
+    const container = document.querySelector('.service-insight__container');
+    const leftCol   = document.querySelector('.service-insight__metrics');
+    const rightCol  = document.querySelector('.service-insight__chart');
+
+    function applyIndependentScroll() {
+        if (!container || !leftCol || !rightCol) return;
+        const rect = container.getBoundingClientRect();
+        const avail = Math.max(240, window.innerHeight - rect.top - 16);
+        container.style.height = avail + 'px';
+        container.style.overflow = 'hidden';
+        [leftCol, rightCol].forEach(el => {
+            el.style.height = '100%';
+            el.style.minHeight = '0';
+            el.style.overflowY = 'auto';
+        });
+    }
+    applyIndependentScroll();
+
+    // 리사이즈 보정
+    function resizeAllCharts() {
+        for (const [, p] of plots) { try { p.chart.resize(); } catch(_){} }
+    }
+    window.addEventListener('resize', () => { applyIndependentScroll(); resizeAllCharts(); });
+
+    // ---------- 유틸 ----------
+    function escapeHtml(str) {
+        return String(str ?? '')
+            .replace(/&/g, '&amp;')
+            .replace(/</g, '&lt;')
+            .replace(/>/g, '&gt;')
+            .replace(/"/g, '&quot;')
+            .replace(/'/g, '&#39;');
+    }
+
+    // KST 기준 날짜 정규화
+    const TZ = 'Asia/Seoul';
+    function toDateKST(d) {
+        if (!d) return null;
+        if (d instanceof Date) return d;
+        if (typeof d === 'number') return new Date(d);
+        const s = String(d).trim();
+        const dateOnly = /^\d{4}-\d{2}-\d{2}$/.test(s);
+        const L = window.luxon;
+        if (L && L.DateTime) {
+            let dt = L.DateTime.fromISO(s, { zone: TZ });
+            if (!dt.isValid) dt = L.DateTime.fromJSDate(new Date(s), { zone: TZ });
+            if (!dt.isValid) return null;
+            if (dateOnly) dt = dt.startOf('day');
+            return dt.toJSDate();
+        }
+        const t = new Date(s);
+        if (isNaN(t.getTime())) return null;
+        if (dateOnly) return new Date(t.getFullYear(), t.getMonth(), t.getDate());
+        return t;
+    }
+
+    // aside 툴팁 초기화
+    function initTooltipsIn(scope) {
+        const root = scope || document;
+        if (!window.bootstrap || !window.bootstrap.Tooltip) return;
+        root.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (el) {
+            const prev = window.bootstrap.Tooltip.getInstance(el);
+            if (prev) prev.dispose();
+            const inst = new window.bootstrap.Tooltip(el, {
+                trigger: 'hover focus',
+                html: true,
+                sanitize: true,
+                boundary: 'window',
+                container: 'body',
+                placement: el.dataset.bsPlacement || 'right',
+                customClass: el.dataset.bsCustomClass || 'tooltip-bubble'
+            });
+        });
+    }
+
+    // ---------- 그룹(사이드바) ----------
+    const GROUPS = [
+        { key:'collection', name:'새록', metrics:[METRICS.TOTAL_COUNT, METRICS.PRIVATE_RATIO] },
+        { key:'user',       name:'유저', metrics:[
+                METRICS.USER_COMPLETED_TOTAL, METRICS.USER_SIGNUP_DAILY, METRICS.USER_WITHDRAWAL_DAILY,
+                METRICS.USER_DAU, METRICS.USER_WAU, METRICS.USER_MAU
+            ] },
+        { key:'id',         name:'동정 요청', metrics:[METRICS.PENDING_COUNT, METRICS.RESOLVED_COUNT, METRICS.RESOLUTION_STATS] },
+    ];
+    const known = new Set(GROUPS.flatMap(g => g.metrics));
+    (metricOptions || []).forEach(opt => { if (!known.has(opt.metric)) known.add(opt.metric); });
+
+    const groupsWrap = document.getElementById('si-groups');
+
+    function renderGroups(){
+        if (!groupsWrap) return;
+        groupsWrap.innerHTML = '';
+
+        GROUPS.forEach(group => {
+            const details = document.createElement('details');
+            details.className = 'si-group';
+            details.open = true;
+
+            const summary = document.createElement('summary');
+            summary.className = 'si-group__summary';
+            summary.innerHTML = `
+        <span class="si-group__title">${escapeHtml(group.name)}</span>
+        <span class="si-group__tools">
+          <button type="button" class="si-group__btn" data-act="addAll">+ 전체</button>
+          <button type="button" class="si-group__btn" data-act="removeAll">– 전체</button>
+        </span>
+      `;
+            details.appendChild(summary);
+
+            const body = document.createElement('div'); body.className = 'si-group__body';
+            const list = document.createElement('div'); list.className = 'si-chip-list';
+
+            (group.metrics || []).forEach(metricKey => {
+                const opt = optionMap.get(metricKey); if (!opt) return;
+                const color = colorForMetric(metricKey);
+
+                const chip = document.createElement('button');
+                chip.type = 'button';
+                chip.className = 'si-chip si-chip--toggle';
+                chip.dataset.metric = metricKey;
+
+                chip.setAttribute('draggable','false');
+                chip.addEventListener('dragstart', e => e.preventDefault());
+
+                // aside 툴팁: 제목+설명 (설명은 서버 enum에서 내려옴 → 28일 기준으로 변경됨)
+                const titleText = opt.label || metricKey;
+                const descText  = opt.description || '';
+                const tooltipHtml = `<b>${escapeHtml(titleText)}</b>` + (descText ? `<br>${escapeHtml(descText)}` : '');
+                chip.setAttribute('data-bs-toggle', 'tooltip');
+                chip.setAttribute('data-bs-placement', 'right');
+                chip.setAttribute('data-bs-title', tooltipHtml);
+                chip.removeAttribute('title');
+
+                chip.innerHTML = `
+          <span class="si-chip__dot" style="background:${color}"></span>
+          <span class="si-chip__label">${escapeHtml(opt.label || metricKey)}</span>
+          <span class="si-chip__check" aria-hidden="true"></span>
+        `;
+
+                chip.addEventListener('click', ()=>{
+                    const activePlot = getActivePlotId() ?? ensureAtLeastOnePlot();
+                    toggleMetricGroupOnPlot(activePlot, metricKey);
+                    if (window.bootstrap?.Tooltip) {
+                        const inst = window.bootstrap.Tooltip.getInstance(chip);
+                        try { inst?.hide(); } catch(_) {}
+                    }
+                    syncAsideActiveStates();
+                });
+
+                chip.addEventListener('mouseleave', ()=>{
+                    if (window.bootstrap?.Tooltip) {
+                        const inst = window.bootstrap.Tooltip.getInstance(chip);
+                        try { inst?.hide(); } catch(_) {}
+                    }
+                });
+
+                list.appendChild(chip);
+            });
+
+            body.appendChild(list);
+            details.appendChild(body);
+
+            summary.querySelector('[data-act="addAll"]').addEventListener('click', (ev)=>{
+                ev.preventDefault(); ev.stopPropagation();
+                const activePlot = getActivePlotId() ?? ensureAtLeastOnePlot();
+                (group.metrics||[]).forEach(m => addMetricGroupToPlot(activePlot, m));
+                syncAsideActiveStates();
+            });
+            summary.querySelector('[data-act="removeAll"]').addEventListener('click', (ev)=>{
+                ev.preventDefault(); ev.stopPropagation();
+                (group.metrics||[]).forEach(m => removeMetricGroupFromAllPlots(m));
+                syncAsideActiveStates();
+            });
+
+            groupsWrap.appendChild(details);
+        });
+
+        initTooltipsIn(groupsWrap);
+        syncAsideActiveStates();
+    }
+
+    // ---------- 플롯 ----------
+    const plotGrid   = document.getElementById('si-plot-grid');
+    const plotsHost  = document.getElementById('si-plots');
+    const addPlotBtn = document.getElementById('si-add-plot');
+    const clearAllBtn= document.getElementById('si-clear-all');
+
+    if (plotsHost) plotsHost.setAttribute('data-size', 'roomy');
+
+    let plotSeq = 0;
+    // plots: id -> { id, index, el, chart, datasets:Set<string>, groups: Map<metric, Set<datasetId>>, active:boolean }
+    const plots = new Map();
+
+    function refreshAllPlots() {
+        for (const [plotId, plot] of plots) {
+            const metrics = [...plot.groups.keys()];
+            plot.chart.data.datasets = [];
+            plot.datasets.clear();
+            plot.groups.clear();
+
+            if (metrics.length === 0) {
+                renderPlotGroupChips(plotId);
+                updateEmptyState(plotId);
+                continue;
+            }
+
+            metrics.forEach(metric => addMetricGroupToPlot(plotId, metric));
+        }
+
+        resizeAllCharts();
+        syncAsideActiveStates();
+    }
+
+    function ensureAtLeastOnePlot() { if (plots.size===0) return createPlot(); return [...plots.keys()][0]; }
+    function getActivePlotId(){ for (const [id,p] of plots){ if (p.active) return id; } return null; }
+    function setActivePlot(id){
+        for (const [pid,p] of plots){
+            p.active = (pid===id);
+            const title = p.el.querySelector('.si-plot__title');
+            if (title) title.textContent = `플롯 ${p.index}`;
+            p.el.classList.toggle('si-plot--active', p.active);
+        }
+        syncAsideActiveStates();
+    }
+
+    // 박스플롯 플러그인(평균 중앙선, ±표준편차 상자, 최소~최대 수염)
+    const boxPlotPlugin = {
+        id: 'siBoxPlot',
+        afterDatasetsDraw(chart) {
+            const ctx = chart.ctx;
+            (chart.data.datasets || []).forEach((ds, i) => {
+                if (!ds._boxplot || !chart.isDatasetVisible(i)) return;
+                const meta = chart.getDatasetMeta(i);
+                const xScale = meta.xScale, yScale = meta.yScale;
+                const boxHalf = 6;
+                const capHalf = 10;
+
+                ds._boxplot.forEach(entry => {
+                    const x = xScale.getPixelForValue(entry._time);
+                    const yMin  = yScale.getPixelForValue(entry.min);
+                    const yMax  = yScale.getPixelForValue(entry.max);
+                    const yMean = yScale.getPixelForValue(entry.mean);
+                    const yLo   = yScale.getPixelForValue(entry.mean - entry.std);
+                    const yHi   = yScale.getPixelForValue(entry.mean + entry.std);
+
+                    const ctx2 = ctx; ctx2.save();
+                    // 수염(최소~최대)
+                    ctx2.strokeStyle = 'rgba(148,163,184,.9)';
+                    ctx2.lineWidth = 2;
+                    ctx2.beginPath(); ctx2.moveTo(x, yMin); ctx2.lineTo(x, yMax); ctx2.stroke();
+                    ctx2.beginPath();
+                    ctx2.moveTo(x - capHalf, yMin); ctx2.lineTo(x + capHalf, yMin);
+                    ctx2.moveTo(x - capHalf, yMax); ctx2.lineTo(x + capHalf, yMax);
+                    ctx2.stroke();
+
+                    // 박스(±표준편차)
+                    ctx2.fillStyle = 'rgba(91,140,255,.18)';
+                    ctx2.strokeStyle = 'rgba(91,140,255,.9)';
+                    ctx2.lineWidth = 2;
+                    const top = Math.min(yLo, yHi), height = Math.abs(yHi - yLo) || 2;
+                    ctx2.beginPath();
+                    ctx2.rect(x - boxHalf, top, boxHalf*2, height);
+                    ctx2.fill(); ctx2.stroke();
+
+                    // 평균선
+                    ctx2.strokeStyle = 'rgba(30,41,59,.95)';
+                    ctx2.lineWidth = 2;
+                    ctx2.beginPath();
+                    ctx2.moveTo(x - (boxHalf + 3), yMean);
+                    ctx2.lineTo(x + (boxHalf + 3), yMean);
+                    ctx2.stroke();
+                    ctx2.restore();
+                });
+            });
+        }
+    };
+    if (window.Chart && Chart.register) Chart.register(boxPlotPlugin);
+
+    function createPlot(){
+        const id = `plot-${++plotSeq}`; const index = plots.size + 1;
+        const card = document.createElement('div');
+        card.className='si-plot-card'; card.dataset.plotId = id;
+        card.innerHTML = `
+      <div class="si-plot__header">
+        <div class="si-plot__title">플롯 ${index}</div>
+        <div class="si-plot__tools">
+          <button type="button" class="btn btn-ghost btn-sm" data-act="removePlot" title="플롯 삭제">
+            <i class="bi bi-trash"></i>
+          </button>
+        </div>
+      </div>
+      <div class="si-plot__datasets si-dropzone" data-dropzone="datasets" data-empty="true"></div>
+      <div class="si-plot__surface">
+        <canvas></canvas>
+        <div class="si-empty d-none">표시할 데이터가 없습니다</div>
+      </div>
+    `;
+        plotGrid.appendChild(card);
+
+        card.addEventListener('mousedown', ()=> setActivePlot(id));
+        card.addEventListener('focusin', ()=> setActivePlot(id));
+
+        const canvas = card.querySelector('canvas');
+        const chart = new Chart(canvas.getContext('2d'), { type:'line', data:{datasets:[]}, options: makeBaseChartOptions() });
+
+        card.querySelector('[data-act="removePlot"]').addEventListener('click', ()=> removePlot(id));
+
+        const dz = card.querySelector('[data-dropzone="datasets"]');
+        dz.addEventListener('dragover', e=>{ e.preventDefault(); dz.classList.add('is-dragover'); });
+        dz.addEventListener('dragleave', ()=> dz.classList.remove('is-dragover'));
+        dz.addEventListener('drop', e=>{
+            e.preventDefault(); dz.classList.remove('is-dragover');
+            try{
+                const payload = JSON.parse(e.dataTransfer.getData('application/json') || '{}');
+                if (payload.type === 'datasetGroup' && payload.groupId && payload.fromPlotId){
+                    moveGroupToPlot(payload.groupId, payload.fromPlotId, id);
+                }
+            }catch(_){}
+        });
+
+        plots.set(id, {
+            id, index, el: card, chart,
+            datasets: new Set(),
+            groups: new Map(),
+            active: false
+        });
+
+        if (plots.size===1) setActivePlot(id);
+        updateEmptyState(id);
+        return id;
+    }
+
+    function markDatasetsStripState(strip) {
+        const hasChip = !!strip.querySelector('.si-ds-chip');
+        strip.setAttribute('data-empty', hasChip ? 'false' : 'true');
+    }
+
+    function removePlot(id){
+        const p = plots.get(id); if (!p) return;
+        p.chart.destroy();
+        p.el.remove();
+        plots.delete(id);
+
+        let i = 0;
+        for (const [pid, plot] of plots){
+            plot.index = ++i;
+            const title = plot.el.querySelector('.si-plot__title');
+            if (title) title.textContent = `플롯 ${plot.index}`;
+        }
+        if (plots.size === 0) createPlot();
+        syncAsideActiveStates();
+    }
+
+    function updateEmptyState(plotId){
+        const p = plots.get(plotId); if (!p) return;
+        const emptyEl = p.el.querySelector('.si-empty');
+        const hasAny = (p.chart.data.datasets || []).some(ds => (ds.data||[]).length>0);
+        emptyEl.classList.toggle('d-none', hasAny);
+
+        const strip = p.el.querySelector('.si-plot__datasets');
+        strip.setAttribute('data-empty', (p.groups.size === 0) ? 'true' : 'false');
+    }
+
+    // ---------- 데이터 변환/축 ----------
+    function toPoints(series, unit) {
+        const points = Array.isArray(series?.points) ? series.points : [];
+        return points
+            .map(pt => {
+                const x = toDateKST(pt.date);
+                const y = normalizeValue(pt.value, unit);
+                return (x && y != null) ? ({ x, y }) : null;
+            })
+            .filter(Boolean);
+    }
+    function formatHoursAdaptive(hours) {
+        if (!Number.isFinite(hours)) return '-';
+        const H_PER_DAY = 24;
+        const D_PER_MONTH = 30;
+
+        const abs = Math.abs(hours);
+        if (abs >= H_PER_DAY * D_PER_MONTH) {
+            const months = hours / (H_PER_DAY * D_PER_MONTH);
+            const sig = Math.abs(months) >= 10 ? 0 : 1;
+            return `${months.toFixed(sig)}개월`;
+        }
+        if (abs >= H_PER_DAY) {
+            const days = hours / H_PER_DAY;
+            const sig = Math.abs(days) >= 10 ? 0 : 1;
+            return `${days.toFixed(sig)}일`;
+        }
+        return `${hours.toFixed(2)}시간`;
+    }
+
+    function formatValue(v, unit){
+        if (!Number.isFinite(v)) return '-';
+        if (unit==='RATIO') return `${v.toFixed(1)}%`;
+        if (unit==='HOURS') return formatHoursAdaptive(v);
+        return Math.round(v).toLocaleString();
+    }
+
+    function normalizeValue(num, unit){
+        const v = typeof num === 'string' ? Number(num) : Number(num);
+        if (!Number.isFinite(v)) return null;
+        if (unit==='RATIO') return v <= 1.000001 ? v*100 : v;
+        return v;
+    }
+    function axisByUnit(unit){ if (unit==='RATIO') return 'ratio'; if (unit==='HOURS') return 'hours'; return 'count'; }
+
+    function makeBaseChartOptions(){
+        return {
+            responsive: true, maintainAspectRatio: false,
+            interaction: { mode:'nearest', intersect:false },
+            elements: { line:{borderWidth:2}, point:{radius:0, hoverRadius:4, hitRadius:8} },
+            scales: {
+                x: {
+                    type:'time',
+                    time:{
+                        unit:'day',
+                        round:'day',
+                        tooltipFormat:'yyyy-LL-dd',
+                        zone: TZ
+                    },
+                    adapters:{ date:{ zone: TZ } },
+                    ticks:{ autoSkip:true, maxRotation:0 },
+                    grid:{ color:'rgba(148, 163, 184, 0.2)' }
+                },
+                count: { display:false, position:'left', beginAtZero:true, ticks:{ precision:0, maxTicksLimit:8, callback:v => Number.isInteger(v)? v.toLocaleString():'' } },
+                ratio: { display:false, position:'right', beginAtZero:true, min:0, max:100, grid:{ drawOnChartArea:false }, ticks:{ stepSize:10, maxTicksLimit:6, callback:v=>`${v}%` } },
+                hours: { display:false, position:'right', beginAtZero:true, grid:{ drawOnChartArea:false }, ticks:{ maxTicksLimit:6, callback:v=>(typeof v==='number'? v.toFixed(1):v) } }
+            },
+            plugins: {
+                legend: { position:'bottom', labels:{ usePointStyle:true, boxWidth:8, boxHeight:8 } },
+                tooltip: {
+                    mode:'index', intersect:false,
+                    callbacks: {
+                        label(ctx){
+                            const ds   = ctx.dataset || {};
+                            const unit = ds._saUnit;
+                            const base = ds.label || '';
+                            const v    = ctx.parsed.y;
+
+                            if (ds._boxIndex) {
+                                const x = ctx.raw?.x instanceof Date ? ctx.raw.x.getTime() : new Date(ctx.raw?.x).getTime();
+                                const st = ds._boxIndex.get(String(x));
+                                if (st) {
+                                    const mean = (typeof v === 'number') ? v : null;
+                                    const lo = (mean!=null && Number.isFinite(st.std)) ? (mean - st.std) : null;
+                                    const hi = (mean!=null && Number.isFinite(st.std)) ? (mean + st.std) : null;
+                                    const fmt = (n)=>formatValue(n,'HOURS');
+                                    if (mean!=null && lo!=null && hi!=null) {
+                                        return [
+                                            `${base}: 평균 ${fmt(lo)} ~ ${fmt(hi)}`,
+                                            `(최소: ${fmt(st.min)}, 최대: ${fmt(st.max)})`
+                                        ];
+                                    }
+                                }
+                                return `${base}: 평균 ${formatValue(v,'HOURS')}`;
+                            }
+
+                            return base ? `${base}: ${formatValue(v,unit)}` : formatValue(v,unit);
+                        }
+                    }
+                }
+            }
+        };
+    }
+
+    function niceNum(x, round){
+        const exp = Math.floor(Math.log10(x));
+        const f = x / Math.pow(10,exp);
+        let nf;
+        if (round){ nf = f < 1.5 ? 1 : f < 3 ? 2 : f < 7 ? 5 : 10; }
+        else { nf = f <= 1 ? 1 : f <= 2 ? 2 : f <= 5 ? 5 : 10; }
+        return nf * Math.pow(10,exp);
+    }
+    function niceScale(min,max,maxTicks=6,integerOnly=false){
+        const range = Math.max(1e-9, max-min);
+        let step = niceNum(range / Math.max(2,(maxTicks-1)), true);
+        if (integerOnly) step = Math.max(1, Math.round(step));
+        const niceMin = Math.floor(min/step)*step;
+        const niceMax = Math.ceil(max/step)*step;
+        return {min:niceMin,max:niceMax,step};
+    }
+    function bounds(chart, axis){
+        let min=Infinity, max=-Infinity, used=false;
+        (chart.data.datasets||[]).forEach(ds=>{
+            if (ds.yAxisID!==axis || !Array.isArray(ds.data)) return;
+            ds.data.forEach(pt=>{
+                if (pt && Number.isFinite(pt.y)){ used=true; if (pt.y<min) min=pt.y; if (pt.y>max) max=pt.y; }
+            });
+        });
+        if (!used) return {used:false,min:0,max:1};
+        if (min===max){ min-=1; max+=1; }
+        return {used:true,min,max};
+    }
+
+    // 축 자동 스케일 + 우측축 겹침 보정(offset)
+    function applyAutoYAxisScaling(chart){
+        const b = { count: bounds(chart,'count'), ratio: bounds(chart,'ratio'), hours: bounds(chart,'hours') };
+
+        // count (좌)
+        if (b.count.used){
+            const nice = niceScale(b.count.min, b.count.max, 7, true);
+            const s = chart.options.scales.count; s.display=true; s.min=nice.min; s.max=nice.max; s.ticks.stepSize=nice.step; s.ticks.precision=0;
+        } else chart.options.scales.count.display=false;
+
+        // 오른쪽 축 2개(ratio, hours) 동시 사용 시 시각 분리
+        const bothRight = b.ratio.used && b.hours.used;
+
+        if (b.ratio.used){
+            const s = chart.options.scales.ratio;
+            const range=Math.max(5,b.ratio.max-b.ratio.min);
+            const step = range<=30?5:10;
+            s.display=true; s.position='right'; s.offset = bothRight ? false : false;
+            s.min=Math.max(0,Math.floor(b.ratio.min/step)*step);
+            s.max=Math.min(100,Math.ceil(b.ratio.max/step)*step);
+            s.ticks.stepSize=step;
+        } else chart.options.scales.ratio.display=false;
+
+        if (b.hours.used){
+            const nice = niceScale(b.hours.min, b.hours.max, 6, false);
+            const s = chart.options.scales.hours;
+            s.display=true; s.position='right'; s.offset = bothRight ? true : false;
+            s.min=nice.min; s.max=nice.max; s.ticks.stepSize=nice.step;
+        } else chart.options.scales.hours.display=false;
+    }
+
+    function datasetIdFor(metric, compKey){
+        return compKey ? `${metric}::${compKey}` : metric;
+    }
+
+    // ---------- 핵심: 추가/제거/이동 ----------
+    function addMetricGroupToPlot(plotId, metric){
+        const p = plots.get(plotId); if (!p) return;
+        const opt = optionMap.get(metric); if (!opt) return;
+
+        const color = colorForMetric(metric);
+        const groupSet = p.groups.get(metric) || new Set();
+        let changed = false;
+
+        if (metric === METRICS.RESOLUTION_STATS) {
+            // 박스플롯 데이터 구성 (KST 기준 병합)
+            const series = seriesMap.get(metric);
+            const comps = Array.isArray(series?.components) ? series.components : [];
+            const mapByKey = new Map(comps.map(c => [c.key, c.points || []]));
+            const get = (k) => mapByKey.get(k) || mapByKey.get(k?.toLowerCase()) || [];
+            const minPts = get('min_hours');
+            const maxPts = get('max_hours');
+            const avgPts = get('avg_hours');
+            const stdPts = get('stddev_hours');
+
+            const byTime = new Map(); // key: ms timestamp
+            const ensure = (d) => {
+                const t = toDateKST(d);
+                if (!t) return null;
+                const k = t.getTime();
+                if (!byTime.has(k)) byTime.set(k, { _time: t });
+                return byTime.get(k);
+            };
+
+            avgPts.forEach(pt => { const e=ensure(pt.date); if (e) e.mean = Number(pt.value); });
+            minPts.forEach(pt => { const e=ensure(pt.date); if (e) e.min  = Number(pt.value); });
+            maxPts.forEach(pt => { const e=ensure(pt.date); if (e) e.max  = Number(pt.value); });
+            stdPts.forEach(pt => { const e=ensure(pt.date); if (e) e.std  = Number(pt.value); });
+
+            const merged = [...byTime.values()]
+                .filter(v => Number.isFinite(v.mean) && Number.isFinite(v.min) && Number.isFinite(v.max) && Number.isFinite(v.std))
+                .sort((a,b)=>a._time - b._time);
+
+            const meanPoints = merged.map(v => ({ x: v._time, y: v.mean }));
+
+            const id = datasetIdFor(metric, 'boxplot');
+            if (!p.datasets.has(id)) {
+                const indexMap = new Map(merged.map(v => [String(v._time.getTime()), { min:v.min, max:v.max, std:v.std }]));
+                const ds = {
+                    _id: id,
+                    label: (opt.label || '동정 해결 시간'),
+                    data: meanPoints,
+                    parsing: { xAxisKey: 'x', yAxisKey: 'y' },
+                    borderColor: color,
+                    backgroundColor: color,
+                    tension: 0.25,
+                    pointRadius: 0,
+                    pointHoverRadius: 4,
+                    fill: false,
+                    spanGaps: true,
+                    yAxisID: 'hours',
+                    _saUnit: 'HOURS',
+                    _boxIndex: indexMap   // ← 툴팁 계산에만 사용
+                };
+
+                p.chart.data.datasets.push(ds);
+                p.datasets.add(id);
+                groupSet.add(id);
+                changed = true;
+            }
+        } else {
+            const unit = String(optionMap.get(metric)?.unit || '').toUpperCase();
+            const s = seriesMap.get(metric);
+            const points = toPoints(s, unit);
+            const id = datasetIdFor(metric);
+            if (!p.datasets.has(id)) {
+                const yAxis = axisByUnit(unit);
+                const ds = {
+                    _id: id,
+                    label: optionMap.get(metric)?.label || metric,
+                    data: points,
+                    parsing: { xAxisKey: 'x', yAxisKey: 'y' },
+                    borderColor: color,
+                    backgroundColor: color,
+                    tension: 0.25,
+                    pointRadius: 0,
+                    pointHoverRadius: 4,
+                    fill: false,
+                    spanGaps: true,
+                    yAxisID: yAxis,
+                    _saUnit: unit
+                };
+                p.chart.data.datasets.push(ds);
+                p.datasets.add(id);
+                groupSet.add(id);
+                changed = true;
+            }
+        }
+
+        if (changed) {
+            p.groups.set(metric, groupSet);
+            renderPlotGroupChips(plotId);
+            applyAutoYAxisScaling(p.chart);
+            p.chart.update();
+            updateEmptyState(plotId);
+            resizeAllCharts();
+            syncAsideActiveStates();
+        }
+    }
+
+    function removeMetricGroupFromPlot(plotId, metric){
+        const p = plots.get(plotId); if (!p) return;
+        const ids = p.groups.get(metric) || new Set();
+        p.chart.data.datasets = (p.chart.data.datasets || []).filter(ds => !ids.has(ds._id));
+        ids.forEach(id => p.datasets.delete(id));
+        p.groups.delete(metric);
+        renderPlotGroupChips(plotId);
+        applyAutoYAxisScaling(p.chart);
+        p.chart.update();
+        updateEmptyState(plotId);
+        resizeAllCharts();
+        syncAsideActiveStates();
+    }
+
+    function toggleMetricGroupOnPlot(plotId, metric){
+        const p = plots.get(plotId); if (!p) return;
+        if (p.groups.has(metric)) removeMetricGroupFromPlot(plotId, metric);
+        else addMetricGroupToPlot(plotId, metric);
+    }
+
+    function removeMetricGroupFromAllPlots(metric){
+        for (const [plotId] of plots) removeMetricGroupFromPlot(plotId, metric);
+        syncAsideActiveStates();
+    }
+
+    function moveGroupToPlot(metric, fromPlotId, toPlotId){
+        if (fromPlotId === toPlotId) return;
+        removeMetricGroupFromPlot(fromPlotId, metric);
+        addMetricGroupToPlot(toPlotId, metric);
+        const fromStrip = document.querySelector(`.si-plot-card[data-plot-id="${fromPlotId}"] .si-plot__datasets`);
+        const toStrip   = document.querySelector(`.si-plot-card[data-plot-id="${toPlotId}"] .si-plot__datasets`);
+        if (fromStrip) markDatasetsStripState(fromStrip);
+        if (toStrip)   markDatasetsStripState(toStrip);
+    }
+
+    // 플롯 상단 칩(그룹 단위) — 드래그 이동 허용
+    function renderPlotGroupChips(plotId){
+        const p = plots.get(plotId); if (!p) return;
+        const wrap = p.el.querySelector('.si-plot__datasets');
+        const hasAny = p.chart.data.datasets.length > 0;
+
+        wrap.innerHTML = '';
+        wrap.classList.add('si-dropzone');
+        wrap.setAttribute('data-empty', hasAny ? 'false' : 'true');
+
+        if (!hasAny) return;
+
+        for (const [groupId, children] of p.groups){
+            const opt = optionMap.get(groupId);
+            const color = colorForMetric(groupId);
+            const label = opt?.label || groupId;
+            const empty = [...children].every(id => {
+                const ds = p.chart.data.datasets.find(d => d._id === id);
+                return !ds || !Array.isArray(ds.data) || ds.data.length === 0;
+            });
+
+            const chip = document.createElement('div');
+            chip.className='si-ds-chip';
+            chip.dataset.groupId = groupId;
+            chip.style.touchAction = 'none';
+            chip.setAttribute('draggable','false');
+            chip.addEventListener('dragstart', e => e.preventDefault());
+            chip.innerHTML = `
+        <span class="si-grip" aria-hidden="true">⋮</span>
+        <span class="si-ds-chip__dot" style="background:${color}"></span>
+        <span class="si-ds-chip__label">${escapeHtml(label)}</span>
+        <small class="si-ds-chip__empty" aria-hidden="true" style="color:#94a3b8;">${empty ? '(데이터 없음)' : ''}</small>
+        <button type="button" class="si-ds-chip__rm" data-no-drag title="제거" aria-label="제거">×</button>
+      `;
+
+            const rm = chip.querySelector('.si-ds-chip__rm');
+            rm.addEventListener('click', (ev)=> {
+                ev.preventDefault();
+                ev.stopPropagation();
+                removeMetricGroupFromPlot(plotId, groupId);
+                const strip = chip.closest('.si-plot__datasets');
+                if (strip) markDatasetsStripState(strip);
+            });
+
+            enablePointerDnD(
+                chip,
+                () => ({ type:'datasetGroup', groupId, fromPlotId: plotId }),
+                (targetStrip, payload, done) => {
+                    const toPlotId = targetStrip.closest('.si-plot-card')?.dataset.plotId || plotId;
+                    moveGroupToPlot(payload.groupId, payload.fromPlotId, toPlotId);
+                    markDatasetsStripState(targetStrip);
+                    done();
+                }
+            );
+
+            wrap.appendChild(chip);
+        }
+    }
+
+    // aside 칩 상태 동기화 (활성 플롯 기준)
+    function syncAsideActiveStates(){
+        const active = getActivePlotId();
+        const activeGroups = active ? (plots.get(active)?.groups || new Map()) : new Map();
+        document.querySelectorAll('.service-insight__metrics .si-chip.si-chip--toggle').forEach(chip=>{
+            const metric = chip.dataset.metric;
+            const on = activeGroups.has(metric);
+            chip.classList.toggle('is-active', !!on);
+            chip.setAttribute('aria-pressed', on ? 'true' : 'false');
+        });
+    }
+
+    function updateRangeControlsState(meta) {
+        if (!meta) return;
+
+        const selectedRange = typeof meta.selectedRange === 'string' ? meta.selectedRange : '';
+        const customActive = !!meta.customRangeActive;
+        const startValue = meta.startDate != null ? String(meta.startDate) : '';
+        const endValue = meta.endDate != null ? String(meta.endDate) : '';
+
+        document.querySelectorAll('.si-range__quick .si-range__btn').forEach(btn => {
+            const value = btn.getAttribute('data-range') || '';
+            const isActive = !customActive && selectedRange && value === selectedRange;
+            btn.classList.toggle('btn-primary', isActive);
+            btn.classList.toggle('btn-outline-primary', !isActive);
+            btn.setAttribute('aria-pressed', isActive ? 'true' : 'false');
+        });
+
+        if (rangeStartInput) rangeStartInput.value = startValue;
+        if (rangeEndInput) rangeEndInput.value = endValue;
+
+        setCustomRangeOpen(customActive);
+    }
+
+    function updateBrowserUrl(meta) {
+        if (!window.history || !window.history.replaceState) return;
+        const url = new URL(window.location.href);
+        url.searchParams.delete('range');
+        url.searchParams.delete('startDate');
+        url.searchParams.delete('endDate');
+
+        if (meta && typeof meta.selectedRange === 'string' && meta.selectedRange) {
+            url.searchParams.set('range', meta.selectedRange);
+        }
+
+        if (meta && meta.customRangeActive) {
+            if (meta.startDate) url.searchParams.set('startDate', meta.startDate);
+            if (meta.endDate) url.searchParams.set('endDate', meta.endDate);
+        }
+
+        const query = url.searchParams.toString();
+        const next = url.pathname + (query ? `?${query}` : '');
+        window.history.replaceState(null, document.title, next);
+    }
+
+    async function requestAndApplyRange(target, fallbackHref) {
+        let url;
+        try {
+            url = target instanceof URL ? target : new URL(String(target), window.location.origin || window.location.href);
+        } catch (error) {
+            console.warn('Invalid service insight range URL.', error);
+            if (fallbackHref) window.location.href = fallbackHref;
+            return;
+        }
+
+        try {
+            const response = await fetch(url.toString(), {
+                method: 'GET',
+                headers: { 'Accept': 'application/json' },
+                credentials: 'same-origin'
+            });
+
+            if (!response.ok) {
+                throw new Error(`HTTP ${response.status}`);
+            }
+
+            const data = await response.json();
+            if (!data || typeof data !== 'object' || !data.viewModel) {
+                throw new Error('Invalid response payload');
+            }
+
+            applyViewModelPayload(data.viewModel);
+            refreshAllPlots();
+            updateRangeControlsState(data);
+            updateBrowserUrl(data);
+
+            if (data.error) {
+                console.warn('Service insight stats responded with a fallback dataset.');
+            }
+        } catch (error) {
+            console.warn('Failed to refresh service insight data without reloading.', error);
+            if (fallbackHref) {
+                window.location.href = fallbackHref;
+            }
+        }
+    }
+
+    function setupRangeControls() {
+        if (rangeQuickContainer) {
+            rangeQuickContainer.querySelectorAll('.si-range__btn').forEach(btn => {
+                btn.addEventListener('click', (event) => {
+                    if (event.defaultPrevented) return;
+                    if (event.button !== 0) return;
+                    if (event.metaKey || event.ctrlKey || event.shiftKey || event.altKey) return;
+
+                    const href = btn.getAttribute('href');
+                    if (!href) return;
+
+                    event.preventDefault();
+                    setCustomRangeOpen(false);
+                    const absoluteHref = btn.href || href;
+                    requestAndApplyRange(absoluteHref, absoluteHref);
+                });
+            });
+        }
+
+        if (rangeCustomToggle && rangeForm) {
+            rangeCustomToggle.addEventListener('click', (event) => {
+                event.preventDefault();
+                const currentlyOpen = rangeForm.classList.contains('is-open');
+                const next = !currentlyOpen;
+                setCustomRangeOpen(next);
+                if (next && rangeStartInput) {
+                    try { rangeStartInput.focus(); } catch (_) {}
+                }
+            });
+        }
+
+        if (rangeForm) {
+            rangeForm.addEventListener('submit', (event) => {
+                if (event.defaultPrevented) return;
+                event.preventDefault();
+
+                const base = rangeForm.getAttribute('action') || dataEndpoint || window.location.pathname;
+                let url;
+                try {
+                    url = new URL(base, window.location.origin || window.location.href);
+                } catch (error) {
+                    console.warn('Invalid service insight form action URL.', error);
+                    if (typeof rangeForm.submit === 'function') {
+                        rangeForm.submit();
+                    }
+                    return;
+                }
+
+                url.searchParams.set('range', 'custom');
+
+                const startValue = rangeStartInput?.value ? rangeStartInput.value.trim() : '';
+                const endValue = rangeEndInput?.value ? rangeEndInput.value.trim() : '';
+
+                if (startValue) url.searchParams.set('startDate', startValue);
+                else url.searchParams.delete('startDate');
+
+                if (endValue) url.searchParams.set('endDate', endValue);
+                else url.searchParams.delete('endDate');
+
+                requestAndApplyRange(url, url.toString());
+            });
+        }
+    }
+
+    // 컨트롤
+    if (addPlotBtn) addPlotBtn.addEventListener('click', ()=> createPlot());
+    if (clearAllBtn) clearAllBtn.addEventListener('click', ()=>{
+        for (const [plotId, p] of plots){
+            p.chart.data.datasets = [];
+            p.datasets.clear();
+            p.groups.clear();
+            p.chart.update();
+            renderPlotGroupChips(plotId);
+            updateEmptyState(plotId);
+        }
+        resizeAllCharts();
+        syncAsideActiveStates();
+    });
+
+    // 초기 렌더
+    renderGroups();
+    createPlot();
+    setupRangeControls();
+
+    // 툴팁 초기화
+    window.addEventListener('load', () => initTooltipsIn(document));
+
+    // 전역: 드래그 중 기본 drag/select/스크롤 억제
+    document.addEventListener('dragstart', (e) => {
+        if (document.body.classList.contains('is-dragging')) e.preventDefault();
+    }, true);
+    document.addEventListener('selectstart', (e) => {
+        if (document.body.classList.contains('is-dragging')) e.preventDefault();
+    }, true);
+    window.addEventListener('touchmove', (e) => {
+        if (document.body.classList.contains('is-dragging')) e.preventDefault();
+    }, { passive: false });
+
+    // ===== DnD 유틸 =====
+    function enablePointerDnD(el, onDragData, onDropToStrip){
+        let dragging = false;
+        let ghost = null;
+
+        const onPointerDown = (e)=>{
+            if (e.target?.hasAttribute?.('data-no-drag')) return;
+            dragging = true;
+            document.body.classList.add('is-dragging');
+            el.classList.add('is-dragging');
+            const rect = el.getBoundingClientRect();
+
+            ghost = el.cloneNode(true);
+            ghost.classList.add('si-ds-chip--ghost');
+            ghost.style.position = 'fixed';
+            ghost.style.pointerEvents = 'none';
+            ghost.style.left = `${e.clientX - rect.width/2}px`;
+            ghost.style.top  = `${e.clientY - rect.height/2}px`;
+            ghost.style.width = `${rect.width}px`;
+            ghost.style.opacity = '0.75';
+            ghost.style.zIndex = '1050';
+            document.body.appendChild(ghost);
+
+            e.preventDefault();
+        };
+
+        const onPointerMove = (e)=>{
+            if (!dragging || !ghost) return;
+            ghost.style.left = `${e.clientX - ghost.offsetWidth/2}px`;
+            ghost.style.top  = `${e.clientY - ghost.offsetHeight/2}px`;
+        };
+
+        const onPointerUp = (e)=>{
+            if (!dragging) return;
+            dragging = false;
+            document.body.classList.remove('is-dragging');
+            el.classList.remove('is-dragging');
+            if (ghost) { ghost.remove(); ghost = null; }
+
+            // drop target 판별
+            const targetStrip = document.elementFromPoint(e.clientX, e.clientY)?.closest?.('.si-plot__datasets.si-dropzone');
+            if (targetStrip) {
+                const payload = typeof onDragData === 'function' ? onDragData() : onDragData;
+                if (payload && typeof onDropToStrip === 'function') {
+                    onDropToStrip(targetStrip, payload, ()=>{});
+                }
+            }
+        };
+
+        el.addEventListener('pointerdown', onPointerDown);
+        window.addEventListener('pointermove', onPointerMove);
+        window.addEventListener('pointerup', onPointerUp);
+    }
+})();
+
+
+// ===== resources/static/js/service-insight.mobile.js =====
+// ===== resources/static/js/service-insight.mobile.js =====
+// 모바일 전용 보조 스크립트: 데이터 패널(#si-data-panel) + 타이틀(#si-target-title) 이동
+(function () {
+    const MOBILE_MAX = 991.98;
+
+    function q(id){ return document.getElementById(id); }
+
+    function relocate() {
+        const panel = q('si-data-panel');
+        const desktopPanelAnchor = q('si-groups-desktop-anchor');
+        const mobilePanelHost = q('si-data-panel-mobile-host');
+
+        const title = q('si-target-title');
+        const desktopTitleAnchor = q('si-target-title-desktop-anchor');
+        const mobileTitleHost = q('si-target-title-mobile-host');
+
+        if (!panel || !desktopPanelAnchor || !mobilePanelHost) return;
+        if (!title || !desktopTitleAnchor || !mobileTitleHost) return;
+
+        const isMobile = window.innerWidth <= MOBILE_MAX;
+
+        // 패널 이동
+        const panelParent = panel.parentElement;
+        if (isMobile && panelParent !== mobilePanelHost) {
+            mobilePanelHost.appendChild(panel);
+        } else if (!isMobile && panelParent !== desktopPanelAnchor) {
+            desktopPanelAnchor.appendChild(panel);
+        }
+
+        // 타이틀 이동 (단일 표시 지점 보장)
+        const titleParent = title.parentElement;
+        if (isMobile && titleParent !== mobileTitleHost) {
+            mobileTitleHost.prepend(title);
+        } else if (!isMobile && titleParent !== desktopTitleAnchor) {
+            desktopTitleAnchor.prepend(title);
+        }
+    }
+
+    // FAB 가시성 제어: 바텀시트 열릴 때 숨기고, 닫히면 복원
+    function setupFabVisibility(){
+        const fab = q('si-fab');            // FAB 버튼
+        const sheet = q('siDataPicker');    // 데이터 선택 바텀시트(Offcanvas)
+        if (!fab || !sheet) return;
+
+        const hideFab = () => {
+            // 모바일 CSS가 #si-fab { display: inline-flex !important; }이므로
+            // inline + !important로 안전하게 가린다.
+            try {
+                fab.style.setProperty('display', 'none', 'important');
+            } catch {
+                fab.style.display = 'none';
+            }
+        };
+        const showFab = () => {
+            fab.style.removeProperty('display'); // CSS 원래 규칙으로 복귀
+        };
+
+        sheet.addEventListener('show.bs.offcanvas', hideFab);
+        sheet.addEventListener('hidden.bs.offcanvas', showFab);
+
+        // 새로고침 등으로 시트가 이미 열려있는 경우 대비
+        if (sheet.classList.contains('show')) hideFab();
+    }
+
+    // helper: 실제 화면에 보이는지 판단 (fixed 요소 대응)
+    function isElementShown(el){
+        if (!el) return false;
+        const cs = window.getComputedStyle(el);
+        if (cs.display === 'none' || cs.visibility === 'hidden' || cs.opacity === '0') return false;
+        // fixed 요소는 offsetParent가 null일 수 있으므로 rect 기반으로 판단
+        return el.getClientRects().length > 0;
+    }
+
+    // 최초 진입 툴팁: "보고 싶은 데이터를 선택하세요"
+    function setupFabFirstRunTooltip(){
+        const fab   = q('si-fab');
+        const sheet = q('siDataPicker');
+        // Bootstrap 전역 객체가 없으면 조용히 패스 (필수는 아님)
+        if (!fab || !window.bootstrap || !window.bootstrap.Tooltip) return;
+
+        const KEY = 'si.fab.tooltip.dismissed';
+        const isMobile = window.innerWidth <= MOBILE_MAX;
+
+        // 세션 저장소로만 체크: 이 세션에서 한 번 닫으면 다시 안 뜨지만, 새 세션에서는 다시 뜸
+        let dismissed = false;
+        try {
+            dismissed = (sessionStorage.getItem(KEY) === '1');
+        } catch (_) {
+            // sessionStorage 접근 불가 환경에서는 안내를 계속 띄우도록 false 유지
+        }
+
+        if (!isMobile || dismissed) return;
+
+        // 혹시 기존 인스턴스가 있다면 정리
+        const prev = window.bootstrap.Tooltip.getInstance(fab);
+        if (prev) { try { prev.dispose(); } catch(_){} }
+
+        const tip = new window.bootstrap.Tooltip(fab, {
+            trigger: 'manual',
+            placement: 'left',           // FAB 위치 특성상 좌측이 자연스러움
+            container: 'body',
+            customClass: 'tooltip-bubble',
+            title: '보고 싶은 데이터를 선택하세요'
+        });
+
+        const maybeShow = () => {
+            // 시트가 열려 있으면 미표시
+            if (sheet && sheet.classList.contains('show')) return;
+            if (!isElementShown(fab)) return;
+            try { tip.show(); } catch(_) {}
+        };
+
+        // 사용자 상호작용 시: 이 세션에서만 영구 비표시
+        const onClick = () => {
+            try { tip.hide(); } catch(_) {}
+            try { sessionStorage.setItem(KEY, '1'); } catch(_) {}
+            fab.removeEventListener('click', onClick);
+            window.removeEventListener('resize', onResizeCheck);
+        };
+
+        // 레이아웃 안정 후 노출
+        setTimeout(maybeShow, 500);
+
+        // 바텀시트가 열릴 때는 숨기고, 닫히면(아직 미해제라면) 다시 한 번 보여줌
+        if (sheet) {
+            sheet.addEventListener('show.bs.offcanvas', () => { try { tip.hide(); } catch(_) {} });
+            sheet.addEventListener('hidden.bs.offcanvas', () => {
+                // 세션에서만 체크
+                let stillDismissed = false;
+                try { stillDismissed = (sessionStorage.getItem(KEY) === '1'); } catch(_) {}
+                if (!stillDismissed) setTimeout(maybeShow, 250);
+            });
+        }
+
+        // 리사이즈 시 모바일 유지되는 동안만 안내 (데스크탑 전환 시 숨김)
+        const onResizeCheck = () => {
+            if (window.innerWidth > MOBILE_MAX) { try { tip.hide(); } catch(_) {} }
+        };
+
+        fab.addEventListener('click', onClick, { once: true });
+        window.addEventListener('resize', onResizeCheck);
+    }
+
+    // === 그룹 헤더 테마 색 + 기본 접힘 + 드롭다운 인디케이터(왼쪽) ===
+    function injectGroupThemeCss(){
+        if (document.getElementById('si-group-theme-style')) return;
+        const style = document.createElement('style');
+        style.id = 'si-group-theme-style';
+        style.textContent = `
+/* 공통 스코프: 데스크탑(.service-insight) + 모바일 바텀시트(#siDataPicker) */
+:is(.service-insight,#siDataPicker) details.si-group {
+  border-radius: 10px;
+  overflow: hidden;
+}
+:is(.service-insight,#siDataPicker) .si-group__summary{
+  position: relative;
+  display: flex;
+  align-items: center;
+  gap: .5rem;
+  padding: .75rem .875rem .75rem 2rem; /* 왼쪽 chevron 공간 확보 */
+  background: linear-gradient(90deg, rgba(var(--group-accent-rgb), .10), rgba(var(--group-accent-rgb), 0) 70%);
+  border-left: 6px solid rgba(var(--group-accent-rgb), .90);
+  cursor: pointer;
+  user-select: none;
+  transition: background-color .18s ease, box-shadow .18s ease;
+}
+:is(.service-insight,#siDataPicker) .si-group[open] .si-group__summary{
+  background: linear-gradient(90deg, rgba(var(--group-accent-rgb), .14), rgba(var(--group-accent-rgb), .03) 70%);
+}
+:is(.service-insight,#siDataPicker) .si-group__summary:hover{
+  box-shadow: inset 0 0 0 999px rgba(var(--group-accent-rgb), .03);
+}
+/* 드롭다운 꺾쇠(왼쪽) */
+:is(.service-insight,#siDataPicker) .si-group__summary::before{
+  content: "";
+  position: absolute;
+  left: .625rem;
+  top: 50%;
+  width: .6rem;
+  height: .6rem;
+  margin-top: -.3rem;
+  border-right: 2px solid rgba(var(--group-accent-rgb), .80);
+  border-bottom: 2px solid rgba(var(--group-accent-rgb), .80);
+  transform: translateY(-50%) rotate(-45deg); /* 닫힘: ∨ 느낌 */
+  transition: transform .16s ease, border-color .16s ease, opacity .16s ease;
+  opacity: .95;
+}
+:is(.service-insight,#siDataPicker) .si-group[open] .si-group__summary::before{
+  transform: translateY(-50%) rotate(45deg); /* 펼침: ∧ 느낌 */
+  opacity: 1;
+}
+/* 액션 버튼 hover에 포커스 색상 */
+:is(.service-insight,#siDataPicker) .si-group__btn:hover{
+  color: rgb(var(--group-accent-rgb)) !important;
+  border-color: rgba(var(--group-accent-rgb), .6) !important;
+}
+/* 그룹별 팔레트: hue 대비를 키워 확실히 구분 (collection=블루, user=그린, id=레드, others=퍼플) */
+:is(.service-insight,#siDataPicker) .si-group { --group-accent-rgb: 59,130,246; }            /* 기본 파랑 */
+:is(.service-insight,#siDataPicker) .si-group--collection { --group-accent-rgb: 37,99,235; }  /* 새록: blue-600 */
+:is(.service-insight,#siDataPicker) .si-group--user       { --group-accent-rgb: 5,150,105; }  /* 유저: emerald-600 */
+:is(.service-insight,#siDataPicker) .si-group--id         { --group-accent-rgb: 220,38,38; }  /* 동정 요청: red-600 */
+:is(.service-insight,#siDataPicker) .si-group--others     { --group-accent-rgb: 139,92,246; } /* 기타: violet-500 */
+
+/* [+ 전체] [- 전체] 버튼 미관 개선 */
+:is(.service-insight,#siDataPicker) .si-bulk-btn {
+  --btn-bg: rgba(0,0,0,.02);
+  --btn-bd: rgba(0,0,0,.12);
+  --btn-bg-h: rgba(0,0,0,.04);
+  --btn-bd-h: rgba(0,0,0,.28);
+  display: inline-flex;
+  align-items: center;
+  gap: .35rem;
+  padding: .25rem .6rem;
+  font-size: .85rem;
+  line-height: 1.1;
+  border-radius: 999px;
+  border: 1px solid var(--btn-bd);
+  background: var(--btn-bg);
+  text-decoration: none !important;
+}
+:is(.service-insight,#siDataPicker) .si-bulk-btn:hover{
+  background: var(--btn-bg-h);
+  border-color: var(--btn-bd-h);
+}
+:is(.service-insight,#siDataPicker) .si-bulk-toolbar{
+  display: flex;
+  gap: .5rem;
+  align-items: center;
+  justify-content: flex-end;
+  flex-wrap: wrap;
+}
+        `.trim();
+        document.head.appendChild(style);
+    }
+
+    function setupGroupThemingAndCollapse(){
+        const containers = [
+            document.getElementById('si-groups'),
+            document.getElementById('siDataPicker')
+        ].filter(Boolean);
+
+        const applyTo = (root) => {
+            const groups = Array.from(root.querySelectorAll('details.si-group'));
+            if (!groups.length) return false;
+
+            groups.forEach((details) => {
+                // 1) 기본 접힘
+                details.open = false;
+
+                // 2) 이름 -> 키 매핑 후 테마 클래스 부여 (새록 => collection)
+                const name = details.querySelector('.si-group__title')?.textContent?.trim() || '';
+                let key = 'others';
+                if (name.includes('새록')) key = 'collection';
+                else if (name.includes('유저')) key = 'user';
+                else if (name.includes('동정')) key = 'id';
+
+                details.classList.remove('si-group--privacy','si-group--collection','si-group--user','si-group--id','si-group--others');
+                details.classList.add(`si-group--${key}`);
+
+                // 3) summary 기본 클래스 보강 (없다면 붙여 UI 일관화)
+                const summary = details.querySelector('summary');
+                if (summary && !summary.classList.contains('si-group__summary')) {
+                    summary.classList.add('si-group__summary');
+                }
+            });
+            return true;
+        };
+
+        // 즉시 적용 시도
+        let foundAny = false;
+        containers.forEach(root => { if (applyTo(root)) foundAny = true; });
+
+        // 렌더가 늦는 경우를 대비해 컨테이너별로 감시
+        if (!foundAny) {
+            containers.forEach(root => {
+                const mo = new MutationObserver(() => {
+                    if (applyTo(root)) mo.disconnect();
+                });
+                mo.observe(root, { childList: true, subtree: true });
+            });
+        }
+    }
+
+    // [+ 전체] / [- 전체] 컨트롤을 세련된 pill 버튼으로 치장 (기존 클릭 동작 유지)
+    function setupBulkControlStyling(){
+        const SCOPE_SEL = '#si-groups, #siDataPicker';
+        const enhance = (root) => {
+            const nodes = Array.from(root.querySelectorAll('button, a'));
+            if (!nodes.length) return;
+
+            const isPlus = (t) => /\[\+\s*전체\]/.test(t) || /모두\s*펼치기/.test(t);
+            const isMinus = (t) => /\[-\s*전체\]/.test(t) || /모두\s*접기/.test(t);
+
+            let plusEl = null, minusEl = null;
+
+            nodes.forEach(el => {
+                if (el.dataset.siEnhanced) return;
+                const text = (el.textContent || '').trim();
+
+                if (isPlus(text)) {
+                    el.classList.add('si-bulk-btn');
+                    el.setAttribute('data-si-enhanced','1');
+                    el.innerHTML = '<i class="bi bi-chevron-double-down"></i><span>모두 펼치기</span>';
+                    if (el.tagName === 'BUTTON' && !el.getAttribute('type')) el.setAttribute('type','button');
+                    plusEl = el;
+                } else if (isMinus(text)) {
+                    el.classList.add('si-bulk-btn');
+                    el.setAttribute('data-si-enhanced','1');
+                    el.innerHTML = '<i class="bi bi-chevron-double-up"></i><span>모두 접기</span>';
+                    if (el.tagName === 'BUTTON' && !el.getAttribute('type')) el.setAttribute('type','button');
+                    minusEl = el;
+                }
+            });
+
+            // 두 버튼의 부모에 툴바 정렬 보강
+            const host = plusEl?.parentElement || minusEl?.parentElement;
+            if (host && !host.classList.contains('si-bulk-toolbar')) {
+                host.classList.add('si-bulk-toolbar');
+            }
+        };
+
+        document.querySelectorAll(SCOPE_SEL).forEach(enhance);
+
+        // 동적 렌더 대응
+        const roots = document.querySelectorAll(SCOPE_SEL);
+        roots.forEach(root => {
+            const mo = new MutationObserver(() => enhance(root));
+            mo.observe(root, { childList: true, subtree: true });
+        });
+    }
+
+    // 초기/리사이즈
+    let t = null;
+    function onResize(){
+        clearTimeout(t);
+        t = setTimeout(relocate, 120);
+    }
+
+    if (document.readyState === 'loading') {
+        document.addEventListener('DOMContentLoaded', () => {
+            relocate();
+            setupFabVisibility();
+            setupFabFirstRunTooltip();
+            injectGroupThemeCss();
+            setupGroupThemingAndCollapse();
+            setupBulkControlStyling();
+            window.addEventListener('resize', onResize);
+        });
+    } else {
+        relocate();
+        setupFabVisibility();
+        setupFabFirstRunTooltip();
+        injectGroupThemeCss();
+        setupGroupThemingAndCollapse();
+        setupBulkControlStyling();
+        window.addEventListener('resize', onResize);
+    }
+})();
+
+
+// ===== resources/static/js/service-insight.target.js =====
+// ===== resources/static/js/service-insight.target.js =====
+(function () {
+    const grid   = document.getElementById('si-plot-grid');
+    const select = document.getElementById('si-target-select');
+    const groups = document.getElementById('si-groups');
+    const offcanvasEl = document.getElementById('siDataPicker');
+    if (!grid || !select || !groups) return;
+
+    /* ---------- Helpers ---------- */
+    function getActivePlotCard() {
+        return grid.querySelector('.si-plot-card.si-plot--active');
+    }
+
+    function getActivePlotIdFromDOM() {
+        const active = getActivePlotCard();
+        return active ? active.getAttribute('data-plot-id') : null;
+    }
+
+    function listPlots() {
+        return Array.from(grid.querySelectorAll('.si-plot-card')).map((card, idx) => {
+            const id = card.getAttribute('data-plot-id') || String(idx + 1);
+            const titleEl = card.querySelector('.si-plot__title');
+            const title = (titleEl?.textContent?.trim()) || `플롯 ${idx + 1}`;
+            return { id, title, index: idx + 1 };
+        });
+    }
+
+    function ensureActivePlotViaDom(id) {
+        const card = id && grid.querySelector(`.si-plot-card[data-plot-id="${CSS.escape(id)}"]`);
+        if (!card) return;
+        const ev = new MouseEvent('mousedown', { bubbles: true, cancelable: true, view: window });
+        card.dispatchEvent(ev);
+    }
+
+    // 🔧 FIX: aside 칩에서 metric 키 추출
+    function getChipKey(chip) {
+        return chip.getAttribute('data-metric')
+            || chip.getAttribute('data-key')
+            || chip.getAttribute('data-dsid')
+            || chip.getAttribute('data-dataset-id')
+            || chip.getAttribute('data-id')
+            || null;
+    }
+
+    // 🔧 FIX: 플롯 카드 안에서 해당 metric이 포함되어 있는지 확인
+    // 플롯 내부에는 data-group-id로 저장되어 있음!
+    function activePlotContainsKey(key) {
+        if (!key) return false;
+        const card = getActivePlotCard();
+        if (!card) return false;
+
+        // 플롯 카드 안의 데이터셋 칩들을 검색 (data-group-id로 저장됨)
+        const selector = `[data-group-id="${CSS.escape(key)}"]`;
+        const found = !!card.querySelector(selector);
+
+        return found;
+    }
+
+    /* ---------- Select ↔ Focus 동기화 ---------- */
+    function refreshSelectOptions() {
+        const active = getActivePlotIdFromDOM();
+        const items = listPlots();
+        const prev = select.value;
+
+        select.innerHTML = '';
+        items.forEach(({id, index}) => {
+            const opt = document.createElement('option');
+            opt.value = id;
+            opt.textContent = String(index);
+            select.appendChild(opt);
+        });
+
+        if (items.length) {
+            const toSelect = (prev && items.some(i => i.id === prev)) ? prev : (active || items[0].id);
+            select.value = toSelect;
+        }
+    }
+
+    function syncSelectToActive() {
+        const active = getActivePlotIdFromDOM();
+        if (active && select.value !== active) select.value = active;
+    }
+
+    select.addEventListener('change', () => {
+        const picked = select.value;
+        if (picked) ensureActivePlotViaDom(picked);
+        scheduleChecklist();
+    });
+
+    /* ---------- 체크 인디케이터 ---------- */
+    function computeChipChecked(chip) {
+        const key = getChipKey(chip);
+
+        // 1순위: 활성 플롯에 실제로 포함되어 있는지 확인
+        if (key) {
+            const isInPlot = activePlotContainsKey(key);
+            return isInPlot;
+        }
+
+        // 2순위: 휴리스틱 (key가 없는 경우)
+        const ap = chip.getAttribute('aria-pressed');
+        const ac = chip.getAttribute('aria-checked');
+        const cls = chip.className || '';
+        const truthyAttr = (v) => v === 'true' || v === '1';
+        return truthyAttr(ap) || truthyAttr(ac) || /\b(is-)?(active|selected|on)\b/.test(cls);
+    }
+
+    function updateChecklist() {
+        // PC와 모바일 모두의 칩을 찾아서 업데이트
+        const chips = document.querySelectorAll('#si-data-panel .si-chip.si-chip--toggle');
+
+        chips.forEach(chip => {
+            const checked = computeChipChecked(chip);
+            chip.setAttribute('data-checked', checked ? 'true' : 'false');
+
+            // 디버깅용 로그 (필요시 주석 해제)
+            // const key = getChipKey(chip);
+            // console.log('[Checklist]', key, 'checked:', checked);
+        });
+    }
+
+    // 즉시 + 다음 프레임 조합으로 확실하게 갱신
+    const scheduleChecklist = (() => {
+        let rafId = null;
+        let timeoutId = null;
+
+        return function () {
+            // 즉시 실행
+            updateChecklist();
+
+            // RAF로 한 번 더
+            if (rafId) cancelAnimationFrame(rafId);
+            rafId = requestAnimationFrame(() => {
+                updateChecklist();
+                rafId = null;
+
+                // 그래도 안전하게 한 번 더 (비동기 처리 대비)
+                if (timeoutId) clearTimeout(timeoutId);
+                timeoutId = setTimeout(() => {
+                    updateChecklist();
+                    timeoutId = null;
+                }, 50);
+            });
+        };
+    })();
+
+    // 칩 상호작용 이벤트
+    groups.addEventListener('click', scheduleChecklist, false);
+    groups.addEventListener('pointerup', scheduleChecklist, false);
+    groups.addEventListener('keyup', (e) => {
+        if (e.key === 'Enter' || e.key === ' ') scheduleChecklist();
+    }, false);
+    groups.addEventListener('change', scheduleChecklist, false);
+
+    // DOM 변경 관찰
+    const obsGroups = new MutationObserver(() => {
+        scheduleChecklist();
+    });
+    obsGroups.observe(groups, {
+        subtree: true,
+        childList: true,
+        attributes: true,
+        attributeFilter: ['class', 'aria-pressed', 'aria-checked']
+    });
+
+    // 플롯 구조 변경 관찰
+    const obsGrid = new MutationObserver(() => {
+        refreshSelectOptions();
+        syncSelectToActive();
+        scheduleChecklist();
+    });
+    obsGrid.observe(grid, {
+        childList: true,
+        subtree: true,
+        attributes: true,
+        attributeFilter: ['class', 'data-plot-id']
+    });
+
+    // Offcanvas 이벤트
+    if (offcanvasEl) {
+        offcanvasEl.addEventListener('show.bs.offcanvas', () => {
+            refreshSelectOptions();
+            syncSelectToActive();
+            scheduleChecklist();
+        });
+
+        offcanvasEl.addEventListener('shown.bs.offcanvas', () => {
+            scheduleChecklist();
+        });
+
+        // 닫힐 때도 갱신 (다음 열림을 대비)
+        offcanvasEl.addEventListener('hidden.bs.offcanvas', () => {
+            scheduleChecklist();
+        });
+    }
+
+    // 초기 동기화
+    if (document.readyState === 'loading') {
+        document.addEventListener('DOMContentLoaded', () => {
+            refreshSelectOptions();
+            syncSelectToActive();
+            scheduleChecklist();
+        });
+    } else {
+        refreshSelectOptions();
+        syncSelectToActive();
+        scheduleChecklist();
+    }
+
+    /* ---------- 코어 syncAsideActiveStates 오버라이드 ---------- */
+    try {
+        const original = window.syncAsideActiveStates;
+
+        window.syncAsideActiveStates = function patchedSyncAsideActiveStates() {
+            // 1) 코어 로직 실행 (데스크톱 칩 갱신)
+            if (typeof original === 'function') {
+                try {
+                    original();
+                } catch (e) {
+                    console.warn('[SyncAsideActiveStates] Original failed:', e);
+                }
+            }
+
+            // 2) 모바일 포함 모든 칩 갱신
+            const allChips = document.querySelectorAll('#si-data-panel .si-chip.si-chip--toggle');
+
+            allChips.forEach(chip => {
+                const key = getChipKey(chip);
+                const isActive = key ? activePlotContainsKey(key) : false;
+
+                chip.classList.toggle('is-active', isActive);
+                chip.setAttribute('aria-pressed', isActive ? 'true' : 'false');
+            });
+
+            // 3) 체크 인디케이터도 갱신
+            scheduleChecklist();
+        };
+
+        console.log('[ServiceInsight] syncAsideActiveStates overridden successfully');
+
+    } catch (e) {
+        console.error('[ServiceInsight] Failed to override syncAsideActiveStates:', e);
+    }
+})();
+
+
+// ===== resources/templates/admin-audit/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy d-flex flex-wrap justify-content-between align-items-center gap-3">
+                <div>
+                    <div class="fw-semibold">관리자 활동 로그를 확인하세요</div>
+                    <div class="text-muted small">주요 관리자 활동이 시간순으로 기록됩니다.</div>
+                </div>
+                <form class="d-flex align-items-center gap-2" method="get">
+                    <input type="hidden" name="page" value="1">
+                    <label class="form-label small text-uppercase text-muted mb-0" for="pageSize">페이지당 표시</label>
+                    <select class="form-select form-select-sm" id="pageSize" name="size">
+                        <option th:each="option : ${pageSizeOptions}" th:value="${option}"
+                                th:selected="${option == size}" th:text="${option + '건'}">20건</option>
+                    </select>
+                    <button type="submit" class="btn btn-outline-secondary btn-sm">적용</button>
+                </form>
+            </div>
+        </div>
+
+        <div class="card card-elevated">
+            <div class="table-responsive table-shell d-none d-md-block">
+                <table class="table table-modern align-middle table-hover">
+                    <thead>
+                    <tr>
+                        <th scope="col">ID</th>
+                        <th scope="col">발생 시각</th>
+                        <th scope="col">관리자</th>
+                        <th scope="col">작업</th>
+                        <th scope="col">추가 정보</th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr th:if="${loadErrorMessage != null}">
+                        <td colspan="5" class="text-center text-danger py-5" th:text="${loadErrorMessage}">
+                            관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.
+                        </td>
+                    </tr>
+                    <tr th:if="${loadErrorMessage == null && #lists.isEmpty(logs)}">
+                        <td colspan="5" class="text-center text-muted py-5">기록된 관리자 활동이 없습니다.</td>
+                    </tr>
+                    <tr th:each="log : ${logs}"
+                        th:with="hasTarget=${log.targetDisplay() != null and !#strings.isEmpty(log.targetDisplay())},
+                                 hasReport=${log.reportDisplay() != null and !#strings.isEmpty(log.reportDisplay())},
+                                 hasMetadata=${!#lists.isEmpty(log.metadataEntries())},
+                                 hasExtraInfo=${hasTarget or hasReport or hasMetadata}">
+                        <td class="text-muted" th:text="${'#' + log.id()}">#1</td>
+                        <td>
+                            <div class="fw-semibold"
+                                 th:text="${log.occurredAt() != null ? #temporals.format(log.occurredAt(), 'yyyy.MM.dd HH:mm') : '-'}">
+                                2025.01.01 10:00
+                            </div>
+                        </td>
+                        <td>
+                            <span class="fw-semibold" th:text="${log.adminNickname()}">운영자</span>
+                        </td>
+                        <td>
+                            <span class="badge" th:classappend="' ' + ${log.actionBadgeClass()}"
+                                  th:text="${log.actionLabel()}">신고 무시</span>
+                            <div class="small text-muted" th:text="${log.actionDescription()}">신고를 추가 조치 없이 마감했습니다.</div>
+                        </td>
+                        <td>
+                            <details class="audit-log-details" th:if="${hasExtraInfo}">
+                                <summary class="audit-log-details__summary">추가 정보 보기</summary>
+                                <div class="audit-log-details__content">
+                                    <ul class="list-unstyled small mb-0 d-flex flex-column gap-1">
+                                        <li th:if="${hasTarget}">
+                                            <span class="text-muted" th:text="|대상: ${log.targetDisplay()}|">대상: 컬렉션 신고 #12</span>
+                                        </li>
+                                        <li th:if="${hasReport}">
+                                            <span class="text-muted" th:text="|관련 신고: ${log.reportDisplay()}|">관련 신고: 신고 #12</span>
+                                        </li>
+                                        <li th:each="meta : ${log.metadataEntries()}">
+                                            <span class="text-muted" th:text="|${meta.key()}: ${meta.value()}|">사유: 스팸</span>
+                                        </li>
+                                    </ul>
+                                </div>
+                            </details>
+                            <span class="text-muted" th:unless="${hasExtraInfo}">-</span>
+                        </td>
+                    </tr>
+                    </tbody>
+                </table>
+            </div>
+            <div class="list-group list-group-flush d-md-none">
+                <div th:if="${loadErrorMessage != null}"
+                     class="list-group-item py-5 text-center text-danger"
+                     th:text="${loadErrorMessage}">
+                    관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.
+                </div>
+                <div th:if="${loadErrorMessage == null && #lists.isEmpty(logs)}"
+                     class="list-group-item py-5 text-center text-muted">
+                    기록된 관리자 활동이 없습니다.
+                </div>
+                <article class="list-group-item p-0 audit-log-card"
+                         th:if="${loadErrorMessage == null}"
+                         th:each="log : ${logs}"
+                         th:with="hasTarget=${log.targetDisplay() != null and !#strings.isEmpty(log.targetDisplay())},
+                                  hasReport=${log.reportDisplay() != null and !#strings.isEmpty(log.reportDisplay())},
+                                  hasMetadata=${!#lists.isEmpty(log.metadataEntries())},
+                                  hasExtraInfo=${hasTarget or hasReport or hasMetadata}">
+                    <div class="audit-log-card__content">
+                        <div class="d-flex flex-column gap-3">
+                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
+                                <div class="d-flex flex-column gap-2">
+                                    <div class="d-flex flex-wrap align-items-center gap-2">
+                                        <span class="badge" th:classappend="' ' + ${log.actionBadgeClass()}"
+                                              th:text="${log.actionLabel()}">신고 무시</span>
+                                        <span class="text-muted small" th:text="${'#' + log.id()}">#1</span>
+                                    </div>
+                                </div>
+                                <div class="text-end">
+                                    <div class="text-muted small">발생 시각</div>
+                                    <div class="fw-semibold"
+                                         th:text="${log.occurredAt() != null ? #temporals.format(log.occurredAt(), 'yyyy.MM.dd HH:mm') : '-'}">
+                                        2025.01.01 10:00
+                                    </div>
+                                </div>
+                            </div>
+                            <div>
+                                <div class="text-muted small mb-1">관리자</div>
+                                <div class="fw-semibold" th:text="${log.adminNickname()}">운영자</div>
+                            </div>
+                            <div>
+                                <div class="text-muted small mb-1">설명</div>
+                                <div class="text-break" th:text="${log.actionDescription()}">신고를 추가 조치 없이 마감했습니다.</div>
+                            </div>
+                            <div>
+                                <div class="text-muted small mb-1">추가 정보</div>
+                                <details class="audit-log-details" th:if="${hasExtraInfo}">
+                                    <summary class="audit-log-details__summary small">자세히 보기</summary>
+                                    <div class="audit-log-details__content mt-2">
+                                        <ul class="list-unstyled small mb-0 d-flex flex-column gap-1">
+                                            <li th:if="${hasTarget}">
+                                                <span class="text-muted" th:text="|대상: ${log.targetDisplay()}|">대상: 컬렉션 신고 #12</span>
+                                            </li>
+                                            <li th:if="${hasReport}">
+                                                <span class="text-muted" th:text="|관련 신고: ${log.reportDisplay()}|">관련 신고: 신고 #12</span>
+                                            </li>
+                                            <li th:each="meta : ${log.metadataEntries()}">
+                                                <span class="text-muted" th:text="|${meta.key()}: ${meta.value()}|">사유: 스팸</span>
+                                            </li>
+                                        </ul>
+                                    </div>
+                                </details>
+                                <span class="text-muted small" th:unless="${hasExtraInfo}">-</span>
+                            </div>
+                        </div>
+                    </div>
+                </article>
+            </div>
+            <div class="card-footer bg-white border-0 py-3">
+                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2">
+                    <span class="text-muted small">
+                        <span th:if="${rangeEnd > 0}" th:text="|${rangeStart} - ${rangeEnd}건 표시|">1 - 20건 표시</span>
+                        <span th:if="${rangeEnd > 0}"> · 페이지당 <strong th:text="${size}">20</strong>건</span>
+                        <span th:unless="${rangeEnd > 0}">표시할 로그가 없습니다.</span>
+                    </span>
+                    <ul class="pagination pagination-sm mb-0">
+                        <li class="page-item" th:classappend="${hasPrevious} ? '' : ' disabled'">
+                            <a class="page-link"
+                               th:href="@{/admin/audit-logs(page=${page > 1 ? page - 1 : 1}, size=${size})}">이전</a>
+                        </li>
+                        <li class="page-item active"><span class="page-link" th:text="${page}">1</span></li>
+                        <li class="page-item" th:classappend="${hasNext} ? '' : ' disabled'">
+                            <a class="page-link"
+                               th:href="@{/admin/audit-logs(page=${hasNext ? page + 1 : page}, size=${size})}">다음</a>
+                        </li>
+                    </ul>
+                </div>
+            </div>
+        </div>
+</th:block>
+</html>
+
+
+// ===== resources/templates/admin-role/index.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <div class="card card-elevated mb-4">
+        <div class="card-body card-body-comfy">
+            <div class="d-flex flex-wrap justify-content-between align-items-center gap-3">
+                <div>
+                    <h1 class="section-heading mb-2">역할과 권한</h1>
+                    <p class="text-muted mb-0">팀의 역할 구조를 한눈에 파악하고 필요한 권한을 빠르게 조정하세요.</p>
+                </div>
+                <div class="text-muted small text-end">
+                    <div class="fw-semibold">내 역할 요약</div>
+                    <div th:if="${currentAdminProfile.hasRoleDisplayNames()}"
+                         th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">
+                        확인 중...
+                    </div>
+                    <div th:unless="${currentAdminProfile.hasRoleDisplayNames()}">부여된 역할 정보를 불러오는 중입니다.</div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div class="alert d-flex align-items-center mb-4"
+         th:if="${flashMessage != null}"
+         th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+        <i class="bi"
+           th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+        <span th:text="${flashMessage}">알림</span>
+    </div>
+
+    <div class="card card-elevated mb-4">
+        <div class="card-body card-body-tight">
+            <div class="role-tab-nav">
+                <a th:href="@{/admin/roles(tab='my')}"
+                   class="role-tab"
+                   th:classappend="${tab} == 'my' ? ' is-active' : ''">
+                    <div class="fw-semibold">내 역할</div>
+                    <div class="text-muted small">나에게 부여된 역할과 권한</div>
+                </a>
+                <th:block th:if="${canViewTeamTab}">
+                    <a th:href="${selectedTeamMemberId != null} ? @{/admin/roles(tab='team', selectedUserId=${selectedTeamMemberId})} : @{/admin/roles(tab='team')}"
+                       class="role-tab"
+                       th:classappend="${tab} == 'team' ? ' is-active' : ''">
+                        <div class="fw-semibold">팀원 역할</div>
+                        <div class="text-muted small">팀원의 역할 현황과 권한</div>
+                    </a>
+                </th:block>
+                <th:block th:unless="${canViewTeamTab}">
+                    <span class="role-tab is-disabled" title="ADMIN_ROLE_READ 권한이 필요합니다.">
+                        <div class="fw-semibold">팀원 역할</div>
+                        <div class="text-muted small">권한이 없어 접근할 수 없습니다.</div>
+                    </span>
+                </th:block>
+                <th:block th:if="${canManageRoles}">
+                    <a th:href="${#strings.isEmpty(selectedRoleCode)} ? @{/admin/roles(tab='manage')} : @{/admin/roles(tab='manage', selectedRoleCode=${selectedRoleCode})}"
+                       class="role-tab"
+                       th:classappend="${tab} == 'manage' ? ' is-active' : ''">
+                        <div class="fw-semibold">역할 관리</div>
+                        <div class="text-muted small">역할 템플릿 편집 및 생성</div>
+                    </a>
+                </th:block>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'my'">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
+                    <div>
+                        <h2 class="h5 mb-1">내가 가진 역할</h2>
+                        <div class="text-muted small">현재 세션에 부여된 역할과 설명입니다.</div>
+                    </div>
+                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRoles)} + '개 역할'"></span>
+                </div>
+                <div class="alert alert-warning" th:if="${myRolesLoadError != null}" th:text="${myRolesLoadError}">로드 오류</div>
+                <div th:if="${myRolesLoadError == null}">
+                    <div class="text-muted" th:if="${#lists.isEmpty(myRoles)}">
+                        아직 부여된 역할이 없습니다.
+                    </div>
+                    <div class="role-pill-wrap" th:if="${!#lists.isEmpty(myRoles)}">
+                        <div class="role-pill" th:each="role : ${myRoles}">
+                            <div class="fw-semibold" th:text="${role.label()}">팀 멤버</div>
+                            <div class="text-muted small" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</div>
+                            <div class="text-muted small" th:unless="${role.hasDescription()}" th:text="${role.code()}">TEAM_MEMBER</div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
+                    <div>
+                        <h2 class="h5 mb-1">역할별 권한</h2>
+                        <div class="text-muted small">역할 카드를 눌러 포함된 권한을 모달에서 확인하세요.</div>
+                    </div>
+                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRolePermissionGroups)} + '개 역할'">0개 역할</span>
+                </div>
+                <div class="alert alert-info"
+                     th:if="${myRolesLoadError == null && #lists.isEmpty(myRolePermissionGroups)}">
+                    역할 템플릿을 불러오지 못해 권한 목록을 표시할 수 없습니다.
+                </div>
+                <div class="role-permission-trigger-grid" th:if="${!#lists.isEmpty(myRolePermissionGroups)}">
+                    <div class="role-permission-trigger-card" th:each="group : ${myRolePermissionGroups}">
+                        <button type="button"
+                                class="role-permission-trigger"
+                                data-role-modal-trigger="true"
+                                th:data-role-code="${group.role().code()}"
+                                th:data-role-label="${group.role().label()}"
+                                th:data-role-description="${group.role().description()}"
+                                th:data-role-permission-template="${'permission-template-my-' + group.role().code()}"
+                                th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                            <div>
+                                <div class="role-permission-trigger__title" th:text="${group.role().label()}">팀 멤버</div>
+                                <div class="text-muted small" th:if="${group.role().hasDescription()}" th:text="${group.role().description()}">팀 공통 권한</div>
+                                <div class="text-muted small" th:unless="${group.role().hasDescription()}" th:text="${group.role().code()}">TEAM_MEMBER</div>
+                            </div>
+                            <div class="role-permission-trigger__meta">
+                                <span class="text-muted small" th:text="${group.permissions().size()} + '개 권한'"></span>
+                                <span class="role-permission-trigger__cta">
+                                    권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
+                                </span>
+                            </div>
+                        </button>
+                        <template th:id="${'permission-template-my-' + group.role().code()}">
+                            <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
+                                <li th:each="permission : ${group.permissions()}">
+                                    <div class="permission-modal-item">
+                                        <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
+                                        <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
+                                    </div>
+                                </li>
+                            </ul>
+                            <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
+                                이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
+                            </div>
+                        </template>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'team'">
+        <div class="alert alert-warning" th:if="${!canViewTeamTab}">
+            팀원 역할을 확인하려면 ADMIN_ROLE_READ 권한이 필요합니다.
+        </div>
+        <div class="row g-4" th:if="${canViewTeamTab}">
+            <div class="col-12 col-xl-5">
+                <div class="card card-elevated h-100">
+                    <div class="card-body card-body-comfy d-flex flex-column h-100">
+                        <div class="d-flex justify-content-between align-items-center flex-wrap gap-3 mb-3">
+                            <div>
+                                <h2 class="h5 mb-1">팀원 목록</h2>
+                                <div class="text-muted small" th:text="|${teamMemberCount}명 참여 중|">0명 참여 중</div>
+                            </div>
+                        </div>
+                        <div class="alert alert-warning" th:if="${teamMembersLoadError != null}" th:text="${teamMembersLoadError}">로드 오류</div>
+                        <div class="flex-grow-1" th:if="${teamMembersLoadError == null}">
+                            <div class="text-muted text-center py-5" th:if="${#lists.isEmpty(teamMembers)}">
+                                관리 대상 팀원이 없습니다.
+                            </div>
+                            <div class="team-member-grid" th:if="${!#lists.isEmpty(teamMembers)}">
+                                <a class="team-member-card"
+                                   th:each="member : ${teamMembers}"
+                                   th:href="@{/admin/roles(tab='team', selectedUserId=${member.id()})}"
+                                   th:classappend="${selectedTeamMemberId != null && selectedTeamMemberId == member.id()} ? ' is-active' : ''">
+                                    <div class="team-member-card__avatar">
+                                        <span th:text="${member.initials()}">팀</span>
+                                    </div>
+                                    <div class="team-member-card__body">
+                                        <div class="d-flex align-items-center gap-2">
+                                            <div class="fw-semibold text-truncate" th:text="${member.nickname()}">운영자</div>
+                                            <span class="badge bg-warning-subtle text-dark" th:if="${member.superAdmin()}">SUPER</span>
+                                        </div>
+                                        <div class="role-chip-row">
+                                            <span class="role-chip" th:each="role : ${member.roles()}" th:text="${role.label()}">팀 멤버</span>
+                                            <span class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">역할 없음</span>
+                                        </div>
+                                    </div>
+                                </a>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-xl-7">
+                <div class="card card-elevated h-100">
+                    <div class="card-body card-body-comfy h-100">
+                        <div th:if="${selectedTeamMember == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
+                            왼쪽에서 팀원을 선택하면 상세 역할과 권한을 확인할 수 있습니다.
+                        </div>
+                        <div th:if="${selectedTeamMember != null}" class="d-flex flex-column gap-4 h-100">
+                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
+                                <div>
+                                    <div class="d-flex align-items-center gap-2">
+                                        <h2 class="h4 mb-0" th:text="${selectedTeamMember.nickname()}">운영자</h2>
+                                        <span class="badge bg-warning-subtle text-dark" th:if="${selectedTeamMember.superAdmin()}">슈퍼 관리자</span>
+                                    </div>
+                                </div>
+                                    <div class="text-end">
+                                        <div class="text-muted small">보유 역할</div>
+                                        <div class="fw-semibold" th:text="${#lists.size(selectedTeamMemberRoleGroups)} + '개'"></div>
+                                    </div>
+                            </div>
+                            <div>
+                                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2 mb-2">
+                                    <div class="text-muted small">역할</div>
+                                    <div class="text-muted small">역할 태그를 눌러 권한을 확인하세요.</div>
+                                </div>
+                                <div class="role-chip-row" th:if="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
+                                    <th:block th:each="group, iterStat : ${selectedTeamMemberRoleGroups}">
+                                        <th:block th:with="templateId=${'permission-template-team-' + group.role().code() + '-' + iterStat.index}">
+                                            <button type="button"
+                                                    class="role-chip role-chip--action"
+                                                    data-role-modal-trigger="true"
+                                                    th:data-role-code="${group.role().code()}"
+                                                    th:data-role-label="${group.role().label()}"
+                                                    th:data-role-description="${group.role().description()}"
+                                                    th:data-role-permission-template="${templateId}"
+                                                    th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                                                ...
+                                            </button>
+                                            <template th:id="${templateId}">
+                                                ...
+                                            </template>
+                                        </th:block>
+                                    </th:block>
+                                </div>
+                                <div class="text-muted" th:unless="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
+                                    부여된 역할이 없습니다.
+                                </div>
+                            </div>
+                            <div th:if="${teamRoleEditorAvailable}">
+                                <details class="role-editor-panel">
+                                    <summary>역할 편집</summary>
+                                    <div class="mt-3">
+                                        <form th:action="@{|/admin/roles/team-members/${selectedTeamMember.id()}/roles|}"
+                                              method="post" class="role-editor-form">
+                                            <div class="alert alert-light border"
+                                                 th:if="${#lists.isEmpty(assignableRoles)}">
+                                                편집 가능한 역할 템플릿이 없습니다.
+                                            </div>
+                                            <div class="permission-grid" th:if="${!#lists.isEmpty(assignableRoles)}">
+                                                <label class="form-check role-option" th:each="role : ${assignableRoles}">
+                                                    <input class="form-check-input" type="checkbox" name="roleCodes"
+                                                           th:value="${role.code()}" th:checked="${selectedTeamMember.hasRole(role.code())}">
+                                                    <div>
+                                                        <div class="fw-semibold" th:text="${role.label()}">역할 이름</div>
+                                                        <small class="text-muted" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</small>
+                                                        <small class="text-muted" th:unless="${role.hasDescription()}" th:text="${role.code()}">CODE</small>
+                                                    </div>
+                                                </label>
+                                            </div>
+                                            <div class="d-flex justify-content-between align-items-center mt-3">
+                                                <div class="text-muted small">선택한 항목이 즉시 저장됩니다.</div>
+                                                <button type="submit" class="btn btn-primary btn-sm">변경 사항 저장</button>
+                                            </div>
+                                        </form>
+                                    </div>
+                                </details>
+                            </div>
+                            <div th:if="${!teamRoleEditorAvailable && canManageRoles}" class="alert alert-light border">
+                                역할 템플릿 정보를 불러오지 못해 편집 UI를 표시할 수 없습니다.
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'manage'">
+        <div class="alert alert-warning" th:if="${!canManageRoles}">
+            역할 관리 기능은 ADMIN_ROLE_WRITE 권한을 가진 사용자만 사용할 수 있습니다.
+        </div>
+        <div th:if="${canManageRoles}">
+            <div class="card card-elevated mb-4">
+                <div class="card-body card-body-comfy">
+                    <div class="d-flex justify-content-between align-items-center flex-wrap gap-3">
+                        <div>
+                            <h2 class="h5 mb-1">새 역할 추가</h2>
+                            <div class="text-muted small">역할 코드, 표시 이름, 설명을 입력한 뒤 필요한 권한을 선택하세요.</div>
+                        </div>
+                        <button class="btn btn-outline-primary btn-sm" type="button" data-bs-toggle="collapse" data-bs-target="#newRoleForm">
+                            새 역할 폼 열기
+                        </button>
+                    </div>
+                    <div id="newRoleForm" class="collapse mt-4" th:classappend="${roleTemplateCount == 0} ? ' show' : ''">
+                        <form action="/admin/roles/new" method="post" class="role-editor-form">
+                            <div class="row g-3">
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleCodeInput">역할 코드</label>
+                                    <input type="text" class="form-control" id="roleCodeInput" name="code" placeholder="예: CONTENT_REVIEWER" required>
+                                </div>
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleNameInput">표시 이름</label>
+                                    <input type="text" class="form-control" id="roleNameInput" name="displayName" placeholder="예: 콘텐츠 검토자" required>
+                                </div>
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleDescriptionInput">설명</label>
+                                    <input type="text" class="form-control" id="roleDescriptionInput" name="description" placeholder="역할 목적을 입력하세요" required>
+                                </div>
+                            </div>
+                            <div class="mt-4">
+                                <div class="text-muted small mb-2">포함할 권한</div>
+                                <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                    선택할 수 있는 권한 목록을 불러오지 못했습니다.
+                                </div>
+                                <div class="permission-grid" th:if="${!#lists.isEmpty(permissionOptions)}">
+                                    <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                        <input class="form-check-input" type="checkbox" name="permissions" th:value="${option.key()}">
+                                        <div>
+                                            <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                            <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                        </div>
+                                    </label>
+                                </div>
+                            </div>
+                            <div class="d-flex justify-content-end mt-3">
+                                <button type="submit" class="btn btn-primary">새 역할 저장</button>
+                            </div>
+                        </form>
+                    </div>
+                </div>
+            </div>
+
+            <div class="row g-4">
+                <div class="col-12 col-xl-4">
+                    <div class="card card-elevated h-100">
+                        <div class="card-body card-body-comfy">
+                            <div class="d-flex justify-content-between align-items-center mb-3">
+                                <div>
+                                    <h2 class="h5 mb-1">역할 목록</h2>
+                                    <div class="text-muted small" th:text="|총 ${roleTemplateCount}개|">총 0개</div>
+                                </div>
+                            </div>
+                            <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
+                            <div class="role-template-list" th:if="${roleTemplatesLoadError == null}">
+                                <div class="text-muted" th:if="${#lists.isEmpty(roleTemplates)}">등록된 역할이 없습니다.</div>
+                                <a class="role-template-item"
+                                   th:each="role : ${roleTemplates}"
+                                   th:href="@{/admin/roles(tab='manage', selectedRoleCode=${role.code()})}"
+                                   th:classappend="${selectedRoleCode == role.code()} ? ' is-active' : ''">
+                                    <div class="fw-semibold" th:text="${role.displayName()}">역할 이름</div>
+                                    <div class="text-muted small" th:text="${role.code()}">ROLE_CODE</div>
+                                </a>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+                <div class="col-12 col-xl-8">
+                    <div class="card card-elevated h-100">
+                        <div class="card-body card-body-comfy h-100">
+                            <div th:if="${selectedRoleTemplate == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
+                                왼쪽 목록에서 편집할 역할을 선택하세요.
+                            </div>
+                            <div th:if="${selectedRoleTemplate != null}" class="d-flex flex-column gap-4 h-100">
+                                <div class="d-flex justify-content-between align-items-start gap-3 flex-wrap">
+                                    <div>
+                                        <h2 class="h4 mb-1" th:text="${selectedRoleTemplate.displayName()}">역할 이름</h2>
+                                        <div class="text-muted" th:text="${selectedRoleTemplate.description()}">역할 설명</div>
+                                        <div class="text-muted small" th:text="${selectedRoleTemplate.code()}">ROLE_CODE</div>
+                                    </div>
+                                    <span class="badge bg-secondary-subtle text-dark" th:if="${selectedRoleTemplate.builtin()}">시스템 내장</span>
+                                </div>
+                                <div>
+                                    <div class="text-muted small mb-2">권한 목록</div>
+                                    <ul class="role-permission-list" th:if="${selectedRoleTemplate.hasPermissions()}">
+                                        <li th:each="permission : ${selectedRoleTemplate.permissions()}">
+                                            <div class="fw-semibold" th:text="${permission.label()}">권한</div>
+                                            <div class="text-muted small" th:text="${permission.key()}">KEY</div>
+                                        </li>
+                                    </ul>
+                                    <div class="text-muted" th:unless="${selectedRoleTemplate.hasPermissions()}">아직 연결된 권한이 없습니다.</div>
+                                </div>
+                                <div>
+                                    <h3 class="h6 mb-2">권한 편집</h3>
+                                    <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                        선택 가능한 권한 목록이 없어 편집할 수 없습니다.
+                                    </div>
+                                    <form th:if="${!#lists.isEmpty(permissionOptions)}"
+                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/permissions|}"
+                                          method="post" class="role-editor-form">
+                                        <div class="permission-grid">
+                                            <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                                <input class="form-check-input" type="checkbox" name="permissions"
+                                                       th:value="${option.key()}"
+                                                       th:checked="${selectedRoleTemplate.hasPermission(option.key())}">
+                                                <div>
+                                                    <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                                    <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                                </div>
+                                            </label>
+                                        </div>
+                                        <div class="d-flex justify-content-end mt-3">
+                                            <button type="submit" class="btn btn-primary btn-sm">권한 저장</button>
+                                        </div>
+                                    </form>
+                                </div>
+                                <div>
+                                    <form th:if="${!selectedRoleTemplate.builtin()}"
+                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/delete|}"
+                                          method="post"
+                                          onsubmit="return confirm('정말 이 역할을 삭제하시겠습니까? 되돌릴 수 없습니다.');">
+                                        <button type="submit" class="btn btn-outline-danger btn-sm">역할 삭제</button>
+                                    </form>
+                                    <div class="alert alert-light border" th:if="${selectedRoleTemplate.builtin()}">
+                                        시스템 내장 역할은 삭제할 수 없습니다.
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+    <div class="modal fade" id="rolePermissionModal" tabindex="-1" aria-hidden="true">
+        <div class="modal-dialog modal-lg modal-dialog-centered modal-dialog-scrollable">
+            <div class="modal-content role-permission-modal">
+                <div class="modal-header">
+                    <div>
+                        <div class="role-permission-modal__eyebrow">역할 권한</div>
+                        <h5 class="modal-title" data-role-modal-title>역할 이름</h5>
+                        <p class="role-permission-modal__description mb-0 text-muted" data-role-modal-description>역할 설명</p>
+                    </div>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" data-role-modal-dismiss aria-label="닫기"></button>
+                </div>
+                <div class="modal-body">
+                    <div data-role-modal-permissions>
+                        <div class="permission-modal-empty">권한 정보를 불러오는 중입니다.</div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <script>
+        (function () {
+            const modalElement = document.getElementById('rolePermissionModal');
+            if (!modalElement) {
+                return;
+            }
+
+            const titleElement = modalElement.querySelector('[data-role-modal-title]');
+            const descriptionElement = modalElement.querySelector('[data-role-modal-description]');
+            const permissionsContainer = modalElement.querySelector('[data-role-modal-permissions]');
+            const bodyElement = document.body;
+            let storedOverflow = '';
+
+            function openModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    window.bootstrap.Modal.getOrCreateInstance(modalElement).show();
+                    return;
+                }
+
+                storedOverflow = bodyElement.style.overflow;
+                modalElement.classList.add('show');
+                modalElement.style.display = 'block';
+                modalElement.removeAttribute('aria-hidden');
+                modalElement.setAttribute('aria-modal', 'true');
+                bodyElement.classList.add('modal-open');
+                bodyElement.style.overflow = 'hidden';
+            }
+
+            function closeModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    const instance = window.bootstrap.Modal.getInstance(modalElement);
+                    if (instance) {
+                        instance.hide();
+                    }
+                    return;
+                }
+
+                modalElement.classList.remove('show');
+                modalElement.style.display = 'none';
+                modalElement.setAttribute('aria-hidden', 'true');
+                modalElement.removeAttribute('aria-modal');
+                bodyElement.classList.remove('modal-open');
+                bodyElement.style.overflow = storedOverflow || '';
+            }
+
+            modalElement.addEventListener('click', function (event) {
+                if (event.target.closest('[data-role-modal-dismiss]')) {
+                    event.preventDefault();
+                    closeModal();
+                    return;
+                }
+
+                if (!window.bootstrap && event.target === modalElement) {
+                    closeModal();
+                }
+            });
+
+            document.addEventListener('click', function (event) {
+                const trigger = event.target.closest('[data-role-modal-trigger]');
+                if (!trigger) {
+                    return;
+                }
+                event.preventDefault();
+
+                const templateId = trigger.getAttribute('data-role-permission-template');
+                const template = templateId ? document.getElementById(templateId) : null;
+
+                permissionsContainer.innerHTML = '';
+                if (template && template.content) {
+                    permissionsContainer.appendChild(template.content.cloneNode(true));
+                } else {
+                    const fallback = document.createElement('div');
+                    fallback.className = 'permission-modal-empty';
+                    fallback.textContent = '권한 정보를 불러오지 못했습니다.';
+                    permissionsContainer.appendChild(fallback);
+                }
+
+                const roleLabel = trigger.getAttribute('data-role-label') || '역할 권한';
+                const roleDescription = trigger.getAttribute('data-role-description') || '';
+                const roleCode = trigger.getAttribute('data-role-code') || '';
+
+                titleElement.textContent = roleLabel;
+                const subtitle = roleDescription.trim() || roleCode;
+                descriptionElement.textContent = subtitle || '';
+                descriptionElement.hidden = !subtitle;
+
+                openModal();
+            });
+        })();
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/ads/ad-form.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+
+    <div class="ads-page ads-form-page">
+        <div class="card card-elevated ads-form-card">
+            <div class="card-header card-header-tight ads-form-card__header">
+                <h1 class="h5 mb-0" th:text="${form.id() == null} ? '새 광고 등록' : '광고 수정'">새 광고 등록</h1>
+            </div>
+            <div class="card-body card-body-comfy ads-form-card__body">
+            <form th:action="${form.id() == null} ? @{/ads} : @{/ads/edit}" method="post" class="vstack gap-4" id="adForm">
+                <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.id() != null}">
+                <input type="hidden" name="objectKey" id="adObjectKey" th:value="${form.objectKey()}">
+                <input type="hidden" name="contentType" id="adContentType" th:value="${form.contentType()}">
+
+                <div>
+                    <label for="adName" class="form-label">광고 이름</label>
+                    <input type="text" class="form-control" id="adName" name="name" th:value="${form.name()}" required>
+                </div>
+
+                <div>
+                    <label for="adTargetUrl" class="form-label">이동할 링크(URL)</label>
+                    <input type="url" class="form-control" id="adTargetUrl" name="targetUrl" th:value="${form.targetUrl()}" required>
+                    <div class="form-text">광고 클릭 시 이동할 주소를 입력하세요.</div>
+                </div>
+
+                <div>
+                    <label for="adImageFile" class="form-label">광고 이미지 업로드</label>
+                    <div class="d-flex flex-column flex-md-row gap-3 align-items-start ads-upload-area">
+                        <div class="flex-shrink-0">
+                            <div class="ratio ratio-4x3 ads-image-preview" id="adImagePreviewContainer">
+                                <img th:if="${form.hasExistingImage()}" th:src="${form.imageUrl()}" alt="광고 미리보기"
+                                     id="adImagePreview" class="media-thumb w-100 h-100">
+                                <img th:if="${!form.hasExistingImage()}" src="https://placehold.co/400x300?text=Preview"
+                                     alt="광고 미리보기" id="adImagePreview" class="media-thumb w-100 h-100">
+                            </div>
+                        </div>
+                        <div class="flex-grow-1 w-100">
+                            <input type="file" class="form-control" id="adImageFile" accept="image/*">
+                            <div class="form-text">이미지 선택 시 자동으로 업로드됩니다.</div>
+                            <div id="adImageUploadStatus" class="ads-upload-status text-muted small mt-2">
+                                <span th:text="${form.hasUploadedImage() || form.hasExistingImage()} ? '이미지가 준비되었습니다.' : '아직 업로드된 이미지가 없습니다.'">이미지를 업로드해주세요.</span>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+
+                <div>
+                    <label for="adMemo" class="form-label">메모 (내부 참고용)</label>
+                    <textarea class="form-control" id="adMemo" name="memo" rows="4"
+                              th:text="${form.memo()}"></textarea>
+                </div>
+
+                <div class="d-flex justify-content-end gap-2 ads-form-actions">
+                    <a class="btn btn-outline-secondary" th:href="@{/ads(tab='ads')}">취소</a>
+                    <button type="submit" class="btn btn-primary">저장</button>
+                </div>
+            </form>
+        </div>
+    </div>
+    </div>
+
+    <script th:src="@{/js/ads-image-upload.js}"></script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/ads/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+
+    <div class="ads-page">
+        <div class="d-flex flex-wrap justify-content-between align-items-center gap-3 mb-4 ads-page-header">
+            <div>
+                <h1 class="h3 mb-1 fw-semibold">광고 관리</h1>
+                <p class="text-muted-soft mb-0">광고와 광고 스케줄을 한 곳에서 관리합니다.</p>
+            </div>
+        </div>
+
+        <div class="row g-3 mb-4 ads-summary-row">
+            <div class="col-12 col-md-4">
+                <div class="card ads-summary-card ads-summary-card--placements h-100">
+                    <div class="card-body">
+                        <div class="ads-summary-icon">
+                            <i class="bi bi-calendar3"></i>
+                        </div>
+                        <div class="ads-summary-label">지금 진행 중인 광고 수</div>
+                        <div class="ads-summary-value" th:text="${summary.activePlacementCount()}">0</div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
+             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+            <i class="bi"
+               th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
+        </div>
+
+        <div class="mb-3">
+            <ul class="nav nav-tabs nav-tabs-line ads-tabs">
+                <li class="nav-item">
+                    <a class="nav-link" th:classappend="${tab} == 'ads' ? ' active'"
+                       th:href="@{/ads(tab='ads')}">
+                        광고
+                    </a>
+                </li>
+                <li class="nav-item">
+                    <a class="nav-link" th:classappend="${tab} == 'schedule' ? ' active'"
+                       th:href="@{/ads(tab='schedule')}">
+                        광고 스케줄
+                    </a>
+                </li>
+            </ul>
+        </div>
+
+        <!-- 광고 탭 -->
+        <div th:if="${tab} == 'ads'">
+            <div th:if="${adsLoadError}" class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
+                <i class="bi bi-exclamation-triangle-fill me-2"></i>
+                <span th:text="${adsLoadError}">광고 목록을 불러오지 못했습니다.</span>
+            </div>
+
+            <div class="card card-elevated ads-panel mb-4">
+                <div class="card-body">
+                    <h2 class="h6 mb-1 fw-semibold">광고</h2>
+                    <p class="text-muted small mb-0">노출할 광고의 이름, 링크, 이미지를 설정합니다.</p>
+                </div>
+            </div>
+
+            <div class="card card-elevated ads-panel">
+                <div class="card-header card-header-tight d-flex justify-content-between align-items-center">
+                    <h2 class="h6 mb-0 fw-semibold">광고 목록</h2>
+                    <div th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
+                        <a class="btn btn-sm btn-primary" th:href="@{/ads/new}">
+                            <i class="bi bi-plus-circle me-1"></i>
+                            <span>새 광고 등록</span>
+                        </a>
+                    </div>
+                </div>
+                <div class="list-group list-group-flush ads-card-list">
+                    <div th:if="${ads.isEmpty()}"
+                         class="list-group-item py-4 text-center text-muted">
+                        등록된 광고가 없습니다.
+                    </div>
+                    <article class="list-group-item p-0 ads-card"
+                             th:each="ad : ${ads}">
+                        <div class="ads-card__content">
+                            <div class="ads-card__header">
+                                <div class="ads-card__thumb ads-card__thumb--wide" th:if="${ad.hasImage()}">
+                                    <div class="ratio ratio-4x3">
+                                        <img th:src="${ad.imageUrl()}" alt="광고 이미지"
+                                             class="media-thumb w-100 h-100">
+                                    </div>
+                                </div>
+                                <div class="ads-card__thumb ads-card__thumb--wide ads-card__thumb-placeholder"
+                                     th:if="${!ad.hasImage()}">
+                                    <i class="bi bi-image"></i>
+                                </div>
+                                <div class="ads-card__body">
+                                    <div class="ads-card__meta-label">광고 이름</div>
+                                    <div class="fw-semibold" th:text="${ad.name()}">광고 이름</div>
+                                </div>
+                            </div>
+                            <div class="ads-card__meta">
+                                <div class="ads-card__meta-label">이동할 링크 (URL)</div>
+                                <a th:href="${ad.targetUrl()}" th:text="${ad.targetUrl()}" class="text-break"
+                                   target="_blank" rel="noopener">
+                                    https://example.com
+                                </a>
+                            </div>
+                            <div class="ads-card__meta">
+                                <div class="ads-card__meta-label">메모</div>
+                                <div class="text-break" th:text="${#strings.isEmpty(ad.memo()) ? '-' : ad.memo()}">메모</div>
+                            </div>
+                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
+                                <a class="btn btn-sm btn-outline-primary"
+                                   th:href="@{/ads/edit(id=${ad.id()})}">수정</a>
+                                <form th:action="@{/ads/delete}" method="post" class="ads-card__action-form">
+                                    <input type="hidden" name="id" th:value="${ad.id()}">
+                                    <button type="submit" class="btn btn-sm btn-outline-danger"
+                                            th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
+                                        삭제
+                                    </button>
+                                </form>
+                            </div>
+                        </div>
+                    </article>
+                </div>
+            </div>
+        </div>
+
+        <!-- 광고 스케줄 탭 -->
+        <div th:if="${tab} == 'schedule'">
+            <div class="card card-elevated ads-panel mb-4">
+                <div class="card-body">
+                    <h2 class="h6 mb-1 fw-semibold">광고 스케줄</h2>
+                    <p class="text-muted small mb-0">광고를 노출할 스케줄을 설정합니다.</p>
+                </div>
+            </div>
+
+            <div th:if="${placementsLoadError}"
+                 class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
+                <i class="bi bi-exclamation-triangle-fill me-2"></i>
+                <span th:text="${placementsLoadError}">광고 노출 스케줄을 불러오지 못했습니다.</span>
+            </div>
+
+            <div th:if="${slotsLoadError}"
+                 class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
+                <i class="bi bi-exclamation-triangle-fill me-2"></i>
+                <span th:text="${slotsLoadError}">광고 위치를 불러오지 못했습니다.</span>
+            </div>
+
+            <div th:if="${placementGroups.isEmpty()}" class="card card-elevated ads-panel">
+                <div class="card-body text-center py-5 text-muted">
+                    등록된 광고 노출 스케줄이 없습니다.
+                </div>
+            </div>
+
+            <div th:each="group : ${placementGroups}" class="card card-elevated ads-panel mb-4">
+                <div class="card-header card-header-tight d-flex flex-wrap justify-content-between align-items-center gap-2">
+                    <div>
+                        <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
+                        <p class="text-muted small mb-0"
+                           th:text="${#strings.isEmpty(group.slotDescription()) ? '설명이 없습니다.' : group.slotDescription()}">
+                            광고 위치 설명
+                        </p>
+                    </div>
+                    <div class="d-flex flex-wrap gap-2"
+                         th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') or currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE')}">
+                        <a class="btn btn-sm btn-outline-primary"
+                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}"
+                           th:href="@{/ads/placements/new(slotId=${group.slotId()})}">
+                            <i class="bi bi-plus-circle me-1"></i>
+                            <span>새 스케줄 등록</span>
+                        </a>
+                        <a class="btn btn-sm btn-outline-secondary"
+                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') and group.slotId() != null}"
+                           th:href="@{/ads/slots/edit(id=${group.slotId()})}">광고 위치 설정</a>
+                        <form th:if="${currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE') and group.slotId() != null}"
+                              th:action="@{/ads/slots/delete}" method="post" class="d-inline">
+                            <input type="hidden" name="id" th:value="${group.slotId()}">
+                            <button type="submit" class="btn btn-sm btn-outline-danger"
+                                    th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
+                                이 광고 위치 삭제
+                            </button>
+                        </form>
+                    </div>
+                </div>
+                <div class="list-group list-group-flush ads-card-list">
+                    <article class="list-group-item p-0 ads-card ads-card--fallback">
+                        <div class="ads-card__content">
+                            <div class="d-flex align-items-center gap-3">
+                                <div class="ads-fallback-icon flex-shrink-0">
+                                    <i class="bi bi-stars"></i>
+                                </div>
+                                <div>
+                                    <div class="fw-semibold">기본 광고 (Kakao AdFit)</div>
+                                    <div class="text-muted small">광고가 없을 때 표시되는 기본 콘텐츠입니다.</div>
+                                </div>
+                            </div>
+                            <div class="ads-card__metrics">
+                                <div class="ads-card__metric ads-card__metric--probability">
+                                    <div class="ads-card__metric-label">광고가 뜰 확률</div>
+                                    <div class="ads-card__metric-value">
+                                        <span class="badge ads-probability-badge"
+                                              th:classappend="${group.hasFallbackProbability()} ? ' ads-probability-badge--active' : ' ads-probability-badge--muted'"
+                                              th:text="${group.fallbackProbabilityLabel()}">50%</span>
+                                    </div>
+                                </div>
+                            </div>
+                            <div class="ads-card__actions"
+                                 th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') && group.slotId() != null && group.slotCode() != null}">
+                                <button type="button" class="btn btn-sm btn-outline-primary"
+                                        data-bs-toggle="modal"
+                                        data-bs-target="#fallbackRatioModal"
+                                        th:attr="data-slot-id=${group.slotId()}, data-slot-code=${group.slotCode()}, data-fallback-ratio=${group.fallbackRatioPercent()}, data-slot-description=${group.slotDescription() == null ? '' : group.slotDescription()}, data-slot-ttl=${group.slotTtlSeconds()}">
+                                    기본 광고 표시 확률 수정
+                                </button>
+                            </div>
+                        </div>
+                    </article>
+                    <div th:if="${!group.hasPlacements()}"
+                         class="list-group-item py-4 text-center text-muted">
+                        등록된 스케줄이 없습니다.
+                    </div>
+                    <article class="list-group-item p-0 ads-card"
+                             th:each="placement : ${group.placements()}">
+                        <div class="ads-card__content">
+                            <div class="ads-card__header">
+                                <div class="ads-card__thumb ads-card__thumb--square" th:if="${placement.hasImage()}">
+                                    <img th:src="${placement.adImageUrl()}" alt="광고 미리보기"
+                                         class="media-thumb w-100 h-100">
+                                </div>
+                                <div class="ads-card__thumb ads-card__thumb--square ads-card__thumb-placeholder"
+                                     th:if="${!placement.hasImage()}">
+                                    <i class="bi bi-image"></i>
+                                </div>
+                                <div class="ads-card__body">
+                                    <div class="ads-card__meta-label">광고</div>
+                                    <div class="fw-semibold" th:text="${placement.adName()}">광고 이름</div>
+                                </div>
+                            </div>
+                            <div class="ads-card__metrics">
+                                <div class="ads-card__metric">
+                                    <div class="ads-card__metric-label">진행 상태</div>
+                                    <div class="ads-card__metric-value">
+                                        <span class="badge ads-status-badge"
+                                              th:classappend="${placement.statusBadgeClass()}"
+                                              th:text="${placement.displayStatusLabel()}">진행 중</span>
+                                    </div>
+                                </div>
+                                <div class="ads-card__metric">
+                                    <div class="ads-card__metric-label">우선순위</div>
+                                    <div class="ads-card__metric-value">
+                                        <span class="badge ads-priority-badge"
+                                              th:classappend="${placement.priorityBadgeClass()}"
+                                              th:text="${placement.weightLabel()}">매우 낮음</span>
+                                    </div>
+                                </div>
+                                <div class="ads-card__metric ads-card__metric--probability">
+                                    <div class="ads-card__metric-label">광고가 뜰 확률</div>
+                                    <div class="ads-card__metric-value">
+                                        <span class="badge ads-probability-badge"
+                                              th:classappend="${placement.hasPositiveProbability()} ? ' ads-probability-badge--active' : ' ads-probability-badge--muted'"
+                                              th:text="${placement.probabilityLabel()}">0%</span>
+                                    </div>
+                                </div>
+                            </div>
+                            <div class="ads-card__meta">
+                                <div class="ads-card__meta-label">진행 기간</div>
+                                <div class="fw-semibold" th:text="${placement.periodLabel()}">2025.01.01 ~ 2025.01.31</div>
+                            </div>
+                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
+                                <form th:if="${placement.canToggle()}" th:action="@{/ads/placements/toggle}"
+                                      method="post" class="ads-card__action-form">
+                                    <input type="hidden" name="id" th:value="${placement.id()}">
+                                    <input type="hidden" name="enabled" th:value="${!placement.enabled()}">
+                                    <button type="submit" class="btn btn-sm"
+                                            th:classappend="${placement.enabled()} ? ' btn-outline-warning' : ' btn-outline-success'"
+                                            th:onclick="${placement.enabled()} ? 'return confirm(\'이 스케줄을 일시 중지하면 광고가 노출되지 않습니다. 계속하시겠습니까?\');' : 'return confirm(\'이 스케줄을 다시 활성화합니다.\');'">
+                                        <span th:text="${placement.enabled() ? '일시 중지' : '다시 활성화'}">일시 중지</span>
+                                    </button>
+                                </form>
+                                <a class="btn btn-sm btn-outline-primary"
+                                   th:href="@{/ads/placements/edit(id=${placement.id()})}">수정</a>
+                                <form th:action="@{/ads/placements/delete}" method="post" class="ads-card__action-form">
+                                    <input type="hidden" name="id" th:value="${placement.id()}">
+                                    <button type="submit" class="btn btn-sm btn-outline-danger"
+                                            th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
+                                        삭제
+                                    </button>
+                                </form>
+                            </div>
+                        </div>
+                    </article>
+                </div>
+            </div>
+
+            <div class="mt-3" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
+                <a class="btn btn-outline-primary w-100" th:href="@{/ads/slots/new}">
+                    <i class="bi bi-plus-circle me-1"></i>
+                    <span>새 광고 위치 추가</span>
+                </a>
+            </div>
+        </div>
+
+        <div class="modal fade" id="fallbackRatioModal" tabindex="-1" aria-hidden="true"
+             th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
+            <div class="modal-dialog modal-dialog-centered">
+                <div class="modal-content">
+                    <form th:action="@{/ads/slots/edit}" method="post" class="needs-validation" novalidate>
+                        <div class="modal-header">
+                            <h5 class="modal-title">기본 광고 표시 확률 수정</h5>
+                            <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                        </div>
+                        <div class="modal-body">
+                            <input type="hidden" name="id">
+                            <input type="hidden" name="description">
+                            <input type="hidden" name="ttlSeconds">
+                            <input type="hidden" name="redirectTab" value="schedule">
+                            <div class="mb-3">
+                                <label class="form-label text-muted small">광고 위치</label>
+                                <div class="fw-semibold fallback-slot-code">-</div>
+                                <div class="text-muted small fallback-slot-description"></div>
+                            </div>
+                            <div class="mb-3">
+                                <label for="fallbackRatioInput" class="form-label">기본 광고 표시 확률 (%)</label>
+                                <input type="number" class="form-control" id="fallbackRatioInput" name="fallbackRatio"
+                                       min="0" max="100" step="1" required>
+                                <div class="form-text">현재 설정값: <span class="fallback-current-ratio">0%</span></div>
+                                <div class="invalid-feedback">0에서 100 사이의 값을 입력하세요.</div>
+                            </div>
+                        </div>
+                        <div class="modal-footer">
+                            <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                            <button type="submit" class="btn btn-primary">저장</button>
+                        </div>
+                    </form>
+                </div>
+            </div>
+        </div>
+
+        <script th:inline="javascript">
+        document.addEventListener('DOMContentLoaded', function () {
+            var fallbackModal = document.getElementById('fallbackRatioModal');
+            if (!fallbackModal) {
+                return;
+            }
+            fallbackModal.addEventListener('show.bs.modal', function (event) {
+                var trigger = event.relatedTarget;
+                if (!trigger) {
+                    return;
+                }
+
+                var slotId = trigger.getAttribute('data-slot-id');
+                var slotCode = trigger.getAttribute('data-slot-code');
+                var fallbackRatio = trigger.getAttribute('data-fallback-ratio');
+                var slotDescription = trigger.getAttribute('data-slot-description') || '';
+                var slotTtl = trigger.getAttribute('data-slot-ttl') || '0';
+
+                var idInput = fallbackModal.querySelector('input[name="id"]');
+                var ratioInput = fallbackModal.querySelector('input[name="fallbackRatio"]');
+                var descriptionInput = fallbackModal.querySelector('input[name="description"]');
+                var ttlInput = fallbackModal.querySelector('input[name="ttlSeconds"]');
+                if (idInput) {
+                    idInput.value = slotId || '';
+                }
+                if (ratioInput) {
+                    ratioInput.value = fallbackRatio || '';
+                }
+                if (descriptionInput) {
+                    descriptionInput.value = slotDescription;
+                }
+                if (ttlInput) {
+                    ttlInput.value = slotTtl;
+                }
+
+                var codeLabel = fallbackModal.querySelector('.fallback-slot-code');
+                if (codeLabel) {
+                    codeLabel.textContent = slotCode || '-';
+                }
+
+                var descriptionLabel = fallbackModal.querySelector('.fallback-slot-description');
+                if (descriptionLabel) {
+                    descriptionLabel.textContent = slotDescription || '설명이 없습니다.';
+                }
+
+                var currentRatioLabel = fallbackModal.querySelector('.fallback-current-ratio');
+                if (currentRatioLabel) {
+                    var ratioNumber = Number(fallbackRatio);
+                    currentRatioLabel.textContent = Number.isFinite(ratioNumber)
+                        ? Math.round(ratioNumber) + '%'
+                        : '-';
+                }
+            });
+        });
+        </script>
+
+    </div>
+</th:block>
+</html>
+
+
+// ===== resources/templates/ads/placement-form.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+
+    <div class="ads-page ads-form-page">
+        <div class="card card-elevated ads-form-card">
+            <div class="card-header card-header-tight ads-form-card__header">
+                <h1 class="h5 mb-0" th:text="${form.isEdit()} ? '스케줄 수정' : '새 스케줄 등록'">새 스케줄 등록</h1>
+            </div>
+            <div class="card-body card-body-comfy ads-form-card__body">
+                <form th:action="${form.isEdit()} ? @{/ads/placements/edit} : @{/ads/placements}" method="post" class="vstack gap-4">
+                    <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.isEdit()}">
+
+                    <div>
+                        <label for="placementAdId" class="form-label">광고 선택</label>
+                        <select id="placementAdId" name="adId" class="form-select" required th:disabled="${form.isEdit()}">
+                            <option value="" th:selected="${form.adId() == null}">광고를 선택하세요</option>
+                            <option th:each="ad : ${adOptions}" th:value="${ad.id()}"
+                                    th:selected="${ad.id() == form.adId()}"
+                                    th:text="${ad.name()}">광고</option>
+                        </select>
+                        <div class="form-text" th:if="${form.isEdit()}">광고는 수정할 수 없습니다. 새 스케줄을 등록하세요.</div>
+                    </div>
+
+                    <div>
+                        <label for="placementSlotId" class="form-label">광고 위치 선택</label>
+                        <select id="placementSlotId" name="slotId" class="form-select" required>
+                            <option value="" th:selected="${form.slotId() == null}">광고 위치를 선택하세요</option>
+                            <option th:each="slot : ${slotOptions}" th:value="${slot.id()}"
+                                    th:selected="${slot.id() == form.slotId()}"
+                                    th:text="${slot.code()}">광고 위치</option>
+                        </select>
+                    </div>
+
+                    <div class="row g-3">
+                        <div class="col-12 col-md-6">
+                            <label for="startDate" class="form-label">진행 기간</label>
+                            <input type="date" class="form-control" id="startDate" name="startDate"
+                                   th:value="${form.startDate()}" required>
+                            <div class="form-text">시작일</div>
+                        </div>
+                        <div class="col-12 col-md-6">
+                            <label class="form-label invisible">종료일</label>
+                            <input type="date" class="form-control" id="endDate" name="endDate"
+                                   th:value="${form.endDate()}" required>
+                            <div class="form-text">종료일</div>
+                        </div>
+                    </div>
+
+                    <div class="row g-4 align-items-center">
+                        <div class="col-12 col-lg-8">
+                            <label class="form-label d-block">우선순위</label>
+                            <div class="btn-group ads-weight-group" role="group" aria-label="우선순위 선택">
+                                <input type="radio" class="btn-check" name="weight" id="weight1" value="1"
+                                       th:checked="${form.weight() == null or form.weight() == 1}" required>
+                                <label class="btn btn-outline-primary" for="weight1">매우 낮음</label>
+
+                                <input type="radio" class="btn-check" name="weight" id="weight2" value="2"
+                                       th:checked="${form.weight() == 2}">
+                                <label class="btn btn-outline-primary" for="weight2">낮음</label>
+
+                                <input type="radio" class="btn-check" name="weight" id="weight3" value="3"
+                                       th:checked="${form.weight() == 3}">
+                                <label class="btn btn-outline-primary" for="weight3">보통</label>
+
+                                <input type="radio" class="btn-check" name="weight" id="weight4" value="4"
+                                       th:checked="${form.weight() == 4}">
+                                <label class="btn btn-outline-primary" for="weight4">높음</label>
+
+                                <input type="radio" class="btn-check" name="weight" id="weight5" value="5"
+                                       th:checked="${form.weight() == 5}">
+                                <label class="btn btn-outline-primary" for="weight5">매우 높음</label>
+                            </div>
+                            <div class="form-text">우선순위가 높을수록 화면에 등장하는 빈도가 늘어납니다.</div>
+                        </div>
+                        <div class="col-12 col-lg-4">
+                            <label for="enabledSwitch" class="form-label">진행 상태</label>
+                            <div class="form-check form-switch ads-status-switch">
+                                <input class="form-check-input" type="checkbox" role="switch" id="enabledSwitch" name="enabled"
+                                       value="true" th:checked="${form.enabled() == null or form.enabled()}">
+                                <label class="form-check-label" for="enabledSwitch">진행 중으로 유지</label>
+                            </div>
+                            <div class="form-text">꺼짐으로 전환하면 이 스케줄이 즉시 일시 중지됩니다.</div>
+                        </div>
+                    </div>
+
+                    <div class="d-flex justify-content-end gap-2 ads-form-actions">
+                        <a class="btn btn-outline-secondary" th:href="@{/ads(tab='schedule')}">취소</a>
+                        <button type="submit" class="btn btn-primary">저장</button>
+                    </div>
+                </form>
+            </div>
+        </div>
+    </div>
+    </div>
+</th:block>
+</html>
+
+
+
+
+// ===== resources/templates/ads/slot-form.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+
+    <div class="ads-page ads-form-page">
+        <div class="card card-elevated ads-form-card">
+            <div class="card-header card-header-tight ads-form-card__header">
+                <h1 class="h5 mb-0" th:text="${form.isEdit()} ? '광고 위치 수정' : '새 광고 위치 추가'">새 광고 위치 추가</h1>
+            </div>
+            <div class="card-body card-body-comfy ads-form-card__body">
+                <form th:action="${form.isEdit()} ? @{/ads/slots/edit} : @{/ads/slots}" method="post" class="vstack gap-4" id="slotForm">
+                <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.isEdit()}">
+
+                <div>
+                    <label for="slotCode" class="form-label">광고 위치 코드</label>
+                    <input type="text" class="form-control" id="slotCode" name="code"
+                           th:value="${form.code()}" th:readonly="${form.isEdit()}" required>
+                    <div class="form-text">예: HOME_TOP, COLLECTION_DETAIL_RIGHT 등</div>
+                </div>
+
+                <div>
+                    <label for="slotDescription" class="form-label">광고 위치 설명</label>
+                    <textarea class="form-control" id="slotDescription" name="description" rows="4"
+                              th:text="${form.description()}"></textarea>
+                </div>
+
+                <div>
+                    <label for="fallbackRatioInput" class="form-label">기본 광고 표시 확률(%)</label>
+                    <div class="row g-2 align-items-center ads-slider-group">
+                        <div class="col-12 col-md">
+                            <input type="range" class="form-range" min="0" max="100" step="1"
+                                   id="fallbackRatioInput" th:value="${form.fallbackRatioPercent() != null ? form.fallbackRatioPercent() : 0}">
+                        </div>
+                        <div class="col-4 col-md-auto">
+                            <div class="input-group">
+                                <input type="number" class="form-control" id="fallbackRatioNumber" name="fallbackRatio" min="0" max="100" step="1"
+                                       th:value="${form.fallbackRatioPercent() != null ? form.fallbackRatioPercent() : 0}" required>
+                                <span class="input-group-text">%</span>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+
+                <div>
+                    <label for="ttlSeconds" class="form-label">같은 광고 유지 시간(초)</label>
+                    <input type="number" class="form-control" id="ttlSeconds" name="ttlSeconds" min="0"
+                           th:value="${form.ttlSeconds() != null ? form.ttlSeconds() : 60}" required>
+                </div>
+
+                <div class="d-flex justify-content-end gap-2 ads-form-actions">
+                    <a class="btn btn-outline-secondary" th:href="@{/ads(tab='schedule')}">취소</a>
+                    <button type="submit" class="btn btn-primary">저장</button>
+                </div>
+            </form>
+        </div>
+        </div>
+    </div>
+
+    <script>
+        document.addEventListener('DOMContentLoaded', function () {
+            var rangeInput = document.getElementById('fallbackRatioInput');
+            var numberInput = document.getElementById('fallbackRatioNumber');
+            if (!rangeInput || !numberInput) {
+                return;
+            }
+            var syncFromRange = function () {
+                numberInput.value = rangeInput.value;
+            };
+            var syncFromNumber = function () {
+                var value = Number(numberInput.value);
+                if (Number.isNaN(value)) {
+                    value = 0;
+                }
+                value = Math.min(100, Math.max(0, value));
+                numberInput.value = value;
+                rangeInput.value = value;
+            };
+            rangeInput.addEventListener('input', syncFromRange);
+            numberInput.addEventListener('input', syncFromNumber);
+            syncFromNumber();
+        });
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/auth/login.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<head th:replace="~{fragments/_head :: head('새록 어드민 로그인')}"></head>
+<body class="login-page">
+
+<!--
+  풀 블리드 사진을 배경으로 깔고(Unsplash Random Bird),
+  상단은 타이틀 오버레이, 하단은 버튼/저작자 오버레이(그라데이션)로 중앙 사진을 선명하게.
+  최초 진입 시점의 뷰포트 비율로 orientation을 결정하여 단 한 장만 요청한다.
+-->
+
+<div class="login-shell">
+    <!-- Background visual (full-bleed) -->
+    <aside class="login-visual" aria-hidden="false">
+        <a id="photoLink" class="login-visual__image-link" href="#" target="_blank" rel="noopener">
+            <img id="loginPhoto" class="login-visual__image" alt="" decoding="async">
+        </a>
+        <div class="login-visual__scrim"></div>
+        <p class="login-visual__credit small mb-0" hidden>
+            <span>사진을 불러오는 중…</span>
+        </p>
+    </aside>
+
+    <!-- Top overlay: title area (dark→transparent) -->
+    <header class="overlay-header">
+        <div class="overlay-header__scrim"></div>
+        <div class="overlay-header__content">
+            <img class="overlay-logo"
+                 th:src="@{/images/saerok-admin-icon.png}"
+                 src="/images/saerok-admin-icon.png"
+                 alt="새록 어드민 로고"
+                 decoding="async">
+            <div class="d-flex align-items-center gap-2 flex-wrap">
+                <h1 class="overlay-title fw-bold mb-0 text-white">새록 어드민</h1>
+                <span class="environment-badge"
+                      th:if="${environmentProfileBadge != null}"
+                      th:classappend="' ' + ${environmentProfileBadge.cssClass}"
+                      th:text="${environmentProfileBadge.label}">환경</span>
+            </div>
+            <p class="overlay-subtitle text-white-50 small mb-0 mt-1">로그인 페이지</p>
+        </div>
+    </header>
+
+    <!-- Bottom overlay: attribution + buttons (transparent→dark) -->
+    <footer class="overlay-actions">
+        <div class="overlay-actions__scrim"></div>
+
+        <!-- Login error banner (glass alert) -->
+        <div class="overlay-actions__error"
+             th:if="${param.error}"
+             th:with="err=${#strings.toString(param.error[0])}">
+            <div class="alert alert-dismissible fade show alert-login"
+                 th:classappend="${err == 'state' or err == 'session'} ? ' alert-warning'
+                       : (${err} == 'callback' ? ' alert-info' : ' alert-danger')"
+                 role="alert">
+                <!-- 아이콘: 삼항 대신 조건 분기 -->
+                <i class="bi bi-info-circle-fill me-2" th:if="${err == 'callback'}"></i>
+                <i class="bi bi-exclamation-triangle-fill me-2" th:if="${err == 'state' or err == 'session'}"></i>
+                <i class="bi bi-x-octagon-fill me-2"
+                   th:if="${err != 'callback' and err != 'state' and err != 'session'}"></i>
+
+                <!-- 메시지 본문 -->
+                <span th:switch="${err}">
+                  <span th:case="'state'">보안 검증에 실패했습니다. 새로고침 후 다시 로그인해주세요.</span>
+                  <span th:case="'callback'">필수 인증 정보가 누락되었습니다. 창/앱을 닫았다면 다시 시도해주세요.</span>
+                  <span th:case="'session'">세션이 만료되었습니다. 다시 로그인해주세요.</span>
+                  <span th:case="'login'">
+                    <span th:if="${param.message}" th:text="${param.message[0]}">로그인 중 오류가 발생했습니다. 다시 시도해주세요.</span>
+                    <span th:unless="${param.message}">로그인 중 오류가 발생했습니다. 다시 시도해주세요.</span>
+                  </span>
+                  <span th:case="*">로그인에 실패했습니다. 다시 시도해주세요.</span>
+                </span>
+
+                <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="닫기"></button>
+            </div>
+        </div>
+
+
+        <!-- Unsplash attribution -->
+        <div id="attributionOverlay" class="overlay-actions__attr small text-white-75">
+            <span>사진을 불러오는 중…</span>
+        </div>
+
+        <!-- Buttons -->
+        <div class="overlay-actions__buttons">
+            <a th:href="${kakaoAuthUrl}"
+               class="btn btn-lg w-100 d-flex align-items-center justify-content-center gap-2"
+               role="button"
+               style="background-color: #FEE500; color: #191600;"
+               aria-label="카카오 계정으로 로그인">
+                <img th:src="@{/images/kakao-symbol.svg}" src="/images/kakao-symbol.svg" alt="카카오 심볼" width="20"
+                     height="20">
+                <span class="fw-semibold">카카오로 로그인</span>
+            </a>
+
+            <div class="tooltip-wrapper w-100"
+                 data-bs-toggle="tooltip"
+                 data-bs-placement="top"
+                 data-bs-title="추후 제공 예정인 기능">
+                <button type="button"
+                        class="btn btn-lg w-100 d-flex align-items-center justify-content-center gap-2 upcoming-feature"
+                        style="background-color: #000000; color: #ffffff;"
+                        aria-disabled="true" disabled>
+                    <i class="bi bi-apple fs-4" aria-hidden="true"></i>
+                    <span class="fw-semibold">Sign in with Apple</span>
+                </button>
+            </div>
+        </div>
+
+        <div class="overlay-actions__safe"></div>
+    </footer>
+</div>
+
+<th:block th:replace="~{fragments/_scripts :: scripts}"></th:block>
+
+<script>
+    const imgEl = document.getElementById('loginPhoto');
+    const linkEl = document.getElementById('photoLink');
+    const attrEl = document.getElementById('attributionOverlay');
+
+    // imgix(Unsplash CDN) 파라미터: 화면 크기에 맞춰 다운샘플 + entropy 크롭
+    function buildSmartUrl(base, w, h) {
+        try {
+            const u = new URL(base);
+            u.searchParams.set('w', Math.round(w));
+            u.searchParams.set('h', Math.round(h));
+            u.searchParams.set('q', '80');
+            u.searchParams.set('auto', 'format');
+            u.searchParams.set('fit', 'crop');
+            u.searchParams.set('crop', 'entropy');
+            return u.toString();
+        } catch {
+            return base;
+        }
+    }
+
+    function renderImage(baseUrl) {
+        if (!baseUrl) return;
+        const rect = document.querySelector('.login-visual').getBoundingClientRect();
+        const dpr = Math.min(2, window.devicePixelRatio || 1);
+        const w = rect.width * dpr;
+        const h = rect.height * dpr;
+        imgEl.src = buildSmartUrl(baseUrl, w, h);
+    }
+
+    function pickInitialOrientation() {
+        // 순수 뷰포트 비율로 결정: 가로가 크면 landscape, 아니면 portrait
+        const ratio = (window.innerWidth || document.documentElement.clientWidth) /
+            (window.innerHeight || document.documentElement.clientHeight);
+        return ratio >= 1 ? 'landscape' : 'portrait';
+    }
+
+    async function loadRandomBirdViaProxy() {
+        try {
+            const orientation = pickInitialOrientation();
+            const res = await fetch('/public/unsplash/random-bird?orientation=' + orientation, {cache: 'no-store'});
+            if (!res.ok) throw new Error('Proxy request failed: ' + res.status);
+            const photo = await res.json(); // { imageUrl, htmlLink, photographerName, photographerLink, unsplashHome }
+
+            // 클릭 시 Unsplash 사진 페이지로 이동 (가이드라인 준수)
+            linkEl.href = photo.htmlLink;
+
+            // 저작자/Unsplash 표기 (가이드라인 준수)
+            const creditHtml = `Photo by <a href="${photo.photographerLink || photo.unsplashHome || 'https://unsplash.com'}" target="_blank" rel="noopener">`
+                + `${photo.photographerName || 'Unknown'}</a> on `
+                + `<a href="${photo.unsplashHome || 'https://unsplash.com'}" target="_blank" rel="noopener">Unsplash</a>`;
+            attrEl.innerHTML = creditHtml;
+
+            // 최초 한 장만 요청 → 이후에는 재요청 없이 화면 크기에 맞춰 리렌더만 수행
+            renderImage(photo.imageUrl);
+
+            // 리사이즈/회전 시 품질 유지용 리렌더(재요청 없음)
+            const base = photo.imageUrl;
+            const ro = new ResizeObserver(() => renderImage(base));
+            ro.observe(document.querySelector('.login-visual'));
+            window.addEventListener('orientationchange', () => setTimeout(() => renderImage(base), 250));
+            window.addEventListener('resize', () => {
+                clearTimeout(window.__saerok_login_resize_timer);
+                window.__saerok_login_resize_timer = setTimeout(() => renderImage(base), 120);
+            });
+        } catch (e) {
+            console.warn(e);
+            attrEl.textContent = '이미지를 불러오지 못했습니다.';
+        }
+    }
+
+    document.addEventListener('DOMContentLoaded', loadRandomBirdViaProxy);
+
+    // 툴팁 초기화
+    document.addEventListener('DOMContentLoaded', function () {
+        if (!window.bootstrap || !window.bootstrap.Tooltip) return;
+        document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
+            var existing = window.bootstrap.Tooltip.getInstance(triggerEl);
+            if (existing) existing.dispose();
+            new window.bootstrap.Tooltip(triggerEl, {
+                trigger: 'hover focus',
+                delay: {show: 0, hide: 100},
+                customClass: 'tooltip-bubble'
+            });
+        });
+    });
+</script>
+
+<style>
+    :root {
+        --panel-bg: rgba(248, 250, 252, .80);
+        --panel-border: rgba(255, 255, 255, .28);
+        --panel-shadow: 0 20px 40px rgba(15, 23, 42, .25);
+        --scrim-top: rgba(0, 0, 0, .70);
+        --scrim-mid: rgba(0, 0, 0, .28);
+        --scrim-btm: rgba(0, 0, 0, .74);
+    }
+
+    .login-page {
+        min-height: 100dvh;
+        background: #0b1220;
+        overflow: hidden;
+    }
+
+    .login-shell {
+        position: relative;
+        min-height: 100dvh;
+    }
+
+    /* Background (full-bleed) */
+    .login-visual {
+        position: absolute;
+        inset: 0;
+        z-index: 0;
+        overflow: hidden;
+        background: #0b1220;
+    }
+
+    .login-visual__image-link, .login-visual__image {
+        display: block;
+        width: 100%;
+        height: 100%;
+    }
+
+    .login-visual__image {
+        object-fit: cover;
+    }
+
+    .login-visual__scrim {
+        position: absolute;
+        inset: 0;
+        pointer-events: none;
+        background: linear-gradient(180deg, var(--scrim-top) 0%, rgba(0, 0, 0, 0) 32%, rgba(0, 0, 0, 0) 68%, var(--scrim-btm) 100%);
+    }
+
+    .login-visual__credit {
+        display: none;
+    }
+
+    /* Top overlay: title */
+    .overlay-header {
+        position: fixed;
+        z-index: 2;
+        inset: 0 0 auto 0;
+        padding: max(1.25rem, env(safe-area-inset-top)) 1.25rem .75rem;
+        pointer-events: none;
+    }
+
+    .overlay-header__scrim {
+        position: absolute;
+        inset: 0 0 auto 0;
+        height: 32dvh;
+        pointer-events: none;
+        background: linear-gradient(180deg, var(--scrim-top) 0%, var(--scrim-mid) 55%, rgba(0, 0, 0, 0) 100%);
+    }
+
+    .overlay-header__content {
+        position: relative;
+        z-index: 1;
+        pointer-events: auto;
+        max-width: min(960px, 80vw);
+    }
+
+    .overlay-logo {
+        width: 56px;
+        height: 56px;
+        display: inline-block;
+        margin-bottom: .5rem;
+    }
+
+    .overlay-title {
+        font-size: clamp(1.5rem, 2.8vw, 2.25rem);
+    }
+
+    .overlay-subtitle {
+        font-size: clamp(.85rem, 1.4vw, .95rem);
+    }
+
+    /* Bottom overlay: attribution + buttons */
+    .overlay-actions {
+        position: fixed;
+        z-index: 2;
+        inset: auto 0 0 0;
+        padding: 0 1.25rem max(1.25rem, env(safe-area-inset-bottom));
+        pointer-events: none;
+        display: flex;
+        flex-direction: column;
+        gap: .75rem;
+    }
+
+    .overlay-actions__scrim {
+        position: absolute;
+        inset: auto 0 0 0;
+        height: 40dvh;
+        pointer-events: none;
+        background: linear-gradient(0deg, var(--scrim-btm) 0%, var(--scrim-mid) 55%, rgba(0, 0, 0, 0) 100%);
+    }
+
+    .overlay-actions__error {
+        position: relative;
+        z-index: 1;
+        pointer-events: auto;
+    }
+
+    /* Glassy alert on dark background */
+    .alert-login {
+        backdrop-filter: saturate(140%) blur(8px);
+        -webkit-backdrop-filter: saturate(140%) blur(8px);
+        border: 1px solid rgba(255, 255, 255, .22);
+        border-radius: .8rem;
+        box-shadow: 0 10px 28px rgba(0, 0, 0, .28);
+        color: #fff;
+    }
+
+    .alert-login.alert-danger {
+        background: rgba(220, 38, 38, .90);
+    }
+
+    .alert-login.alert-warning {
+        background: rgba(234, 179, 8, .92);
+        color: #0b0b0b;
+    }
+
+    .alert-login.alert-info {
+        background: rgba(59, 130, 246, .92);
+    }
+
+    .overlay-actions__attr {
+        position: relative;
+        z-index: 1;
+        pointer-events: auto;
+        color: #fff;
+        text-shadow: 0 1px 1px rgba(0, 0, 0, .6);
+    }
+
+    .overlay-actions__attr a {
+        color: #fff;
+        text-decoration: underline;
+    }
+
+    .overlay-actions__buttons {
+        position: relative;
+        z-index: 1;
+        pointer-events: auto;
+        display: grid;
+        gap: .75rem;
+        width: 100%;
+        max-width: min(600px, 92vw);
+        margin-inline: auto;
+    }
+
+    .overlay-actions__safe {
+        height: .25rem;
+        position: relative;
+        z-index: 1;
+    }
+
+    @media (min-width: 992px) {
+        .overlay-header {
+            padding: max(1.75rem, env(safe-area-inset-top)) 2rem 1rem;
+        }
+
+        .overlay-header__scrim {
+            height: 34dvh;
+        }
+
+        .overlay-logo {
+            width: 64px;
+            height: 64px;
+        }
+
+        .overlay-title {
+            font-size: clamp(1.75rem, 2.2vw, 2.5rem);
+        }
+
+        .overlay-subtitle {
+            font-size: clamp(.9rem, 1vw, 1rem);
+        }
+
+        .overlay-actions {
+            padding: 0 2rem max(2rem, env(safe-area-inset-bottom));
+        }
+
+        .overlay-actions__scrim {
+            height: 42dvh;
+        }
+
+        .overlay-actions__buttons {
+            max-width: 640px;
+        }
+    }
+
+    @media (max-height: 640px) {
+        .overlay-header__scrim {
+            height: 28dvh;
+        }
+
+        .overlay-actions__scrim {
+            height: 44dvh;
+        }
+    }
+</style>
+
+</body>
+</html>
+
+
+// ===== resources/templates/collections/detail.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="row g-4">
+            <div class="col-12 col-lg-8">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <div class="d-flex align-items-center mb-3">
+                            <img th:src="${detail.avatarUrl()}" alt="작성자" class="rounded-circle me-3" width="56" height="56">
+                            <div>
+                                <h2 class="h5 mb-0" th:text="${detail.author()}">솔바람</h2>
+                                <div class="text-muted small">작성 <span th:text="${#temporals.format(detail.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01</span> · 업데이트 <span th:text="${#temporals.format(detail.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.02</span></div>
+                            </div>
+                        </div>
+                        <div class="d-flex align-items-center gap-2 mb-4">
+                            <span class="badge rounded-pill" th:classappend="${detail.status()} == '공개' ? ' text-bg-success' : (${detail.status()} == '비공개' ? ' text-bg-secondary' : ' text-bg-danger')"
+                                  th:text="${detail.status()}">공개</span>
+                            <span class="badge text-bg-light"><i class="bi bi-flag me-1 text-danger"></i>신고 <span th:text="${detail.reportCount()}">3</span>건</span>
+                            <span class="badge text-bg-light" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
+                        </div>
+                        <div class="bg-light rounded-4 p-4 lh-lg" th:text="${detail.content()}">본문 내용</div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-lg-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">빠른 조치</h3>
+                        <div class="d-grid gap-2">
+                            <button class="btn btn-primary" data-bs-toggle="modal" data-bs-target="#statusModal">상태 변경</button>
+                            <button class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteModal">새록 삭제</button>
+                            <button class="btn btn-outline-secondary" data-bs-toggle="modal" data-bs-target="#notifyModal">작성자 알림</button>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">활동 요약</h3>
+                        <ul class="list-unstyled small text-muted mb-0">
+                            <li class="mb-2"><i class="bi bi-journal-text me-2 text-primary"></i>등록 새록 48건</li>
+                            <li class="mb-2"><i class="bi bi-chat-square-text me-2 text-success"></i>댓글 126건</li>
+                            <li><i class="bi bi-flag me-2 text-danger"></i>누적 신고 5건</li>
+                        </ul>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div class="modal fade" id="statusModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">상태 변경</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong th:text="${detail.author()}">솔바람</strong>님의 새록 상태를 변경합니다.</p>
+                        <select class="form-select">
+                            <option>공개</option>
+                            <option>비공개</option>
+                            <option>차단</option>
+                        </select>
+                        <div class="mt-3">
+                            <label class="form-label">조치 메모</label>
+                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">저장</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="deleteModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">새록 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p>새록 <strong th:text="${'#' + detail.id()}">#872</strong>를 삭제하시겠습니까? 삭제 시 본문은 비공개 처리됩니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="notifyModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">작성자 알림</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong th:text="${detail.author()}">솔바람</strong>님에게 발송할 메시지를 작성하세요.</p>
+                        <textarea class="form-control" rows="4" placeholder="안내 메시지"></textarea>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">알림 발송</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </th:block>
+</html>
+
+
+// ===== resources/templates/collections/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <form class="row g-3 align-items-end" method="get">
+                    <div class="col-md-4">
+                        <label class="form-label small text-uppercase text-muted" for="collectionQuery">검색어</label>
+                        <input type="search" class="form-control" id="collectionQuery" name="q" placeholder="작성자 또는 내용" th:value="${query}">
+                    </div>
+                    <div class="col-md-3">
+                        <label class="form-label small text-uppercase text-muted" for="collectionStatus">상태</label>
+                        <select class="form-select" id="collectionStatus" name="status">
+                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2 d-flex gap-2">
+                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
+                        <a th:href="@{/collections}" class="btn btn-outline-secondary">초기화</a>
+                    </div>
+                </form>
+            </div>
+        </div>
+        <div class="d-flex justify-content-between align-items-center mb-3">
+            <div class="d-flex align-items-center gap-2">
+                <div class="form-check">
+                    <input class="form-check-input" type="checkbox" id="selectAllCollections">
+                    <label class="form-check-label" for="selectAllCollections">전체 선택</label>
+                </div>
+                <button class="btn btn-sm btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#bulkDeleteModal">선택 삭제</button>
+            </div>
+            <p class="mb-0 text-muted small">총 <strong th:text="${totalElements}">184</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">9</span> 페이지</p>
+        </div>
+        <div class="card card-elevated">
+            <div class="table-responsive table-shell">
+                <table class="table table-modern align-middle table-hover">
+                    <thead>
+                    <tr>
+                        <th><input class="form-check-input" type="checkbox" id="selectAllCollectionsHead"></th>
+                        <th>ID</th>
+                        <th>작성자</th>
+                        <th>본문 요약</th>
+                        <th>상태</th>
+                        <th>신고 수</th>
+                        <th>생성일</th>
+                        <th class="text-end">액션</th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr th:each="collection : ${collections}" th:data-collection-id="${collection.id()}">
+                        <td><input class="form-check-input collection-checkbox" type="checkbox" th:value="${collection.id()}"></td>
+                        <td class="fw-semibold" th:text="${'#' + collection.id()}">#872</td>
+                        <td th:text="${collection.author()}">솔바람</td>
+                        <td>
+                            <div class="fw-semibold" th:text="${collection.excerpt()}">초여름 갈대밭 풍경과 관찰 기록</div>
+                        </td>
+                        <td>
+                            <span class="badge rounded-pill" th:classappend="${collection.status()} == '공개' ? ' text-bg-success' : (${collection.status()} == '비공개' ? ' text-bg-secondary' : ' text-bg-danger')"
+                                  th:text="${collection.status()}">공개</span>
+                        </td>
+                        <td>
+                            <span class="badge text-bg-light" th:text="${collection.reportCount()}">3</span>
+                        </td>
+                        <td th:text="${#temporals.format(collection.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 09:10</td>
+                        <td class="text-end">
+                            <div class="btn-group btn-group-sm">
+                                <a th:href="@{'/collections/' + ${collection.id()}}" class="btn btn-outline-secondary">상세</a>
+                                <button class="btn btn-outline-primary" type="button" data-bs-toggle="modal" data-bs-target="#statusModal"
+                                        th:attr="data-collection='새록 #' + ${collection.id()}">상태 변경</button>
+                                <button class="btn btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#singleDeleteModal"
+                                        th:attr="data-collection='새록 #' + ${collection.id()}">삭제</button>
+                            </div>
+                        </td>
+                    </tr>
+                    </tbody>
+                </table>
+            </div>
+            <div class="card-footer bg-white border-0 py-3">
+                <ul class="pagination pagination-sm justify-content-end mb-0">
+                    <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
+                        <a class="page-link" th:href="@{/collections(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
+                    </li>
+                    <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
+                        <a class="page-link" th:text="${pageNum}" th:href="@{/collections(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
+                    </li>
+                    <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
+                        <a class="page-link" th:href="@{/collections(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
+                    </li>
+                </ul>
+            </div>
+        </div>
+
+        <div class="modal fade" id="bulkDeleteModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">선택 항목 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p>선택한 <strong id="bulkDeleteCount">0</strong>개의 새록을 삭제하시겠습니까?</p>
+                        <p class="small text-muted mb-0">삭제 시 신고 기록은 유지되지만 본문은 비공개 처리됩니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="singleDeleteModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">새록 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="singleDeleteTarget">새록</strong>을 삭제하시겠습니까?</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="statusModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">상태 변경</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="statusTarget">새록</strong>의 상태를 변경합니다.</p>
+                        <select class="form-select">
+                            <option value="공개">공개</option>
+                            <option value="비공개">비공개</option>
+                            <option value="차단">차단</option>
+                        </select>
+                        <div class="mt-3">
+                            <label class="form-label">메모</label>
+                            <textarea class="form-control" rows="3" placeholder="조치 사유를 입력하세요."></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">저장</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    <script>
+    const checkboxes = document.querySelectorAll('.collection-checkbox');
+    const selectAll = document.getElementById('selectAllCollections');
+    const selectAllHead = document.getElementById('selectAllCollectionsHead');
+    const bulkCount = document.getElementById('bulkDeleteCount');
+
+    function updateBulkCount() {
+        const count = Array.from(checkboxes).filter(cb => cb.checked).length;
+        if (bulkCount) {
+            bulkCount.textContent = count;
+        }
+    }
+
+    function toggleAll(state) {
+        checkboxes.forEach(cb => cb.checked = state);
+        if (selectAll) selectAll.checked = state;
+        if (selectAllHead) selectAllHead.checked = state;
+        updateBulkCount();
+    }
+
+    [selectAll, selectAllHead].forEach(controller => {
+        if (controller) {
+            controller.addEventListener('change', event => toggleAll(event.target.checked));
+        }
+    });
+
+    checkboxes.forEach(cb => cb.addEventListener('change', updateBulkCount));
+
+    const bulkModal = document.getElementById('bulkDeleteModal');
+    if (bulkModal) {
+        bulkModal.addEventListener('show.bs.modal', updateBulkCount);
+    }
+
+    const singleModal = document.getElementById('singleDeleteModal');
+    if (singleModal) {
+        singleModal.addEventListener('show.bs.modal', event => {
+            const button = event.relatedTarget;
+            const target = button ? button.getAttribute('data-collection') : '새록';
+            singleModal.querySelector('#singleDeleteTarget').textContent = target;
+        });
+    }
+
+    const statusModal = document.getElementById('statusModal');
+    if (statusModal) {
+        statusModal.addEventListener('show.bs.modal', event => {
+            const button = event.relatedTarget;
+            const target = button ? button.getAttribute('data-collection') : '새록';
+            statusModal.querySelector('#statusTarget').textContent = target;
+        });
+    }
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/comments/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <form class="row g-3 align-items-end" method="get">
+                    <div class="col-md-4">
+                        <label class="form-label small text-uppercase text-muted" for="commentQuery">검색어</label>
+                        <input type="search" class="form-control" id="commentQuery" name="q" placeholder="작성자 또는 본문" th:value="${query}">
+                    </div>
+                    <div class="col-md-3">
+                        <label class="form-label small text-uppercase text-muted" for="commentStatus">상태</label>
+                        <select class="form-select" id="commentStatus" name="status">
+                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2 d-flex gap-2">
+                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
+                        <a th:href="@{/comments}" class="btn btn-outline-secondary">초기화</a>
+                    </div>
+                </form>
+            </div>
+        </div>
+        <div class="d-flex justify-content-between align-items-center mb-3">
+            <div class="d-flex align-items-center gap-2">
+                <div class="form-check">
+                    <input class="form-check-input" type="checkbox" id="selectAllComments">
+                    <label class="form-check-label" for="selectAllComments">전체 선택</label>
+                </div>
+                <button class="btn btn-sm btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#commentBulkDelete">선택 삭제</button>
+                <button class="btn btn-sm btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#commentBulkHide">선택 숨김</button>
+            </div>
+            <p class="mb-0 text-muted small">총 <strong th:text="${totalElements}">312</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">15</span> 페이지</p>
+        </div>
+        <div class="card card-elevated">
+            <div class="table-responsive table-shell">
+                <table class="table table-modern table-hover align-middle">
+                    <thead>
+                    <tr>
+                        <th><input class="form-check-input" type="checkbox" id="selectAllCommentsHead"></th>
+                        <th>ID</th>
+                        <th>작성자</th>
+                        <th>원글</th>
+                        <th>본문 요약</th>
+                        <th>신고 수</th>
+                        <th>생성일</th>
+                        <th class="text-end">액션</th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr th:each="comment : ${comments}" th:data-comment="${'#' + comment.id()}">
+                        <td><input class="form-check-input comment-checkbox" type="checkbox" th:value="${comment.id()}"></td>
+                        <td class="fw-semibold" th:text="${'#' + comment.id()}">#481</td>
+                        <td th:text="${comment.author()}">솔바람</td>
+                        <td th:text="${'#' + comment.parentId()}">#872</td>
+                        <td>
+                            <div class="fw-semibold" th:text="${comment.excerpt()}">갈대밭의 색감이 정말 아름답네요!</div>
+                        </td>
+                        <td><span class="badge text-bg-light" th:text="${comment.reportCount()}">2</span></td>
+                        <td th:text="${#temporals.format(comment.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 08:10</td>
+                        <td class="text-end">
+                            <div class="btn-group btn-group-sm">
+                                <button class="btn btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#commentHideModal"
+                                        th:attr="data-comment='댓글 ' + ${'#' + comment.id()}">상태 변경</button>
+                                <button class="btn btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#commentDeleteModal"
+                                        th:attr="data-comment='댓글 ' + ${'#' + comment.id()}">삭제</button>
+                            </div>
+                        </td>
+                    </tr>
+                    </tbody>
+                </table>
+            </div>
+            <div class="card-footer bg-white border-0 py-3">
+                <ul class="pagination pagination-sm justify-content-end mb-0">
+                    <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
+                        <a class="page-link" th:href="@{/comments(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
+                    </li>
+                    <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
+                        <a class="page-link" th:text="${pageNum}" th:href="@{/comments(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
+                    </li>
+                    <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
+                        <a class="page-link" th:href="@{/comments(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
+                    </li>
+                </ul>
+            </div>
+        </div>
+
+        <div class="modal fade" id="commentBulkDelete" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">선택 댓글 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p>선택된 <strong id="commentBulkDeleteCount">0</strong>개의 댓글을 삭제하시겠습니까?</p>
+                        <p class="small text-muted mb-0">삭제 시 댓글은 즉시 비공개 처리됩니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCommentBulk">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="commentBulkHide" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">선택 댓글 숨김</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p>선택된 댓글을 숨김 처리하시겠습니까?</p>
+                        <p class="small text-muted mb-0">언제든지 다시 표시할 수 있습니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCommentHide">숨김 처리</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="commentHideModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">댓글 상태 변경</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="commentHideTarget">댓글</strong>을 어떻게 조치하시겠습니까?</p>
+                        <select class="form-select">
+                            <option value="정상">정상</option>
+                            <option value="숨김">숨김</option>
+                            <option value="삭제">삭제</option>
+                        </select>
+                        <div class="mt-3">
+                            <label class="form-label">운영자 메모</label>
+                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCommentHide">저장</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="commentDeleteModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">댓글 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="commentDeleteTarget">댓글</strong>을 삭제하시겠습니까?</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCommentBulk">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    <script>
+    const commentCheckboxes = document.querySelectorAll('.comment-checkbox');
+    const selectAllComments = document.getElementById('selectAllComments');
+    const selectAllCommentsHead = document.getElementById('selectAllCommentsHead');
+    const bulkDeleteCount = document.getElementById('commentBulkDeleteCount');
+
+    function updateCommentBulkCount() {
+        const count = Array.from(commentCheckboxes).filter(cb => cb.checked).length;
+        if (bulkDeleteCount) {
+            bulkDeleteCount.textContent = count;
+        }
+    }
+
+    function toggleCommentAll(state) {
+        commentCheckboxes.forEach(cb => cb.checked = state);
+        if (selectAllComments) selectAllComments.checked = state;
+        if (selectAllCommentsHead) selectAllCommentsHead.checked = state;
+        updateCommentBulkCount();
+    }
+
+    [selectAllComments, selectAllCommentsHead].forEach(controller => {
+        if (controller) {
+            controller.addEventListener('change', event => toggleCommentAll(event.target.checked));
+        }
+    });
+
+    commentCheckboxes.forEach(cb => cb.addEventListener('change', updateCommentBulkCount));
+
+    const hideModal = document.getElementById('commentHideModal');
+    if (hideModal) {
+        hideModal.addEventListener('show.bs.modal', event => {
+            const button = event.relatedTarget;
+            const target = button ? button.getAttribute('data-comment') : '댓글';
+            hideModal.querySelector('#commentHideTarget').textContent = target;
+        });
+    }
+
+    const deleteModal = document.getElementById('commentDeleteModal');
+    if (deleteModal) {
+        deleteModal.addEventListener('show.bs.modal', event => {
+            const button = event.relatedTarget;
+            const target = button ? button.getAttribute('data-comment') : '댓글';
+            deleteModal.querySelector('#commentDeleteTarget').textContent = target;
+        });
+    }
+
+    const bulkDeleteModal = document.getElementById('commentBulkDelete');
+    if (bulkDeleteModal) {
+        bulkDeleteModal.addEventListener('show.bs.modal', updateCommentBulkCount);
+    }
+
+    const bulkHideModal = document.getElementById('commentBulkHide');
+    if (bulkHideModal) {
+        bulkHideModal.addEventListener('show.bs.modal', updateCommentBulkCount);
+    }
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/dashboard/index.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <section class="row g-4 mb-4" th:if="${serviceHealth != null}">
+            <div class="col-12">
+                <div class="alert d-flex align-items-center mb-0"
+                     th:classappend="${serviceHealth.alive()} ? ' alert-success' : ' alert-danger'">
+                    <i class="bi fs-4"
+                       th:classappend="${serviceHealth.alive()} ? ' bi-check-circle-fill' : ' bi-exclamation-octagon-fill'"></i>
+                    <div class="ms-3">
+                        <h2 class="h6 mb-1 fw-semibold">서비스 서버 상태</h2>
+                        <p class="mb-1" th:text="${serviceHealth.message()}">서버가 정상 응답했습니다.</p>
+                        <p class="mb-0 text-muted small"
+                           th:text="${#temporals.format(serviceHealth.checkedAt(), 'yyyy.MM.dd HH:mm:ss')}"
+                        >2024.06.01 12:00:00</p>
+                    </div>
+                </div>
+            </div>
+        </section>
+        <section class="row g-4 mb-4">
+            <div class="col-12 col-xl-4 col-md-6" th:each="metric : ${metrics}">
+                <th:block th:with="metricLink=${metric.linkHref()}">
+                    <a th:if="${metricLink != null}"
+                       th:href="@{${metricLink}}"
+                       class="card card-elevated metric-card metric-card--interactive h-100 text-decoration-none text-reset"
+                       th:aria-label="|${metric.label()} 바로가기|">
+                        <div class="card-body d-flex align-items-center justify-content-between gap-3">
+                            <div>
+                                <div class="text-muted text-uppercase small fw-semibold" th:text="${metric.label()}">오늘 신고</div>
+                                <div class="display-6 fw-bold mt-2" th:text="${metric.value()}">18건</div>
+                                <div class="text-muted small" th:text="${metric.subtitle()}">지난주 대비 +12%</div>
+                            </div>
+                            <div class="bg-opacity-10 rounded-4 p-3"
+                                 th:classappend="${metric.variant() != null ? ' bg-' + metric.variant() + ' text-' + metric.variant() : ' bg-primary text-primary'}">
+                                <i class="bi fs-2" th:classappend="' ' + ${metric.icon()}"></i>
+                            </div>
+                        </div>
+                    </a>
+                    <div th:if="${metricLink == null}" class="card card-elevated metric-card h-100">
+                        <div class="card-body d-flex align-items-center justify-content-between gap-3">
+                            <div>
+                                <div class="text-muted text-uppercase small fw-semibold" th:text="${metric.label()}">오늘 신고</div>
+                                <div class="display-6 fw-bold mt-2" th:text="${metric.value()}">18건</div>
+                                <div class="text-muted small" th:text="${metric.subtitle()}">지난주 대비 +12%</div>
+                            </div>
+                            <div class="bg-opacity-10 rounded-4 p-3"
+                                 th:classappend="${metric.variant() != null ? ' bg-' + metric.variant() + ' text-' + metric.variant() : ' bg-primary text-primary'}">
+                                <i class="bi fs-2" th:classappend="' ' + ${metric.icon()}"></i>
+                            </div>
+                        </div>
+                    </div>
+                </th:block>
+            </div>
+        </section>
+
+    </th:block>
+</html>
+
+
+// ===== resources/templates/dex/detail.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="row g-4">
+            <div class="col-12 col-lg-8">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body p-0">
+                        <div class="ratio ratio-21x9 rounded-top" th:style="${'background:url(' + detail.imageUrl() + ') center/cover no-repeat'}"></div>
+                        <div class="p-4 p-lg-5">
+                            <div class="d-flex align-items-center mb-3">
+                                <span class="badge bg-primary-subtle text-primary me-2" th:text="${detail.rarity()}">RARE</span>
+                                <span class="badge text-bg-light" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
+                            </div>
+                            <h2 class="h3 fw-bold" th:text="${detail.koreanName()}">해오라기</h2>
+                            <p class="text-muted mb-1" th:text="${detail.englishName()}">Striated Heron</p>
+                            <p class="text-muted fst-italic" th:text="${detail.scientificName()}">Butorides striata</p>
+                            <p class="fs-6 lh-lg" th:text="${detail.description()}">설명</p>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-header bg-white border-0">
+                        <h3 class="h6 mb-0 fw-semibold">최근 업데이트</h3>
+                    </div>
+                    <div class="card-body">
+                        <dl class="row mb-0">
+                            <dt class="col-sm-3 text-muted">ID</dt>
+                            <dd class="col-sm-9" th:text="${'#' + detail.id()}">#401</dd>
+                            <dt class="col-sm-3 text-muted">업데이트</dt>
+                            <dd class="col-sm-9" th:text="${#temporals.format(detail.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 12:00</dd>
+                            <dt class="col-sm-3 text-muted">태그</dt>
+                            <dd class="col-sm-9">
+                                <span class="badge text-bg-light me-1" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
+                            </dd>
+                        </dl>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-lg-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">서식 정보</h3>
+                        <ul class="list-unstyled mb-0 small text-muted">
+                            <li class="mb-2"><i class="bi bi-geo-alt me-2 text-primary"></i>
+                                <span th:each="habitat : ${detail.habitats()}" th:text="${habitat}"
+                                      th:append="${!#lists.isLast(habitat, detail.habitats()) ? ', ' : ''}">하천</span>
+                            </li>
+                            <li class="mb-2"><i class="bi bi-shield-check me-2 text-success"></i>보호 등급 <strong th:text="${detail.rarity()}">RARE</strong></li>
+                        </ul>
+                        <div class="d-grid gap-2 mt-4">
+                            <a th:href="@{'/dex/' + ${detail.id()} + '/edit'}" class="btn btn-primary">도감 수정</a>
+                            <button class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteDexModal" data-entry="상세 #" th:data-entry="${'#' + detail.id() + ' ' + detail.koreanName()}">삭제</button>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">관련 링크</h3>
+                        <ul class="list-unstyled mb-0">
+                            <li class="mb-2"><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>현장 사진 아카이브</a></li>
+                            <li class="mb-2"><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>관찰 데이터 다운로드</a></li>
+                            <li><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>관련 새록 모음</a></li>
+                        </ul>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="deleteDexModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog modal-dialog-centered">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">도감 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong th:text="${detail.koreanName()}">해오라기</strong> 도감 항목을 삭제하시겠습니까? 삭제 후 복구할 수 없습니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastDexDeleted">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </th:block>
+</html>
+
+
+// ===== resources/templates/dex/form.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <form class="row g-4" novalidate>
+            <div class="col-12 col-xl-8">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <h2 class="h6 fw-semibold mb-4">기본 정보</h2>
+                        <div class="row g-3">
+                            <div class="col-md-6">
+                                <label class="form-label">국문명</label>
+                                <input type="text" class="form-control" name="koreanName" placeholder="예) 해오라기"
+                                       th:value="${form.detail() != null ? form.detail().koreanName() : ''}">
+                            </div>
+                            <div class="col-md-6">
+                                <label class="form-label">영문명</label>
+                                <input type="text" class="form-control" name="englishName" placeholder="예) Striated Heron"
+                                       th:value="${form.detail() != null ? form.detail().englishName() : ''}">
+                            </div>
+                            <div class="col-md-6">
+                                <label class="form-label">학명</label>
+                                <input type="text" class="form-control" name="scientificName" placeholder="Butorides striata"
+                                       th:value="${form.detail() != null ? form.detail().scientificName() : ''}">
+                            </div>
+                            <div class="col-md-6">
+                                <label class="form-label">대표 이미지 URL</label>
+                                <input type="url" class="form-control" name="imageUrl" placeholder="https://"
+                                       th:value="${form.detail() != null ? form.detail().imageUrl() : ''}">
+                            </div>
+                            <div class="col-12">
+                                <label class="form-label">설명</label>
+                                <textarea class="form-control" name="description" rows="6" placeholder="도감 설명을 입력하세요">[[${form.detail() != null ? form.detail().description() : ''}]]</textarea>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <h2 class="h6 fw-semibold mb-3">태그 설정</h2>
+                        <div class="mb-3">
+                            <label class="form-label">태그</label>
+                            <input type="text" class="form-control" name="tags" placeholder="쉼표(,)로 구분"
+                                   th:value="${form.detail() != null ? #strings.arrayJoin(form.detail().tags(), ', ') : ''}">
+                            <div class="form-text">예시: 야행성, 대형, 빠른반응</div>
+                        </div>
+                        <div class="border rounded-4 p-3 bg-light">
+                            <div class="text-muted small mb-2">현재 태그 미리보기</div>
+                            <div class="d-flex flex-wrap gap-2">
+                                <span class="badge text-bg-light" th:each="tag : ${form.detail() != null ? form.detail().tags() : {}}" th:text="${tag}">태그</span>
+                                <span class="text-muted" th:if="${form.detail() == null || #lists.isEmpty(form.detail().tags())}">등록된 태그가 없습니다.</span>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-xl-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <h2 class="h6 fw-semibold mb-3">분류 정보</h2>
+                        <div class="mb-3">
+                            <label class="form-label">서식지</label>
+                            <select class="form-select" name="habitats" multiple size="4">
+                                <option th:each="option : ${form.habitatOptions()}" th:value="${option}"
+                                        th:selected="${form.detail() != null ? form.detail().habitats().contains(option) : false}"
+                                        th:text="${option}">하천</option>
+                            </select>
+                            <div class="form-text">여러 개 선택 가능합니다.</div>
+                        </div>
+                        <div class="mb-3">
+                            <label class="form-label">체류 형태</label>
+                            <select class="form-select" name="stayType">
+                                <option value="">선택하세요</option>
+                                <option th:each="option : ${form.stayOptions()}" th:value="${option}"
+                                        th:selected="${form.detail() != null ? option == form.detail().stayType() : false}"
+                                        th:text="${option}">철새</option>
+                            </select>
+                        </div>
+                        <div class="mb-3">
+                            <label class="form-label">희귀도</label>
+                            <div class="btn-group w-100" role="group">
+                                <th:block th:each="option, iterStat : ${form.rarityOptions()}">
+                                    <input type="radio" class="btn-check" name="rarity"
+                                           th:id="${'rarity-' + iterStat.index}" th:value="${option}"
+                                           th:checked="${form.detail() != null ? form.detail().rarity() == option : option == 'COMMON'}">
+                                    <label class="btn btn-outline-primary" th:for="${'rarity-' + iterStat.index}" th:text="${option}">COMMON</label>
+                                </th:block>
+                            </div>
+                        </div>
+                        <div class="small text-muted">
+                            마지막 저장: <strong th:text="${form.detail() != null ? #temporals.format(form.detail().updatedAt(), 'yyyy.MM.dd HH:mm') : '미저장'}">2024.06.01 12:00</strong>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body d-grid gap-2">
+                        <button type="button" class="btn btn-outline-secondary">미리보기</button>
+                        <button type="button" class="btn btn-primary" data-toast-target="toastDexSaved">변경사항 저장</button>
+                        <a th:href="@{/dex}" class="btn btn-link text-decoration-none">목록으로 돌아가기</a>
+                    </div>
+                </div>
+            </div>
+        </form>
+    <script>
+    function syncRarityButtons() {
+        document.querySelectorAll('.btn-check').forEach(function (radio) {
+            const label = document.querySelector('label[for="' + radio.id + '"]');
+            if (label) {
+                label.classList.toggle('active', radio.checked);
+            }
+        });
+    }
+    document.querySelectorAll('.btn-check').forEach(function (input) {
+        input.addEventListener('change', syncRarityButtons);
+    });
+    syncRarityButtons();
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/dex/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <form class="row g-3 align-items-end" method="get">
+                    <div class="col-md-4">
+                        <label for="query" class="form-label small text-uppercase text-muted">검색어</label>
+                        <input type="search" id="query" name="q" class="form-control" placeholder="이름 또는 학명"
+                               th:value="${query}">
+                    </div>
+                    <div class="col-md-2">
+                        <label for="rarity" class="form-label small text-uppercase text-muted">희귀도</label>
+                        <select id="rarity" name="rarity" class="form-select">
+                            <option th:each="option : ${rarityOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == rarityFilter || (rarityFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2">
+                        <label for="habitat" class="form-label small text-uppercase text-muted">서식지</label>
+                        <select id="habitat" name="habitat" class="form-select">
+                            <option th:each="option : ${habitatOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == habitatFilter || (habitatFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2">
+                        <label for="stayType" class="form-label small text-uppercase text-muted">체류 형태</label>
+                        <select id="stayType" name="stayType" class="form-select">
+                            <option th:each="option : ${stayOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == stayFilter || (stayFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2 d-flex gap-2">
+                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
+                        <a th:href="@{/dex}" class="btn btn-outline-secondary">초기화</a>
+                    </div>
+                </form>
+            </div>
+        </div>
+        <div class="d-flex justify-content-between align-items-center mb-3">
+            <p class="mb-0 text-muted">총 <strong th:text="${totalElements}">146</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">8</span> 페이지</p>
+            <a th:href="@{/dex/new}" class="btn btn-primary"><i class="bi bi-plus-lg me-2"></i>도감 등록</a>
+        </div>
+        <div class="card card-elevated">
+            <div class="table-responsive table-shell">
+                <table class="table table-modern table-hover align-middle">
+                    <thead>
+                    <tr>
+                        <th scope="col">ID</th>
+                        <th scope="col">이름</th>
+                        <th scope="col">학명</th>
+                        <th scope="col">서식지/체류</th>
+                        <th scope="col">희귀도</th>
+                        <th scope="col">태그</th>
+                        <th scope="col" class="text-end">수정일</th>
+                        <th scope="col" class="text-end">액션</th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr th:each="entry : ${entries}" data-entry-id="" th:data-entry-id="${entry.id()}" th:data-entry-name="${entry.koreanName()}">
+                        <td class="fw-semibold" th:text="${'#' + entry.id()}">#401</td>
+                        <td>
+                            <div class="fw-semibold" th:text="${entry.koreanName()}">해오라기</div>
+                            <div class="text-muted small" th:text="${entry.englishName()}">Striated Heron</div>
+                        </td>
+                        <td th:text="${entry.scientificName()}">Butorides striata</td>
+                        <td>
+                            <span class="badge text-bg-light" th:text="${entry.habitat()}">하천</span>
+                            <span class="badge text-bg-secondary ms-1" th:text="${entry.stayType()}">철새</span>
+                        </td>
+                        <td>
+                            <span class="badge" th:classappend="${entry.rarity()} == 'EPIC' ? ' text-bg-primary' : (${entry.rarity()} == 'RARE' ? ' text-bg-danger' : (${entry.rarity()} == 'UNCOMMON' ? ' text-bg-info' : ' text-bg-success'))"
+                                  th:text="${entry.rarity()}">RARE</span>
+                        </td>
+                        <td>
+                            <span class="badge text-bg-light me-1" th:each="tag : ${entry.tags()}" th:text="${tag}">태그</span>
+                        </td>
+                        <td class="text-end" th:text="${#temporals.format(entry.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 14:20</td>
+                        <td class="text-end">
+                            <div class="btn-group btn-group-sm">
+                                <a th:href="@{'/dex/' + ${entry.id()}}" class="btn btn-outline-secondary">상세</a>
+                                <a th:href="@{'/dex/' + ${entry.id()} + '/edit'}" class="btn btn-outline-primary">수정</a>
+                                <button type="button" class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteDexModal"
+                                        th:attr="data-entry='#' + ${entry.id()} + ' ' + ${entry.koreanName()}">삭제</button>
+                            </div>
+                        </td>
+                    </tr>
+                    </tbody>
+                </table>
+            </div>
+            <div class="card-footer bg-white border-0 py-3">
+                <nav>
+                    <ul class="pagination justify-content-end mb-0">
+                        <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
+                            <a class="page-link" th:href="@{/dex(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">이전</a>
+                        </li>
+                        <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
+                            <a class="page-link" th:text="${pageNum}" th:href="@{/dex(page=${pageNum}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">1</a>
+                        </li>
+                        <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
+                            <a class="page-link" th:href="@{/dex(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">다음</a>
+                        </li>
+                    </ul>
+                </nav>
+            </div>
+        </div>
+
+        <div class="modal fade" id="deleteDexModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog modal-dialog-centered">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">도감 삭제</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p class="mb-0"><strong id="deleteDexTarget">선택한 도감</strong> 항목을 삭제하시겠습니까? 이 작업은 되돌릴 수 없습니다.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastDexDeleted">삭제</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    <script>
+    const deleteDexModal = document.getElementById('deleteDexModal');
+    if (deleteDexModal) {
+        deleteDexModal.addEventListener('show.bs.modal', function (event) {
+            const button = event.relatedTarget;
+            const targetName = button ? button.getAttribute('data-entry') : '';
+            const label = deleteDexModal.querySelector('#deleteDexTarget');
+            if (label) {
+                label.textContent = targetName || '선택한 도감';
+            }
+        });
+    }
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/fragments/_breadcrumbs.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<body>
+<nav th:fragment="breadcrumbs(items)" aria-label="breadcrumb" class="mb-3">
+    <ol class="breadcrumb mb-0 small text-muted">
+        <li class="breadcrumb-item" th:each="breadcrumb : ${items}" th:classappend="${breadcrumb.active()} ? ' active fw-semibold text-primary'">
+            <a th:if="${!breadcrumb.active()}" th:href="${breadcrumb.href()}" th:text="${breadcrumb.label()}"></a>
+            <span th:if="${breadcrumb.active()}" th:text="${breadcrumb.label()}"></span>
+        </li>
+    </ol>
+</nav>
+</body>
+</html>
+
+
+// ===== resources/templates/fragments/_head.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<head th:fragment="head(pageTitle)">
+    <meta charset="UTF-8">
+    <meta name="viewport" content="width=device-width, initial-scale=1">
+    <title th:text="${pageTitle != null ? pageTitle + ' | 새록 어드민' : '새록 어드민'}">새록 어드민</title>
+    <link rel="preconnect" href="https://fonts.googleapis.com">
+    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
+    <link href="https://fonts.googleapis.com/css2?family=Pretendard:wght@400;500;600;700&display=swap" rel="stylesheet">
+    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet">
+    <link href="https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.3/font/bootstrap-icons.css" rel="stylesheet">
+    <link th:href="@{/css/admin-theme.css}" rel="stylesheet">
+</head>
+</html>
+
+
+// ===== resources/templates/fragments/_navbar.html =====
+<!-- ===== resources/templates/fragments/_navbar.html ===== -->
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<body>
+<nav th:fragment="navbar(pageTitle)" class="navbar navbar-expand-lg bg-white shadow-sm py-3 px-4 sticky-top">
+    <div class="d-flex align-items-center w-100">
+        <button class="btn btn-outline-secondary d-lg-none me-3" type="button" data-bs-toggle="offcanvas" data-bs-target="#sidebarOffcanvas" aria-controls="sidebarOffcanvas">
+            <i class="bi bi-list"></i>
+        </button>
+        <div class="flex-grow-1">
+            <h2 class="h5 mb-0 fw-semibold" th:text="${pageTitle}">페이지 제목</h2>
+        </div>
+        <div class="d-flex align-items-center gap-3">
+            <div class="dropdown">
+                <button class="btn p-0 border-0 bg-transparent d-flex align-items-center text-decoration-none dropdown-toggle dropdown-toggle-no-caret"
+                        type="button" data-bs-toggle="dropdown" aria-expanded="false">
+                    <img th:src="${currentAdminProfile.profileImageUrl()}" th:alt="${currentAdminProfile.nickname()}" src="https://images.unsplash.com/photo-1524504388940-b1c1722653e1" alt="관리자" class="rounded-circle" width="40" height="40">
+                    <!-- 모바일에서는 텍스트 숨김, 데스크탑 이상에서만 표출 -->
+                    <div class="ms-2 text-start d-none d-lg-block">
+                        <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
+                        <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
+                        <div class="text-muted small" th:if="${currentAdminProfile.hasRoleDisplayNames()}"
+                             th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</div>
+                    </div>
+                </button>
+                <ul class="dropdown-menu dropdown-menu-end shadow">
+                    <li class="dropdown-header">
+                        <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
+                        <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
+                    </li>
+                    <li th:if="${currentAdminProfile.hasRoleDisplayNames()}">
+                        <span class="dropdown-item-text small text-muted d-flex align-items-start">
+                            <i class="bi bi-shield-check text-primary me-2 mt-1"></i>
+                            <span th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</span>
+                        </span>
+                    </li>
+                    <li th:unless="${currentAdminProfile.hasRoleDisplayNames()}">
+                        <span class="dropdown-item-text small text-muted">권한 정보가 없습니다.</span>
+                    </li>
+                    <li><hr class="dropdown-divider"></li>
+                    <li>
+                        <form th:action="@{/logout}" method="post">
+                            <button type="submit" class="dropdown-item text-danger w-100">
+                                <i class="bi bi-box-arrow-right me-2"></i>로그아웃
+                            </button>
+                        </form>
+                    </li>
+                </ul>
+            </div>
+        </div>
+    </div>
+</nav>
+</body>
+</html>
+
+
+// ===== resources/templates/fragments/_scripts.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<body>
+<th:block th:fragment="scripts">
+    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js"></script>
+</th:block>
+</body>
+</html>
+
+
+// ===== resources/templates/fragments/_sidebar.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<body>
+<div th:fragment="sidebar(activeMenu)">
+    <div class="app-sidebar d-none d-lg-flex flex-column position-fixed">
+        <div class="app-sidebar__brand">
+            <img th:src="@{/images/saerok-admin-icon.png}" src="/images/saerok-admin-icon.png" alt="새록 어드민 로고" width="48" height="48" class="me-2">
+            <div class="d-flex align-items-center gap-2 flex-wrap">
+                <span class="app-sidebar__title mb-0">새록 어드민</span>
+                <span class="environment-badge"
+                      th:if="${environmentProfileBadge != null}"
+                      th:classappend="${environmentProfileBadge.cssClass}"
+                      th:text="${environmentProfileBadge.label}">운영</span>
+            </div>
+        </div>
+        <nav class="app-sidebar__nav">
+            <a th:href="@{/}" class="app-sidebar__link" th:classappend="${activeMenu}=='dashboard' ? ' is-active'">
+                <i class="bi bi-speedometer2"></i>
+                <span>대시보드</span>
+            </a>
+            <a th:href="@{/service-insight}" class="app-sidebar__link"
+               th:classappend="${activeMenu}=='serviceInsight' ? ' is-active'">
+                <i class="bi bi-graph-up-arrow"></i>
+                <span>서비스 인사이트</span>
+            </a>
+            <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
+                  data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
+                <i class="bi bi-journal-richtext"></i>
+                <span>도감 관리</span>
+            </span>
+            <a th:href="@{/reports}" class="app-sidebar__link" th:classappend="${activeMenu}=='reports' ? ' is-active'">
+                <i class="bi bi-flag"></i>
+                <span>신고 관리</span>
+            </a>
+            <a th:href="@{/ads}" class="app-sidebar__link" th:classappend="${activeMenu}=='ads' ? ' is-active'">
+                <i class="bi bi-badge-ad"></i>
+                <span>광고 관리</span>
+            </a>
+            <a th:href="@{/admin/roles}" class="app-sidebar__link"
+               th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
+                <i class="bi bi-shield-lock"></i>
+                <span>역할과 권한</span>
+            </a>
+            <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
+                  data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
+                <i class="bi bi-megaphone"></i>
+                <span>시스템 알림 발송</span>
+            </span>
+            <a th:href="@{/admin/audit-logs}" class="app-sidebar__link"
+               th:classappend="${activeMenu}=='adminAuditLogs' ? ' is-active'">
+                <i class="bi bi-clipboard-check"></i>
+                <span>관리자 활동 로그</span>
+            </a>
+        </nav>
+        <div class="app-sidebar__footer">
+            <div>버전 0.1.0</div>
+            <div>© 2025 Saerok</div>
+        </div>
+    </div>
+    <div class="offcanvas offcanvas-start" tabindex="-1" id="sidebarOffcanvas">
+        <div class="offcanvas-header">
+            <div class="d-flex align-items-center gap-2">
+                <img th:src="@{/images/saerok-admin-icon.png}" src="/images/saerok-admin-icon.png"
+                     alt="새록 어드민 로고" width="32" height="32" class="flex-shrink-0">
+                <h5 class="offcanvas-title mb-0">새록 어드민</h5>
+                <span class="environment-badge"
+                      th:if="${environmentProfileBadge != null}"
+                      th:classappend="${environmentProfileBadge.cssClass}"
+                      th:text="${environmentProfileBadge.label}">운영</span>
+            </div>
+            <button type="button" class="btn-close" data-bs-dismiss="offcanvas"></button>
+        </div>
+        <div class="offcanvas-body">
+            <nav class="app-sidebar__nav">
+                <a th:href="@{/}" class="app-sidebar__link" th:classappend="${activeMenu}=='dashboard' ? ' is-active fw-semibold'">
+                    <i class="bi bi-speedometer2"></i>
+                    <span>대시보드</span>
+                </a>
+                <a th:href="@{/service-insight}" class="app-sidebar__link"
+                   th:classappend="${activeMenu}=='serviceInsight' ? ' is-active fw-semibold'">
+                    <i class="bi bi-graph-up-arrow"></i>
+                    <span>서비스 인사이트</span>
+                </a>
+                <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
+                      data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
+                    <i class="bi bi-journal-richtext"></i>
+                    <span>도감 관리</span>
+                </span>
+                <a th:href="@{/reports}" class="app-sidebar__link" th:classappend="${activeMenu}=='reports' ? ' is-active fw-semibold'">
+                    <i class="bi bi-flag"></i>
+                    <span>신고 관리</span>
+                </a>
+                <a th:href="@{/ads}" class="app-sidebar__link" th:classappend="${activeMenu}=='ads' ? ' is-active fw-semibold'">
+                    <i class="bi bi-badge-ad"></i>
+                    <span>광고 관리</span>
+                </a>
+                <a th:href="@{/admin/roles}" class="app-sidebar__link"
+                   th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
+                    <i class="bi bi-shield-lock"></i>
+                    <span>역할과 권한</span>
+                </a>
+                <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
+                      data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
+                    <i class="bi bi-megaphone"></i>
+                    <span>시스템 알림 발송</span>
+                </span>
+                <a th:href="@{/admin/audit-logs}" class="app-sidebar__link"
+                   th:classappend="${activeMenu}=='adminAuditLogs' ? ' is-active fw-semibold'">
+                    <i class="bi bi-clipboard-check"></i>
+                    <span>관리자 활동 로그</span>
+                </a>
+            </nav>
+        </div>
+    </div>
+</div>
+</body>
+</html>
+
+
+
+
+// ===== resources/templates/fragments/_toast.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<body>
+<div th:fragment="toast(messages)" class="toast-container position-fixed bottom-0 end-0 p-4" style="z-index: 1080;">
+    <div th:each="toast : ${messages}" class="toast align-items-center border-0 shadow"
+         role="alert" th:id="${toast.id()}" th:data-bs-autohide="${toast.autohide()}"
+         th:attr="data-show-on-load=${false}" aria-live="assertive" aria-atomic="true">
+        <div class="d-flex" th:classappend="${toast.variant()} != null ? ' text-bg-' + ${toast.variant()} : ' text-bg-light'">
+            <div class="toast-body">
+                <div class="fw-semibold mb-1" th:text="${toast.title()}">완료</div>
+                <div th:text="${toast.body()}">처리가 완료되었습니다.</div>
+            </div>
+            <button type="button" class="btn-close me-2 m-auto" data-bs-dismiss="toast" aria-label="Close"></button>
+        </div>
+    </div>
+</div>
+<script>
+    (function () {
+        var initializeTooltips = function () {
+            if (!window.bootstrap || !window.bootstrap.Tooltip) {
+                return;
+            }
+            document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
+                var existingTooltip = window.bootstrap.Tooltip.getInstance(triggerEl);
+                if (existingTooltip) {
+                    existingTooltip.dispose();
+                }
+                new window.bootstrap.Tooltip(triggerEl, {
+                    trigger: 'hover focus',
+                    delay: { show: 0, hide: 100 },
+                    customClass: 'tooltip-bubble'
+                });
+            });
+        };
+
+        var initializeToasts = function () {
+            if (!window.bootstrap || !window.bootstrap.Toast) {
+                return;
+            }
+            document.querySelectorAll('.toast').forEach(function (toastEl) {
+                if (toastEl.dataset.showOnLoad === 'true') {
+                    new window.bootstrap.Toast(toastEl).show();
+                }
+            });
+            document.querySelectorAll('[data-toast-target]').forEach(function (trigger) {
+                trigger.addEventListener('click', function () {
+                    var targetId = trigger.getAttribute('data-toast-target');
+                    if (targetId) {
+                        var toastElement = document.getElementById(targetId);
+                        if (toastElement) {
+                            new window.bootstrap.Toast(toastElement).show();
+                        }
+                    }
+                });
+            });
+            document.querySelectorAll('[data-bs-dismiss="modal"][data-toast-target]').forEach(function (btn) {
+                btn.addEventListener('click', function () {
+                    var targetId = btn.getAttribute('data-toast-target');
+                    if (targetId) {
+                        setTimeout(function () {
+                            var toastElement = document.getElementById(targetId);
+                            if (toastElement) {
+                                new window.bootstrap.Toast(toastElement).show();
+                            }
+                        }, 300);
+                    }
+                });
+            });
+        };
+
+        var onReady = function () {
+            initializeTooltips();
+            document.addEventListener('saerok:refresh-tooltips', initializeTooltips);
+            initializeToasts();
+        };
+
+        if (document.readyState === 'loading') {
+            document.addEventListener('DOMContentLoaded', onReady);
+        } else {
+            onReady();
+        }
+    })();
+</script>
+</body>
+</html>
+
+
+// ===== resources/templates/layout/base.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<th:block th:fragment="layout(pageTitle, activeMenu, breadcrumbs, content)">
+    <head th:replace="~{fragments/_head :: head(${pageTitle})}"></head>
+    <body class="app-shell">
+    <div class="d-flex">
+        <div th:replace="~{fragments/_sidebar :: sidebar(${activeMenu})}"></div>
+        <div class="app-content">
+            <div th:replace="~{fragments/_navbar :: navbar(${pageTitle})}"></div>
+            <main class="app-main container-fluid">
+                <div th:if="${breadcrumbs}" th:replace="~{fragments/_breadcrumbs :: breadcrumbs(${breadcrumbs})}"></div>
+                <div th:replace="${content}"></div>
+            </main>
+        </div>
+    </div>
+    <th:block th:replace="~{fragments/_scripts :: scripts}"></th:block>
+    <div th:replace="~{fragments/_toast :: toast(${toastMessages})}"></div>
+    </body>
+</th:block>
+</html>
+
+
+// ===== resources/templates/notifications/compose.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="row g-4">
+            <div class="col-12 col-xl-8">
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <form class="row g-4">
+                            <div class="col-12">
+                                <label class="form-label fw-semibold">제목</label>
+                                <input type="text" class="form-control form-control-lg" placeholder="예) 새록 주간 소식 안내">
+                            </div>
+                            <div class="col-12">
+                                <label class="form-label fw-semibold">본문 내용</label>
+                                <textarea class="form-control" rows="8" placeholder="알림 본문을 입력하세요."></textarea>
+                                <div class="form-text">마크다운 문법을 지원합니다.</div>
+                            </div>
+                            <div class="col-12">
+                                <label class="form-label fw-semibold">타겟 대상</label>
+                                <div class="list-group">
+                                    <label class="list-group-item list-group-item-action d-flex justify-content-between align-items-start" th:each="option : ${targetOptions}">
+                                        <div class="me-3">
+                                            <div class="form-check">
+                                                <input class="form-check-input" type="radio" name="target" th:value="${option.value()}" th:checked="${option.value() == 'ALL'}">
+                                                <span class="ms-2 fw-semibold" th:text="${option.label()}">전체</span>
+                                            </div>
+                                            <small class="text-muted" th:text="${option.description()}">설명</small>
+                                        </div>
+                                        <span class="badge text-bg-light">예상 1,248명</span>
+                                    </label>
+                                </div>
+                            </div>
+                            <div class="col-12">
+                                <label class="form-label fw-semibold">예약 발송</label>
+                                <div class="row g-3 align-items-center">
+                                    <div class="col-md-4">
+                                        <div class="form-check form-switch">
+                                            <input class="form-check-input" type="checkbox" id="scheduleToggle">
+                                            <label class="form-check-label" for="scheduleToggle">예약 발송 사용</label>
+                                        </div>
+                                    </div>
+                                    <div class="col-md-4">
+                                        <input type="date" class="form-control" disabled id="scheduleDate">
+                                    </div>
+                                    <div class="col-md-4">
+                                        <input type="time" class="form-control" disabled id="scheduleTime">
+                                    </div>
+                                </div>
+                                <div class="form-text">예약 발송을 사용하지 않으면 즉시 발송됩니다.</div>
+                            </div>
+                        </form>
+                    </div>
+                    <div class="card-footer bg-white border-0 d-flex justify-content-between align-items-center">
+                        <div class="text-muted small">최근 발송: 2024.05.30 · 알림 1,026명 수신</div>
+                        <div class="d-flex gap-2">
+                            <button class="btn btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#previewModal">미리보기</button>
+                            <button class="btn btn-primary" type="button" data-bs-toggle="modal" data-bs-target="#sendConfirmModal">발송</button>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-xl-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">발송 가이드</h3>
+                        <ul class="list-unstyled small text-muted mb-0">
+                            <li class="mb-2"><i class="bi bi-check2-circle text-success me-2"></i>하루 최대 3회 발송 권장</li>
+                            <li class="mb-2"><i class="bi bi-check2-circle text-success me-2"></i>예약 발송은 최대 30일 이내</li>
+                            <li><i class="bi bi-check2-circle text-success me-2"></i>민감 정보 포함 여부 재검토</li>
+                        </ul>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">최근 발송 로그</h3>
+                        <ul class="list-unstyled small text-muted mb-0">
+                            <li class="mb-2">2024.05.30 20:00 · 주간 업데이트 · 1,026명</li>
+                            <li class="mb-2">2024.05.28 09:00 · 시스템 점검 안내 · 982명</li>
+                            <li>2024.05.25 18:30 · 신규 기능 소개 · 1,201명</li>
+                        </ul>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div class="modal fade" id="previewModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog modal-lg">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">알림 미리보기</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <div class="border rounded-4 p-4 bg-light">
+                            <h4 class="fw-semibold">[미리보기] 새록 주간 소식 안내</h4>
+                            <p class="text-muted">안녕하세요, 새록 운영팀입니다.</p>
+                            <p>이번 주 업데이트와 주요 소식을 안내드립니다. 자세한 내용은 링크를 통해 확인하세요.</p>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">닫기</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastNotificationPreview">미리보기 확인</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="sendConfirmModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">알림 발송 확인</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p>선택된 타겟에게 알림을 발송하시겠습니까?</p>
+                        <p class="small text-muted mb-0">발송 후 취소가 불가능하니 메시지를 다시 한번 확인해주세요.</p>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastNotificationSent">발송</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    <script>
+    const scheduleToggle = document.getElementById('scheduleToggle');
+    const scheduleDate = document.getElementById('scheduleDate');
+    const scheduleTime = document.getElementById('scheduleTime');
+    if (scheduleToggle) {
+        scheduleToggle.addEventListener('change', () => {
+            const enabled = scheduleToggle.checked;
+            if (scheduleDate) scheduleDate.disabled = !enabled;
+            if (scheduleTime) scheduleTime.disabled = !enabled;
+        });
+    }
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/reports/delete-modal.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<th:block th:fragment="reportDeleteModal">
+    <div class="modal fade" id="reportDeleteReasonModal" tabindex="-1" aria-labelledby="reportDeleteReasonModalLabel"
+         aria-hidden="true">
+        <div class="modal-dialog">
+            <div class="modal-content">
+                <div class="modal-header">
+                    <h5 class="modal-title" id="reportDeleteReasonModalLabel">삭제 사유 입력</h5>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="닫기"></button>
+                </div>
+                <div class="modal-body">
+                    <p class="mb-3"><span data-delete-target-name>신고 대상 콘텐츠</span>을(를) 삭제하려면 사유를 입력해주세요.</p>
+                    <div class="mb-3">
+                        <label class="form-label" for="reportDeleteReasonInput">삭제 사유</label>
+                        <textarea class="form-control" id="reportDeleteReasonInput" rows="3" placeholder="삭제 사유를 입력하세요."></textarea>
+                        <div class="invalid-feedback d-block d-none" data-delete-reason-error>삭제 사유를 입력해주세요.</div>
+                    </div>
+                </div>
+                <div class="modal-footer">
+                    <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                    <button type="button" class="btn btn-danger" data-delete-reason-confirm
+                            data-default-confirm-message="정말 삭제할까요?">삭제</button>
+                </div>
+            </div>
+        </div>
+    </div>
+    <script>
+        (function () {
+            if (window.__reportDeleteModalInitialized) {
+                return;
+            }
+            window.__reportDeleteModalInitialized = true;
+
+            document.addEventListener('DOMContentLoaded', function () {
+                var modalElement = document.getElementById('reportDeleteReasonModal');
+                var buttons = document.querySelectorAll('[data-report-delete-button]');
+                if (!modalElement || buttons.length === 0) {
+                    return;
+                }
+
+                var bootstrap = window.bootstrap;
+                if (!bootstrap || !bootstrap.Modal) {
+                    buttons.forEach(function (button) {
+                        button.addEventListener('click', function (event) {
+                            event.preventDefault();
+                            var form = button.closest('form');
+                            if (!form) {
+                                return;
+                            }
+                            var reason = window.prompt('삭제 사유를 입력해주세요.');
+                            if (!reason || reason.trim().length === 0) {
+                                window.alert('삭제 사유를 입력해주세요.');
+                                return;
+                            }
+                            var confirmMessage = button.getAttribute('data-report-delete-confirm-message')
+                                    || '정말 삭제할까요?';
+                            if (!window.confirm(confirmMessage)) {
+                                return;
+                            }
+                            var hiddenInput = form.querySelector('input[name="reason"]');
+                            if (!hiddenInput) {
+                                hiddenInput = document.createElement('input');
+                                hiddenInput.type = 'hidden';
+                                hiddenInput.name = 'reason';
+                                form.appendChild(hiddenInput);
+                            }
+                            hiddenInput.value = reason.trim();
+                            form.submit();
+                        });
+                    });
+                    return;
+                }
+
+                var modal = new bootstrap.Modal(modalElement);
+                var reasonInput = modalElement.querySelector('#reportDeleteReasonInput');
+                var errorMessage = modalElement.querySelector('[data-delete-reason-error]');
+                var confirmButton = modalElement.querySelector('[data-delete-reason-confirm]');
+                var targetNameElement = modalElement.querySelector('[data-delete-target-name]');
+                var currentForm = null;
+                var currentTrigger = null;
+
+                var openModal = function (trigger) {
+                    if (!trigger) {
+                        return;
+                    }
+                    if (reasonInput) {
+                        reasonInput.value = '';
+                    }
+                    if (errorMessage) {
+                        errorMessage.classList.add('d-none');
+                    }
+                    currentForm = trigger.closest('form');
+                    currentTrigger = trigger;
+                    if (!currentForm) {
+                        currentTrigger = null;
+                        return;
+                    }
+                    var targetName = trigger.getAttribute('data-report-delete-target-name');
+                    if (targetNameElement) {
+                        targetNameElement.textContent = targetName || '신고 대상 콘텐츠';
+                    }
+                    modal.show();
+                    window.setTimeout(function () {
+                        if (reasonInput) {
+                            reasonInput.focus();
+                        }
+                    }, 200);
+                };
+
+                buttons.forEach(function (button) {
+                    button.addEventListener('click', function (event) {
+                        event.preventDefault();
+                        openModal(button);
+                    });
+                });
+
+                modalElement.addEventListener('shown.bs.modal', function () {
+                    if (reasonInput) {
+                        reasonInput.focus();
+                    }
+                });
+
+                modalElement.addEventListener('hidden.bs.modal', function () {
+                    if (reasonInput) {
+                        reasonInput.value = '';
+                    }
+                    if (errorMessage) {
+                        errorMessage.classList.add('d-none');
+                    }
+                    currentForm = null;
+                    currentTrigger = null;
+                });
+
+                if (!confirmButton) {
+                    return;
+                }
+
+                confirmButton.addEventListener('click', function () {
+                    if (!currentForm) {
+                        return;
+                    }
+                    var reason = reasonInput && reasonInput.value ? reasonInput.value.trim() : '';
+                    if (!reason) {
+                        if (errorMessage) {
+                            errorMessage.classList.remove('d-none');
+                        }
+                        if (reasonInput) {
+                            reasonInput.focus();
+                        }
+                        return;
+                    }
+
+                    var hiddenInput = currentForm.querySelector('input[name="reason"]');
+                    if (!hiddenInput) {
+                        hiddenInput = document.createElement('input');
+                        hiddenInput.type = 'hidden';
+                        hiddenInput.name = 'reason';
+                        currentForm.appendChild(hiddenInput);
+                    }
+                    hiddenInput.value = reason;
+
+                    var confirmMessage = (currentTrigger && currentTrigger.getAttribute('data-report-delete-confirm-message'))
+                        || confirmButton.getAttribute('data-default-confirm-message')
+                        || '정말 삭제할까요?';
+                    if (!window.confirm(confirmMessage)) {
+                        return;
+                    }
+
+                    modal.hide();
+                    currentForm.submit();
+                });
+            });
+        })();
+    </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/reports/detail.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
+             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+            <i class="bi" th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
+        </div>
+        <div class="row g-4">
+            <div class="col-12 col-lg-8">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body card-body-comfy">
+                        <div class="d-flex justify-content-between align-items-start flex-wrap gap-3">
+                            <div>
+                                <span class="badge rounded-pill"
+                                      th:classappend="' text-bg-' + ${detail.type().badgeVariant()}"
+                                      th:text="${detail.type().displayName()}">새록</span>
+                                <h2 class="h4 fw-semibold mt-3" th:text="${'신고 #' + detail.reportId()}">신고 #1</h2>
+                                <p class="text-muted-soft mb-0">
+                                    접수 시각
+                                    <span class="fw-semibold"
+                                          th:text="${detail.reportedAt() != null ? #temporals.format(detail.reportedAt(), 'yyyy.MM.dd HH:mm') : '정보 없음'}">2024.01.01 12:00</span>
+                                </p>
+                            </div>
+                            <div class="text-end small text-muted">
+                                <div>신고자 <strong th:text="${detail.reporter() != null ? detail.reporter().nickname() : '-'}">-</strong></div>
+                                <div>피신고자 <strong th:text="${detail.reportedUser() != null ? detail.reportedUser().nickname() : '-'}">-</strong></div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+
+                <div th:if="${detail.reportedComment() != null}" class="card card-elevated mb-4">
+                    <div class="card-header card-header-tight">
+                        <h3 class="h6 mb-0 fw-semibold">신고된 댓글</h3>
+                    </div>
+                    <div class="card-body card-body-comfy">
+                        <div class="d-flex justify-content-between align-items-start">
+                            <div>
+                                <div class="fw-semibold" th:text="${detail.reportedComment().nickname()}">작성자</div>
+                                <div class="text-muted small" th:text="${'#' + detail.reportedComment().commentId()}">#0</div>
+                            </div>
+                            <div class="text-muted small" th:text="${detail.reportedComment().createdAt() != null ? #temporals.format(detail.reportedComment().createdAt(), 'yyyy.MM.dd HH:mm') : '-'}">2024.01.01 12:00</div>
+                        </div>
+                        <div class="surface-muted rounded-lg p-3 mt-3" th:text="${detail.reportedComment().content()}">댓글 내용</div>
+                    </div>
+                </div>
+
+                <div class="card card-elevated mb-4" th:if="${detail.collection() != null}">
+                    <div class="card-header card-header-tight">
+                        <h3 class="h6 mb-0 fw-semibold">새록 정보</h3>
+                    </div>
+                    <div class="card-body card-body-comfy">
+                        <div th:if="${detail.collection().imageUrl() != null}" class="mb-3">
+                            <button type="button" class="border-0 bg-transparent p-0 w-100"
+                                    data-collection-image-trigger>
+                                <img th:src="${detail.collection().imageUrl()}" alt="새록 이미지"
+                                     class="img-fluid collection-image-thumbnail">
+                            </button>
+                            <div class="text-end mt-2">
+                                <a class="small text-decoration-none" th:href="${detail.collection().imageUrl()}" target="_blank"
+                                   rel="noopener">원본 이미지 열기</a>
+                            </div>
+                        </div>
+                        <div class="collection-note-highlight mb-4">
+                            <div class="note-label mb-2">한 줄 평</div>
+                            <div class="collection-one-line-note text-break"
+                                 th:text="${#strings.isEmpty(detail.collection().note()) ? '등록된 한 줄 평이 없습니다.' : detail.collection().note()}">
+                                등록된 한 줄 평이 없습니다.
+                            </div>
+                        </div>
+                        <div class="row g-4 collection-detail-meta">
+                            <div class="col-12 col-lg-6">
+                                <dl class="row gy-2 mb-0">
+                                    <dt class="col-sm-4 text-muted small">새록 ID</dt>
+                                    <dd class="col-sm-8 fw-semibold" th:text="${'#' + detail.collection().collectionId()}">#0</dd>
+                                    <dt class="col-sm-4 text-muted small">관찰일</dt>
+                                    <dd class="col-sm-8" th:text="${detail.collection().discoveredDate() != null ? #temporals.format(detail.collection().discoveredDate(), 'yyyy.MM.dd') : '-'}">2024.01.01</dd>
+                                    <dt class="col-sm-4 text-muted small">공개 범위</dt>
+                                    <dd class="col-sm-8">
+                                        <span th:text="${detail.collection().accessLevelLabel()}">공개</span>
+                                        <span class="text-muted ms-1"
+                                              th:text="${detail.collection().accessLevel() != null ? '(' + detail.collection().accessLevel() + ')' : ''}">(PUBLIC)</span>
+                                    </dd>
+                                    <dt class="col-sm-4 text-muted small">좋아요/댓글</dt>
+                                    <dd class="col-sm-8"
+                                        th:text="|${detail.collection().likeCount() != null ? detail.collection().likeCount() : 0} / ${detail.collection().commentCount() != null ? detail.collection().commentCount() : 0}|">0 / 0</dd>
+                                </dl>
+                            </div>
+                            <div class="col-12 col-lg-6">
+                                <dl class="row gy-2 mb-0">
+                                    <dt class="col-sm-4 text-muted small">새 이름</dt>
+                                    <dd class="col-sm-8" th:text="${detail.collection().birdKoreanName() != null ? detail.collection().birdKoreanName() : '-'}">-</dd>
+                                    <dt class="col-sm-4 text-muted small">새 ID</dt>
+                                    <dd class="col-sm-8" th:text="${detail.collection().birdId() != null ? '#' + detail.collection().birdId() : '-'}">-</dd>
+                                    <dt class="col-sm-4 text-muted small">학명</dt>
+                                    <dd class="col-sm-8" th:text="${detail.collection().birdScientificName() != null ? detail.collection().birdScientificName() : '-'}">-</dd>
+                                    <dt class="col-sm-4 text-muted small">관찰 위치</dt>
+                                    <dd class="col-sm-8 text-break"
+                                        th:text="${detail.collection().locationAlias() != null ? detail.collection().locationAlias() : '-'}">서울숲</dd>
+                                    <dt class="col-sm-4 text-muted small">주소</dt>
+                                    <dd class="col-sm-8 text-break text-muted"
+                                        th:text="${detail.collection().address() != null ? detail.collection().address() : '-'}">주소</dd>
+                                    <dt class="col-sm-4 text-muted small">좌표</dt>
+                                    <dd class="col-sm-8 text-muted"
+                                        th:text="${detail.collection().latitude() != null && detail.collection().longitude() != null ? '(' + detail.collection().latitude() + ', ' + detail.collection().longitude() + ')' : '-'}">(0.0, 0.0)</dd>
+                                </dl>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-header card-header-tight">
+                        <h3 class="h6 mb-0 fw-semibold">댓글 목록</h3>
+                    </div>
+                    <div class="card-body p-0">
+                        <div th:if="${detail.comments().isEmpty()}" class="p-4 text-center text-muted">등록된 댓글이 없습니다.</div>
+                        <div th:each="comment : ${detail.comments()}"
+                             th:classappend="${detail.reportedComment() != null && detail.reportedComment().commentId() == comment.commentId()} ? ' bg-warning-subtle' : ''"
+                             class="border-bottom p-4">
+                            <div class="d-flex justify-content-between align-items-start gap-3">
+                                <div>
+                                    <div class="fw-semibold" th:text="${comment.nickname()}">작성자</div>
+                                    <div class="text-muted small" th:text="${'#' + comment.commentId()}">#0</div>
+                                </div>
+                                <div class="text-muted small text-end">
+                                    <div th:text="${comment.createdAt() != null ? #temporals.format(comment.createdAt(), 'yyyy.MM.dd HH:mm') : '-'}">2024.01.01 12:00</div>
+                                    <div th:text="${'좋아요 ' + comment.likeCount()}" class="text-muted">좋아요 0</div>
+                                </div>
+                            </div>
+                            <p class="mb-0 mt-2" th:text="${comment.content()}">댓글 내용</p>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-lg-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body card-body-comfy">
+                        <h3 class="h6 fw-semibold mb-3">처리 옵션</h3>
+                        <div class="d-flex flex-wrap flex-gap-sm">
+                            <a class="btn btn-outline-secondary d-inline-flex align-items-center gap-1"
+                               th:href="@{/reports}" data-bs-toggle="tooltip" data-bs-placement="top" title="목록 보기">
+                                <i class="bi bi-list"></i>
+                                <span>목록 보기</span>
+                            </a>
+                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
+                                  th:action="@{${detail.ignoreAction()}}" method="post" class="m-0">
+                                <input type="hidden" name="redirect" value="detail">
+                                <button type="submit"
+                                        class="btn btn-outline-primary d-inline-flex align-items-center gap-1"
+                                        th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
+                                        data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
+                                    <i class="bi bi-slash-circle"></i>
+                                    <span>신고 무시</span>
+                                </button>
+                            </form>
+                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
+                                  th:action="@{${detail.deleteAction()}}" method="post" class="m-0">
+                                <input type="hidden" name="redirect" value="detail">
+                                <input type="hidden" name="reason" value="">
+                                <button type="button"
+                                        class="btn btn-danger d-inline-flex align-items-center gap-1"
+                                        data-report-delete-button
+                                        th:data-report-delete-target-name="|신고 대상 ${detail.type().targetNoun()}|"
+                                        th:data-report-delete-confirm-message="|정말 신고 대상 ${detail.type().targetNoun()}을(를) 삭제할까요?|"
+                                        data-bs-toggle="tooltip" data-bs-placement="top" title="콘텐츠 삭제">
+                                    <i class="bi bi-trash"></i>
+                                    <span>콘텐츠 삭제</span>
+                                </button>
+                            </form>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated" th:if="${detail.collection() != null}">
+                    <div class="card-body card-body-comfy">
+                        <h3 class="h6 fw-semibold mb-3">새록 작성자</h3>
+                        <div class="d-flex align-items-center gap-3">
+                            <div class="profile-avatar flex-shrink-0"
+                                 th:style="${detail.collection().authorProfileImageUrl() != null} ? |--avatar-image: url('${detail.collection().authorProfileImageUrl()}')| : null">
+                                <i th:if="${detail.collection().authorProfileImageUrl() == null}" class="bi bi-person"></i>
+                            </div>
+                            <div>
+                                <div class="fw-semibold" th:text="${detail.collection().authorNickname() != null ? detail.collection().authorNickname() : '-'}">작성자</div>
+                                <div class="text-muted small" th:text="${detail.collection().authorId() != null ? '#' + detail.collection().authorId() : ''}"></div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div th:if="${detail.collection() != null && detail.collection().imageUrl() != null}" id="collectionImageModal"
+             class="collection-image-modal d-none" role="dialog" aria-modal="true">
+            <div class="collection-image-backdrop" data-collection-image-close></div>
+            <div class="collection-image-dialog">
+                <button type="button" class="btn-close btn-close-white" data-collection-image-close aria-label="닫기"></button>
+                <img th:src="${detail.collection().imageUrl()}" alt="새록 전체 이미지" class="img-fluid">
+            </div>
+        </div>
+
+        <script th:if="${detail.collection() != null && detail.collection().imageUrl() != null}">
+            document.addEventListener('DOMContentLoaded', function () {
+                const trigger = document.querySelector('[data-collection-image-trigger]');
+                const modal = document.getElementById('collectionImageModal');
+                if (!trigger || !modal) {
+                    return;
+                }
+
+                const closeElements = modal.querySelectorAll('[data-collection-image-close]');
+
+                const showModal = () => {
+                    modal.classList.remove('d-none');
+                    document.body.classList.add('overflow-hidden');
+                };
+
+                const hideModal = () => {
+                    modal.classList.add('d-none');
+                    document.body.classList.remove('overflow-hidden');
+                };
+
+                trigger.addEventListener('click', showModal);
+                closeElements.forEach(element => element.addEventListener('click', hideModal));
+                modal.addEventListener('click', function (event) {
+                    if (event.target === modal) {
+                        hideModal();
+                    }
+                });
+                document.addEventListener('keydown', function (event) {
+                    if (event.key === 'Escape' && !modal.classList.contains('d-none')) {
+                        hideModal();
+                    }
+                });
+            });
+        </script>
+
+        <div th:replace="~{reports/delete-modal :: reportDeleteModal}"></div>
+</th:block>
+</html>
+
+
+// ===== resources/templates/reports/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <form class="d-flex flex-wrap align-items-center flex-gap-sm" method="get">
+                    <div class="d-flex flex-wrap align-items-center flex-gap-sm" role="group" aria-label="신고 유형 필터">
+                        <div>
+                            <input class="btn-check" type="checkbox" id="filter-collection" name="type" value="collection"
+                                   th:checked="${collectionFilterActive}">
+                            <label class="btn btn-outline-primary d-inline-flex align-items-center gap-2"
+                                   for="filter-collection">
+                                <span class="fw-semibold">새록</span>
+                                <span class="badge text-bg-light text-primary"
+                                      th:text="${collectionCount} + '건'">0건</span>
+                            </label>
+                        </div>
+                        <div>
+                            <input class="btn-check" type="checkbox" id="filter-comment" name="type" value="comment"
+                                   th:checked="${commentFilterActive}">
+                            <label class="btn btn-outline-primary d-inline-flex align-items-center gap-2"
+                                   for="filter-comment">
+                                <span class="fw-semibold">댓글</span>
+                                <span class="badge text-bg-light text-primary"
+                                      th:text="${commentCount} + '건'">0건</span>
+                            </label>
+                        </div>
+                    </div>
+                    <div class="ms-auto d-flex align-items-center flex-gap-sm">
+                        <span class="badge text-bg-primary-subtle text-primary"
+                              th:text="${#lists.isEmpty(selectedTypeParams)} ? '모두 보기' : |${selectedTypeParams.size()}개 유형 선택|">모두 보기</span>
+                        <button type="submit" class="btn btn-primary">필터 적용</button>
+                    </div>
+                </form>
+            </div>
+        </div>
+
+        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
+             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+            <i class="bi" th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
+        </div>
+
+        <div th:if="${loadErrorMessage}" class="alert alert-danger alert-elevated d-flex align-items-center">
+            <i class="bi bi-exclamation-triangle-fill me-2"></i>
+            <span th:text="${loadErrorMessage}">신고 목록을 불러오지 못했습니다.</span>
+        </div>
+
+        <div class="card card-elevated">
+            <div class="card-header card-header-tight d-flex flex-wrap justify-content-between align-items-center flex-gap-sm">
+                <div>
+                    <h2 class="h6 mb-1 fw-semibold">신고 내역</h2>
+                    <p class="text-muted-soft small mb-0">
+                        총 <strong th:text="${totalCount}">0</strong>건 · 현재 보기 <strong th:text="${filteredCount}">0</strong>건
+                        (<span th:text="'새록 ' + ${collectionCount} + '건'">새록 0건</span>
+                        · <span th:text="'댓글 ' + ${commentCount} + '건'">댓글 0건</span>)
+                    </p>
+                </div>
+            </div>
+            <div class="list-group list-group-flush">
+                <div th:if="${reports.isEmpty()}" class="list-group-item py-5 text-center text-muted">
+                    표시할 신고 내역이 없습니다.
+                </div>
+                <article class="list-group-item p-0 report-card" th:each="report : ${reports}">
+                    <a class="report-card__link d-flex flex-column gap-4 text-decoration-none text-reset"
+                       th:href="@{${report.detailPath()}}"
+                       th:aria-label="|${report.type().displayName()} 신고 상세로 이동|">
+                            <header class="d-flex flex-column flex-md-row justify-content-between align-items-start gap-3">
+                                <div class="d-flex flex-column gap-2">
+                                    <div class="d-flex flex-wrap align-items-center gap-2">
+                                        <span class="badge rounded-pill"
+                                              th:classappend="' text-bg-' + ${report.type().badgeVariant()}"
+                                              th:text="${report.type().displayName()}">새록</span>
+                                    </div>
+                                    <div class="text-muted small d-flex flex-wrap gap-2">
+                                        <span>신고자 <strong class="text-body" th:text="${report.reporterNickname()}">신고자</strong></span>
+                                        <span class="text-muted" aria-hidden="true">·</span>
+                                        <span>피신고자 <strong class="text-body" th:text="${report.reportedUserNickname()}">피신고자</strong></span>
+                                    </div>
+                                </div>
+                                <div class="text-md-end">
+                                    <div class="text-muted small">접수일</div>
+                                    <div class="fw-semibold"
+                                         th:text="${report.reportedAt() != null ? #temporals.format(report.reportedAt(), 'yyyy.MM.dd HH:mm') : '-'}">
+                                        2024.01.01 12:00
+                                    </div>
+                                </div>
+                            </header>
+                            <div class="d-flex flex-column flex-md-row gap-3">
+                                <div class="flex-shrink-0" th:if="${report.type().isCollection()}">
+                                    <div th:if="${report.hasCollectionImage()}"
+                                         class="ratio ratio-1x1" style="width: 96px;">
+                                        <img th:src="${report.collectionImageUrl()}" alt="신고 대상 미리보기"
+                                             class="media-thumb w-100 h-100">
+                                    </div>
+                                    <div th:if="${!report.hasCollectionImage()}"
+                                         class="d-flex align-items-center justify-content-center bg-light border rounded"
+                                         style="width: 96px; height: 96px;">
+                                        <i class="bi bi-flag text-muted fs-4"></i>
+                                    </div>
+                                </div>
+                                <div class="flex-grow-1">
+                                    <div class="text-muted small mb-2"
+                                         th:text="${report.type().isCollection() ? '한 줄 평' : '댓글 내용'}">신고 내용 요약</div>
+                                    <div th:if="${report.hasContentPreview()}" class="text-break"
+                                         th:text="${report.contentPreview()}">내용 미리보기</div>
+                                    <div th:if="${!report.hasContentPreview()}" class="text-muted small"
+                                         th:text="${report.type().isCollection() ? '등록된 한 줄 평이 없습니다.' : '내용 미리보기가 없습니다.'}">
+                                        내용 미리보기가 없습니다.
+                                    </div>
+                                </div>
+                            </div>
+                    </a>
+                    <footer class="report-card__footer border-top d-flex flex-wrap gap-2 justify-content-end align-items-center"
+                            th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}">
+                        <form th:action="@{${report.ignoreAction()}}" method="post" class="m-0">
+                            <input type="hidden" name="redirect" value="list">
+                            <th:block th:each="typeParam : ${selectedTypeParams}">
+                                <input type="hidden" name="returnType" th:value="${typeParam}">
+                            </th:block>
+                            <button type="submit"
+                                    class="btn btn-sm btn-outline-primary d-inline-flex align-items-center gap-1"
+                                    th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
+                                    data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
+                                <i class="bi bi-slash-circle"></i>
+                                <span>신고 무시</span>
+                            </button>
+                        </form>
+                        <form th:action="@{${report.deleteAction()}}" method="post" class="m-0">
+                            <input type="hidden" name="redirect" value="list">
+                            <th:block th:each="typeParam : ${selectedTypeParams}">
+                                <input type="hidden" name="returnType" th:value="${typeParam}">
+                            </th:block>
+                            <input type="hidden" name="reason" value="">
+                            <button type="button"
+                                    class="btn btn-sm btn-danger d-inline-flex align-items-center gap-1"
+                                    data-report-delete-button
+                                    th:data-report-delete-target-name="|신고 대상 ${report.type().targetNoun()}|"
+                                    th:data-report-delete-confirm-message="|정말 신고 대상 ${report.type().targetNoun()}을(를) 삭제할까요?|"
+                                    data-bs-toggle="tooltip" data-bs-placement="top" title="콘텐츠 삭제">
+                                <i class="bi bi-trash"></i>
+                                <span>콘텐츠 삭제</span>
+                            </button>
+                        </form>
+                    </footer>
+                </article>
+            </div>
+        </div>
+
+        <div th:replace="~{reports/delete-modal :: reportDeleteModal}"></div>
+
+        <script>
+            document.addEventListener('DOMContentLoaded', function () {
+                var initializeTooltips = function () {
+                    if (window.bootstrap && window.bootstrap.Tooltip) {
+                        document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
+                            new window.bootstrap.Tooltip(triggerEl, {
+                                trigger: 'hover focus',
+                                delay: { show: 0, hide: 100 },
+                                customClass: 'tooltip-bubble'
+                            });
+                        });
+                    }
+                };
+                if (window.bootstrap && window.bootstrap.Tooltip) {
+                    initializeTooltips();
+                } else {
+                    window.addEventListener('load', initializeTooltips, { once: true });
+                }
+            });
+        </script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/service-insight/index.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+
+    <!-- 페이지 전용 CSS -->
+    <link th:href="@{/css/service-insight.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+    <!-- 공통 타깃/타이틀 스타일 -->
+    <link th:href="@{/css/service-insight.target.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
+    <!-- 모바일 오버라이드 -->
+    <link th:href="@{/css/service-insight.mobile.css(v=${#dates.createNow().getTime()})}" rel="stylesheet" media="(max-width: 991.98px)">
+
+    <section class="service-insight">
+        <div class="service-insight__container">
+            <!-- 좌측: 데이터/그룹 패널 (모바일에서는 숨김) -->
+            <aside class="service-insight__metrics" aria-label="데이터 선택">
+                <div class="si-sidebar" id="si-sidebar">
+                    <div class="si-sidebar__header">
+                        <!-- 단일 표시 지점(PC용 앵커) -->
+                        <div id="si-target-title-desktop-anchor">
+                            <div id="si-target-title" class="si-targettitle" role="heading" aria-level="2">
+                                <span class="si-targettitle__prefix">플롯</span>
+                                <select id="si-target-select" class="form-select form-select-sm si-targettitle__select" aria-label="적용 대상 플롯(숫자 선택)">
+                                    <!-- 옵션은 JS에서 동기화 -->
+                                </select>
+                                <span class="si-targettitle__suffix">데이터 선택</span>
+                            </div>
+                        </div>
+                    </div>
+
+                    <!-- 데스크톱 앵커: 모바일에선 #si-data-panel 전체가 시트로 이동 -->
+                    <div id="si-groups-desktop-anchor">
+                        <div id="si-data-panel" class="si-data-panel">
+                            <!-- 그룹 목록 -->
+                            <div class="si-groups" id="si-groups"></div>
+                        </div>
+                    </div>
+                </div>
+            </aside>
+
+            <!-- 우측: 플롯 영역 -->
+            <div class="service-insight__chart">
+                <div class="si-plots" id="si-plots" data-size="roomy">
+                    <div class="si-plots__toolbar">
+                        <div class="si-range" role="region" aria-label="데이터 조회 기간">
+                            <div class="si-range__bar">
+                                <span class="si-range__label">기간</span>
+                                <div class="si-range__quick" role="group" aria-label="빠른 조회 기간">
+                                    <a th:each="option : ${rangeQuickOptions}"
+                                       th:href="@{/service-insight(range=${option.paramValue()})}"
+                                       th:text="${option.displayLabel()}"
+                                       th:class="'btn btn-sm si-range__btn ' + (${option.paramValue()} == ${selectedRange} ? 'btn-primary' : 'btn-outline-primary')"
+                                       th:data-range="${option.paramValue()}"
+                                       th:attr="aria-pressed=${option.paramValue()} == ${selectedRange}"
+                                       class="btn btn-sm si-range__btn btn-outline-primary"
+                                       aria-pressed="false">최근 1주</a>
+                                </div>
+                                <button type="button"
+                                        id="si-range-custom-toggle"
+                                        th:class="'btn btn-sm si-range__custom-toggle ' + (${customRangeActive} ? 'btn-primary' : 'btn-outline-secondary')"
+                                        th:attr="aria-expanded=${customRangeActive}"
+                                        class="btn btn-sm btn-outline-secondary si-range__custom-toggle"
+                                        aria-expanded="false"
+                                        aria-controls="si-range-custom">
+                                    <i class="bi bi-calendar-range me-1" aria-hidden="true"></i>직접 설정
+                                </button>
+                            </div>
+                            <form id="si-range-custom"
+                                  class="si-range__form"
+                                  th:class="'si-range__form' + (${customRangeActive} ? ' is-open' : '')"
+                                  method="get"
+                                  role="form"
+                                  aria-label="기간 직접 설정">
+                                <input type="hidden" name="range" value="custom">
+                                <div class="si-range__fields">
+                                    <label for="si-range-start" class="visually-hidden">시작 날짜</label>
+                                    <input id="si-range-start"
+                                           type="date"
+                                           class="form-control form-control-sm"
+                                           name="startDate"
+                                           placeholder="시작일"
+                                           th:value="${selectedStartDate}"
+                                           autocomplete="off">
+                                    <span class="si-range__dash" aria-hidden="true">~</span>
+                                    <label for="si-range-end" class="visually-hidden">종료 날짜</label>
+                                    <input id="si-range-end"
+                                           type="date"
+                                           class="form-control form-control-sm"
+                                           name="endDate"
+                                           placeholder="종료일"
+                                           th:value="${selectedEndDate}"
+                                           autocomplete="off">
+                                </div>
+                                <div class="si-range__actions">
+                                    <button type="submit"
+                                            th:class="'btn btn-sm si-range__apply ' + (${customRangeActive} ? 'btn-primary' : 'btn-outline-secondary')"
+                                            class="btn btn-sm btn-outline-secondary si-range__apply">
+                                        적용
+                                    </button>
+                                </div>
+                            </form>
+                        </div>
+                        <div class="si-actions">
+                            <button type="button" class="btn btn-ghost" id="si-add-plot">
+                                <i class="bi bi-layout-text-window-reverse me-1"></i>플롯 추가
+                            </button>
+                            <button type="button" class="btn btn-ghost" id="si-clear-all">
+                                <i class="bi bi-x-circle me-1"></i>모두 지우기
+                            </button>
+                        </div>
+                    </div>
+
+                    <!-- 드롭 가능한 플롯 카드 그리드 -->
+                    <div class="si-plot-grid" id="si-plot-grid"></div>
+                </div>
+            </div>
+        </div>
+    </section>
+
+    <!-- 📱 FAB: 모바일 전용(PC에서는 전역 CSS로 기본 숨김) -->
+    <button id="si-fab"
+            class="btn btn-primary rounded-circle shadow-soft"
+            type="button"
+            data-bs-toggle="offcanvas"
+            data-bs-target="#siDataPicker"
+            aria-controls="siDataPicker"
+            aria-label="데이터 선택 열기">
+        <i class="bi bi-sliders2"></i>
+    </button>
+
+    <!-- 📱 데이터 선택 바텀 시트(Offcanvas) -->
+    <div class="offcanvas offcanvas-bottom" tabindex="-1" id="siDataPicker" aria-labelledby="siDataPickerLabel">
+        <div class="offcanvas-header">
+            <!-- 단일 표시 지점(모바일용 앵커) -->
+            <div id="si-target-title-mobile-host"></div>
+            <button type="button" class="btn-close" data-bs-dismiss="offcanvas" aria-label="닫기"></button>
+        </div>
+        <div class="offcanvas-body">
+            <!-- 모바일 시 #si-data-panel 전체가 여기로 이동 -->
+            <div id="si-data-panel-mobile-host"></div>
+        </div>
+    </div>
+
+    <!-- 서버에서 내려주는 전체 페이로드 -->
+    <script type="application/json" id="serviceInsightData"
+            th:data-endpoint="@{/service-insight}"
+            th:utext="${chartDataJson}">{"metricOptions":[],"series":[],"componentLabels":{}}</script>
+
+    <!-- Chart.js & Adapter -->
+    <script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.7/dist/chart.umd.min.js"></script>
+    <script src="https://cdn.jsdelivr.net/npm/luxon@3.5.0/build/global/luxon.min.js"></script>
+    <script src="https://cdn.jsdelivr.net/npm/chartjs-adapter-luxon@1.3.1/dist/chartjs-adapter-luxon.umd.min.js"></script>
+
+    <!-- 본 스크립트 -->
+    <script th:src="@{/js/service-insight.js(v=${#dates.createNow().getTime()})}"></script>
+    <!-- 모바일 전용 보조 스크립트(패널/타이틀 이동) -->
+    <script th:src="@{/js/service-insight.mobile.js(v=${#dates.createNow().getTime()})}"></script>
+    <!-- 공통 타깃 제어 스크립트(PC/모바일) -->
+    <script th:src="@{/js/service-insight.target.js(v=${#dates.createNow().getTime()})}"></script>
+</th:block>
+</html>
+
+
+// ===== resources/templates/users/detail.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="row g-4">
+            <div class="col-12 col-xl-4">
+                <div class="card card-elevated mb-4">
+                    <div class="card-body text-center">
+                        <div class="d-inline-flex align-items-center justify-content-center bg-primary bg-opacity-10 text-primary rounded-circle" style="width:88px; height:88px;">
+                            <i class="bi bi-person-circle fs-1"></i>
+                        </div>
+                        <h2 class="h4 fw-semibold mt-3 mb-1" th:text="${detail.nickname()}">솔바람</h2>
+                        <p class="text-muted mb-3" th:text="${detail.email()}">sol@saerok.app</p>
+                        <div class="badge" th:classappend="${detail.status()} == '정상' ? ' text-bg-success' : (${detail.status()} == '휴면' ? ' text-bg-secondary' : ' text-bg-danger')"
+                             th:text="${detail.status()}">정상</div>
+                        <dl class="row text-start mt-4 mb-0 small">
+                            <dt class="col-5 text-muted">가입일</dt>
+                            <dd class="col-7" th:text="${#temporals.format(detail.joinedAt(), 'yyyy.MM.dd HH:mm')}">2024.01.02 10:00</dd>
+                            <dt class="col-5 text-muted">마지막 로그인</dt>
+                            <dd class="col-7" th:text="${#temporals.format(detail.lastLoginAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 21:00</dd>
+                            <dt class="col-5 text-muted">작성/신고</dt>
+                            <dd class="col-7">새록 <strong th:text="${detail.postCount()}">48</strong> · 신고 <strong th:text="${detail.reportCount()}">2</strong></dd>
+                            <dt class="col-5 text-muted">연락처</dt>
+                            <dd class="col-7" th:text="${detail.phone()}">010-1234-5678</dd>
+                        </dl>
+                        <div class="d-grid gap-2 mt-4">
+                            <button class="btn btn-primary" data-bs-toggle="modal" data-bs-target="#userStatusModal">상태 변경</button>
+                            <button class="btn btn-outline-success" data-bs-toggle="modal" data-bs-target="#userNotifyModal">알림 발송</button>
+                        </div>
+                    </div>
+                </div>
+                <div class="card card-elevated">
+                    <div class="card-body">
+                        <h3 class="h6 fw-semibold mb-3">활동 통계</h3>
+                        <div class="d-flex justify-content-between align-items-center mb-2">
+                            <span class="text-muted">최근 30일 작성</span>
+                            <span class="fw-semibold">12건</span>
+                        </div>
+                        <div class="d-flex justify-content-between align-items-center mb-2">
+                            <span class="text-muted">좋아요 받은 수</span>
+                            <span class="fw-semibold">86회</span>
+                        </div>
+                        <div class="d-flex justify-content-between align-items-center">
+                            <span class="text-muted">신고 접수</span>
+                            <span class="fw-semibold">2건</span>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-xl-8">
+                <div class="card card-elevated">
+                    <div class="card-header bg-white border-0 d-flex justify-content-between align-items-center">
+                        <div>
+                            <h3 class="h6 mb-0 fw-semibold">최근 활동</h3>
+                            <p class="text-muted small mb-0">최근 일주일 내 주요 활동 내역</p>
+                        </div>
+                        <a href="#" class="btn btn-sm btn-outline-secondary">전체 보기</a>
+                    </div>
+                    <div class="card-body">
+                        <div class="list-group list-group-flush">
+                            <div class="list-group-item px-0 py-3" th:each="activity : ${detail.recentActivities()}">
+                                <div class="d-flex justify-content-between align-items-start">
+                                    <div>
+                                        <span class="badge text-bg-light me-2" th:text="${activity.type()}">새록</span>
+                                        <span class="fw-semibold" th:text="${activity.title()}">초여름 갈대밭 일지</span>
+                                        <span class="badge rounded-pill ms-2" th:classappend="${activity.status()} == '공개' ? ' text-bg-success' : (${activity.status()} == '검토중' ? ' text-bg-warning' : ' text-bg-secondary')"
+                                              th:text="${activity.status()}">공개</span>
+                                    </div>
+                                    <small class="text-muted" th:text="${#temporals.format(activity.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 14:30</small>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div class="modal fade" id="userStatusModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">사용자 상태 변경</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong th:text="${detail.nickname()}">솔바람</strong>님의 상태를 조정합니다.</p>
+                        <select class="form-select">
+                            <option>정상</option>
+                            <option>휴면</option>
+                            <option>차단</option>
+                        </select>
+                        <div class="mt-3">
+                            <label class="form-label">조치 메모</label>
+                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastUserAction">저장</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="userNotifyModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">사용자 알림 발송</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong th:text="${detail.nickname()}">솔바람</strong>님에게 보낼 메시지를 작성하세요.</p>
+                        <div class="mb-3">
+                            <label class="form-label">제목</label>
+                            <input type="text" class="form-control" placeholder="알림 제목">
+                        </div>
+                        <div class="mb-3">
+                            <label class="form-label">내용</label>
+                            <textarea class="form-control" rows="4" placeholder="알림 본문"></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastUserNotify">발송</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </th:block>
+</html>
+
+
+// ===== resources/templates/users/list.html =====
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <form class="row g-3 align-items-end" method="get">
+                    <div class="col-md-4">
+                        <label class="form-label small text-uppercase text-muted" for="userQuery">검색어</label>
+                        <input type="search" class="form-control" id="userQuery" name="q" placeholder="닉네임 또는 이메일" th:value="${query}">
+                    </div>
+                    <div class="col-md-3">
+                        <label class="form-label small text-uppercase text-muted" for="userStatus">상태</label>
+                        <select class="form-select" id="userStatus" name="status">
+                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
+                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
+                                    th:text="${option}">전체</option>
+                        </select>
+                    </div>
+                    <div class="col-md-2 d-flex gap-2">
+                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
+                        <a th:href="@{/users}" class="btn btn-outline-secondary">초기화</a>
+                    </div>
+                </form>
+            </div>
+        </div>
+        <div class="card card-elevated">
+            <div class="table-responsive table-shell">
+                <table class="table table-modern align-middle table-hover">
+                    <thead>
+                    <tr>
+                        <th>ID</th>
+                        <th>닉네임</th>
+                        <th>이메일</th>
+                        <th>가입일</th>
+                        <th>상태</th>
+                        <th>작성/신고</th>
+                        <th class="text-end">액션</th>
+                    </tr>
+                    </thead>
+                    <tbody>
+                    <tr th:each="user : ${users}" th:data-user="${user.nickname()}">
+                        <td class="fw-semibold" th:text="${'#' + user.id()}">#501</td>
+                        <td th:text="${user.nickname()}">솔바람</td>
+                        <td th:text="${user.email()}">sol@saerok.app</td>
+                        <td th:text="${#temporals.format(user.joinedAt(), 'yyyy.MM.dd')}">2024.01.02</td>
+                        <td>
+                            <span class="badge" th:classappend="${user.status()} == '정상' ? ' text-bg-success' : (${user.status()} == '휴면' ? ' text-bg-secondary' : ' text-bg-danger')"
+                                  th:text="${user.status()}">정상</span>
+                        </td>
+                        <td>
+                            <span class="badge text-bg-light">작성 <span th:text="${user.postCount()}">48</span></span>
+                            <span class="badge text-bg-light ms-1">신고 <span th:text="${user.reportCount()}">2</span></span>
+                        </td>
+                        <td class="text-end">
+                            <div class="btn-group btn-group-sm">
+                                <a th:href="@{'/users/' + ${user.id()}}" class="btn btn-outline-secondary">상세</a>
+                                <button class="btn btn-outline-primary" type="button" data-bs-toggle="modal" data-bs-target="#userStatusModal"
+                                        th:attr="data-user='사용자 ' + ${user.nickname()}">상태 변경</button>
+                                <button class="btn btn-outline-success" type="button" data-bs-toggle="modal" data-bs-target="#userNotifyModal"
+                                        th:attr="data-user='사용자 ' + ${user.nickname()}">알림 발송</button>
+                            </div>
+                        </td>
+                    </tr>
+                    </tbody>
+                </table>
+            </div>
+            <div class="card-footer bg-white border-0 py-3">
+                <div class="d-flex justify-content-between align-items-center">
+                    <span class="text-muted small">총 <strong th:text="${totalElements}">512</strong>명 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">14</span> 페이지</span>
+                    <ul class="pagination pagination-sm mb-0">
+                        <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
+                            <a class="page-link" th:href="@{/users(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
+                        </li>
+                        <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
+                            <a class="page-link" th:text="${pageNum}" th:href="@{/users(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
+                        </li>
+                        <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
+                            <a class="page-link" th:href="@{/users(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
+                        </li>
+                    </ul>
+                </div>
+            </div>
+        </div>
+
+        <div class="modal fade" id="userStatusModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">사용자 상태 변경</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="userStatusTarget">사용자</strong>의 상태를 조정합니다.</p>
+                        <select class="form-select">
+                            <option value="정상">정상</option>
+                            <option value="휴면">휴면</option>
+                            <option value="차단">차단</option>
+                        </select>
+                        <div class="mt-3">
+                            <label class="form-label">조치 메모</label>
+                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastUserAction">저장</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+        <div class="modal fade" id="userNotifyModal" tabindex="-1" aria-hidden="true">
+            <div class="modal-dialog">
+                <div class="modal-content">
+                    <div class="modal-header">
+                        <h5 class="modal-title">사용자 알림 발송</h5>
+                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
+                    </div>
+                    <div class="modal-body">
+                        <p><strong id="userNotifyTarget">사용자</strong>에게 보낼 메시지를 작성하세요.</p>
+                        <div class="mb-3">
+                            <label class="form-label">제목</label>
+                            <input type="text" class="form-control" placeholder="알림 제목">
+                        </div>
+                        <div class="mb-3">
+                            <label class="form-label">내용</label>
+                            <textarea class="form-control" rows="4" placeholder="알림 본문"></textarea>
+                        </div>
+                    </div>
+                    <div class="modal-footer">
+                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
+                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastUserNotify">발송</button>
+                    </div>
+                </div>
+            </div>
+        </div>
+    <script>
+        const userStatusModal = document.getElementById('userStatusModal');
+        if (userStatusModal) {
+            userStatusModal.addEventListener('show.bs.modal', event => {
+                const button = event.relatedTarget;
+                const target = button ? button.getAttribute('data-user') : '사용자';
+                userStatusModal.querySelector('#userStatusTarget').textContent = target;
+            });
+        }
+        const userNotifyModal = document.getElementById('userNotifyModal');
+        if (userNotifyModal) {
+            userNotifyModal.addEventListener('show.bs.modal', event => {
+                const button = event.relatedTarget;
+                const target = button ? button.getAttribute('data-user') : '사용자';
+                userNotifyModal.querySelector('#userNotifyTarget').textContent = target;
+            });
+        }
+    </script>
+</th:block>
+</html>
+
diff --git a/src/main/java/apu/saerok_admin/infra/role/AdminRoleClient.java b/src/main/java/apu/saerok_admin/infra/role/AdminRoleClient.java
new file mode 100644
index 0000000..9e53351
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/AdminRoleClient.java
@@ -0,0 +1,128 @@
+package apu.saerok_admin.infra.role;
+
+import apu.saerok_admin.infra.SaerokApiProps;
+import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
+import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
+import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
+import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
+import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
+import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
+import java.net.URI;
+import java.util.List;
+import org.springframework.http.HttpMethod;
+import org.springframework.stereotype.Component;
+import org.springframework.web.client.RestClient;
+import org.springframework.web.util.UriBuilder;
+
+@Component
+public class AdminRoleClient {
+
+    private static final String[] ADMIN_ROLE_SEGMENTS = {"admin", "role"};
+
+    private final RestClient saerokRestClient;
+    private final String[] missingPrefixSegments;
+
+    public AdminRoleClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
+        this.saerokRestClient = saerokRestClient;
+        List<String> missing = saerokApiProps.missingPrefixSegments();
+        this.missingPrefixSegments = missing.toArray(new String[0]);
+    }
+
+    public AdminMyRoleResponse getMyRoles() {
+        return get(AdminMyRoleResponse.class, "me");
+    }
+
+    public AdminRoleUserListResponse listAdminUsers() {
+        return get(AdminRoleUserListResponse.class, "users");
+    }
+
+    public AdminRoleListResponse listRoles() {
+        return get(AdminRoleListResponse.class);
+    }
+
+    public RoleDetailResponse createRole(CreateRoleRequest request) {
+        return post(RoleDetailResponse.class, request);
+    }
+
+    public RoleDetailResponse updateRolePermissions(String roleCode, UpdateRolePermissionsRequest request) {
+        return put(RoleDetailResponse.class, request, roleCode, "permissions");
+    }
+
+    public void deleteRole(String roleCode) {
+        deleteVoid(roleCode);
+    }
+
+    public AdminUserRoleResponse grantRole(Long userId, AssignRoleRequest request) {
+        return post(AdminUserRoleResponse.class, request, "users", userId.toString(), "roles");
+    }
+
+    public AdminUserRoleResponse revokeRole(Long userId, String roleCode) {
+        return delete(AdminUserRoleResponse.class, "users", userId.toString(), "roles", roleCode);
+    }
+
+    private <T> T get(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.get()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T post(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.post()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T put(Class<T> responseType, Object body, String... segments) {
+        T response = saerokRestClient.method(HttpMethod.PUT)
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .body(body)
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private <T> T delete(Class<T> responseType, String... segments) {
+        T response = saerokRestClient.delete()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .body(responseType);
+        if (response == null) {
+            throw new IllegalStateException("Empty response from admin role API");
+        }
+        return response;
+    }
+
+    private void deleteVoid(String... segments) {
+        saerokRestClient.delete()
+                .uri(uriBuilder -> buildUri(uriBuilder, segments))
+                .retrieve()
+                .toBodilessEntity();
+    }
+
+    private URI buildUri(UriBuilder builder, String... segments) {
+        if (missingPrefixSegments.length > 0) {
+            builder.pathSegment(missingPrefixSegments);
+        }
+        builder.pathSegment(ADMIN_ROLE_SEGMENTS);
+        if (segments.length > 0) {
+            builder.pathSegment(segments);
+        }
+        return builder.build();
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java
new file mode 100644
index 0000000..767199d
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java
@@ -0,0 +1,9 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminMyRoleResponse(
+        List<RoleSummaryResponse> roles,
+        List<PermissionSummaryResponse> permissions
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java
new file mode 100644
index 0000000..c24bb41
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java
@@ -0,0 +1,8 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminRoleListResponse(
+        List<RoleDetailResponse> roles
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java
new file mode 100644
index 0000000..0f934f0
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java
@@ -0,0 +1,8 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminRoleUserListResponse(
+        List<AdminUserRoleResponse> users
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java
new file mode 100644
index 0000000..3689da4
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java
@@ -0,0 +1,13 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record AdminUserRoleResponse(
+        Long userId,
+        String nickname,
+        String email,
+        boolean superAdmin,
+        List<RoleSummaryResponse> roles,
+        List<PermissionSummaryResponse> permissions
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java b/src/main/java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java
new file mode 100644
index 0000000..726e28e
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java
@@ -0,0 +1,6 @@
+package apu.saerok_admin.infra.role.dto;
+
+public record AssignRoleRequest(
+        String roleCode
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java b/src/main/java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java
new file mode 100644
index 0000000..daff53e
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java
@@ -0,0 +1,8 @@
+package apu.saerok_admin.infra.role.dto;
+
+public record CreateRoleRequest(
+        String code,
+        String displayName,
+        String description
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java
new file mode 100644
index 0000000..6f79803
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java
@@ -0,0 +1,7 @@
+package apu.saerok_admin.infra.role.dto;
+
+public record PermissionSummaryResponse(
+        String key,
+        String description
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java
new file mode 100644
index 0000000..69e869c
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java
@@ -0,0 +1,13 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record RoleDetailResponse(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin,
+        List<PermissionSummaryResponse> permissions
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java b/src/main/java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java
new file mode 100644
index 0000000..dcc0c10
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java
@@ -0,0 +1,10 @@
+package apu.saerok_admin.infra.role.dto;
+
+public record RoleSummaryResponse(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java b/src/main/java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java
new file mode 100644
index 0000000..fcba190
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java
@@ -0,0 +1,8 @@
+package apu.saerok_admin.infra.role.dto;
+
+import java.util.List;
+
+public record UpdateRolePermissionsRequest(
+        List<String> permissions
+) {
+}
diff --git a/src/main/java/apu/saerok_admin/web/RoleManagementController.java b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
new file mode 100644
index 0000000..6469d08
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
@@ -0,0 +1,594 @@
+package apu.saerok_admin.web;
+
+import apu.saerok_admin.infra.role.AdminRoleClient;
+import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
+import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
+import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
+import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
+import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
+import apu.saerok_admin.infra.role.dto.PermissionSummaryResponse;
+import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
+import apu.saerok_admin.infra.role.dto.RoleSummaryResponse;
+import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
+import apu.saerok_admin.web.view.Breadcrumb;
+import apu.saerok_admin.web.view.CurrentAdminProfile;
+import apu.saerok_admin.web.view.role.PermissionOptionView;
+import apu.saerok_admin.web.view.role.PermissionView;
+import apu.saerok_admin.web.view.role.RoleDisplay;
+import apu.saerok_admin.web.view.role.RolePermissionGroupView;
+import apu.saerok_admin.web.view.role.RoleTemplateView;
+import apu.saerok_admin.web.view.role.TeamMemberView;
+import java.util.ArrayList;
+import java.util.Comparator;
+import java.util.LinkedHashMap;
+import java.util.LinkedHashSet;
+import java.util.List;
+import java.util.Locale;
+import java.util.Map;
+import java.util.Objects;
+import java.util.Optional;
+import java.util.Set;
+import java.util.stream.Collectors;
+import org.slf4j.Logger;
+import org.slf4j.LoggerFactory;
+import org.springframework.stereotype.Controller;
+import org.springframework.ui.Model;
+import org.springframework.util.StringUtils;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.ModelAttribute;
+import org.springframework.web.bind.annotation.PathVariable;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RequestParam;
+import org.springframework.web.client.RestClientException;
+import org.springframework.web.client.RestClientResponseException;
+import org.springframework.web.servlet.mvc.support.RedirectAttributes;
+import org.springframework.web.util.UriComponentsBuilder;
+
+@Controller
+@RequestMapping("/admin/roles")
+public class RoleManagementController {
+
+    private static final Logger log = LoggerFactory.getLogger(RoleManagementController.class);
+    private static final String TAB_MY = "my";
+    private static final String TAB_TEAM = "team";
+    private static final String TAB_MANAGE = "manage";
+    private static final String PERMISSION_ADMIN_ROLE_MY_READ = "ADMIN_ROLE_MY_READ";
+    private static final String PERMISSION_ADMIN_ROLE_READ = "ADMIN_ROLE_READ";
+    private static final String PERMISSION_ADMIN_ROLE_WRITE = "ADMIN_ROLE_WRITE";
+
+    private final AdminRoleClient adminRoleClient;
+
+    public RoleManagementController(AdminRoleClient adminRoleClient) {
+        this.adminRoleClient = adminRoleClient;
+    }
+
+    @GetMapping
+    public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                        @RequestParam(name = "tab", required = false) String tab,
+                        @RequestParam(name = "selectedUserId", required = false) Long selectedUserId,
+                        @RequestParam(name = "selectedRoleCode", required = false) String selectedRoleCode,
+                        Model model) {
+        model.addAttribute("pageTitle", "역할과 권한");
+        model.addAttribute("activeMenu", "adminRoles");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.active("역할과 권한")
+        ));
+        model.addAttribute("toastMessages", List.of());
+
+        boolean canViewMyRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_MY_READ);
+        boolean canViewTeamRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_READ);
+        boolean canManageRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE);
+
+        List<RoleTemplateView> roleTemplates = List.of();
+        Map<String, RoleTemplateView> roleTemplatesByCode = Map.of();
+        List<PermissionOptionView> permissionOptions = List.of();
+        String roleTemplatesLoadError = null;
+
+        if (canViewTeamRoles || canManageRoles) {
+            try {
+                AdminRoleListResponse response = adminRoleClient.listRoles();
+                roleTemplates = Optional.ofNullable(response)
+                        .map(AdminRoleListResponse::roles)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toRoleTemplateView)
+                        .sorted(roleTemplateComparator())
+                        .toList();
+                roleTemplatesByCode = roleTemplates.stream()
+                        .collect(Collectors.toMap(
+                                RoleTemplateView::code,
+                                template -> template,
+                                (left, right) -> left,
+                                LinkedHashMap::new
+                        ));
+                permissionOptions = buildPermissionOptions(roleTemplates);
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load role templates. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load role templates.", exception);
+                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            }
+        }
+
+        String normalizedRoleCode = normalizeRoleCode(selectedRoleCode);
+        RoleTemplateView selectedRoleTemplate = roleTemplatesByCode.get(normalizedRoleCode);
+        if (selectedRoleTemplate == null && !roleTemplates.isEmpty()) {
+            selectedRoleTemplate = roleTemplates.get(0);
+            normalizedRoleCode = selectedRoleTemplate.code();
+        }
+
+        List<RoleDisplay> myRoles = List.of();
+        List<RolePermissionGroupView> myRolePermissionGroups = List.of();
+        String myRolesLoadError = null;
+
+        if (canViewMyRoles) {
+            try {
+                AdminMyRoleResponse myRoleResponse = adminRoleClient.getMyRoles();
+                myRoles = Optional.ofNullable(myRoleResponse)
+                        .map(AdminMyRoleResponse::roles)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toRoleDisplay)
+                        .toList();
+                Map<String, RoleTemplateView> mapping = roleTemplatesByCode;
+                myRolePermissionGroups = myRoles.stream()
+                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mapping)))
+                        .toList();
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load my roles. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load my roles.", exception);
+                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+            }
+        } else {
+            myRolesLoadError = "내 역할을 조회할 권한이 없습니다.";
+        }
+
+        List<TeamMemberView> teamMembers = List.of();
+        TeamMemberView selectedTeamMember = null;
+        String teamMembersLoadError = null;
+        Long resolvedSelectedUserId = selectedUserId;
+
+        if (canViewTeamRoles) {
+            try {
+                AdminRoleUserListResponse userResponse = adminRoleClient.listAdminUsers();
+                teamMembers = Optional.ofNullable(userResponse)
+                        .map(AdminRoleUserListResponse::users)
+                        .orElseGet(List::of)
+                        .stream()
+                        .map(this::toTeamMemberView)
+                        .sorted(teamMemberComparator())
+                        .toList();
+            } catch (RestClientResponseException exception) {
+                log.warn("Failed to load team members. status={}, body={}",
+                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+            } catch (RestClientException | IllegalStateException exception) {
+                log.warn("Failed to load team members.", exception);
+                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+            }
+        } else {
+            teamMembersLoadError = "팀원 역할을 조회할 권한이 없습니다.";
+        }
+
+        if (!teamMembers.isEmpty()) {
+            Long currentSelection = resolvedSelectedUserId;
+            boolean hasSelectedMember = currentSelection != null && teamMembers.stream()
+                    .anyMatch(member -> Objects.equals(member.id(), currentSelection));
+            if (!hasSelectedMember) {
+                resolvedSelectedUserId = teamMembers.get(0).id();
+            }
+            Long candidateId = resolvedSelectedUserId;
+            selectedTeamMember = teamMembers.stream()
+                    .filter(member -> Objects.equals(member.id(), candidateId))
+                    .findFirst()
+                    .orElse(null);
+        } else {
+            resolvedSelectedUserId = null;
+        }
+
+        List<RoleDisplay> assignableRoles = roleTemplates.stream()
+                .map(RoleTemplateView::role)
+                .toList();
+
+        boolean teamRoleEditorAvailable = canManageRoles
+                && selectedTeamMember != null
+                && !assignableRoles.isEmpty();
+
+        String normalizedTab = normalizeTab(tab, canViewTeamRoles, canManageRoles);
+
+        model.addAttribute("tab", normalizedTab);
+        model.addAttribute("canViewMyRoles", canViewMyRoles);
+        model.addAttribute("canViewTeamTab", canViewTeamRoles);
+        model.addAttribute("canManageRoles", canManageRoles);
+        model.addAttribute("hasRoleStructureAccess", canViewTeamRoles || canManageRoles);
+
+        model.addAttribute("myRoles", myRoles);
+        model.addAttribute("myRolePermissionGroups", myRolePermissionGroups);
+        model.addAttribute("myRolesLoadError", myRolesLoadError);
+
+        model.addAttribute("teamMembers", teamMembers);
+        model.addAttribute("teamMemberCount", teamMembers.size());
+        model.addAttribute("teamMembersLoadError", teamMembersLoadError);
+        model.addAttribute("selectedTeamMemberId", resolvedSelectedUserId);
+        Map<String, RoleTemplateView> mappingForTeam = roleTemplatesByCode;
+        List<RolePermissionGroupView> selectedTeamMemberRoleGroups = selectedTeamMember == null
+                ? List.of()
+                : selectedTeamMember.roles().stream()
+                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mappingForTeam)))
+                        .toList();
+
+        model.addAttribute("selectedTeamMember", selectedTeamMember);
+        model.addAttribute("selectedTeamMemberRoleGroups", selectedTeamMemberRoleGroups);
+        model.addAttribute("assignableRoles", assignableRoles);
+        model.addAttribute("teamRoleEditorAvailable", teamRoleEditorAvailable);
+
+        model.addAttribute("roleTemplates", roleTemplates);
+        model.addAttribute("roleTemplateCount", roleTemplates.size());
+        model.addAttribute("selectedRoleTemplate", selectedRoleTemplate);
+        model.addAttribute("selectedRoleCode", normalizedRoleCode);
+        model.addAttribute("roleTemplatesLoadError", roleTemplatesLoadError);
+        model.addAttribute("permissionOptions", permissionOptions);
+
+        return "admin-role/index";
+    }
+
+    @PostMapping("/team-members/{userId}/roles")
+    public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                        @PathVariable Long userId,
+                                        @RequestParam(name = "roleCodes", required = false) List<String> roleCodes,
+                                        RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
+            return redirectToTeam(userId);
+        }
+
+        Set<String> desiredRoles = new LinkedHashSet<>(normalizeRoleCodes(roleCodes));
+
+        try {
+            AdminRoleUserListResponse response = adminRoleClient.listAdminUsers();
+            Optional<AdminUserRoleResponse> targetUser = Optional.ofNullable(response)
+                    .map(AdminRoleUserListResponse::users)
+                    .orElseGet(List::of)
+                    .stream()
+                    .filter(user -> Objects.equals(user.userId(), userId))
+                    .findFirst();
+            if (targetUser.isEmpty()) {
+                redirectAttributes.addFlashAttribute("flashStatus", "error");
+                redirectAttributes.addFlashAttribute("flashMessage", "선택한 팀원을 찾을 수 없습니다.");
+                return redirectToTeam(userId);
+            }
+
+            Set<String> currentRoles = Optional.of(targetUser.get())
+                    .map(AdminUserRoleResponse::roles)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(RoleSummaryResponse::code)
+                    .map(this::normalizeRoleCode)
+                    .filter(StringUtils::hasText)
+                    .collect(Collectors.toCollection(LinkedHashSet::new));
+
+            Set<String> toGrant = new LinkedHashSet<>(desiredRoles);
+            toGrant.removeAll(currentRoles);
+            Set<String> toRevoke = new LinkedHashSet<>(currentRoles);
+            toRevoke.removeAll(desiredRoles);
+
+            for (String code : toGrant) {
+                adminRoleClient.grantRole(userId, new AssignRoleRequest(code));
+            }
+            for (String code : toRevoke) {
+                adminRoleClient.revokeRole(userId, code);
+            }
+
+            String message = toGrant.isEmpty() && toRevoke.isEmpty()
+                    ? "변경 사항이 없어 기존 구성을 유지했습니다."
+                    : "팀원 역할 구성을 업데이트했습니다.";
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", message);
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update team member roles. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update team member roles.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        }
+
+        return redirectToTeam(userId);
+    }
+
+    @PostMapping("/new")
+    public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @RequestParam String code,
+                             @RequestParam String displayName,
+                             @RequestParam String description,
+                             @RequestParam(name = "permissions", required = false) List<String> permissions,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 생성할 권한이 없습니다.");
+            return redirectToManage(null);
+        }
+
+        String normalizedCode = normalizeRoleCode(code);
+        String normalizedDisplayName = StringUtils.hasText(displayName) ? displayName.trim() : "";
+        String normalizedDescription = StringUtils.hasText(description) ? description.trim() : "";
+
+        if (!StringUtils.hasText(normalizedCode) || !StringUtils.hasText(normalizedDisplayName)
+                || !StringUtils.hasText(normalizedDescription)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 코드, 이름, 설명을 모두 입력해 주세요.");
+            return redirectToManage(normalizedCode);
+        }
+
+        try {
+            adminRoleClient.createRole(new CreateRoleRequest(normalizedCode, normalizedDisplayName, normalizedDescription));
+            List<String> permissionKeys = normalizePermissionKeys(permissions);
+            if (!permissionKeys.isEmpty()) {
+                adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
+            }
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to create role. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 입력값을 확인해 주세요.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to create role.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+        }
+
+        return redirectToManage(normalizedCode);
+    }
+
+    @PostMapping("/{roleCode}/permissions")
+    public String updateRolePermissions(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                        @PathVariable String roleCode,
+                                        @RequestParam(name = "permissions", required = false) List<String> permissions,
+                                        RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
+            return redirectToManage(roleCode);
+        }
+
+        String normalizedCode = normalizeRoleCode(roleCode);
+        List<String> permissionKeys = normalizePermissionKeys(permissions);
+
+        try {
+            adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한 구성을 업데이트했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to update role permissions. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to update role permissions.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+        }
+
+        return redirectToManage(normalizedCode);
+    }
+
+    @PostMapping("/{roleCode}/delete")
+    public String deleteRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                             @PathVariable String roleCode,
+                             RedirectAttributes redirectAttributes) {
+        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제할 권한이 없습니다.");
+            return redirectToManage(roleCode);
+        }
+
+        String normalizedCode = normalizeRoleCode(roleCode);
+        if (!StringUtils.hasText(normalizedCode)) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제할 역할 코드를 확인해 주세요.");
+            return redirectToManage(null);
+        }
+
+        try {
+            adminRoleClient.deleteRole(normalizedCode);
+            redirectAttributes.addFlashAttribute("flashStatus", "success");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제했습니다.");
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to delete role. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to delete role.", exception);
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+        }
+
+        return redirectToManage(null);
+    }
+
+    private Comparator<RoleTemplateView> roleTemplateComparator() {
+        return Comparator
+                .comparing(RoleTemplateView::displayName, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
+                .thenComparing(RoleTemplateView::code, String.CASE_INSENSITIVE_ORDER);
+    }
+
+    private Comparator<TeamMemberView> teamMemberComparator() {
+        return Comparator
+                .comparing(TeamMemberView::nickname, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
+                .thenComparing(TeamMemberView::id, Comparator.nullsLast(Long::compareTo));
+    }
+
+    private List<PermissionView> resolvePermissions(String roleCode, Map<String, RoleTemplateView> mapping) {
+        if (!StringUtils.hasText(roleCode) || mapping.isEmpty()) {
+            return List.of();
+        }
+        String normalized = normalizeRoleCode(roleCode);
+        RoleTemplateView template = mapping.get(normalized);
+        if (template == null || template.permissions() == null) {
+            return List.of();
+        }
+        return template.permissions();
+    }
+
+    private RoleTemplateView toRoleTemplateView(RoleDetailResponse response) {
+        RoleDisplay display = new RoleDisplay(
+                response.id(),
+                response.code(),
+                response.displayName(),
+                response.description(),
+                response.builtin()
+        );
+        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toPermissionView)
+                .toList();
+        return new RoleTemplateView(display, permissions);
+    }
+
+    private RoleDisplay toRoleDisplay(RoleSummaryResponse response) {
+        if (response == null) {
+            return new RoleDisplay(null, "", "", "", false);
+        }
+        return new RoleDisplay(
+                response.id(),
+                response.code(),
+                response.displayName(),
+                response.description(),
+                response.builtin()
+        );
+    }
+
+    private PermissionView toPermissionView(PermissionSummaryResponse response) {
+        if (response == null) {
+            return new PermissionView("", "");
+        }
+        return new PermissionView(response.key(), response.description());
+    }
+
+    private TeamMemberView toTeamMemberView(AdminUserRoleResponse response) {
+        List<RoleDisplay> roles = Optional.ofNullable(response.roles())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toRoleDisplay)
+                .toList();
+        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
+                .orElseGet(List::of)
+                .stream()
+                .map(this::toPermissionView)
+                .toList();
+        return new TeamMemberView(
+                response.userId(),
+                response.nickname(),
+                response.email(),
+                response.superAdmin(),
+                roles,
+                permissions
+        );
+    }
+
+    private List<PermissionOptionView> buildPermissionOptions(List<RoleTemplateView> templates) {
+        if (templates.isEmpty()) {
+            return List.of();
+        }
+        Map<String, PermissionOptionView> deduplicated = new LinkedHashMap<>();
+        for (RoleTemplateView template : templates) {
+            for (PermissionView permission : template.permissions()) {
+                deduplicated.putIfAbsent(permission.key(), new PermissionOptionView(permission.key(), permission.description()));
+            }
+        }
+        Comparator<PermissionOptionView> comparator = Comparator
+                .comparing(PermissionOptionView::label, String.CASE_INSENSITIVE_ORDER)
+                .thenComparing(PermissionOptionView::key, String.CASE_INSENSITIVE_ORDER);
+        return deduplicated.values().stream().sorted(comparator).toList();
+    }
+
+    private String normalizeTab(String requestedTab, boolean canViewTeamRoles, boolean canManageRoles) {
+        List<String> order = new ArrayList<>();
+        order.add(TAB_MY);
+        if (canViewTeamRoles) {
+            order.add(TAB_TEAM);
+        }
+        if (canManageRoles) {
+            order.add(TAB_MANAGE);
+        }
+        String normalized = StringUtils.hasText(requestedTab) ? requestedTab.trim().toLowerCase(Locale.ROOT) : TAB_MY;
+        if (!order.contains(normalized)) {
+            normalized = order.get(0);
+        }
+        return normalized;
+    }
+
+    private String normalizeRoleCode(String code) {
+        if (!StringUtils.hasText(code)) {
+            return "";
+        }
+        return code.trim().toUpperCase(Locale.ROOT);
+    }
+
+    private List<String> normalizeRoleCodes(List<String> rawCodes) {
+        if (rawCodes == null || rawCodes.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String raw : rawCodes) {
+            String value = normalizeRoleCode(raw);
+            if (StringUtils.hasText(value)) {
+                normalized.add(value);
+            }
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private List<String> normalizePermissionKeys(List<String> rawKeys) {
+        if (rawKeys == null || rawKeys.isEmpty()) {
+            return List.of();
+        }
+        Set<String> normalized = new LinkedHashSet<>();
+        for (String raw : rawKeys) {
+            if (!StringUtils.hasText(raw)) {
+                continue;
+            }
+            normalized.add(raw.trim().toUpperCase(Locale.ROOT));
+        }
+        if (normalized.isEmpty()) {
+            return List.of();
+        }
+        return List.copyOf(normalized);
+    }
+
+    private String redirectToTeam(Long selectedUserId) {
+        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
+                .queryParam("tab", TAB_TEAM);
+        if (selectedUserId != null) {
+            builder.queryParam("selectedUserId", selectedUserId);
+        }
+        return "redirect:" + builder.toUriString();
+    }
+
+    private String redirectToManage(String selectedRoleCode) {
+        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
+                .queryParam("tab", TAB_MANAGE);
+        if (StringUtils.hasText(selectedRoleCode)) {
+            builder.queryParam("selectedRoleCode", normalizeRoleCode(selectedRoleCode));
+        }
+        return "redirect:" + builder.toUriString();
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/PermissionOptionView.java b/src/main/java/apu/saerok_admin/web/view/role/PermissionOptionView.java
new file mode 100644
index 0000000..58d8eb3
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/PermissionOptionView.java
@@ -0,0 +1,26 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record PermissionOptionView(
+        String key,
+        String description
+) {
+
+    public PermissionOptionView {
+        key = normalizeKey(key);
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(description) ? description : key;
+    }
+
+    private static String normalizeKey(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/PermissionView.java b/src/main/java/apu/saerok_admin/web/view/role/PermissionView.java
new file mode 100644
index 0000000..0ff967c
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/PermissionView.java
@@ -0,0 +1,26 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record PermissionView(
+        String key,
+        String description
+) {
+
+    public PermissionView {
+        key = normalizeKey(key);
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(description) ? description : key;
+    }
+
+    private static String normalizeKey(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/RoleDisplay.java b/src/main/java/apu/saerok_admin/web/view/role/RoleDisplay.java
new file mode 100644
index 0000000..7203b70
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/RoleDisplay.java
@@ -0,0 +1,34 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record RoleDisplay(
+        Long id,
+        String code,
+        String displayName,
+        String description,
+        boolean builtin
+) {
+
+    public RoleDisplay {
+        code = normalizeCode(code);
+        displayName = StringUtils.hasText(displayName) ? displayName.trim() : code;
+        description = StringUtils.hasText(description) ? description.trim() : "";
+    }
+
+    public String label() {
+        return StringUtils.hasText(displayName) ? displayName : code;
+    }
+
+    public boolean hasDescription() {
+        return StringUtils.hasText(description);
+    }
+
+    private static String normalizeCode(String value) {
+        if (!StringUtils.hasText(value)) {
+            return "";
+        }
+        return value.trim().toUpperCase(Locale.ROOT);
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java b/src/main/java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java
new file mode 100644
index 0000000..4815701
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java
@@ -0,0 +1,17 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+
+public record RolePermissionGroupView(
+        RoleDisplay role,
+        List<PermissionView> permissions
+) {
+
+    public RolePermissionGroupView {
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/RoleTemplateView.java b/src/main/java/apu/saerok_admin/web/view/role/RoleTemplateView.java
new file mode 100644
index 0000000..54aec92
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/RoleTemplateView.java
@@ -0,0 +1,47 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record RoleTemplateView(
+        RoleDisplay role,
+        List<PermissionView> permissions
+) {
+
+    public RoleTemplateView {
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public Long id() {
+        return role.id();
+    }
+
+    public String code() {
+        return role.code();
+    }
+
+    public String displayName() {
+        return role.displayName();
+    }
+
+    public String description() {
+        return role.description();
+    }
+
+    public boolean builtin() {
+        return role.builtin();
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+
+    public boolean hasPermission(String permissionKey) {
+        if (!StringUtils.hasText(permissionKey)) {
+            return false;
+        }
+        String normalized = permissionKey.trim().toUpperCase(Locale.ROOT);
+        return permissions.stream().anyMatch(permission -> normalized.equals(permission.key()));
+    }
+}
diff --git a/src/main/java/apu/saerok_admin/web/view/role/TeamMemberView.java b/src/main/java/apu/saerok_admin/web/view/role/TeamMemberView.java
new file mode 100644
index 0000000..83b90e8
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/TeamMemberView.java
@@ -0,0 +1,40 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+import java.util.Locale;
+import org.springframework.util.StringUtils;
+
+public record TeamMemberView(
+        Long id,
+        String nickname,
+        String email,
+        boolean superAdmin,
+        List<RoleDisplay> roles,
+        List<PermissionView> permissions
+) {
+
+    public TeamMemberView {
+        roles = roles == null ? List.of() : List.copyOf(roles);
+        permissions = permissions == null ? List.of() : List.copyOf(permissions);
+    }
+
+    public String initials() {
+        if (!StringUtils.hasText(nickname)) {
+            return "팀";
+        }
+        String trimmed = nickname.trim();
+        return trimmed.substring(0, Math.min(2, trimmed.length()));
+    }
+
+    public boolean hasRole(String roleCode) {
+        if (!StringUtils.hasText(roleCode)) {
+            return false;
+        }
+        String normalized = roleCode.trim().toUpperCase(Locale.ROOT);
+        return roles.stream().anyMatch(role -> normalized.equals(role.code()));
+    }
+
+    public boolean hasPermissions() {
+        return !permissions.isEmpty();
+    }
+}
diff --git a/src/main/resources/static/css/admin-theme.css b/src/main/resources/static/css/admin-theme.css
index ddde8d9..216d8a7 100644
--- a/src/main/resources/static/css/admin-theme.css
+++ b/src/main/resources/static/css/admin-theme.css
@@ -446,3 +446,245 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     display: flex; align-items: center; justify-content: center;
     color: var(--text-muted); pointer-events: none;
 }
+
+/* ===== Role management ===== */
+.role-tab-nav {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.75rem;
+}
+.role-tab {
+    flex: 1;
+    min-width: 200px;
+    text-decoration: none;
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1rem 1.25rem;
+    color: inherit;
+    transition: all 0.2s ease;
+    background: #fff;
+}
+.role-tab.is-active {
+    border-color: var(--accent-primary);
+    box-shadow: 0 10px 30px rgba(15, 23, 42, 0.08);
+}
+.role-tab.is-disabled {
+    cursor: not-allowed;
+    opacity: 0.6;
+    background: var(--surface-muted);
+}
+.role-pill-wrap,
+.role-chip-row {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.75rem;
+}
+.role-pill,
+.role-chip {
+    border: 1px solid var(--border-subtle);
+    border-radius: 999px;
+    padding: 0.35rem 0.85rem;
+    background: var(--surface-muted);
+    font-size: 0.9rem;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.35rem;
+    line-height: 1.2;
+}
+.role-chip--action {
+    cursor: pointer;
+    background: var(--surface-primary);
+    border-color: rgba(59, 130, 246, 0.24);
+    box-shadow: 0 6px 18px rgba(15, 23, 42, 0.08);
+    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+}
+.role-chip--action:hover,
+.role-chip--action:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: 0 12px 30px rgba(59, 130, 246, 0.16);
+    transform: translateY(-1px);
+    outline: none;
+}
+.role-chip__cta {
+    font-size: 0.75rem;
+    color: var(--accent-primary);
+    text-transform: uppercase;
+    letter-spacing: 0.06em;
+    font-weight: 600;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.15rem;
+}
+.role-permission-list {
+    list-style: none;
+    padding: 0;
+    margin: 0;
+    display: flex;
+    flex-direction: column;
+    gap: 0.75rem;
+}
+.role-permission-trigger-grid {
+    display: grid;
+    gap: 1rem;
+    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
+}
+.role-permission-trigger {
+    width: 100%;
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-xl);
+    padding: 1.15rem 1.25rem;
+    background: var(--surface-primary);
+    display: flex;
+    flex-direction: column;
+    gap: 0.85rem;
+    text-align: left;
+    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+}
+.role-permission-trigger:hover,
+.role-permission-trigger:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: var(--shadow-soft);
+    transform: translateY(-2px);
+    outline: none;
+}
+.role-permission-trigger__title {
+    font-size: 1.05rem;
+    font-weight: 600;
+}
+.role-permission-trigger__meta {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    gap: 0.5rem;
+    font-size: 0.85rem;
+}
+.role-permission-trigger__cta {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.15rem;
+    font-weight: 600;
+    color: var(--accent-primary);
+}
+.role-permission-modal {
+    border-radius: var(--radius-xl);
+    border: none;
+    box-shadow: var(--shadow-overlay);
+    overflow: hidden;
+}
+.role-permission-modal__eyebrow {
+    font-size: 0.75rem;
+    font-weight: 700;
+    letter-spacing: 0.12em;
+    color: var(--accent-primary-strong);
+    margin-bottom: 0.35rem;
+}
+.role-permission-modal__description {
+    font-size: 0.95rem;
+}
+.permission-modal-list {
+    list-style: none;
+    margin: 0;
+    padding: 0;
+    display: flex;
+    flex-direction: column;
+    gap: 0.85rem;
+}
+.permission-modal-item {
+    border: 1px solid rgba(59, 130, 246, 0.25);
+    border-radius: var(--radius-lg);
+    padding: 0.85rem 1rem;
+    background: linear-gradient(135deg, rgba(59, 130, 246, 0.08), rgba(15, 23, 42, 0.02));
+    box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.4);
+}
+.permission-modal-description {
+    font-weight: 600;
+    font-size: 1rem;
+    margin-bottom: 0.35rem;
+}
+.permission-modal-key {
+    display: inline-flex;
+    align-items: center;
+    gap: 0.25rem;
+    font-family: 'JetBrains Mono', 'SFMono-Regular', Consolas, monospace;
+    font-size: 0.75rem;
+    letter-spacing: 0.08em;
+    text-transform: uppercase;
+    color: var(--text-muted);
+    background: rgba(15, 23, 42, 0.05);
+    border-radius: 999px;
+    padding: 0.1rem 0.75rem;
+}
+.permission-modal-empty {
+    border: 1px dashed var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1rem;
+    color: var(--text-muted);
+    text-align: center;
+}
+.team-member-grid {
+    display: grid;
+    gap: 0.85rem;
+    grid-template-columns: repeat(auto-fill, minmax(220px, 1fr));
+}
+.team-member-card {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 0.75rem;
+    display: flex;
+    gap: 0.85rem;
+    text-decoration: none;
+    color: inherit;
+    transition: border-color 0.2s ease, box-shadow 0.2s ease;
+}
+.team-member-card.is-active {
+    border-color: var(--accent-primary);
+    box-shadow: var(--shadow-soft);
+}
+.team-member-card__avatar {
+    width: 48px;
+    height: 48px;
+    border-radius: 999px;
+    background: var(--surface-muted);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    font-weight: 600;
+}
+.team-member-card__body {
+    flex: 1;
+    min-width: 0;
+}
+.role-editor-panel summary {
+    cursor: pointer;
+    font-weight: 600;
+}
+.permission-grid {
+    display: grid;
+    gap: 0.75rem;
+    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
+}
+.role-option,
+.permission-option {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-md);
+    padding: 0.65rem;
+    gap: 0.5rem;
+    align-items: flex-start;
+}
+.role-template-list {
+    display: flex;
+    flex-direction: column;
+    gap: 0.5rem;
+}
+.role-template-item {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-md);
+    padding: 0.75rem;
+    text-decoration: none;
+    color: inherit;
+    display: block;
+}
+.role-template-item.is-active {
+    border-color: var(--accent-primary);
+    background: rgba(59, 130, 246, 0.08);
+}
diff --git a/src/main/resources/templates/admin-role/index.html b/src/main/resources/templates/admin-role/index.html
new file mode 100644
index 0000000..4f23d6c
--- /dev/null
+++ b/src/main/resources/templates/admin-role/index.html
@@ -0,0 +1,547 @@
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <div class="card card-elevated mb-4">
+        <div class="card-body card-body-comfy">
+            <div class="d-flex flex-wrap justify-content-between align-items-center gap-3">
+                <div>
+                    <h1 class="section-heading mb-2">역할과 권한</h1>
+                    <p class="text-muted mb-0">팀의 역할 구조를 한눈에 파악하고 필요한 권한을 빠르게 조정하세요.</p>
+                </div>
+                <div class="text-muted small text-end">
+                    <div class="fw-semibold">내 역할 요약</div>
+                    <div th:if="${currentAdminProfile.hasRoleDisplayNames()}"
+                         th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">
+                        확인 중...
+                    </div>
+                    <div th:unless="${currentAdminProfile.hasRoleDisplayNames()}">부여된 역할 정보를 불러오는 중입니다.</div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div class="alert d-flex align-items-center mb-4"
+         th:if="${flashMessage != null}"
+         th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+        <i class="bi"
+           th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+        <span th:text="${flashMessage}">알림</span>
+    </div>
+
+    <div class="card card-elevated mb-4">
+        <div class="card-body card-body-tight">
+            <div class="role-tab-nav">
+                <a th:href="@{/admin/roles(tab='my')}"
+                   class="role-tab"
+                   th:classappend="${tab} == 'my' ? ' is-active' : ''">
+                    <div class="fw-semibold">내 역할</div>
+                    <div class="text-muted small">나에게 부여된 역할과 권한</div>
+                </a>
+                <th:block th:if="${canViewTeamTab}">
+                    <a th:href="${selectedTeamMemberId != null} ? @{/admin/roles(tab='team', selectedUserId=${selectedTeamMemberId})} : @{/admin/roles(tab='team')}"
+                       class="role-tab"
+                       th:classappend="${tab} == 'team' ? ' is-active' : ''">
+                        <div class="fw-semibold">팀원 역할</div>
+                        <div class="text-muted small">팀원의 역할 현황과 권한</div>
+                    </a>
+                </th:block>
+                <th:block th:unless="${canViewTeamTab}">
+                    <span class="role-tab is-disabled" title="ADMIN_ROLE_READ 권한이 필요합니다.">
+                        <div class="fw-semibold">팀원 역할</div>
+                        <div class="text-muted small">권한이 없어 접근할 수 없습니다.</div>
+                    </span>
+                </th:block>
+                <th:block th:if="${canManageRoles}">
+                    <a th:href="${#strings.isEmpty(selectedRoleCode)} ? @{/admin/roles(tab='manage')} : @{/admin/roles(tab='manage', selectedRoleCode=${selectedRoleCode})}"
+                       class="role-tab"
+                       th:classappend="${tab} == 'manage' ? ' is-active' : ''">
+                        <div class="fw-semibold">역할 관리</div>
+                        <div class="text-muted small">역할 템플릿 편집 및 생성</div>
+                    </a>
+                </th:block>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'my'">
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
+                    <div>
+                        <h2 class="h5 mb-1">내가 가진 역할</h2>
+                        <div class="text-muted small">현재 세션에 부여된 역할과 설명입니다.</div>
+                    </div>
+                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRoles)} + '개 역할'"></span>
+                </div>
+                <div class="alert alert-warning" th:if="${myRolesLoadError != null}" th:text="${myRolesLoadError}">로드 오류</div>
+                <div th:if="${myRolesLoadError == null}">
+                    <div class="text-muted" th:if="${#lists.isEmpty(myRoles)}">
+                        아직 부여된 역할이 없습니다.
+                    </div>
+                    <div class="role-pill-wrap" th:if="${!#lists.isEmpty(myRoles)}">
+                        <div class="role-pill" th:each="role : ${myRoles}">
+                            <div class="fw-semibold" th:text="${role.label()}">팀 멤버</div>
+                            <div class="text-muted small" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</div>
+                            <div class="text-muted small" th:unless="${role.hasDescription()}" th:text="${role.code()}">TEAM_MEMBER</div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+
+        <div class="card card-elevated mb-4">
+            <div class="card-body card-body-comfy">
+                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
+                    <div>
+                        <h2 class="h5 mb-1">역할별 권한</h2>
+                        <div class="text-muted small">역할 카드를 눌러 포함된 권한을 모달에서 확인하세요.</div>
+                    </div>
+                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRolePermissionGroups)} + '개 역할'">0개 역할</span>
+                </div>
+                <div class="alert alert-info"
+                     th:if="${myRolesLoadError == null && #lists.isEmpty(myRolePermissionGroups)}">
+                    역할 템플릿을 불러오지 못해 권한 목록을 표시할 수 없습니다.
+                </div>
+                <div class="role-permission-trigger-grid" th:if="${!#lists.isEmpty(myRolePermissionGroups)}">
+                    <div class="role-permission-trigger-card" th:each="group : ${myRolePermissionGroups}">
+                        <button type="button"
+                                class="role-permission-trigger"
+                                data-role-modal-trigger="true"
+                                th:data-role-code="${group.role().code()}"
+                                th:data-role-label="${group.role().label()}"
+                                th:data-role-description="${group.role().description()}"
+                                th:data-role-permission-template="${'permission-template-my-' + group.role().code()}"
+                                th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                            <div>
+                                <div class="role-permission-trigger__title" th:text="${group.role().label()}">팀 멤버</div>
+                                <div class="text-muted small" th:if="${group.role().hasDescription()}" th:text="${group.role().description()}">팀 공통 권한</div>
+                                <div class="text-muted small" th:unless="${group.role().hasDescription()}" th:text="${group.role().code()}">TEAM_MEMBER</div>
+                            </div>
+                            <div class="role-permission-trigger__meta">
+                                <span class="text-muted small" th:text="${group.permissions().size()} + '개 권한'"></span>
+                                <span class="role-permission-trigger__cta">
+                                    권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
+                                </span>
+                            </div>
+                        </button>
+                        <template th:id="${'permission-template-my-' + group.role().code()}">
+                            <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
+                                <li th:each="permission : ${group.permissions()}">
+                                    <div class="permission-modal-item">
+                                        <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
+                                        <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
+                                    </div>
+                                </li>
+                            </ul>
+                            <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
+                                이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
+                            </div>
+                        </template>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'team'">
+        <div class="alert alert-warning" th:if="${!canViewTeamTab}">
+            팀원 역할을 확인하려면 ADMIN_ROLE_READ 권한이 필요합니다.
+        </div>
+        <div class="row g-4" th:if="${canViewTeamTab}">
+            <div class="col-12 col-xl-5">
+                <div class="card card-elevated h-100">
+                    <div class="card-body card-body-comfy d-flex flex-column h-100">
+                        <div class="d-flex justify-content-between align-items-center flex-wrap gap-3 mb-3">
+                            <div>
+                                <h2 class="h5 mb-1">팀원 목록</h2>
+                                <div class="text-muted small" th:text="|${teamMemberCount}명 참여 중|">0명 참여 중</div>
+                            </div>
+                        </div>
+                        <div class="alert alert-warning" th:if="${teamMembersLoadError != null}" th:text="${teamMembersLoadError}">로드 오류</div>
+                        <div class="flex-grow-1" th:if="${teamMembersLoadError == null}">
+                            <div class="text-muted text-center py-5" th:if="${#lists.isEmpty(teamMembers)}">
+                                관리 대상 팀원이 없습니다.
+                            </div>
+                            <div class="team-member-grid" th:if="${!#lists.isEmpty(teamMembers)}">
+                                <a class="team-member-card"
+                                   th:each="member : ${teamMembers}"
+                                   th:href="@{/admin/roles(tab='team', selectedUserId=${member.id()})}"
+                                   th:classappend="${selectedTeamMemberId != null && selectedTeamMemberId == member.id()} ? ' is-active' : ''">
+                                    <div class="team-member-card__avatar">
+                                        <span th:text="${member.initials()}">팀</span>
+                                    </div>
+                                    <div class="team-member-card__body">
+                                        <div class="d-flex align-items-center gap-2">
+                                            <div class="fw-semibold text-truncate" th:text="${member.nickname()}">운영자</div>
+                                            <span class="badge bg-warning-subtle text-dark" th:if="${member.superAdmin()}">SUPER</span>
+                                        </div>
+                                        <div class="role-chip-row">
+                                            <span class="role-chip" th:each="role : ${member.roles()}" th:text="${role.label()}">팀 멤버</span>
+                                            <span class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">역할 없음</span>
+                                        </div>
+                                    </div>
+                                </a>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+            <div class="col-12 col-xl-7">
+                <div class="card card-elevated h-100">
+                    <div class="card-body card-body-comfy h-100">
+                        <div th:if="${selectedTeamMember == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
+                            왼쪽에서 팀원을 선택하면 상세 역할과 권한을 확인할 수 있습니다.
+                        </div>
+                        <div th:if="${selectedTeamMember != null}" class="d-flex flex-column gap-4 h-100">
+                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
+                                <div>
+                                    <div class="d-flex align-items-center gap-2">
+                                        <h2 class="h4 mb-0" th:text="${selectedTeamMember.nickname()}">운영자</h2>
+                                        <span class="badge bg-warning-subtle text-dark" th:if="${selectedTeamMember.superAdmin()}">슈퍼 관리자</span>
+                                    </div>
+                                </div>
+                                    <div class="text-end">
+                                        <div class="text-muted small">보유 역할</div>
+                                        <div class="fw-semibold" th:text="${#lists.size(selectedTeamMemberRoleGroups)} + '개'"></div>
+                                    </div>
+                            </div>
+                            <div>
+                                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2 mb-2">
+                                    <div class="text-muted small">역할</div>
+                                    <div class="text-muted small">역할 태그를 눌러 권한을 확인하세요.</div>
+                                </div>
+                                <div class="role-chip-row" th:if="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
+                                    <th:block th:each="group, iterStat : ${selectedTeamMemberRoleGroups}">
+                                        <th:block th:with="templateId=${'permission-template-team-' + group.role().code() + '-' + iterStat.index}">
+                                            <button type="button"
+                                                    class="role-chip role-chip--action"
+                                                    data-role-modal-trigger="true"
+                                                    th:data-role-code="${group.role().code()}"
+                                                    th:data-role-label="${group.role().label()}"
+                                                    th:data-role-description="${group.role().description()}"
+                                                    th:data-role-permission-template="${templateId}"
+                                                    th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                                                <span class="fw-semibold" th:text="${group.role().label()}">역할 이름</span>
+                                                <span class="role-chip__cta">
+        권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
+    </span>
+                                            </button>
+                                            <template th:id="${templateId}">
+                                                <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
+                                                    <li th:each="permission : ${group.permissions()}">
+                                                        <div class="permission-modal-item">
+                                                            <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
+                                                            <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
+                                                        </div>
+                                                    </li>
+                                                </ul>
+                                                <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
+                                                    이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
+                                                </div>
+                                            </template>
+
+                                        </th:block>
+                                    </th:block>
+                                </div>
+                                <div class="text-muted" th:unless="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
+                                    부여된 역할이 없습니다.
+                                </div>
+                            </div>
+                            <div th:if="${teamRoleEditorAvailable}">
+                                <details class="role-editor-panel">
+                                    <summary>역할 편집</summary>
+                                    <div class="mt-3">
+                                        <form th:action="@{|/admin/roles/team-members/${selectedTeamMember.id()}/roles|}"
+                                              method="post" class="role-editor-form">
+                                            <div class="alert alert-light border"
+                                                 th:if="${#lists.isEmpty(assignableRoles)}">
+                                                편집 가능한 역할 템플릿이 없습니다.
+                                            </div>
+                                            <div class="permission-grid" th:if="${!#lists.isEmpty(assignableRoles)}">
+                                                <label class="form-check role-option" th:each="role : ${assignableRoles}">
+                                                    <input class="form-check-input" type="checkbox" name="roleCodes"
+                                                           th:value="${role.code()}" th:checked="${selectedTeamMember.hasRole(role.code())}">
+                                                    <div>
+                                                        <div class="fw-semibold" th:text="${role.label()}">역할 이름</div>
+                                                        <small class="text-muted" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</small>
+                                                        <small class="text-muted" th:unless="${role.hasDescription()}" th:text="${role.code()}">CODE</small>
+                                                    </div>
+                                                </label>
+                                            </div>
+                                            <div class="d-flex justify-content-between align-items-center mt-3">
+                                                <div class="text-muted small">선택한 항목이 즉시 저장됩니다.</div>
+                                                <button type="submit" class="btn btn-primary btn-sm">변경 사항 저장</button>
+                                            </div>
+                                        </form>
+                                    </div>
+                                </details>
+                            </div>
+                            <div th:if="${!teamRoleEditorAvailable && canManageRoles}" class="alert alert-light border">
+                                역할 템플릿 정보를 불러오지 못해 편집 UI를 표시할 수 없습니다.
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div th:if="${tab} == 'manage'">
+        <div class="alert alert-warning" th:if="${!canManageRoles}">
+            역할 관리 기능은 ADMIN_ROLE_WRITE 권한을 가진 사용자만 사용할 수 있습니다.
+        </div>
+        <div th:if="${canManageRoles}">
+            <div class="card card-elevated mb-4">
+                <div class="card-body card-body-comfy">
+                    <div class="d-flex justify-content-between align-items-center flex-wrap gap-3">
+                        <div>
+                            <h2 class="h5 mb-1">새 역할 추가</h2>
+                            <div class="text-muted small">역할 코드, 표시 이름, 설명을 입력한 뒤 필요한 권한을 선택하세요.</div>
+                        </div>
+                        <button class="btn btn-outline-primary btn-sm" type="button" data-bs-toggle="collapse" data-bs-target="#newRoleForm">
+                            새 역할 폼 열기
+                        </button>
+                    </div>
+                    <div id="newRoleForm" class="collapse mt-4" th:classappend="${roleTemplateCount == 0} ? ' show' : ''">
+                        <form action="/admin/roles/new" method="post" class="role-editor-form">
+                            <div class="row g-3">
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleCodeInput">역할 코드</label>
+                                    <input type="text" class="form-control" id="roleCodeInput" name="code" placeholder="예: CONTENT_REVIEWER" required>
+                                </div>
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleNameInput">표시 이름</label>
+                                    <input type="text" class="form-control" id="roleNameInput" name="displayName" placeholder="예: 콘텐츠 검토자" required>
+                                </div>
+                                <div class="col-md-4">
+                                    <label class="form-label" for="roleDescriptionInput">설명</label>
+                                    <input type="text" class="form-control" id="roleDescriptionInput" name="description" placeholder="역할 목적을 입력하세요" required>
+                                </div>
+                            </div>
+                            <div class="mt-4">
+                                <div class="text-muted small mb-2">포함할 권한</div>
+                                <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                    선택할 수 있는 권한 목록을 불러오지 못했습니다.
+                                </div>
+                                <div class="permission-grid" th:if="${!#lists.isEmpty(permissionOptions)}">
+                                    <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                        <input class="form-check-input" type="checkbox" name="permissions" th:value="${option.key()}">
+                                        <div>
+                                            <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                            <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                        </div>
+                                    </label>
+                                </div>
+                            </div>
+                            <div class="d-flex justify-content-end mt-3">
+                                <button type="submit" class="btn btn-primary">새 역할 저장</button>
+                            </div>
+                        </form>
+                    </div>
+                </div>
+            </div>
+
+            <div class="row g-4">
+                <div class="col-12 col-xl-4">
+                    <div class="card card-elevated h-100">
+                        <div class="card-body card-body-comfy">
+                            <div class="d-flex justify-content-between align-items-center mb-3">
+                                <div>
+                                    <h2 class="h5 mb-1">역할 목록</h2>
+                                    <div class="text-muted small" th:text="|총 ${roleTemplateCount}개|">총 0개</div>
+                                </div>
+                            </div>
+                            <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
+                            <div class="role-template-list" th:if="${roleTemplatesLoadError == null}">
+                                <div class="text-muted" th:if="${#lists.isEmpty(roleTemplates)}">등록된 역할이 없습니다.</div>
+                                <a class="role-template-item"
+                                   th:each="role : ${roleTemplates}"
+                                   th:href="@{/admin/roles(tab='manage', selectedRoleCode=${role.code()})}"
+                                   th:classappend="${selectedRoleCode == role.code()} ? ' is-active' : ''">
+                                    <div class="fw-semibold" th:text="${role.displayName()}">역할 이름</div>
+                                    <div class="text-muted small" th:text="${role.code()}">ROLE_CODE</div>
+                                </a>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+                <div class="col-12 col-xl-8">
+                    <div class="card card-elevated h-100">
+                        <div class="card-body card-body-comfy h-100">
+                            <div th:if="${selectedRoleTemplate == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
+                                왼쪽 목록에서 편집할 역할을 선택하세요.
+                            </div>
+                            <div th:if="${selectedRoleTemplate != null}" class="d-flex flex-column gap-4 h-100">
+                                <div class="d-flex justify-content-between align-items-start gap-3 flex-wrap">
+                                    <div>
+                                        <h2 class="h4 mb-1" th:text="${selectedRoleTemplate.displayName()}">역할 이름</h2>
+                                        <div class="text-muted" th:text="${selectedRoleTemplate.description()}">역할 설명</div>
+                                        <div class="text-muted small" th:text="${selectedRoleTemplate.code()}">ROLE_CODE</div>
+                                    </div>
+                                    <span class="badge bg-secondary-subtle text-dark" th:if="${selectedRoleTemplate.builtin()}">시스템 내장</span>
+                                </div>
+                                <div>
+                                    <div class="text-muted small mb-2">권한 목록</div>
+                                    <ul class="role-permission-list" th:if="${selectedRoleTemplate.hasPermissions()}">
+                                        <li th:each="permission : ${selectedRoleTemplate.permissions()}">
+                                            <div class="fw-semibold" th:text="${permission.label()}">권한</div>
+                                            <div class="text-muted small" th:text="${permission.key()}">KEY</div>
+                                        </li>
+                                    </ul>
+                                    <div class="text-muted" th:unless="${selectedRoleTemplate.hasPermissions()}">아직 연결된 권한이 없습니다.</div>
+                                </div>
+                                <div>
+                                    <h3 class="h6 mb-2">권한 편집</h3>
+                                    <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                        선택 가능한 권한 목록이 없어 편집할 수 없습니다.
+                                    </div>
+                                    <form th:if="${!#lists.isEmpty(permissionOptions)}"
+                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/permissions|}"
+                                          method="post" class="role-editor-form">
+                                        <div class="permission-grid">
+                                            <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                                <input class="form-check-input" type="checkbox" name="permissions"
+                                                       th:value="${option.key()}"
+                                                       th:checked="${selectedRoleTemplate.hasPermission(option.key())}">
+                                                <div>
+                                                    <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                                    <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                                </div>
+                                            </label>
+                                        </div>
+                                        <div class="d-flex justify-content-end mt-3">
+                                            <button type="submit" class="btn btn-primary btn-sm">권한 저장</button>
+                                        </div>
+                                    </form>
+                                </div>
+                                <div>
+                                    <form th:if="${!selectedRoleTemplate.builtin()}"
+                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/delete|}"
+                                          method="post"
+                                          onsubmit="return confirm('정말 이 역할을 삭제하시겠습니까? 되돌릴 수 없습니다.');">
+                                        <button type="submit" class="btn btn-outline-danger btn-sm">역할 삭제</button>
+                                    </form>
+                                    <div class="alert alert-light border" th:if="${selectedRoleTemplate.builtin()}">
+                                        시스템 내장 역할은 삭제할 수 없습니다.
+                                    </div>
+                                </div>
+                            </div>
+                        </div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+    <div class="modal fade" id="rolePermissionModal" tabindex="-1" aria-hidden="true">
+        <div class="modal-dialog modal-lg modal-dialog-centered modal-dialog-scrollable">
+            <div class="modal-content role-permission-modal">
+                <div class="modal-header">
+                    <div>
+                        <div class="role-permission-modal__eyebrow">역할 권한</div>
+                        <h5 class="modal-title" data-role-modal-title>역할 이름</h5>
+                        <p class="role-permission-modal__description mb-0 text-muted" data-role-modal-description>역할 설명</p>
+                    </div>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" data-role-modal-dismiss aria-label="닫기"></button>
+                </div>
+                <div class="modal-body">
+                    <div data-role-modal-permissions>
+                        <div class="permission-modal-empty">권한 정보를 불러오는 중입니다.</div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <script>
+        (function () {
+            const modalElement = document.getElementById('rolePermissionModal');
+            if (!modalElement) {
+                return;
+            }
+
+            const titleElement = modalElement.querySelector('[data-role-modal-title]');
+            const descriptionElement = modalElement.querySelector('[data-role-modal-description]');
+            const permissionsContainer = modalElement.querySelector('[data-role-modal-permissions]');
+            const bodyElement = document.body;
+            let storedOverflow = '';
+
+            function openModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    window.bootstrap.Modal.getOrCreateInstance(modalElement).show();
+                    return;
+                }
+
+                storedOverflow = bodyElement.style.overflow;
+                modalElement.classList.add('show');
+                modalElement.style.display = 'block';
+                modalElement.removeAttribute('aria-hidden');
+                modalElement.setAttribute('aria-modal', 'true');
+                bodyElement.classList.add('modal-open');
+                bodyElement.style.overflow = 'hidden';
+            }
+
+            function closeModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    const instance = window.bootstrap.Modal.getInstance(modalElement);
+                    if (instance) {
+                        instance.hide();
+                    }
+                    return;
+                }
+
+                modalElement.classList.remove('show');
+                modalElement.style.display = 'none';
+                modalElement.setAttribute('aria-hidden', 'true');
+                modalElement.removeAttribute('aria-modal');
+                bodyElement.classList.remove('modal-open');
+                bodyElement.style.overflow = storedOverflow || '';
+            }
+
+            modalElement.addEventListener('click', function (event) {
+                if (event.target.closest('[data-role-modal-dismiss]')) {
+                    event.preventDefault();
+                    closeModal();
+                    return;
+                }
+
+                if (!window.bootstrap && event.target === modalElement) {
+                    closeModal();
+                }
+            });
+
+            document.addEventListener('click', function (event) {
+                const trigger = event.target.closest('[data-role-modal-trigger]');
+                if (!trigger) {
+                    return;
+                }
+                event.preventDefault();
+
+                const templateId = trigger.getAttribute('data-role-permission-template');
+                const template = templateId ? document.getElementById(templateId) : null;
+
+                permissionsContainer.innerHTML = '';
+                if (template && template.content) {
+                    permissionsContainer.appendChild(template.content.cloneNode(true));
+                } else {
+                    const fallback = document.createElement('div');
+                    fallback.className = 'permission-modal-empty';
+                    fallback.textContent = '권한 정보를 불러오지 못했습니다.';
+                    permissionsContainer.appendChild(fallback);
+                }
+
+                const roleLabel = trigger.getAttribute('data-role-label') || '역할 권한';
+                const roleDescription = trigger.getAttribute('data-role-description') || '';
+                const roleCode = trigger.getAttribute('data-role-code') || '';
+
+                titleElement.textContent = roleLabel;
+                const subtitle = roleDescription.trim() || roleCode;
+                descriptionElement.textContent = subtitle || '';
+                descriptionElement.hidden = !subtitle;
+
+                openModal();
+            });
+        })();
+    </script>
+</th:block>
+</html>
diff --git a/src/main/resources/templates/fragments/_sidebar.html b/src/main/resources/templates/fragments/_sidebar.html
index b6720d7..7d89edf 100644
--- a/src/main/resources/templates/fragments/_sidebar.html
+++ b/src/main/resources/templates/fragments/_sidebar.html
@@ -36,6 +36,11 @@
                 <i class="bi bi-badge-ad"></i>
                 <span>광고 관리</span>
             </a>
+            <a th:href="@{/admin/roles}" class="app-sidebar__link"
+               th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
+                <i class="bi bi-shield-lock"></i>
+                <span>역할과 권한</span>
+            </a>
             <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                   data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
                 <i class="bi bi-megaphone"></i>
@@ -89,6 +94,11 @@ <h5 class="offcanvas-title mb-0">새록 어드민</h5>
                     <i class="bi bi-badge-ad"></i>
                     <span>광고 관리</span>
                 </a>
+                <a th:href="@{/admin/roles}" class="app-sidebar__link"
+                   th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
+                    <i class="bi bi-shield-lock"></i>
+                    <span>역할과 권한</span>
+                </a>
                 <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                       data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
                     <i class="bi bi-megaphone"></i>

From ee8da45ebcbda50c42b1358b298ae3ccdfccbc19 Mon Sep 17 00:00:00 2001
From: soonduck-dreams <nederileni99heits@gmail.com>
Date: Mon, 17 Nov 2025 22:15:29 +0900
Subject: [PATCH 4/6] =?UTF-8?q?chore:=20=EC=9A=B4=EC=98=81=20=EA=B6=8C?=
 =?UTF-8?q?=ED=95=9C=20=ED=8E=98=EC=9D=B4=EC=A7=80=20=EB=8B=A4=EB=93=AC?=
 =?UTF-8?q?=EA=B8=B0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 codebase.txt                                  | 14906 ----------------
 .../web/RoleManagementController.java         |   239 +-
 src/main/resources/static/css/admin-theme.css |   413 +-
 .../resources/templates/admin-role/index.html |   706 +-
 .../admin-role/team-member-edit.html          |   121 +
 .../templates/fragments/_sidebar.html         |     4 +-
 .../fragments/role-permission-modal.html      |   244 +
 7 files changed, 1114 insertions(+), 15519 deletions(-)
 delete mode 100644 codebase.txt
 create mode 100644 src/main/resources/templates/admin-role/team-member-edit.html
 create mode 100644 src/main/resources/templates/fragments/role-permission-modal.html

diff --git a/codebase.txt b/codebase.txt
deleted file mode 100644
index 32f359c..0000000
--- a/codebase.txt
+++ /dev/null
@@ -1,14906 +0,0 @@
-
-// ===== java/apu/saerok_admin/config/SecurityConfig.java =====
-package apu.saerok_admin.config;
-
-import apu.saerok_admin.security.LoginSessionAuthenticationFilter;
-import apu.saerok_admin.security.LoginSessionManager;
-import org.springframework.boot.autoconfigure.security.servlet.PathRequest;
-import org.springframework.context.annotation.Bean;
-import org.springframework.context.annotation.Configuration;
-import org.springframework.security.config.annotation.web.builders.HttpSecurity;
-import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
-import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
-import org.springframework.security.core.userdetails.UserDetailsService;
-import org.springframework.security.provisioning.InMemoryUserDetailsManager;
-import org.springframework.security.web.SecurityFilterChain;
-import org.springframework.security.web.authentication.LoginUrlAuthenticationEntryPoint;
-import org.springframework.security.web.context.SecurityContextPersistenceFilter;
-
-@Configuration
-@EnableWebSecurity
-public class SecurityConfig {
-
-    @Bean
-    public SecurityFilterChain securityFilterChain(
-            HttpSecurity http,
-            LoginSessionAuthenticationFilter loginSessionAuthenticationFilter,
-            LoginSessionManager loginSessionManager
-    ) throws Exception {
-        http
-                .csrf(AbstractHttpConfigurer::disable)
-                .formLogin(AbstractHttpConfigurer::disable)
-                .httpBasic(AbstractHttpConfigurer::disable)
-                .authorizeHttpRequests(authorize -> authorize
-                        .requestMatchers(PathRequest.toStaticResources().atCommonLocations()).permitAll()
-                        // ▼ 프록시 엔드포인트 공개
-                        .requestMatchers("/public/**").permitAll()
-                        .requestMatchers("/login", "/auth/callback/**").permitAll()
-                        .anyRequest().authenticated()
-                )
-                .exceptionHandling(exceptionHandling -> exceptionHandling
-                        .authenticationEntryPoint(new LoginUrlAuthenticationEntryPoint("/login"))
-                )
-                .logout(logout -> logout
-                        .logoutUrl("/logout")
-                        .logoutSuccessUrl("/login")
-                        .clearAuthentication(true)
-                        .invalidateHttpSession(true)
-                        .addLogoutHandler((request, response, authentication) -> {
-                            loginSessionManager.clearSession(request);
-                            loginSessionManager.deleteRefreshCookie(response, request.isSecure());
-                        })
-                );
-        http.addFilterAfter(loginSessionAuthenticationFilter, SecurityContextPersistenceFilter.class);
-        return http.build();
-    }
-
-    @Bean
-    public LoginSessionAuthenticationFilter loginSessionAuthenticationFilter(LoginSessionManager loginSessionManager) {
-        return new LoginSessionAuthenticationFilter(loginSessionManager);
-    }
-
-    @Bean
-    public UserDetailsService userDetailsService() {
-        return new InMemoryUserDetailsManager();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/config/SocialLoginProperties.java =====
-package apu.saerok_admin.config;
-
-import java.net.URI;
-import org.springframework.boot.context.properties.ConfigurationProperties;
-
-@ConfigurationProperties(prefix = "oauth")
-public record SocialLoginProperties(Provider kakao, Provider apple) {
-
-    public record Provider(String clientId, URI redirectUri) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/config/UnsplashProperties.java =====
-package apu.saerok_admin.config;
-
-import org.springframework.boot.context.properties.ConfigurationProperties;
-import org.springframework.context.annotation.Configuration;
-
-/**
- * Unsplash API 설정 바인딩.
- * application.yml 의 unsplash.* 값을 주입받아 서버에서만 사용한다.
- * - access-key: Public Access Key (절대 브라우저에 노출하지 않음)
- * - app-name  : utm_source 로 사용할 앱 이름
- */
-@Configuration
-@ConfigurationProperties(prefix = "unsplash")
-public class UnsplashProperties {
-    private String accessKey;
-    private String appName;
-
-    public String getAccessKey() { return accessKey; }
-    public void setAccessKey(String accessKey) { this.accessKey = accessKey; }
-
-    public String getAppName() { return appName; }
-    public void setAppName(String appName) { this.appName = appName; }
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/AdminAdClient.java =====
-package apu.saerok_admin.infra.ad;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-import apu.saerok_admin.infra.ad.dto.AdImagePresignResponse;
-import apu.saerok_admin.infra.ad.dto.AdminAdImagePresignRequest;
-import apu.saerok_admin.infra.ad.dto.AdminAdListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminAdPlacementListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminCreateAdPlacementRequest;
-import apu.saerok_admin.infra.ad.dto.AdminCreateAdRequest;
-import apu.saerok_admin.infra.ad.dto.AdminCreateSlotRequest;
-import apu.saerok_admin.infra.ad.dto.AdminSlotListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateAdPlacementRequest;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateAdRequest;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateSlotRequest;
-import java.net.URI;
-import java.util.List;
-import org.springframework.http.HttpMethod;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class AdminAdClient {
-
-    private static final String[] ADMIN_AD_SEGMENTS = {"admin", "ad"};
-
-    private final RestClient saerokRestClient;
-    private final String[] missingPrefixSegments;
-
-    public AdminAdClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
-        this.saerokRestClient = saerokRestClient;
-        List<String> missing = saerokApiProps.missingPrefixSegments();
-        this.missingPrefixSegments = missing.toArray(new String[0]);
-    }
-
-    public AdminAdListResponse listAds() {
-        return get(AdminAdListResponse.class, "list");
-    }
-
-    public AdminAdListResponse.Item createAd(AdminCreateAdRequest request) {
-        return post(AdminAdListResponse.Item.class, request, "create");
-    }
-
-    public AdminAdListResponse.Item updateAd(Long adId, AdminUpdateAdRequest request) {
-        return put(AdminAdListResponse.Item.class, request, adId.toString());
-    }
-
-    public void deleteAd(Long adId) {
-        delete(adId.toString());
-    }
-
-    public AdImagePresignResponse generateAdImagePresignUrl(AdminAdImagePresignRequest request) {
-        return post(AdImagePresignResponse.class, request, "image", "presign");
-    }
-
-    public AdminSlotListResponse listSlots() {
-        return get(AdminSlotListResponse.class, "slot");
-    }
-
-    public AdminSlotListResponse.Item createSlot(AdminCreateSlotRequest request) {
-        return post(AdminSlotListResponse.Item.class, request, "slot");
-    }
-
-    public AdminSlotListResponse.Item updateSlot(Long slotId, AdminUpdateSlotRequest request) {
-        return put(AdminSlotListResponse.Item.class, request, "slot", slotId.toString());
-    }
-
-    public void deleteSlot(Long slotId) {
-        delete("slot", slotId.toString());
-    }
-
-    public AdminAdPlacementListResponse listPlacements() {
-        return get(AdminAdPlacementListResponse.class, "placement");
-    }
-
-    public AdminAdPlacementListResponse.Item createPlacement(AdminCreateAdPlacementRequest request) {
-        return post(AdminAdPlacementListResponse.Item.class, request, "placement");
-    }
-
-    public AdminAdPlacementListResponse.Item updatePlacement(Long placementId, AdminUpdateAdPlacementRequest request) {
-        return put(AdminAdPlacementListResponse.Item.class, request, "placement", placementId.toString());
-    }
-
-    public void deletePlacement(Long placementId) {
-        delete("placement", placementId.toString());
-    }
-
-    private <T> T get(Class<T> responseType, String... segments) {
-        T response = saerokRestClient.get()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin ad API");
-        }
-        return response;
-    }
-
-    private <T> T post(Class<T> responseType, Object body, String... segments) {
-        T response = saerokRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .body(body)
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin ad API");
-        }
-        return response;
-    }
-
-    private <T> T put(Class<T> responseType, Object body, String... segments) {
-        T response = saerokRestClient.method(HttpMethod.PUT)
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .body(body)
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin ad API");
-        }
-        return response;
-    }
-
-    private void delete(String... segments) {
-        saerokRestClient.delete()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .toBodilessEntity();
-    }
-
-    private URI buildUri(UriBuilder builder, String... segments) {
-        if (missingPrefixSegments.length > 0) {
-            builder.pathSegment(missingPrefixSegments);
-        }
-        builder.pathSegment(ADMIN_AD_SEGMENTS);
-        builder.pathSegment(segments);
-        return builder.build();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdImagePresignResponse.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdImagePresignResponse(
-        String presignedUrl,
-        String objectKey
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdImagePresignRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdminAdImagePresignRequest(String contentType) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdListResponse.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-import java.time.OffsetDateTime;
-import java.util.List;
-
-public record AdminAdListResponse(List<Item> items) {
-
-    public record Item(
-            Long id,
-            String name,
-            String memo,
-            String imageUrl,
-            String contentType,
-            String targetUrl,
-            OffsetDateTime createdAt,
-            OffsetDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminAdPlacementListResponse.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-import java.time.LocalDate;
-import java.time.OffsetDateTime;
-import java.util.List;
-
-public record AdminAdPlacementListResponse(List<Item> items) {
-
-    public record Item(
-            Long id,
-            Long adId,
-            String adName,
-            String adImageUrl,
-            Long slotId,
-            String slotName,
-            LocalDate startDate,
-            LocalDate endDate,
-            Short weight,
-            Boolean enabled,
-            OffsetDateTime createdAt,
-            OffsetDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateAdPlacementRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-import java.time.LocalDate;
-
-public record AdminCreateAdPlacementRequest(
-        Long adId,
-        Long slotId,
-        LocalDate startDate,
-        LocalDate endDate,
-        Short weight,
-        Boolean enabled
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateAdRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdminCreateAdRequest(
-        String name,
-        String memo,
-        String objectKey,
-        String contentType,
-        String targetUrl
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminCreateSlotRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdminCreateSlotRequest(
-        String name,
-        String memo,
-        Double fallbackRatio,
-        Integer ttlSeconds
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminSlotListResponse.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-import java.time.OffsetDateTime;
-import java.util.List;
-
-public record AdminSlotListResponse(List<Item> items) {
-
-    public record Item(
-            Long id,
-            String name,
-            String memo,
-            Double fallbackRatio,
-            Integer ttlSeconds,
-            OffsetDateTime createdAt,
-            OffsetDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateAdPlacementRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-import java.time.LocalDate;
-
-public record AdminUpdateAdPlacementRequest(
-        Long slotId,
-        LocalDate startDate,
-        LocalDate endDate,
-        Short weight,
-        Boolean enabled
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateAdRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdminUpdateAdRequest(
-        String name,
-        String memo,
-        String objectKey,
-        String contentType,
-        String targetUrl
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/ad/dto/AdminUpdateSlotRequest.java =====
-package apu.saerok_admin.infra.ad.dto;
-
-public record AdminUpdateSlotRequest(
-        String memo,
-        Double fallbackRatio,
-        Integer ttlSeconds
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/audit/AdminAuditLogClient.java =====
-package apu.saerok_admin.infra.audit;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-import apu.saerok_admin.infra.audit.dto.AdminAuditLogListResponse;
-import java.net.URI;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class AdminAuditLogClient {
-
-    private static final String[] ADMIN_AUDIT_SEGMENTS = {"admin", "audit"};
-    private static final String LOGS_SEGMENT = "logs";
-
-    private final RestClient saerokRestClient;
-    private final String[] missingPrefixSegments;
-
-    public AdminAuditLogClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
-        this.saerokRestClient = saerokRestClient;
-        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
-    }
-
-    public AdminAuditLogListResponse listAuditLogs(Integer page, Integer size) {
-        AdminAuditLogListResponse response = saerokRestClient.get()
-                .uri(uriBuilder -> buildUri(uriBuilder, page, size))
-                .retrieve()
-                .body(AdminAuditLogListResponse.class);
-
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin audit log API");
-        }
-
-        return response;
-    }
-
-    private URI buildUri(UriBuilder builder, Integer page, Integer size) {
-        if (missingPrefixSegments.length > 0) {
-            builder.pathSegment(missingPrefixSegments);
-        }
-        builder.pathSegment(ADMIN_AUDIT_SEGMENTS);
-        builder.pathSegment(LOGS_SEGMENT);
-
-        if (page != null && size != null) {
-            builder.queryParam("page", page);
-            builder.queryParam("size", size);
-        }
-
-        return builder.build();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/audit/dto/AdminAuditLogListResponse.java =====
-package apu.saerok_admin.infra.audit.dto;
-
-import java.time.LocalDateTime;
-import java.util.List;
-import java.util.Map;
-
-public record AdminAuditLogListResponse(
-        List<Item> items
-) {
-
-    public record Item(
-            Long id,
-            LocalDateTime createdAt,
-            UserMini admin,
-            String action,
-            String targetType,
-            Long targetId,
-            Long reportId,
-            Map<String, Object> metadata
-    ) {
-    }
-
-    public record UserMini(
-            Long id,
-            String nickname
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/auth/BackendAuthClient.java =====
-package apu.saerok_admin.infra.auth;
-
-import java.net.URI;
-import java.util.Arrays;
-import java.util.List;
-import java.util.Optional;
-import jakarta.servlet.http.Cookie;
-import jakarta.servlet.http.HttpServletRequest;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.beans.factory.annotation.Qualifier;
-import org.springframework.http.HttpHeaders;
-import org.springframework.http.MediaType;
-import org.springframework.http.ResponseEntity;
-import org.springframework.stereotype.Component;
-import org.springframework.util.StringUtils;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-import org.springframework.web.util.UriBuilder;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-
-@Component
-public class BackendAuthClient {
-
-    private static final Logger log = LoggerFactory.getLogger(BackendAuthClient.class);
-
-    private final RestClient authRestClient;
-    private final List<String> missingPrefixSegments;
-
-    public BackendAuthClient(
-            @Qualifier("saerokAuthRestClient") RestClient authRestClient,
-            SaerokApiProps saerokApiProps
-    ) {
-        this.authRestClient = authRestClient;
-        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments();
-    }
-
-    public LoginSuccess kakaoLogin(String authorizationCode) {
-        KakaoLoginPayload payload = new KakaoLoginPayload(authorizationCode);
-        log.info("Requesting Kakao login from backend with authorization code length {}", authorizationCode == null ? 0 : authorizationCode.length());
-        ResponseEntity<BackendAccessTokenResponse> response = authRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, "admin", "auth", "kakao", "login"))
-                .contentType(MediaType.APPLICATION_JSON)
-                .body(payload)
-                .retrieve()
-                .toEntity(BackendAccessTokenResponse.class);
-        log.debug("Received Kakao login response with status {} and cookies {}", response.getStatusCode(), response.getHeaders().get(HttpHeaders.SET_COOKIE));
-        return toLoginSuccess(response);
-    }
-
-    public LoginSuccess appleLogin(String authorizationCode) {
-        AppleLoginPayload payload = new AppleLoginPayload(authorizationCode);
-        log.info("Requesting Apple login from backend with authorization code length {}", authorizationCode == null ? 0 : authorizationCode.length());
-        ResponseEntity<BackendAccessTokenResponse> response = authRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, "auth", "apple", "login"))
-                .contentType(MediaType.APPLICATION_JSON)
-                .body(payload)
-                .retrieve()
-                .toEntity(BackendAccessTokenResponse.class);
-        log.debug("Received Apple login response with status {} and cookies {}", response.getStatusCode(), response.getHeaders().get(HttpHeaders.SET_COOKIE));
-        return toLoginSuccess(response);
-    }
-
-    public LoginSuccess refreshAccessToken() {
-        RestClient.RequestHeadersSpec<?> requestSpec = authRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, "auth", "refresh"));
-        extractRefreshCookie().ifPresent(cookie -> requestSpec.header(HttpHeaders.COOKIE, cookie));
-        ResponseEntity<BackendAccessTokenResponse> response = requestSpec.retrieve()
-                .toEntity(BackendAccessTokenResponse.class);
-        log.debug("Refresh token request completed with status {}", response.getStatusCode());
-        return toLoginSuccess(response);
-    }
-
-    private Optional<String> extractRefreshCookie() {
-        ServletRequestAttributes attributes = (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
-        if (attributes == null) {
-            return Optional.empty();
-        }
-        HttpServletRequest request = attributes.getRequest();
-        Cookie[] cookies = request.getCookies();
-        if (cookies == null) {
-            return Optional.empty();
-        }
-        return Arrays.stream(cookies)
-                .filter(cookie -> "refreshToken".equals(cookie.getName()))
-                .map(cookie -> cookie.getName() + "=" + cookie.getValue())
-                .findFirst();
-    }
-
-    private LoginSuccess toLoginSuccess(ResponseEntity<BackendAccessTokenResponse> response) {
-        BackendAccessTokenResponse body = response.getBody();
-        if (body == null || !StringUtils.hasText(body.accessToken())) {
-            log.error("Backend response did not contain a valid access token. Response body: {}", body);
-            throw new IllegalStateException("백엔드에서 유효한 액세스 토큰을 받지 못했습니다.");
-        }
-        List<String> cookies = Optional.ofNullable(response.getHeaders().get(HttpHeaders.SET_COOKIE))
-                .map(List::copyOf)
-                .orElse(List.of());
-        log.debug("Converted backend response to LoginSuccess. accessTokenPresent={}, refreshCookieCount={}",
-                StringUtils.hasText(body.accessToken()), cookies.size());
-        return new LoginSuccess(body.accessToken(), cookies);
-    }
-
-    private URI buildUri(UriBuilder builder, String... segments) {
-        if (!missingPrefixSegments.isEmpty()) {
-            builder.pathSegment(missingPrefixSegments.toArray(String[]::new));
-        }
-        builder.pathSegment(segments);
-        return builder.build();
-    }
-
-    private record KakaoLoginPayload(String authorizationCode, String channel) {
-
-        private KakaoLoginPayload(String authorizationCode) {
-            this(authorizationCode, "admin");
-        }
-    }
-
-    private record AppleLoginPayload(String authorizationCode) {
-    }
-
-    private record BackendAccessTokenResponse(String accessToken, String signupStatus) {
-    }
-
-    public record LoginSuccess(String accessToken, List<String> refreshCookies) {
-
-        public LoginSuccess {
-            if (!StringUtils.hasText(accessToken)) {
-                throw new IllegalArgumentException("accessToken must not be empty");
-            }
-            refreshCookies = refreshCookies == null ? List.of() : List.copyOf(refreshCookies);
-        }
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/auth/BackendAuthorizationInterceptor.java =====
-package apu.saerok_admin.infra.auth;
-
-import apu.saerok_admin.security.BackendUnauthorizedException;
-import apu.saerok_admin.security.LoginSessionManager;
-import java.io.IOException;
-import java.util.Optional;
-import org.springframework.http.HttpHeaders;
-import org.springframework.http.HttpRequest;
-import org.springframework.http.HttpStatus;
-import org.springframework.http.client.ClientHttpRequestExecution;
-import org.springframework.http.client.ClientHttpRequestInterceptor;
-import org.springframework.http.client.ClientHttpResponse;
-import org.springframework.http.client.support.HttpRequestWrapper;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.client.ResourceAccessException;
-
-@Component
-public class BackendAuthorizationInterceptor implements ClientHttpRequestInterceptor {
-
-    private final LoginSessionManager loginSessionManager;
-    private final BackendAuthClient backendAuthClient;
-
-    public BackendAuthorizationInterceptor(LoginSessionManager loginSessionManager, BackendAuthClient backendAuthClient) {
-        this.loginSessionManager = loginSessionManager;
-        this.backendAuthClient = backendAuthClient;
-    }
-
-    @Override
-    public ClientHttpResponse intercept(HttpRequest request, byte[] body, ClientHttpRequestExecution execution)
-            throws IOException {
-        if (isAuthRequest(request)) {
-            return execution.execute(request, body);
-        }
-
-        HttpRequestWrapper authorizedRequest = wrapRequest(request);
-        loginSessionManager.currentAccessToken()
-                .ifPresent(token -> authorizedRequest.getHeaders().setBearerAuth(token));
-
-        ClientHttpResponse response = execution.execute(authorizedRequest, body);
-        if (response.getStatusCode() != HttpStatus.UNAUTHORIZED) {
-            return response;
-        }
-
-        response.close();
-        return retryWithRefreshedToken(request, body, execution);
-    }
-
-    private ClientHttpResponse retryWithRefreshedToken(
-            HttpRequest request,
-            byte[] body,
-            ClientHttpRequestExecution execution
-    ) throws IOException {
-        Optional<String> currentToken = loginSessionManager.currentAccessToken();
-        if (currentToken.isEmpty()) {
-            return execution.execute(request, body);
-        }
-
-        BackendAuthClient.LoginSuccess refreshedTokens;
-        try {
-            refreshedTokens = backendAuthClient.refreshAccessToken();
-        } catch (RestClientResponseException | ResourceAccessException | IllegalStateException ex) {
-            loginSessionManager.clearCurrentSession();
-            throw new BackendUnauthorizedException("토큰 갱신에 실패했습니다.", ex);
-        }
-
-        loginSessionManager.updateAccessToken(refreshedTokens.accessToken());
-        loginSessionManager.writeRefreshCookiesToResponse(refreshedTokens.refreshCookies());
-
-        HttpRequestWrapper retryRequest = wrapRequest(request);
-        loginSessionManager.currentAccessToken()
-                .ifPresent(token -> retryRequest.getHeaders().setBearerAuth(token));
-
-        ClientHttpResponse retryResponse = execution.execute(retryRequest, body);
-        if (retryResponse.getStatusCode() == HttpStatus.UNAUTHORIZED) {
-            retryResponse.close();
-            loginSessionManager.clearCurrentSession();
-            throw new BackendUnauthorizedException("세션이 만료되었습니다. 다시 로그인해주세요.");
-        }
-
-        return retryResponse;
-    }
-
-    private boolean isAuthRequest(HttpRequest request) {
-        String path = request.getURI() != null ? request.getURI().getPath() : null;
-        return path != null && path.contains("/auth/");
-    }
-
-    private HttpRequestWrapper wrapRequest(HttpRequest request) {
-        return new HttpRequestWrapper(request) {
-            private final HttpHeaders headers = new HttpHeaders();
-
-            {
-                headers.putAll(request.getHeaders());
-            }
-
-            @Override
-            public HttpHeaders getHeaders() {
-                return headers;
-            }
-        };
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/CurrentAdminClient.java =====
-package apu.saerok_admin.infra;
-
-import apu.saerok_admin.security.LoginSessionManager;
-import apu.saerok_admin.web.view.CurrentAdminProfile;
-import java.net.URI;
-import java.util.LinkedHashSet;
-import java.util.List;
-import java.util.Locale;
-import java.util.Optional;
-import java.util.Set;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.stereotype.Component;
-import org.springframework.util.StringUtils;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class CurrentAdminClient {
-
-    private static final Logger log = LoggerFactory.getLogger(CurrentAdminClient.class);
-    private final RestClient saerokRestClient;
-    private final List<String> missingPrefixSegments;
-    private final LoginSessionManager loginSessionManager;
-
-    public CurrentAdminClient(
-            RestClient saerokRestClient,
-            SaerokApiProps saerokApiProps,
-            LoginSessionManager loginSessionManager
-    ) {
-        this.saerokRestClient = saerokRestClient;
-        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments();
-        this.loginSessionManager = loginSessionManager;
-    }
-
-    public Optional<CurrentAdminProfile> fetchCurrentAdminProfile() {
-        if (loginSessionManager.currentAccessToken().isEmpty()) {
-            return Optional.empty();
-        }
-
-        try {
-            BackendUserProfileResponse response = saerokRestClient.get()
-                    .uri(uriBuilder -> buildUri(uriBuilder, "user", "me"))
-                    .retrieve()
-                    .body(BackendUserProfileResponse.class);
-
-            if (response == null) {
-                return Optional.empty();
-            }
-
-            List<String> backendRoles = response.roles() != null ? List.copyOf(response.roles()) : List.of();
-            AdminRoleInfo roleInfo = fetchAdminRoleInfo();
-            List<String> roleCodes = !roleInfo.roleCodes().isEmpty()
-                    ? roleInfo.roleCodes()
-                    : normalizeRoleCodes(backendRoles);
-
-            return Optional.of(new CurrentAdminProfile(
-                    response.nickname(),
-                    response.email(),
-                    response.profileImageUrl(),
-                    roleInfo.roleDisplayNames(),
-                    roleCodes,
-                    roleInfo.permissionKeys()
-            ));
-        } catch (RestClientResponseException exception) {
-            log.warn(
-                    "Failed to fetch current admin profile. status={}, body={}",
-                    exception.getStatusCode(),
-                    exception.getResponseBodyAsString(),
-                    exception
-            );
-        } catch (RestClientException exception) {
-            log.warn("Failed to fetch current admin profile.", exception);
-        }
-
-        return Optional.empty();
-    }
-
-    private URI buildUri(UriBuilder builder, String... segments) {
-        if (!missingPrefixSegments.isEmpty()) {
-            builder.pathSegment(missingPrefixSegments.toArray(String[]::new));
-        }
-        builder.pathSegment(segments);
-        return builder.build();
-    }
-
-    private record BackendUserProfileResponse(
-            String nickname,
-            String email,
-            String profileImageUrl,
-            List<String> roles
-    ) {
-    }
-
-    private AdminRoleInfo fetchAdminRoleInfo() {
-        try {
-            AdminMyRoleResponse response = saerokRestClient.get()
-                    .uri(uriBuilder -> buildUri(uriBuilder, "admin", "role", "me"))
-                    .retrieve()
-                    .body(AdminMyRoleResponse.class);
-
-            if (response == null) {
-                return AdminRoleInfo.empty();
-            }
-
-            List<String> roleDisplayNames = response.roles() == null
-                    ? List.of()
-                    : response.roles().stream()
-                            .map(RoleSummaryResponse::displayName)
-                            .filter(StringUtils::hasText)
-                            .map(String::trim)
-                            .toList();
-            List<String> roleCodes = response.roles() == null
-                    ? List.of()
-                    : response.roles().stream()
-                            .map(RoleSummaryResponse::code)
-                            .filter(StringUtils::hasText)
-                            .toList();
-            List<String> permissionKeys = response.permissions() == null
-                    ? List.of()
-                    : response.permissions().stream()
-                            .map(PermissionSummaryResponse::key)
-                            .filter(StringUtils::hasText)
-                            .toList();
-            return new AdminRoleInfo(roleDisplayNames, roleCodes, permissionKeys);
-        } catch (RestClientResponseException exception) {
-            log.warn(
-                    "Failed to fetch current admin roles. status={}, body={}",
-                    exception.getStatusCode(),
-                    exception.getResponseBodyAsString(),
-                    exception
-            );
-        } catch (RestClientException exception) {
-            log.warn("Failed to fetch current admin roles.", exception);
-        }
-        return AdminRoleInfo.empty();
-    }
-
-    private record AdminMyRoleResponse(
-            List<RoleSummaryResponse> roles,
-            List<PermissionSummaryResponse> permissions
-    ) {
-    }
-
-    private record RoleSummaryResponse(
-            Long id,
-            String code,
-            String displayName,
-            String description,
-            Boolean builtin
-    ) {
-    }
-
-    private record PermissionSummaryResponse(
-            String key,
-            String description
-    ) {
-    }
-
-    private record AdminRoleInfo(
-            List<String> roleDisplayNames,
-            List<String> roleCodes,
-            List<String> permissionKeys
-    ) {
-        private static AdminRoleInfo empty() {
-            return new AdminRoleInfo(List.of(), List.of(), List.of());
-        }
-    }
-
-    private List<String> normalizeRoleCodes(List<String> roles) {
-        if (roles == null || roles.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String role : roles) {
-            if (!StringUtils.hasText(role)) {
-                continue;
-            }
-            normalized.add(role.toUpperCase(Locale.ROOT));
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/AdminReportClient.java =====
-package apu.saerok_admin.infra.report;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-import apu.saerok_admin.infra.report.dto.AdminDeleteReasonRequest;
-import apu.saerok_admin.infra.report.dto.ReportedCollectionDetailResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCommentDetailResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
-import java.net.URI;
-import org.springframework.http.HttpMethod;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class AdminReportClient {
-
-    private static final String[] ADMIN_REPORTS_SEGMENTS = {"admin", "reports"};
-
-    private final RestClient saerokRestClient;
-    private final String[] missingPrefixSegments;
-
-    public AdminReportClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
-        this.saerokRestClient = saerokRestClient;
-        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
-    }
-
-    public ReportedCollectionListResponse listCollectionReports() {
-        return get(ReportedCollectionListResponse.class, "collections");
-    }
-
-    public ReportedCommentListResponse listCommentReports() {
-        return get(ReportedCommentListResponse.class, "comments");
-    }
-
-    public ReportedCollectionDetailResponse getCollectionReportDetail(Long reportId) {
-        String id = reportId.toString();
-        return get(ReportedCollectionDetailResponse.class, "collections", id);
-    }
-
-    public ReportedCommentDetailResponse getCommentReportDetail(Long reportId) {
-        String id = reportId.toString();
-        return get(ReportedCommentDetailResponse.class, "comments", id);
-    }
-
-    public void ignoreCollectionReport(Long reportId) {
-        String id = reportId.toString();
-        post("collections", id, "ignore");
-    }
-
-    public void deleteCollectionByReport(Long reportId, String reason) {
-        String id = reportId.toString();
-        deleteWithBody(new AdminDeleteReasonRequest(reason), "collections", id);
-    }
-
-    public void ignoreCommentReport(Long reportId) {
-        String id = reportId.toString();
-        post("comments", id, "ignore");
-    }
-
-    public void deleteCommentByReport(Long reportId, String reason) {
-        String id = reportId.toString();
-        deleteWithBody(new AdminDeleteReasonRequest(reason), "comments", id);
-    }
-
-    private <T> T get(Class<T> responseType, String... segments) {
-        T response = saerokRestClient.get()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin report API");
-        }
-        return response;
-    }
-
-    private void post(String... segments) {
-        saerokRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .toBodilessEntity();
-    }
-
-    private void deleteWithBody(Object body, String... segments) {
-        saerokRestClient.method(HttpMethod.DELETE)
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .body(body)
-                .retrieve()
-                .toBodilessEntity();
-    }
-
-    private URI buildUri(UriBuilder builder, String... segments) {
-        if (missingPrefixSegments.length > 0) {
-            builder.pathSegment(missingPrefixSegments);
-        }
-        builder.pathSegment(ADMIN_REPORTS_SEGMENTS);
-        builder.pathSegment(segments);
-        return builder.build();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/AdminDeleteReasonRequest.java =====
-package apu.saerok_admin.infra.report.dto;
-
-public record AdminDeleteReasonRequest(String reason) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/CollectionCommentsResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDateTime;
-import java.util.List;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record CollectionCommentsResponse(List<Item> items, Boolean isMyCollection) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record Item(
-            Long commentId,
-            Long userId,
-            String nickname,
-            String profileImageUrl,
-            String content,
-            int likeCount,
-            Boolean isLiked,
-            Boolean isMine,
-            LocalDateTime createdAt,
-            LocalDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/CollectionDetailResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDate;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record CollectionDetailResponse(
-        Long collectionId,
-        String imageUrl,
-        LocalDate discoveredDate,
-        Double latitude,
-        Double longitude,
-        String locationAlias,
-        String address,
-        String note,
-        String accessLevel,
-        Long likeCount,
-        Long commentCount,
-        Boolean isLiked,
-        Boolean isMine,
-        BirdInfo bird,
-        UserInfo user
-) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record BirdInfo(
-            Long birdId,
-            String koreanName,
-            String scientificName
-    ) {
-    }
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record UserInfo(
-            Long userId,
-            String nickname,
-            String profileImageUrl
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/ReportedCollectionDetailResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record ReportedCollectionDetailResponse(
-        Long reportId,
-        CollectionDetailResponse collection,
-        CollectionCommentsResponse comments
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/ReportedCollectionListResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDateTime;
-import java.util.List;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record ReportedCollectionListResponse(List<Item> items) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record Item(
-            Long reportId,
-            LocalDateTime reportedAt,
-            Long collectionId,
-            UserMini reporter,
-            UserMini reportedUser
-    ) {
-    }
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record UserMini(
-            Long userId,
-            String nickname
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/ReportedCommentDetailResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDateTime;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record ReportedCommentDetailResponse(
-        Long reportId,
-        ReportedComment comment,
-        CollectionDetailResponse collection,
-        CollectionCommentsResponse comments
-) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record ReportedComment(
-            Long commentId,
-            Long userId,
-            String nickname,
-            String content,
-            LocalDateTime createdAt,
-            LocalDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/report/dto/ReportedCommentListResponse.java =====
-package apu.saerok_admin.infra.report.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDateTime;
-import java.util.List;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record ReportedCommentListResponse(List<Item> items) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record Item(
-            Long reportId,
-            LocalDateTime reportedAt,
-            Long commentId,
-            Long collectionId,
-            String contentPreview,
-            UserMini reporter,
-            UserMini reportedUser
-    ) {
-    }
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record UserMini(
-            Long userId,
-            String nickname
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/AdminRoleClient.java =====
-package apu.saerok_admin.infra.role;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
-import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
-import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
-import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
-import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
-import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
-import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
-import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
-import java.net.URI;
-import java.util.List;
-import org.springframework.http.HttpMethod;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class AdminRoleClient {
-
-    private static final String[] ADMIN_ROLE_SEGMENTS = {"admin", "role"};
-
-    private final RestClient saerokRestClient;
-    private final String[] missingPrefixSegments;
-
-    public AdminRoleClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
-        this.saerokRestClient = saerokRestClient;
-        List<String> missing = saerokApiProps.missingPrefixSegments();
-        this.missingPrefixSegments = missing.toArray(new String[0]);
-    }
-
-    public AdminMyRoleResponse getMyRoles() {
-        return get(AdminMyRoleResponse.class, "me");
-    }
-
-    public AdminRoleUserListResponse listAdminUsers() {
-        return get(AdminRoleUserListResponse.class, "users");
-    }
-
-    public AdminRoleListResponse listRoles() {
-        return get(AdminRoleListResponse.class);
-    }
-
-    public RoleDetailResponse createRole(CreateRoleRequest request) {
-        return post(RoleDetailResponse.class, request);
-    }
-
-    public RoleDetailResponse updateRolePermissions(String roleCode, UpdateRolePermissionsRequest request) {
-        return put(RoleDetailResponse.class, request, roleCode, "permissions");
-    }
-
-    public void deleteRole(String roleCode) {
-        deleteVoid(roleCode);
-    }
-
-    public AdminUserRoleResponse grantRole(Long userId, AssignRoleRequest request) {
-        return post(AdminUserRoleResponse.class, request, "users", userId.toString(), "roles");
-    }
-
-    public AdminUserRoleResponse revokeRole(Long userId, String roleCode) {
-        return delete(AdminUserRoleResponse.class, "users", userId.toString(), "roles", roleCode);
-    }
-
-    private <T> T get(Class<T> responseType, String... segments) {
-        T response = saerokRestClient.get()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin role API");
-        }
-        return response;
-    }
-
-    private <T> T post(Class<T> responseType, Object body, String... segments) {
-        T response = saerokRestClient.post()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .body(body)
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin role API");
-        }
-        return response;
-    }
-
-    private <T> T put(Class<T> responseType, Object body, String... segments) {
-        T response = saerokRestClient.method(HttpMethod.PUT)
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .body(body)
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin role API");
-        }
-        return response;
-    }
-
-    private <T> T delete(Class<T> responseType, String... segments) {
-        T response = saerokRestClient.delete()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .body(responseType);
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin role API");
-        }
-        return response;
-    }
-
-    private void deleteVoid(String... segments) {
-        saerokRestClient.delete()
-                .uri(uriBuilder -> buildUri(uriBuilder, segments))
-                .retrieve()
-                .toBodilessEntity();
-    }
-
-    private URI buildUri(UriBuilder builder, String... segments) {
-        if (missingPrefixSegments.length > 0) {
-            builder.pathSegment(missingPrefixSegments);
-        }
-        builder.pathSegment(ADMIN_ROLE_SEGMENTS);
-        if (segments.length > 0) {
-            builder.pathSegment(segments);
-        }
-        return builder.build();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/AdminMyRoleResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record AdminMyRoleResponse(
-        List<RoleSummaryResponse> roles,
-        List<PermissionSummaryResponse> permissions
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/AdminRoleListResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record AdminRoleListResponse(
-        List<RoleDetailResponse> roles
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/AdminRoleUserListResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record AdminRoleUserListResponse(
-        List<AdminUserRoleResponse> users
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/AdminUserRoleResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record AdminUserRoleResponse(
-        Long userId,
-        String nickname,
-        String email,
-        boolean superAdmin,
-        List<RoleSummaryResponse> roles,
-        List<PermissionSummaryResponse> permissions
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/AssignRoleRequest.java =====
-package apu.saerok_admin.infra.role.dto;
-
-public record AssignRoleRequest(
-        String roleCode
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/CreateRoleRequest.java =====
-package apu.saerok_admin.infra.role.dto;
-
-public record CreateRoleRequest(
-        String code,
-        String displayName,
-        String description
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/PermissionSummaryResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-public record PermissionSummaryResponse(
-        String key,
-        String description
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/RoleDetailResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record RoleDetailResponse(
-        Long id,
-        String code,
-        String displayName,
-        String description,
-        boolean builtin,
-        List<PermissionSummaryResponse> permissions
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/RoleSummaryResponse.java =====
-package apu.saerok_admin.infra.role.dto;
-
-public record RoleSummaryResponse(
-        Long id,
-        String code,
-        String displayName,
-        String description,
-        boolean builtin
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/role/dto/UpdateRolePermissionsRequest.java =====
-package apu.saerok_admin.infra.role.dto;
-
-import java.util.List;
-
-public record UpdateRolePermissionsRequest(
-        List<String> permissions
-) {
-}
-
-
-// ===== java/apu/saerok_admin/infra/SaerokApiClientConfig.java =====
-package apu.saerok_admin.infra;
-
-import apu.saerok_admin.config.SocialLoginProperties;
-import java.time.Clock;
-import org.springframework.beans.factory.ObjectProvider;
-import org.springframework.boot.context.properties.EnableConfigurationProperties;
-import org.springframework.context.annotation.Bean;
-import org.springframework.context.annotation.Configuration;
-import org.springframework.context.annotation.Primary;
-import org.springframework.http.client.ClientHttpRequestInterceptor;
-import org.springframework.web.client.RestClient;
-
-@Configuration
-@EnableConfigurationProperties({SaerokApiProps.class, SocialLoginProperties.class})
-public class SaerokApiClientConfig {
-
-    @Bean
-    @Primary
-    RestClient saerokRestClient(SaerokApiProps props, ObjectProvider<ClientHttpRequestInterceptor> interceptors) {
-        RestClient.Builder builder = RestClient.builder().baseUrl(props.baseUrl());
-        interceptors.orderedStream().forEach(builder::requestInterceptor);
-        return builder.build();
-    }
-
-    @Bean(name = "saerokAuthRestClient")
-    RestClient saerokAuthRestClient(SaerokApiProps props) {
-        return RestClient.builder().baseUrl(props.baseUrl()).build();
-    }
-
-    @Bean
-    Clock systemClock() {
-        return Clock.systemDefaultZone();
-    }
-}
-
-
-
-// ===== java/apu/saerok_admin/infra/SaerokApiProps.java =====
-package apu.saerok_admin.infra;
-
-import java.net.URI;
-import java.util.ArrayList;
-import java.util.Collections;
-import java.util.List;
-import org.springframework.boot.context.properties.ConfigurationProperties;
-import org.springframework.util.StringUtils;
-
-@ConfigurationProperties(prefix = "saerok.api")
-public record SaerokApiProps(String baseUrl, String prefix) {
-
-    public SaerokApiProps {
-        if (!StringUtils.hasText(baseUrl)) {
-            throw new IllegalArgumentException("saerok.api.base-url must not be empty");
-        }
-        prefix = normalizePrefix(prefix);
-    }
-
-    public List<String> missingPrefixSegments() {
-        List<String> prefixSegments = splitSegments(prefix);
-        if (prefixSegments.isEmpty()) {
-            return List.of();
-        }
-        List<String> basePathSegments = splitSegments(URI.create(baseUrl).getPath());
-        if (endsWith(basePathSegments, prefixSegments)) {
-            return List.of();
-        }
-        return prefixSegments;
-    }
-
-    private static boolean endsWith(List<String> base, List<String> suffix) {
-        if (suffix.size() > base.size()) {
-            return false;
-        }
-        for (int i = 0; i < suffix.size(); i++) {
-            String baseSegment = base.get(base.size() - suffix.size() + i);
-            if (!baseSegment.equals(suffix.get(i))) {
-                return false;
-            }
-        }
-        return true;
-    }
-
-    private static String normalizePrefix(String prefix) {
-        if (!StringUtils.hasText(prefix)) {
-            return "";
-        }
-        String trimmed = prefix.trim();
-        if ("/".equals(trimmed)) {
-            return "";
-        }
-        if (!trimmed.startsWith("/")) {
-            trimmed = "/" + trimmed;
-        }
-        while (trimmed.endsWith("/") && trimmed.length() > 1) {
-            trimmed = trimmed.substring(0, trimmed.length() - 1);
-        }
-        return trimmed;
-    }
-
-    private static List<String> splitSegments(String path) {
-        if (!StringUtils.hasText(path)) {
-            return List.of();
-        }
-        String trimmed = path.startsWith("/") ? path.substring(1) : path;
-        if (!StringUtils.hasText(trimmed)) {
-            return List.of();
-        }
-        String[] tokens = trimmed.split("/");
-        List<String> segments = new ArrayList<>(tokens.length);
-        for (String token : tokens) {
-            if (StringUtils.hasText(token)) {
-                segments.add(token);
-            }
-        }
-        return Collections.unmodifiableList(segments);
-    }
-}
-
-
-
-// ===== java/apu/saerok_admin/infra/ServiceHealthClient.java =====
-package apu.saerok_admin.infra;
-
-import apu.saerok_admin.web.view.ServiceHealthStatus;
-import java.time.Clock;
-import java.time.LocalDateTime;
-import org.springframework.http.ResponseEntity;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.client.RestClientException;
-
-@Component
-public class ServiceHealthClient {
-
-    private final RestClient saerokRestClient;
-    private final Clock clock;
-
-    public ServiceHealthClient(RestClient saerokRestClient, Clock clock) {
-        this.saerokRestClient = saerokRestClient;
-        this.clock = clock;
-    }
-
-    public ServiceHealthStatus checkHealth() {
-        LocalDateTime checkedAt = LocalDateTime.now(clock);
-        try {
-            ResponseEntity<String> response = saerokRestClient.get()
-                    .uri(uriBuilder -> uriBuilder.replacePath("/health").replaceQuery(null).build())
-                    .retrieve()
-                    .toEntity(String.class);
-
-            boolean alive = response.getStatusCode().is2xxSuccessful();
-            String message = alive
-                    ? extractStatusMessage(response.getBody())
-                    : "HTTP 상태 코드 " + response.getStatusCode().value();
-
-            return new ServiceHealthStatus(alive, message, checkedAt);
-        } catch (RestClientException exception) {
-            String message = exception.getMessage();
-            if (message == null || message.isBlank()) {
-                message = "요청 중 오류가 발생했습니다.";
-            }
-            return new ServiceHealthStatus(false, message, checkedAt);
-        }
-    }
-
-    private String extractStatusMessage(String body) {
-        if (body == null || body.isBlank()) {
-            return "서버가 정상 응답했습니다.";
-        }
-
-        return body;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/stat/AdminStatClient.java =====
-package apu.saerok_admin.infra.stat;
-
-import apu.saerok_admin.infra.SaerokApiProps;
-import apu.saerok_admin.infra.stat.dto.StatSeriesResponse;
-import java.net.URI;
-import java.time.LocalDate;
-import java.time.format.DateTimeFormatter;
-import java.util.Collection;
-import java.util.Objects;
-import org.springframework.stereotype.Component;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriBuilder;
-
-@Component
-public class AdminStatClient {
-
-    private static final String[] ADMIN_STATS_SEGMENTS = {"admin", "stats"};
-    private static final String SERIES_SEGMENT = "series";
-
-    private final RestClient saerokRestClient;
-    private final String[] missingPrefixSegments;
-
-    public AdminStatClient(RestClient saerokRestClient, SaerokApiProps saerokApiProps) {
-        this.saerokRestClient = saerokRestClient;
-        this.missingPrefixSegments = saerokApiProps.missingPrefixSegments().toArray(new String[0]);
-    }
-
-    private static final DateTimeFormatter ISO_DATE = DateTimeFormatter.ISO_DATE;
-
-    public StatSeriesResponse fetchSeries(Collection<StatMetric> metrics, LocalDate startDate, LocalDate endDate) {
-        if (metrics == null || metrics.isEmpty()) {
-            throw new IllegalArgumentException("metrics must not be empty");
-        }
-
-        StatSeriesResponse response = saerokRestClient.get()
-                .uri(uriBuilder -> buildSeriesUri(uriBuilder, metrics, startDate, endDate))
-                .retrieve()
-                .body(StatSeriesResponse.class);
-
-        if (response == null) {
-            throw new IllegalStateException("Empty response from admin stats API");
-        }
-
-        return response;
-    }
-
-    private URI buildSeriesUri(UriBuilder builder, Collection<StatMetric> metrics, LocalDate startDate, LocalDate endDate) {
-        if (missingPrefixSegments.length > 0) {
-            builder.pathSegment(missingPrefixSegments);
-        }
-        builder.pathSegment(ADMIN_STATS_SEGMENTS);
-        builder.pathSegment(SERIES_SEGMENT);
-
-        metrics.stream()
-                .filter(Objects::nonNull)
-                .map(Enum::name)
-                .forEach(metric -> builder.queryParam("metric", metric));
-
-        if (startDate != null || endDate != null) {
-            builder.queryParam("period", buildPeriodQuery(startDate, endDate));
-        }
-
-        return builder.build();
-    }
-
-    private String buildPeriodQuery(LocalDate startDate, LocalDate endDate) {
-        String startToken = startDate != null ? ISO_DATE.format(startDate) : "";
-        String endToken = endDate != null ? ISO_DATE.format(endDate) : "";
-        return startToken + "," + endToken;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/stat/dto/StatSeriesResponse.java =====
-package apu.saerok_admin.infra.stat.dto;
-
-import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
-import java.time.LocalDate;
-import java.util.List;
-
-@JsonIgnoreProperties(ignoreUnknown = true)
-public record StatSeriesResponse(List<Series> series) {
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record Series(
-            String metric,
-            List<Point> points,
-            List<ComponentSeries> components
-    ) {
-    }
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record ComponentSeries(
-            String key,
-            List<Point> points
-    ) {
-    }
-
-    @JsonIgnoreProperties(ignoreUnknown = true)
-    public record Point(
-            LocalDate date,
-            Number value
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/stat/StatMetric.java =====
-package apu.saerok_admin.infra.stat;
-
-import java.util.Collections;
-import java.util.LinkedHashMap;
-import java.util.Map;
-
-public enum StatMetric {
-    COLLECTION_TOTAL_COUNT(
-            "새록 총 개수",
-            "등록된 새록의 총 개수",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            true
-    ),
-    COLLECTION_PRIVATE_RATIO(
-            "비공개 새록 비율",
-            "전체 새록 중 비공개로 설정된 비율",
-            MetricUnit.RATIO,
-            false,
-            Map.of(),
-            false
-    ),
-    BIRD_ID_PENDING_COUNT(
-            "진행 중인 동정 요청 개수",
-            "이 날 진행 중인 동정 요청의 개수\n(= \"이름 모를 새 새록\"의 개수)",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            false
-    ),
-    BIRD_ID_RESOLVED_COUNT(
-            "동정 의견 채택 횟수",
-            "이 날 동정 의견이 몇 번 채택됐는지 횟수",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            true
-    ),
-
-    // ✅ 누적 메트릭 제거, 최근 28일 전용만 유지
-    BIRD_ID_RESOLUTION_STATS_28D(
-            "동정 의견 채택 시간",
-            "동정 요청 후 유저가 의견을 채택하기까지 걸린 시간 (28일 이동 평균)",
-            MetricUnit.HOURS,
-            true,
-            orderedComponentLabels(),
-            false
-    ),
-
-    // ===== 유저 지표 =====
-    USER_COMPLETED_TOTAL(
-            "누적 가입자 수",
-            "현재 가입된 총 사용자 수",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            true
-    ),
-    USER_SIGNUP_DAILY(
-            "일일 가입자 수",
-            "이 날 신규 가입한 사용자 수",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            false
-    ),
-    USER_WITHDRAWAL_DAILY(
-            "일일 탈퇴자 수",
-            "이 날 탈퇴한 사용자 수",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            false
-    ),
-    USER_DAU(
-            "DAU",
-            "일일 활성 사용자 수(그 날 서비스에 몇 명이 접속했는지 기준)",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            true
-    ),
-    USER_WAU(
-            "WAU",
-            "주간 활성 사용자 수(최근 7일)",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            false
-    ),
-    USER_MAU(
-            "MAU",
-            "월간 활성 사용자 수(최근 30일)",
-            MetricUnit.COUNT,
-            false,
-            Map.of(),
-            false
-    );
-
-    private final String label;
-    private final String description;
-    private final MetricUnit unit;
-    private final boolean multiSeries;
-    private final Map<String, String> componentLabels;
-    private final boolean defaultActive;
-
-    StatMetric(
-            String label,
-            String description,
-            MetricUnit unit,
-            boolean multiSeries,
-            Map<String, String> componentLabels,
-            boolean defaultActive
-    ) {
-        this.label = label;
-        this.description = description;
-        this.unit = unit;
-        this.multiSeries = multiSeries;
-        this.componentLabels = componentLabels;
-        this.defaultActive = defaultActive;
-    }
-
-    public String label() { return label; }
-    public String description() { return description; }
-    public MetricUnit unit() { return unit; }
-    public boolean multiSeries() { return multiSeries; }
-    public Map<String, String> componentLabels() { return componentLabels; }
-    public boolean defaultActive() { return defaultActive; }
-
-    private static Map<String, String> orderedComponentLabels() {
-        Map<String, String> labels = new LinkedHashMap<>();
-        labels.put("min_hours", "최소");
-        labels.put("max_hours", "최대");
-        labels.put("avg_hours", "평균");
-        labels.put("stddev_hours", "표준편차");
-        return Collections.unmodifiableMap(labels);
-    }
-
-    public enum MetricUnit {
-        COUNT,
-        RATIO,
-        HOURS
-    }
-}
-
-
-// ===== java/apu/saerok_admin/infra/unsplash/UnsplashService.java =====
-package apu.saerok_admin.infra.unsplash;
-
-import apu.saerok_admin.config.UnsplashProperties;
-import com.fasterxml.jackson.databind.JsonNode;
-import com.fasterxml.jackson.databind.ObjectMapper;
-import java.net.URI;
-import java.util.Objects;
-import org.springframework.http.HttpHeaders;
-import org.springframework.stereotype.Service;
-import org.springframework.util.StringUtils;
-import org.springframework.web.client.RestClient;
-import org.springframework.web.util.UriComponentsBuilder;
-
-/**
- * 서버 측에서만 Unsplash API 를 호출한다.
- * - random photo 조회 (orientation: landscape | portrait)
- * - download_location 트리거 (사용 이벤트 카운트)
- * - 브라우저에는 이미지/링크 정보만 내려준다 (키 절대 노출 X)
- */
-@Service
-public class UnsplashService {
-
-    private final RestClient client;
-    private final UnsplashProperties props;
-    @SuppressWarnings("unused")
-    private final ObjectMapper mapper;
-
-    public UnsplashService(UnsplashProperties props, ObjectMapper mapper) {
-        this.props = Objects.requireNonNull(props, "UnsplashProperties must not be null");
-        this.mapper = mapper;
-        if (!StringUtils.hasText(props.getAccessKey())) {
-            throw new IllegalStateException("Unsplash access key is not configured. Set unsplash.access-key.");
-        }
-        this.client = RestClient.builder()
-                .baseUrl("https://api.unsplash.com")
-                .defaultHeader(HttpHeaders.AUTHORIZATION, "Client-ID " + props.getAccessKey())
-                .defaultHeader("Accept-Version", "v1")
-                .build();
-    }
-
-    /** orientation 값에 따라 한 장만 내려준다 (기본: landscape). */
-    public Photo fetchRandomBird(String orientation) {
-        String normalized = normalizeOrientation(orientation);
-        return fetchOne(normalized);
-    }
-
-    private Photo fetchOne(String orientation) {
-        JsonNode node = client.get()
-                .uri(uriBuilder -> uriBuilder
-                        .path("/photos/random")
-                        .queryParam("query", "bird on branch, small bird, passerine, morning light")
-                        .queryParam("orientation", orientation)   // landscape | portrait
-                        .queryParam("content_filter", "high")
-                        .queryParam("count", 1)
-                        .build())
-                .retrieve()
-                .body(JsonNode.class);
-
-        JsonNode photo = (node != null && node.isArray() && node.size() > 0) ? node.get(0) : node;
-        if (photo == null || photo.isNull()) {
-            throw new IllegalStateException("Empty response from Unsplash random photo API (" + orientation + ")");
-        }
-
-        String baseUrl = chooseBaseUrl(photo);
-        if (!StringUtils.hasText(baseUrl)) {
-            throw new IllegalStateException("Unsplash response missing image URLs (" + orientation + ")");
-        }
-
-        // 링크/저작자/홈 (utm_source=appName, utm_medium=referral)
-        String appName = props.getAppName();
-        String photoHtml = addUtm(textAt(photo, "/links/html"), appName);
-        String photographerName = textAt(photo, "/user/name");
-        String photographerLink = addUtm(textAt(photo, "/user/links/html"), appName);
-        String unsplashHome     = addUtm("https://unsplash.com", appName);
-
-        // 다운로드 트리거 (필수)
-        String downloadLocation = textAt(photo, "/links/download_location");
-        if (StringUtils.hasText(downloadLocation)) {
-            URI dlUri = UriComponentsBuilder.fromUriString(downloadLocation)
-                    .queryParam("utm_source", StringUtils.hasText(appName) ? appName : null)
-                    .queryParam("utm_medium", StringUtils.hasText(appName) ? "referral" : null)
-                    .build(true).toUri();
-            client.get().uri(dlUri).retrieve().toBodilessEntity(); // 응답 바디 불필요
-        }
-
-        return new Photo(baseUrl, photoHtml, photographerName, photographerLink, unsplashHome);
-    }
-
-    private static String normalizeOrientation(String o) {
-        if (!StringUtils.hasText(o)) return "landscape";
-        String v = o.trim().toLowerCase();
-        if ("portrait".equals(v)) return "portrait";
-        return "landscape";
-    }
-
-    private static String chooseBaseUrl(JsonNode photo) {
-        String raw = textAt(photo, "/urls/raw");
-        String full = textAt(photo, "/urls/full");
-        String regular = textAt(photo, "/urls/regular");
-        if (StringUtils.hasText(raw)) return raw;
-        if (StringUtils.hasText(full)) return full;
-        return regular;
-    }
-
-    private static String textAt(JsonNode node, String pointer) {
-        if (node == null) return null;
-        JsonNode n = node.at(pointer);
-        return n.isMissingNode() || n.isNull() ? null : n.asText();
-    }
-
-    private static String addUtm(String url, String app) {
-        if (!StringUtils.hasText(url)) return url;
-        UriComponentsBuilder b = UriComponentsBuilder.fromUriString(url);
-        if (StringUtils.hasText(app)) {
-            b.queryParam("utm_source", app).queryParam("utm_medium", "referral");
-        }
-        return b.build(true).toString();
-    }
-
-    /** 단일 사진 메타 */
-    public record Photo(
-            String imageUrl,          // 원본 CDN base URL (프론트에서 w/h/fit=crop 적용)
-            String htmlLink,          // 사진 상세 페이지 (utm 포함)
-            String photographerName,
-            String photographerLink,  // 작가 페이지 (utm 포함)
-            String unsplashHome       // 홈 (utm 포함)
-    ) {}
-}
-
-
-// ===== java/apu/saerok_admin/SaerokAdminApplication.java =====
-package apu.saerok_admin;
-
-import org.springframework.boot.SpringApplication;
-import org.springframework.boot.autoconfigure.SpringBootApplication;
-
-@SpringBootApplication
-public class SaerokAdminApplication {
-
-	public static void main(String[] args) {
-		SpringApplication.run(SaerokAdminApplication.class, args);
-	}
-
-}
-
-
-// ===== java/apu/saerok_admin/security/BackendUnauthorizedException.java =====
-package apu.saerok_admin.security;
-
-public class BackendUnauthorizedException extends RuntimeException {
-
-    public BackendUnauthorizedException(String message) {
-        super(message);
-    }
-
-    public BackendUnauthorizedException(String message, Throwable cause) {
-        super(message, cause);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/security/LoginSession.java =====
-package apu.saerok_admin.security;
-
-import java.io.Serializable;
-
-public record LoginSession(String accessToken) implements Serializable {
-
-    public static final String ATTRIBUTE_NAME = "SAEROK_LOGIN_SESSION";
-}
-
-
-// ===== java/apu/saerok_admin/security/LoginSessionAuthenticationFilter.java =====
-package apu.saerok_admin.security;
-
-import jakarta.servlet.FilterChain;
-import jakarta.servlet.ServletException;
-import jakarta.servlet.http.HttpServletRequest;
-import jakarta.servlet.http.HttpServletResponse;
-import java.io.IOException;
-import org.springframework.security.core.context.SecurityContextHolder;
-import org.springframework.security.web.authentication.WebAuthenticationDetailsSource;
-import org.springframework.web.filter.OncePerRequestFilter;
-
-public class LoginSessionAuthenticationFilter extends OncePerRequestFilter {
-
-    private final LoginSessionManager loginSessionManager;
-
-    public LoginSessionAuthenticationFilter(LoginSessionManager loginSessionManager) {
-        this.loginSessionManager = loginSessionManager;
-    }
-
-    @Override
-    protected void doFilterInternal(
-            HttpServletRequest request,
-            HttpServletResponse response,
-            FilterChain filterChain
-    ) throws ServletException, IOException {
-        if (SecurityContextHolder.getContext().getAuthentication() == null) {
-            loginSessionManager.findSession(request).ifPresent(session -> {
-                SaerokAdminAuthentication authentication = loginSessionManager.createAuthentication(session);
-                authentication.setDetails(new WebAuthenticationDetailsSource().buildDetails(request));
-                SecurityContextHolder.getContext().setAuthentication(authentication);
-            });
-        }
-        filterChain.doFilter(request, response);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/security/LoginSessionManager.java =====
-package apu.saerok_admin.security;
-
-import jakarta.servlet.http.HttpServletRequest;
-import jakarta.servlet.http.HttpServletResponse;
-import jakarta.servlet.http.HttpSession;
-import java.time.Duration;
-import java.util.List;
-import java.util.Optional;
-import org.springframework.http.HttpHeaders;
-import org.springframework.http.ResponseCookie;
-import org.springframework.security.core.Authentication;
-import org.springframework.security.core.context.SecurityContext;
-import org.springframework.security.core.context.SecurityContextHolder;
-import org.springframework.security.web.context.HttpSessionSecurityContextRepository;
-import org.springframework.stereotype.Component;
-import org.springframework.util.StringUtils;
-import org.springframework.web.context.request.RequestContextHolder;
-import org.springframework.web.context.request.ServletRequestAttributes;
-
-@Component
-public class LoginSessionManager {
-
-    private static final String PRINCIPAL = "SaerokAdmin";
-
-    public void establishSession(HttpServletRequest request, LoginSession loginSession) {
-        HttpSession session = request.getSession(true);
-        session.setAttribute(LoginSession.ATTRIBUTE_NAME, loginSession);
-
-        SaerokAdminAuthentication authentication = createAuthentication(loginSession);
-        SecurityContext context = SecurityContextHolder.createEmptyContext();
-        context.setAuthentication(authentication);
-        SecurityContextHolder.setContext(context);
-        session.setAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY, context);
-    }
-
-    public Optional<LoginSession> findSession(HttpServletRequest request) {
-        HttpSession session = request.getSession(false);
-        if (session == null) {
-            return Optional.empty();
-        }
-        Object attribute = session.getAttribute(LoginSession.ATTRIBUTE_NAME);
-        if (attribute instanceof LoginSession loginSession) {
-            return Optional.of(loginSession);
-        }
-        return Optional.empty();
-    }
-
-    public Optional<LoginSession> currentSession() {
-        ServletRequestAttributes attributes = currentRequestAttributes();
-        if (attributes == null) {
-            return Optional.empty();
-        }
-        HttpSession session = attributes.getRequest().getSession(false);
-        if (session == null) {
-            return Optional.empty();
-        }
-        Object attribute = session.getAttribute(LoginSession.ATTRIBUTE_NAME);
-        if (attribute instanceof LoginSession loginSession) {
-            return Optional.of(loginSession);
-        }
-        return Optional.empty();
-    }
-
-    public Optional<String> currentAccessToken() {
-        return currentSession().map(LoginSession::accessToken);
-    }
-
-    public void updateAccessToken(String accessToken) {
-        if (!StringUtils.hasText(accessToken)) {
-            clearCurrentSession();
-            return;
-        }
-        ServletRequestAttributes attributes = currentRequestAttributes();
-        if (attributes == null) {
-            return;
-        }
-        HttpServletRequest request = attributes.getRequest();
-        HttpSession session = request.getSession(false);
-        if (session == null) {
-            return;
-        }
-        LoginSession updatedSession = new LoginSession(accessToken);
-        session.setAttribute(LoginSession.ATTRIBUTE_NAME, updatedSession);
-
-        Authentication authentication = SecurityContextHolder.getContext().getAuthentication();
-        if (authentication instanceof SaerokAdminAuthentication adminAuthentication) {
-            adminAuthentication.updateLoginSession(updatedSession);
-        }
-        session.setAttribute(
-                HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY,
-                SecurityContextHolder.getContext()
-        );
-    }
-
-    public void clearSession(HttpServletRequest request) {
-        HttpSession session = request.getSession(false);
-        if (session != null) {
-            session.removeAttribute(LoginSession.ATTRIBUTE_NAME);
-            session.removeAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY);
-        }
-        SecurityContextHolder.clearContext();
-    }
-
-    public void clearCurrentSession() {
-        ServletRequestAttributes attributes = currentRequestAttributes();
-        if (attributes != null) {
-            HttpSession session = attributes.getRequest().getSession(false);
-            if (session != null) {
-                session.removeAttribute(LoginSession.ATTRIBUTE_NAME);
-                session.removeAttribute(HttpSessionSecurityContextRepository.SPRING_SECURITY_CONTEXT_KEY);
-            }
-        }
-        SecurityContextHolder.clearContext();
-    }
-
-    public void writeRefreshCookiesToResponse(List<String> cookies) {
-        if (cookies == null || cookies.isEmpty()) {
-            return;
-        }
-        ServletRequestAttributes attributes = currentRequestAttributes();
-        if (attributes == null) {
-            return;
-        }
-        HttpServletResponse response = attributes.getResponse();
-        if (response == null) {
-            return;
-        }
-        cookies.forEach(cookie -> response.addHeader(HttpHeaders.SET_COOKIE, cookie));
-    }
-
-    public void deleteRefreshCookie(HttpServletResponse response, boolean secure) {
-        ResponseCookie cookie = ResponseCookie.from("refreshToken", "")
-                .maxAge(Duration.ZERO)
-                .path("/")
-                .httpOnly(true)
-                .secure(secure)
-                .build();
-        response.addHeader(HttpHeaders.SET_COOKIE, cookie.toString());
-    }
-
-    public SaerokAdminAuthentication createAuthentication(LoginSession loginSession) {
-        return new SaerokAdminAuthentication(PRINCIPAL, loginSession);
-    }
-
-    private ServletRequestAttributes currentRequestAttributes() {
-        return (ServletRequestAttributes) RequestContextHolder.getRequestAttributes();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/security/OAuthStateManager.java =====
-package apu.saerok_admin.security;
-
-import jakarta.servlet.http.HttpSession;
-import java.security.SecureRandom;
-import java.util.Base64;
-import java.util.Objects;
-import org.springframework.stereotype.Component;
-
-@Component
-public class OAuthStateManager {
-
-    public static final String ATTRIBUTE_NAME = "SAEROK_OAUTH_STATE";
-    private static final SecureRandom SECURE_RANDOM = new SecureRandom();
-
-    public String createState(HttpSession session) {
-        String state = generateStateToken();
-        session.setAttribute(ATTRIBUTE_NAME, state);
-        return state;
-    }
-
-    public boolean consumeState(HttpSession session, String providedState) {
-        if (session == null) {
-            return false;
-        }
-        Object stored = session.getAttribute(ATTRIBUTE_NAME);
-        session.removeAttribute(ATTRIBUTE_NAME);
-        if (!(stored instanceof String storedState)) {
-            return false;
-        }
-        return Objects.equals(storedState, providedState);
-    }
-
-    private String generateStateToken() {
-        byte[] randomBytes = new byte[24];
-        SECURE_RANDOM.nextBytes(randomBytes);
-        return Base64.getUrlEncoder().withoutPadding().encodeToString(randomBytes);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/security/SaerokAdminAuthentication.java =====
-package apu.saerok_admin.security;
-
-import java.util.Collection;
-import java.util.List;
-import org.springframework.security.authentication.AbstractAuthenticationToken;
-import org.springframework.security.core.GrantedAuthority;
-import org.springframework.security.core.authority.SimpleGrantedAuthority;
-
-public class SaerokAdminAuthentication extends AbstractAuthenticationToken {
-
-    private final Object principal;
-    private LoginSession loginSession;
-
-    public SaerokAdminAuthentication(Object principal, LoginSession loginSession) {
-        this(principal, loginSession, List.of(new SimpleGrantedAuthority("ROLE_ADMIN")));
-    }
-
-    private SaerokAdminAuthentication(
-            Object principal,
-            LoginSession loginSession,
-            Collection<? extends GrantedAuthority> authorities
-    ) {
-        super(authorities);
-        this.principal = principal;
-        this.loginSession = loginSession;
-        setAuthenticated(true);
-    }
-
-    @Override
-    public Object getCredentials() {
-        return "";
-    }
-
-    @Override
-    public Object getPrincipal() {
-        return principal;
-    }
-
-    public LoginSession getLoginSession() {
-        return loginSession;
-    }
-
-    public String getAccessToken() {
-        return loginSession.accessToken();
-    }
-
-    public void updateLoginSession(LoginSession loginSession) {
-        this.loginSession = loginSession;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/AdController.java =====
-
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.ad.AdminAdClient;
-import apu.saerok_admin.infra.ad.dto.AdImagePresignResponse;
-import apu.saerok_admin.infra.ad.dto.AdminAdImagePresignRequest;
-import apu.saerok_admin.infra.ad.dto.AdminAdListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminAdPlacementListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminCreateAdPlacementRequest;
-import apu.saerok_admin.infra.ad.dto.AdminCreateAdRequest;
-import apu.saerok_admin.infra.ad.dto.AdminCreateSlotRequest;
-import apu.saerok_admin.infra.ad.dto.AdminSlotListResponse;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateAdPlacementRequest;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateAdRequest;
-import apu.saerok_admin.infra.ad.dto.AdminUpdateSlotRequest;
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.CurrentAdminProfile;
-import apu.saerok_admin.web.view.ad.AdForm;
-import apu.saerok_admin.web.view.ad.AdListItem;
-import apu.saerok_admin.web.view.ad.AdPlacementForm;
-import apu.saerok_admin.web.view.ad.AdPlacementGroup;
-import apu.saerok_admin.web.view.ad.AdPlacementItem;
-import apu.saerok_admin.web.view.ad.AdSlotForm;
-import apu.saerok_admin.web.view.ad.AdSlotListItem;
-import apu.saerok_admin.web.view.ad.AdSummaryMetrics;
-import apu.saerok_admin.web.view.ad.PlacementTimeStatus;
-import java.time.Clock;
-import java.time.LocalDate;
-import java.util.ArrayList;
-import java.util.Comparator;
-import java.util.LinkedHashMap;
-import java.util.List;
-import java.util.Locale;
-import java.util.Map;
-import java.util.Objects;
-import java.util.Optional;
-import java.util.stream.Collectors;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.http.HttpStatus;
-import org.springframework.http.ResponseEntity;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.util.StringUtils;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.ModelAttribute;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestBody;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.bind.annotation.ResponseBody;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.servlet.mvc.support.RedirectAttributes;
-
-@Controller
-@RequestMapping("/ads")
-public class AdController {
-
-    private static final Logger log = LoggerFactory.getLogger(AdController.class);
-    private static final String PERMISSION_ADMIN_AD_WRITE = "ADMIN_AD_WRITE";
-    private static final String PERMISSION_ADMIN_SLOT_DELETE = "ADMIN_SLOT_DELETE";
-
-    private final AdminAdClient adminAdClient;
-    private final Clock clock;
-
-    public AdController(AdminAdClient adminAdClient, Clock clock) {
-        this.adminAdClient = adminAdClient;
-        this.clock = clock;
-    }
-
-    @GetMapping
-    public String index(@RequestParam(name = "tab", defaultValue = "ads") String tab,
-                        Model model) {
-        model.addAttribute("pageTitle", "광고 관리");
-        model.addAttribute("activeMenu", "ads");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("광고 관리")
-        ));
-        model.addAttribute("toastMessages", List.of());
-
-        LocalDate today = LocalDate.now(clock);
-
-        List<AdListItem> adItems = List.of();
-        String adsLoadError = null;
-        try {
-            AdminAdListResponse response = adminAdClient.listAds();
-            List<AdminAdListResponse.Item> rawItems = Optional.ofNullable(response)
-                    .map(AdminAdListResponse::items)
-                    .orElseGet(List::of);
-            adItems = rawItems.stream()
-                    .map(this::toAdListItem)
-                    .sorted(Comparator.comparing(AdListItem::createdAt, Comparator.nullsLast(Comparator.reverseOrder())))
-                    .toList();
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load ads. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            adsLoadError = "광고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load ads.", exception);
-            adsLoadError = "광고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        }
-
-        List<AdPlacementItem> placementItems = List.of();
-        String placementsLoadError = null;
-        try {
-            AdminAdPlacementListResponse placementResponse = adminAdClient.listPlacements();
-            List<AdminAdPlacementListResponse.Item> rawPlacements = Optional.ofNullable(placementResponse)
-                    .map(AdminAdPlacementListResponse::items)
-                    .orElseGet(List::of);
-            placementItems = rawPlacements.stream()
-                    .map(item -> toPlacementItem(item, today))
-                    .sorted(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())))
-                    .toList();
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load ad placements. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            placementsLoadError = "광고 노출 스케줄을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load ad placements.", exception);
-            placementsLoadError = "광고 노출 스케줄을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        }
-
-        Map<Long, Long> placementCountsBySlot = placementItems.stream()
-                .collect(Collectors.groupingBy(AdPlacementItem::slotId, Collectors.counting()));
-
-        List<AdSlotListItem> slotItems = List.of();
-        String slotsLoadError = null;
-        try {
-            AdminSlotListResponse slotResponse = adminAdClient.listSlots();
-            List<AdminSlotListResponse.Item> rawSlots = Optional.ofNullable(slotResponse)
-                    .map(AdminSlotListResponse::items)
-                    .orElseGet(List::of);
-            slotItems = rawSlots.stream()
-                    .map(item -> toSlotListItem(item, placementCountsBySlot))
-                    .sorted(Comparator.comparing(AdSlotListItem::code, Comparator.nullsLast(String::compareToIgnoreCase)))
-                    .toList();
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load ad slots. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            slotsLoadError = "광고 위치 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load ad slots.", exception);
-            slotsLoadError = "광고 위치 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.";
-        }
-
-        Map<Long, AdSlotListItem> slotMap = slotItems.stream()
-                .collect(Collectors.toMap(AdSlotListItem::id, item -> item, (left, right) -> left, LinkedHashMap::new));
-
-        List<AdPlacementGroup> placementGroups = buildPlacementGroups(slotItems, slotMap, placementItems);
-
-        int activePlacementCount = (int) placementItems.stream()
-                .filter(item -> item.enabled() && item.timeStatus() == PlacementTimeStatus.ACTIVE)
-                .count();
-        AdSummaryMetrics summaryMetrics = new AdSummaryMetrics(adItems.size(), slotItems.size(), activePlacementCount);
-
-        model.addAttribute("tab", normalizeTab(tab));
-        model.addAttribute("summary", summaryMetrics);
-        model.addAttribute("ads", adItems);
-        model.addAttribute("adsLoadError", adsLoadError);
-        model.addAttribute("slots", slotItems);
-        model.addAttribute("slotsLoadError", slotsLoadError);
-        model.addAttribute("placementsLoadError", placementsLoadError);
-        model.addAttribute("placementGroups", placementGroups);
-        model.addAttribute("hasPlacements", !placementItems.isEmpty());
-        model.addAttribute("toastMessages", List.of());
-
-        return "ads/list";
-    }
-
-    @GetMapping("/new")
-    public String newAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                            Model model,
-                            RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
-            return "redirect:/ads";
-        }
-
-        model.addAttribute("pageTitle", "새 광고 등록");
-        model.addAttribute("activeMenu", "ads");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("광고 관리", "/ads"),
-                Breadcrumb.active("새 광고 등록")
-        ));
-        model.addAttribute("toastMessages", List.of());
-        model.addAttribute("form", new AdForm(null, "", "", "", null, null, null));
-        return "ads/ad-form";
-    }
-
-    @PostMapping
-    public String createAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                           @RequestParam String name,
-                           @RequestParam(name = "targetUrl") String targetUrl,
-                           @RequestParam(name = "memo", required = false) String memo,
-                           @RequestParam(name = "objectKey") String objectKey,
-                           @RequestParam(name = "contentType") String contentType,
-                           RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고를 등록할 권한이 없습니다.");
-            return "redirect:/ads?tab=ads";
-        }
-
-        if (!StringUtils.hasText(name) || !StringUtils.hasText(targetUrl) || !StringUtils.hasText(objectKey) || !StringUtils.hasText(contentType)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
-            return "redirect:/ads/new";
-        }
-
-        try {
-            adminAdClient.createAd(new AdminCreateAdRequest(name.trim(), trimToNull(memo), objectKey, contentType, targetUrl.trim()));
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return "redirect:/ads?tab=ads";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to create ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
-            return "redirect:/ads/new";
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to create ad.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
-            return "redirect:/ads/new";
-        }
-    }
-
-    @GetMapping("/edit")
-    public String editAdForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @RequestParam("id") Long adId,
-                             Model model,
-                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
-            return "redirect:/ads";
-        }
-
-        try {
-            AdminAdListResponse response = adminAdClient.listAds();
-            Optional<AdminAdListResponse.Item> match = Optional.ofNullable(response)
-                    .map(AdminAdListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .filter(item -> Objects.equals(item.id(), adId))
-                    .findFirst();
-            if (match.isEmpty()) {
-                redirectAttributes.addFlashAttribute("flashStatus", "error");
-                redirectAttributes.addFlashAttribute("flashMessage", "해당 광고를 찾을 수 없습니다.");
-                return "redirect:/ads";
-            }
-
-            AdminAdListResponse.Item item = match.get();
-            AdForm form = new AdForm(item.id(), item.name(), item.targetUrl(), item.memo(), null, null, item.imageUrl());
-
-            model.addAttribute("pageTitle", "광고 수정");
-            model.addAttribute("activeMenu", "ads");
-            model.addAttribute("breadcrumbs", List.of(
-                    Breadcrumb.of("대시보드", "/"),
-                    Breadcrumb.of("광고 관리", "/ads"),
-                    Breadcrumb.active("광고 수정")
-            ));
-            model.addAttribute("toastMessages", List.of());
-            model.addAttribute("form", form);
-            return "ads/ad-form";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load ad for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load ad for edit.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 정보를 불러오지 못했습니다.");
-        return "redirect:/ads";
-    }
-
-    @PostMapping("/edit")
-    public String updateAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                           @RequestParam("id") Long adId,
-                           @RequestParam String name,
-                           @RequestParam("targetUrl") String targetUrl,
-                           @RequestParam(name = "memo", required = false) String memo,
-                           @RequestParam(name = "objectKey", required = false) String objectKey,
-                           @RequestParam(name = "contentType", required = false) String contentType,
-                           RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고를 수정할 권한이 없습니다.");
-            return "redirect:/ads?tab=ads";
-        }
-
-        if (!StringUtils.hasText(name) || !StringUtils.hasText(targetUrl)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
-            return "redirect:/ads/edit?id=" + adId;
-        }
-
-        String normalizedObjectKey = StringUtils.hasText(objectKey) ? objectKey : null;
-        String normalizedContentType = StringUtils.hasText(contentType) ? contentType : null;
-
-        try {
-            adminAdClient.updateAd(adId, new AdminUpdateAdRequest(name.trim(), trimToNull(memo), normalizedObjectKey, normalizedContentType, targetUrl.trim()));
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return "redirect:/ads?tab=ads";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to update ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to update ad.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 수정에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        return "redirect:/ads/edit?id=" + adId;
-    }
-
-    @PostMapping("/delete")
-    public String deleteAd(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                           @RequestParam("id") Long adId,
-                           RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고를 삭제할 권한이 없습니다.");
-            return "redirect:/ads?tab=ads";
-        }
-
-        try {
-            adminAdClient.deleteAd(adId);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to delete ad. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to delete ad.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        return "redirect:/ads?tab=ads";
-    }
-
-    @GetMapping("/slots/new")
-    public String newSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                              Model model,
-                              RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        model.addAttribute("pageTitle", "새 광고 위치 추가");
-        model.addAttribute("activeMenu", "ads");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
-                Breadcrumb.active("새 광고 위치 추가")
-        ));
-        model.addAttribute("toastMessages", List.of());
-        model.addAttribute("form", new AdSlotForm(null, "", "", 50.0, 60));
-        return "ads/slot-form";
-    }
-
-    @PostMapping("/slots")
-    public String createSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @RequestParam("code") String code,
-                             @RequestParam(name = "description", required = false) String description,
-                             @RequestParam("fallbackRatio") Double fallbackRatioPercent,
-                             @RequestParam("ttlSeconds") Integer ttlSeconds,
-                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 등록할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        if (!StringUtils.hasText(code) || fallbackRatioPercent == null || ttlSeconds == null) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
-            return "redirect:/ads/slots/new";
-        }
-
-        double normalizedFallback = Math.max(0, Math.min(100, fallbackRatioPercent));
-        double fallbackRatio = normalizedFallback / 100.0;
-
-        try {
-            adminAdClient.createSlot(new AdminCreateSlotRequest(code.trim(), trimToNull(description), fallbackRatio, ttlSeconds));
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return "redirect:/ads?tab=schedule";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to create slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to create slot.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 등록에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        return "redirect:/ads/slots/new";
-    }
-
-    @GetMapping("/slots/edit")
-    public String editSlotForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                               @RequestParam("id") Long slotId,
-                               Model model,
-                               RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            AdminSlotListResponse response = adminAdClient.listSlots();
-            Optional<AdminSlotListResponse.Item> match = Optional.ofNullable(response)
-                    .map(AdminSlotListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .filter(item -> Objects.equals(item.id(), slotId))
-                    .findFirst();
-            if (match.isEmpty()) {
-                redirectAttributes.addFlashAttribute("flashStatus", "error");
-                redirectAttributes.addFlashAttribute("flashMessage", "해당 광고 위치를 찾을 수 없습니다.");
-                return "redirect:/ads?tab=schedule";
-            }
-
-            AdminSlotListResponse.Item item = match.get();
-            double fallbackRatioPercent = item.fallbackRatio() != null ? item.fallbackRatio() * 100.0 : 0.0;
-            AdSlotForm form = new AdSlotForm(item.id(), item.name(), item.memo(), fallbackRatioPercent, item.ttlSeconds());
-
-            model.addAttribute("pageTitle", "광고 위치 수정");
-            model.addAttribute("activeMenu", "ads");
-            model.addAttribute("breadcrumbs", List.of(
-                    Breadcrumb.of("대시보드", "/"),
-                    Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
-                    Breadcrumb.active("광고 위치 수정")
-            ));
-            model.addAttribute("toastMessages", List.of());
-            model.addAttribute("form", form);
-            return "ads/slot-form";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load slot for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load slot for edit.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 정보를 불러오지 못했습니다.");
-        return "redirect:/ads?tab=schedule";
-    }
-
-    @PostMapping("/slots/edit")
-    public String updateSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @RequestParam("id") Long slotId,
-                             @RequestParam(name = "description", required = false) String description,
-                             @RequestParam("fallbackRatio") Double fallbackRatioPercent,
-                             @RequestParam("ttlSeconds") Integer ttlSeconds,
-                             @RequestParam(name = "redirectTab", defaultValue = "slots") String redirectTab,
-                             RedirectAttributes redirectAttributes) {
-        String normalizedRedirectTab = normalizeTab(redirectTab);
-        String successRedirect = "redirect:/ads?tab=" + normalizedRedirectTab;
-        boolean redirectFromSchedule = "schedule".equals(normalizedRedirectTab)
-                && StringUtils.hasText(redirectTab)
-                && !"slots".equalsIgnoreCase(redirectTab);
-        String failureRedirect;
-        if ("ads".equals(normalizedRedirectTab)) {
-            failureRedirect = successRedirect;
-        } else if (redirectFromSchedule) {
-            failureRedirect = successRedirect;
-        } else {
-            failureRedirect = "redirect:/ads/slots/edit?id=" + slotId;
-        }
-
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 수정할 권한이 없습니다.");
-            return successRedirect;
-        }
-
-        if (fallbackRatioPercent == null || ttlSeconds == null) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "필수 입력값을 모두 채워주세요.");
-            return failureRedirect;
-        }
-
-        double normalizedFallback = Math.max(0, Math.min(100, fallbackRatioPercent));
-        double fallbackRatio = normalizedFallback / 100.0;
-
-        try {
-            adminAdClient.updateSlot(slotId, new AdminUpdateSlotRequest(trimToNull(description), fallbackRatio, ttlSeconds));
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return successRedirect;
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to update slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to update slot.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 수정에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        return failureRedirect;
-    }
-
-    @PostMapping("/slots/delete")
-    public String deleteSlot(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @RequestParam("id") Long slotId,
-                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_SLOT_DELETE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치를 삭제할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            adminAdClient.deleteSlot(slotId);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to delete slot. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to delete slot.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 위치 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        return "redirect:/ads?tab=schedule";
-    }
-
-    @GetMapping("/placements/new")
-    public String newPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                   @RequestParam(name = "slotId", required = false) Long preselectedSlotId,
-                                   Model model,
-                                   RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        List<AdListItem> ads = fetchAdOptions();
-        List<AdSlotListItem> slots = fetchSlotOptions();
-
-        model.addAttribute("pageTitle", "새 스케줄 등록");
-        model.addAttribute("activeMenu", "ads");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
-                Breadcrumb.active("새 스케줄 등록")
-        ));
-        model.addAttribute("toastMessages", List.of());
-        model.addAttribute("form", new AdPlacementForm(null, null, preselectedSlotId, null, null, (short) 1, Boolean.TRUE));
-        model.addAttribute("adOptions", ads);
-        model.addAttribute("slotOptions", slots);
-        return "ads/placement-form";
-    }
-
-    @PostMapping("/placements")
-    public String createPlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                  @RequestParam("adId") Long adId,
-                                  @RequestParam("slotId") Long slotId,
-                                  @RequestParam("startDate") String startDate,
-                                  @RequestParam("endDate") String endDate,
-                                  @RequestParam("weight") Short weight,
-                                  @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
-                                  RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 등록할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            AdminCreateAdPlacementRequest request = new AdminCreateAdPlacementRequest(
-                    adId,
-                    slotId,
-                    LocalDate.parse(startDate),
-                    LocalDate.parse(endDate),
-                    weight,
-                    enabled
-            );
-            adminAdClient.createPlacement(request);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return "redirect:/ads?tab=schedule";
-        } catch (Exception exception) {
-            log.warn("Failed to create placement.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 등록에 실패했습니다. 입력값을 확인해주세요.");
-        return "redirect:/ads/placements/new";
-    }
-
-    @GetMapping("/placements/edit")
-    public String editPlacementForm(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                    @RequestParam("id") Long placementId,
-                                    Model model,
-                                    RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            AdminAdPlacementListResponse response = adminAdClient.listPlacements();
-            Optional<AdminAdPlacementListResponse.Item> match = Optional.ofNullable(response)
-                    .map(AdminAdPlacementListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .filter(item -> Objects.equals(item.id(), placementId))
-                    .findFirst();
-            if (match.isEmpty()) {
-                redirectAttributes.addFlashAttribute("flashStatus", "error");
-                redirectAttributes.addFlashAttribute("flashMessage", "해당 스케줄을 찾을 수 없습니다.");
-                return "redirect:/ads?tab=schedule";
-            }
-
-            AdminAdPlacementListResponse.Item item = match.get();
-            AdPlacementForm form = new AdPlacementForm(
-                    item.id(),
-                    item.adId(),
-                    item.slotId(),
-                    item.startDate() != null ? item.startDate().toString() : null,
-                    item.endDate() != null ? item.endDate().toString() : null,
-                    item.weight() != null ? item.weight() : (short) 1,
-                    item.enabled()
-            );
-
-            model.addAttribute("pageTitle", "스케줄 수정");
-            model.addAttribute("activeMenu", "ads");
-            model.addAttribute("breadcrumbs", List.of(
-                    Breadcrumb.of("대시보드", "/"),
-                    Breadcrumb.of("광고 관리", "/ads?tab=schedule"),
-                    Breadcrumb.active("스케줄 수정")
-            ));
-            model.addAttribute("toastMessages", List.of());
-            model.addAttribute("form", form);
-            model.addAttribute("adOptions", fetchAdOptions());
-            model.addAttribute("slotOptions", fetchSlotOptions());
-            return "ads/placement-form";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load placement for edit. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load placement for edit.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 정보를 불러오지 못했습니다.");
-        return "redirect:/ads?tab=schedule";
-    }
-
-    @PostMapping("/placements/edit")
-    public String updatePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                  @RequestParam("id") Long placementId,
-                                  @RequestParam("slotId") Long slotId,
-                                  @RequestParam("startDate") String startDate,
-                                  @RequestParam("endDate") String endDate,
-                                  @RequestParam("weight") Short weight,
-                                  @RequestParam(name = "enabled", defaultValue = "false") boolean enabled,
-                                  RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 수정할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            AdminUpdateAdPlacementRequest request = new AdminUpdateAdPlacementRequest(
-                    slotId,
-                    LocalDate.parse(startDate),
-                    LocalDate.parse(endDate),
-                    weight,
-                    enabled
-            );
-            adminAdClient.updatePlacement(placementId, request);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "저장되었습니다.");
-            return "redirect:/ads?tab=schedule";
-        } catch (Exception exception) {
-            log.warn("Failed to update placement.", exception);
-        }
-
-        redirectAttributes.addFlashAttribute("flashStatus", "error");
-        redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 수정에 실패했습니다. 입력값을 확인해주세요.");
-        return "redirect:/ads/placements/edit?id=" + placementId;
-    }
-
-    @PostMapping("/placements/delete")
-    public String deletePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                  @RequestParam("id") Long placementId,
-                                  RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄을 삭제할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            adminAdClient.deletePlacement(placementId);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제되었습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to delete placement. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to delete placement.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 스케줄 삭제에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        return "redirect:/ads?tab=schedule";
-    }
-
-    @PostMapping("/placements/toggle")
-    public String togglePlacement(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                  @RequestParam("id") Long placementId,
-                                  @RequestParam("enabled") boolean enabled,
-                                  RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태를 변경할 권한이 없습니다.");
-            return "redirect:/ads?tab=schedule";
-        }
-
-        try {
-            AdminAdPlacementListResponse response = adminAdClient.listPlacements();
-            Optional<AdminAdPlacementListResponse.Item> match = Optional.ofNullable(response)
-                    .map(AdminAdPlacementListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .filter(item -> Objects.equals(item.id(), placementId))
-                    .findFirst();
-            if (match.isEmpty()) {
-                redirectAttributes.addFlashAttribute("flashStatus", "error");
-                redirectAttributes.addFlashAttribute("flashMessage", "해당 스케줄을 찾을 수 없습니다.");
-                return "redirect:/ads?tab=schedule";
-            }
-
-            AdminAdPlacementListResponse.Item item = match.get();
-            AdminUpdateAdPlacementRequest request = new AdminUpdateAdPlacementRequest(
-                    item.slotId(),
-                    item.startDate(),
-                    item.endDate(),
-                    item.weight(),
-                    enabled
-            );
-            adminAdClient.updatePlacement(placementId, request);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", enabled ? "이 스케줄을 다시 활성화합니다." : "저장되었습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to toggle placement. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태 변경에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to toggle placement.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "광고 노출 상태 변경에 실패했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        return "redirect:/ads?tab=schedule";
-    }
-
-    @PostMapping("/image/presign")
-    @ResponseBody
-    public ResponseEntity<?> presignImage(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                          @RequestBody Map<String, String> payload) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_AD_WRITE)) {
-            return ResponseEntity.status(HttpStatus.FORBIDDEN)
-                    .body(Map.of("message", "이미지 업로드 권한이 없습니다."));
-        }
-
-        String contentType = payload != null ? payload.get("contentType") : null;
-        if (!StringUtils.hasText(contentType)) {
-            return ResponseEntity.badRequest().body(Map.of("message", "contentType이 필요합니다."));
-        }
-
-        try {
-            AdImagePresignResponse presign = adminAdClient.generateAdImagePresignUrl(new AdminAdImagePresignRequest(contentType));
-            return ResponseEntity.ok(Map.of(
-                    "presignedUrl", presign.presignedUrl(),
-                    "objectKey", presign.objectKey()
-            ));
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to request ad image presign. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            return ResponseEntity.status(exception.getStatusCode()).body(Map.of("message", "Presigned URL 발급에 실패했습니다."));
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to request ad image presign.", exception);
-            return ResponseEntity.status(HttpStatus.INTERNAL_SERVER_ERROR)
-                    .body(Map.of("message", "Presigned URL 발급에 실패했습니다."));
-        }
-    }
-
-    private String normalizeTab(String tab) {
-        if (!StringUtils.hasText(tab)) {
-            return "ads";
-        }
-        String tabLower = tab.toLowerCase(Locale.ROOT);
-        return switch (tabLower) {
-            case "ads" -> "ads";
-            case "slots", "placements", "schedule" -> "schedule";
-            default -> "ads";
-        };
-    }
-
-    private AdListItem toAdListItem(AdminAdListResponse.Item item) {
-        return new AdListItem(
-                item.id(),
-                item.name(),
-                item.memo(),
-                item.imageUrl(),
-                item.contentType(),
-                item.targetUrl(),
-                item.createdAt(),
-                item.updatedAt()
-        );
-    }
-
-    private AdSlotListItem toSlotListItem(AdminSlotListResponse.Item item, Map<Long, Long> placementCountsBySlot) {
-        double fallbackRatioPercent = item.fallbackRatio() != null ? item.fallbackRatio() * 100.0 : 0.0;
-        int ttlSeconds = item.ttlSeconds() != null ? item.ttlSeconds() : 0;
-        int connectedCount = placementCountsBySlot.getOrDefault(item.id(), 0L).intValue();
-        return new AdSlotListItem(
-                item.id(),
-                item.name(),
-                item.memo(),
-                fallbackRatioPercent,
-                ttlSeconds,
-                item.createdAt(),
-                item.updatedAt(),
-                connectedCount
-        );
-    }
-
-    private AdPlacementItem toPlacementItem(AdminAdPlacementListResponse.Item item, LocalDate today) {
-        PlacementTimeStatus timeStatus = resolveTimeStatus(item, today);
-        boolean enabled = Boolean.TRUE.equals(item.enabled());
-        short weight = item.weight() != null ? item.weight() : (short) 1;
-        return new AdPlacementItem(
-                item.id(),
-                item.adId(),
-                item.adName(),
-                item.adImageUrl(),
-                item.slotId(),
-                item.slotName(),
-                item.startDate(),
-                item.endDate(),
-                weight,
-                enabled,
-                item.createdAt(),
-                item.updatedAt(),
-                timeStatus,
-                0.0
-        );
-    }
-
-    private PlacementTimeStatus resolveTimeStatus(AdminAdPlacementListResponse.Item item, LocalDate today) {
-        LocalDate start = item.startDate();
-        LocalDate end = item.endDate();
-        if (start == null || end == null) {
-            return PlacementTimeStatus.ACTIVE;
-        }
-        if (today.isBefore(start)) {
-            return PlacementTimeStatus.UPCOMING;
-        }
-        if (today.isAfter(end)) {
-            return PlacementTimeStatus.ENDED;
-        }
-        return PlacementTimeStatus.ACTIVE;
-    }
-
-    private List<AdPlacementGroup> buildPlacementGroups(List<AdSlotListItem> slotItems,
-                                                        Map<Long, AdSlotListItem> slotMap,
-                                                        List<AdPlacementItem> placements) {
-        Map<Long, List<AdPlacementItem>> placementsBySlot = placements.stream()
-                .collect(Collectors.groupingBy(AdPlacementItem::slotId, LinkedHashMap::new, Collectors.toCollection(ArrayList::new)));
-
-        List<AdPlacementGroup> groups = new ArrayList<>();
-        for (AdSlotListItem slot : slotItems) {
-            List<AdPlacementItem> slotPlacements = new ArrayList<>(placementsBySlot.getOrDefault(slot.id(), List.of()));
-            slotPlacements.sort(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())));
-            List<AdPlacementItem> enrichedPlacements = applyProbability(slot.fallbackRatioPercent(), slotPlacements);
-            groups.add(new AdPlacementGroup(
-                    slot.id(),
-                    slot.code(),
-                    slot.description(),
-                    slot.fallbackRatioPercent(),
-                    slot.ttlSeconds(),
-                    List.copyOf(enrichedPlacements)
-            ));
-        }
-
-        // Placements whose slot is missing from slot list
-        placementsBySlot.forEach((slotId, items) -> {
-            if (slotId == null || slotMap.containsKey(slotId)) {
-                return;
-            }
-            items.sort(Comparator.comparing(AdPlacementItem::startDate, Comparator.nullsLast(Comparator.naturalOrder())));
-            List<AdPlacementItem> enrichedPlacements = applyProbability(0.0, items);
-            AdPlacementItem sample = items.get(0);
-            groups.add(new AdPlacementGroup(slotId, sample.slotName(), null, 0.0, 0, List.copyOf(enrichedPlacements)));
-        });
-
-        return groups;
-    }
-
-    private List<AdPlacementItem> applyProbability(double fallbackRatioPercent, List<AdPlacementItem> placements) {
-        double normalizedFallback = Math.max(0.0, Math.min(100.0, fallbackRatioPercent));
-        double remainingRatio = Math.max(0.0, 100.0 - normalizedFallback);
-        double totalWeight = placements.stream()
-                .filter(AdPlacementItem::isProbabilityEligible)
-                .mapToDouble(AdPlacementItem::weight)
-                .sum();
-
-        List<AdPlacementItem> results = new ArrayList<>(placements.size());
-        for (AdPlacementItem item : placements) {
-            double probability = 0.0;
-            if (item.isProbabilityEligible() && totalWeight > 0.0) {
-                probability = remainingRatio * (item.weight() / totalWeight);
-            }
-            results.add(item.withDisplayProbability(probability));
-        }
-        return results;
-    }
-
-    private List<AdListItem> fetchAdOptions() {
-        try {
-            AdminAdListResponse response = adminAdClient.listAds();
-            return Optional.ofNullable(response)
-                    .map(AdminAdListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .map(this::toAdListItem)
-                    .sorted(Comparator.comparing(AdListItem::name, Comparator.nullsLast(String::compareToIgnoreCase)))
-                    .toList();
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load ads for options.", exception);
-            return List.of();
-        }
-    }
-
-    private List<AdSlotListItem> fetchSlotOptions() {
-        try {
-            AdminSlotListResponse response = adminAdClient.listSlots();
-            return Optional.ofNullable(response)
-                    .map(AdminSlotListResponse::items)
-                    .orElseGet(List::of)
-                    .stream()
-                    .map(item -> toSlotListItem(item, Map.of()))
-                    .sorted(Comparator.comparing(AdSlotListItem::code, Comparator.nullsLast(String::compareToIgnoreCase)))
-                    .toList();
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load slots for options.", exception);
-            return List.of();
-        }
-    }
-
-    private String trimToNull(String value) {
-        if (!StringUtils.hasText(value)) {
-            return null;
-        }
-        String trimmed = value.trim();
-        return trimmed.isEmpty() ? null : trimmed;
-    }
-}
-
-
-
-
-// ===== java/apu/saerok_admin/web/AdminAuditLogController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.audit.AdminAuditLogClient;
-import apu.saerok_admin.infra.audit.dto.AdminAuditLogListResponse;
-import apu.saerok_admin.web.view.AdminAuditLogItem;
-import apu.saerok_admin.web.view.Breadcrumb;
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.ObjectMapper;
-import java.time.LocalDateTime;
-import java.util.ArrayList;
-import java.util.LinkedHashMap;
-import java.util.List;
-import java.util.Locale;
-import java.util.Map;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.util.StringUtils;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-
-@Controller
-@RequestMapping("/admin/audit-logs")
-public class AdminAuditLogController {
-
-    private static final Logger log = LoggerFactory.getLogger(AdminAuditLogController.class);
-    private static final int DEFAULT_PAGE_SIZE = 20;
-    private static final List<Integer> PAGE_SIZE_OPTIONS = List.of(10, 20, 50);
-    private static final Map<String, ActionPresentation> ACTION_PRESENTATIONS = Map.ofEntries(
-            Map.entry("REPORT_IGNORED", new ActionPresentation("신고 무시", "신고를 추가 조치 없이 마감했습니다.", "text-bg-secondary")),
-            Map.entry("COLLECTION_DELETED", new ActionPresentation("새록 삭제", "신고된 새록을 삭제했습니다.", "text-bg-danger")),
-            Map.entry("COMMENT_DELETED", new ActionPresentation("댓글 삭제", "신고된 댓글을 삭제했습니다.", "text-bg-danger")),
-            Map.entry("AD_CREATED", new ActionPresentation("광고 등록", "새 광고를 등록했습니다.", "text-bg-success")),
-            Map.entry("AD_UPDATED", new ActionPresentation("광고 수정", "기존 광고 정보를 수정했습니다.", "text-bg-info")),
-            Map.entry("AD_DELETED", new ActionPresentation("광고 삭제", "광고를 삭제했습니다.", "text-bg-danger")),
-            Map.entry("SLOT_CREATED", new ActionPresentation("광고 위치 등록", "새 광고 위치를 등록했습니다.", "text-bg-success")),
-            Map.entry("SLOT_UPDATED", new ActionPresentation("광고 위치 수정", "광고 위치 정보를 수정했습니다.", "text-bg-info")),
-            Map.entry("SLOT_DELETED", new ActionPresentation("광고 위치 삭제", "광고 위치를 삭제했습니다.", "text-bg-danger")),
-            Map.entry("AD_PLACEMENT_CREATED", new ActionPresentation("광고 스케줄 등록", "새 광고 스케줄을 등록했습니다.", "text-bg-success")),
-            Map.entry("AD_PLACEMENT_UPDATED", new ActionPresentation("광고 스케줄 수정", "광고 스케줄을 수정했습니다.", "text-bg-info")),
-            Map.entry("AD_PLACEMENT_DELETED", new ActionPresentation("광고 스케줄 삭제", "광고 스케줄을 삭제했습니다.", "text-bg-danger"))
-    );
-    private static final Map<String, String> TARGET_LABELS = Map.ofEntries(
-            Map.entry("REPORT_COLLECTION", "새록 신고"),
-            Map.entry("REPORT_COMMENT", "댓글 신고"),
-            Map.entry("COLLECTION", "새록"),
-            Map.entry("COMMENT", "댓글"),
-            Map.entry("AD", "광고"),
-            Map.entry("SLOT", "광고 위치"),
-            Map.entry("AD_PLACEMENT", "광고 스케줄")
-    );
-    private static final String UNKNOWN_ACTION_LABEL = "기록되지 않은 작업";
-    private static final String UNKNOWN_ACTION_DESCRIPTION = "정의되지 않은 관리자 활동입니다.";
-    private static final String UNKNOWN_ACTION_BADGE = "text-bg-secondary";
-    private static final String UNKNOWN_TARGET_LABEL = "알 수 없는 대상";
-    private static final ObjectMapper METADATA_MAPPER = new ObjectMapper();
-
-    private final AdminAuditLogClient adminAuditLogClient;
-
-    public AdminAuditLogController(AdminAuditLogClient adminAuditLogClient) {
-        this.adminAuditLogClient = adminAuditLogClient;
-    }
-
-    @GetMapping
-    public String list(@RequestParam(name = "page", required = false) Integer page,
-                       @RequestParam(name = "size", required = false) Integer size,
-                       Model model) {
-        model.addAttribute("pageTitle", "관리자 활동 로그");
-        model.addAttribute("activeMenu", "adminAuditLogs");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("관리자 활동 로그")
-        ));
-        ensureToastMessages(model);
-
-        int resolvedPage = page != null && page >= 1 ? page : 1;
-        int resolvedSize = size != null && size > 0 ? size : DEFAULT_PAGE_SIZE;
-
-        try {
-            AdminAuditLogListResponse response = adminAuditLogClient.listAuditLogs(resolvedPage, resolvedSize);
-            List<AdminAuditLogItem> logs = response != null && response.items() != null
-                    ? response.items().stream().map(this::toViewItem).toList()
-                    : List.of();
-
-            int rangeStart = logs.isEmpty() ? 0 : (resolvedPage - 1) * resolvedSize + 1;
-            int rangeEnd = (resolvedPage - 1) * resolvedSize + logs.size();
-
-            model.addAttribute("logs", logs);
-            model.addAttribute("page", resolvedPage);
-            model.addAttribute("size", resolvedSize);
-            model.addAttribute("hasPrevious", resolvedPage > 1);
-            model.addAttribute("hasNext", logs.size() == resolvedSize);
-            model.addAttribute("rangeStart", rangeStart);
-            model.addAttribute("rangeEnd", rangeEnd);
-            model.addAttribute("loadErrorMessage", null);
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load admin audit logs. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            attachEmptyState(model, resolvedPage, resolvedSize,
-                    "관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException exception) {
-            log.warn("Failed to load admin audit logs.", exception);
-            attachEmptyState(model, resolvedPage, resolvedSize,
-                    "관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        model.addAttribute("pageSizeOptions", PAGE_SIZE_OPTIONS);
-        return "admin-audit/list";
-    }
-
-    private AdminAuditLogItem toViewItem(AdminAuditLogListResponse.Item item) {
-        long id = item.id() != null ? item.id() : 0L;
-        LocalDateTime occurredAt = item.createdAt();
-        String adminNickname = item.admin() != null && StringUtils.hasText(item.admin().nickname())
-                ? item.admin().nickname()
-                : "알 수 없음";
-
-        ActionPresentation presentation = ACTION_PRESENTATIONS.getOrDefault(
-                normalizeKey(item.action()),
-                new ActionPresentation(UNKNOWN_ACTION_LABEL, UNKNOWN_ACTION_DESCRIPTION, UNKNOWN_ACTION_BADGE)
-        );
-
-        String targetLabel = TARGET_LABELS.getOrDefault(normalizeKey(item.targetType()), UNKNOWN_TARGET_LABEL);
-        String targetDisplay = buildTargetDisplay(targetLabel, item.targetId());
-        String reportDisplay = item.reportId() != null ? "신고 #" + item.reportId() : "-";
-
-        List<AdminAuditLogItem.MetadataEntry> metadataEntries = toMetadataEntries(item.metadata());
-
-        return new AdminAuditLogItem(
-                id,
-                occurredAt,
-                adminNickname,
-                presentation.label(),
-                presentation.description(),
-                presentation.badgeClass(),
-                targetDisplay,
-                reportDisplay,
-                metadataEntries
-        );
-    }
-
-    private String buildTargetDisplay(String targetLabel, Long targetId) {
-        boolean hasLabel = StringUtils.hasText(targetLabel) && !UNKNOWN_TARGET_LABEL.equals(targetLabel);
-        if (targetId == null) {
-            return hasLabel ? targetLabel : "-";
-        }
-        if (hasLabel) {
-            return targetLabel + " #" + targetId;
-        }
-        return "#" + targetId;
-    }
-
-    private List<AdminAuditLogItem.MetadataEntry> toMetadataEntries(Map<String, Object> metadata) {
-        if (metadata == null || metadata.isEmpty()) {
-            return List.of();
-        }
-
-        List<AdminAuditLogItem.MetadataEntry> entries = new ArrayList<>();
-        for (Map.Entry<String, Object> entry : new LinkedHashMap<>(metadata).entrySet()) {
-            String key = entry.getKey();
-            String value = formatMetadataValue(entry.getValue());
-            entries.add(new AdminAuditLogItem.MetadataEntry(key, value));
-        }
-        return List.copyOf(entries);
-    }
-
-    private String formatMetadataValue(Object value) {
-        if (value == null) {
-            return "-";
-        }
-        if (value instanceof Map || value instanceof List) {
-            try {
-                return METADATA_MAPPER.writeValueAsString(value);
-            } catch (JsonProcessingException exception) {
-                log.debug("Failed to serialize metadata value to JSON. value={}", value, exception);
-                return value.toString();
-            }
-        }
-        return value.toString();
-    }
-
-    private void attachEmptyState(Model model, int page, int size, String errorMessage) {
-        model.addAttribute("logs", List.of());
-        model.addAttribute("page", page);
-        model.addAttribute("size", size);
-        model.addAttribute("hasPrevious", page > 1);
-        model.addAttribute("hasNext", false);
-        model.addAttribute("rangeStart", 0);
-        model.addAttribute("rangeEnd", 0);
-        model.addAttribute("loadErrorMessage", errorMessage);
-    }
-
-    private void ensureToastMessages(Model model) {
-        if (!model.containsAttribute("toastMessages")) {
-            model.addAttribute("toastMessages", List.of());
-        }
-    }
-
-    private String normalizeKey(String value) {
-        if (!StringUtils.hasText(value)) {
-            return "";
-        }
-        return value.toUpperCase(Locale.ROOT);
-    }
-
-    private record ActionPresentation(String label, String description, String badgeClass) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/AuthController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.config.SocialLoginProperties;
-import apu.saerok_admin.config.UnsplashProperties;
-import apu.saerok_admin.infra.auth.BackendAuthClient;
-import apu.saerok_admin.security.LoginSession;
-import apu.saerok_admin.security.LoginSessionManager;
-import apu.saerok_admin.security.OAuthStateManager;
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.ObjectMapper;
-import jakarta.servlet.http.HttpServletRequest;
-import jakarta.servlet.http.HttpServletResponse;
-import jakarta.servlet.http.HttpSession;
-import java.util.Optional;
-import java.util.function.Function;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.http.HttpMethod;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.util.StringUtils;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestMethod;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.util.UriComponentsBuilder;
-
-@Controller
-public class AuthController {
-
-    private static final Logger log = LoggerFactory.getLogger(AuthController.class);
-
-    private final SocialLoginProperties socialLoginProperties;
-    private final OAuthStateManager oAuthStateManager;
-    private final BackendAuthClient backendAuthClient;
-    private final LoginSessionManager loginSessionManager;
-    private final ObjectMapper objectMapper;
-
-    // ▼ 추가: Unsplash 설정
-    private final UnsplashProperties unsplashProperties;
-
-    public AuthController(
-            SocialLoginProperties socialLoginProperties,
-            OAuthStateManager oAuthStateManager,
-            BackendAuthClient backendAuthClient,
-            LoginSessionManager loginSessionManager,
-            ObjectMapper objectMapper,
-            UnsplashProperties unsplashProperties // ← 추가 주입
-    ) {
-        this.socialLoginProperties = socialLoginProperties;
-        this.oAuthStateManager = oAuthStateManager;
-        this.backendAuthClient = backendAuthClient;
-        this.loginSessionManager = loginSessionManager;
-        this.objectMapper = objectMapper;
-        this.unsplashProperties = unsplashProperties; // ← 보관
-    }
-
-    @RequestMapping(value = "/login", method = {RequestMethod.GET, RequestMethod.HEAD})
-    public String login(HttpServletRequest request, HttpServletResponse response, Model model) {
-        model.addAttribute("pageTitle", "로그인");
-
-        String state;
-        if (HttpMethod.HEAD.matches(request.getMethod())) {
-            response.setHeader("Cache-Control", "no-store, no-cache, must-revalidate");
-            response.setHeader("Pragma", "no-cache");
-            response.setDateHeader("Expires", 0);
-
-            HttpSession existingSession = request.getSession(false);
-            if (existingSession != null) {
-                state = (String) existingSession.getAttribute(OAuthStateManager.ATTRIBUTE_NAME);
-                log.debug("HEAD /login request reusing OAuth state token for session {}", existingSession.getId());
-            } else {
-                state = null;
-                log.debug("HEAD /login request without existing session; skipping OAuth state token creation.");
-            }
-        } else {
-            HttpSession session = request.getSession(true);
-            String existingState = (String) session.getAttribute(OAuthStateManager.ATTRIBUTE_NAME);
-            if (existingState == null) {
-                state = oAuthStateManager.createState(session);
-                log.debug("Created new OAuth state token for session {}", session.getId());
-            } else {
-                state = existingState;
-                log.debug("Reusing existing OAuth state token for session {}", session.getId());
-            }
-        }
-
-        String effectiveState = state != null ? state : "";
-        model.addAttribute("kakaoAuthUrl", buildKakaoAuthorizeUrl(effectiveState));
-        model.addAttribute("appleAuthUrl", buildAppleAuthorizeUrl(effectiveState));
-
-        // ▼ 추가: 템플릿에서 Unsplash 키/앱명을 읽을 수 있도록 전달
-        model.addAttribute("unsplashAccessKey", unsplashProperties.getAccessKey());
-        model.addAttribute("unsplashAppName", unsplashProperties.getAppName());
-
-        return "auth/login";
-    }
-
-    @GetMapping("/auth/callback/kakao")
-    public String handleKakaoCallback(
-            @RequestParam(name = "code", required = false) String code,
-            @RequestParam(name = "state", required = false) String state,
-            HttpServletRequest request
-    ) {
-        return handleSocialCallback(request, code, state, backendAuthClient::kakaoLogin);
-    }
-
-    @RequestMapping(value = "/auth/callback/apple", method = {RequestMethod.POST, RequestMethod.GET})
-    public String handleAppleCallback(
-            @RequestParam(name = "code", required = false) String code,
-            @RequestParam(name = "state", required = false) String state,
-            HttpServletRequest request
-    ) {
-        return handleSocialCallback(request, code, state, backendAuthClient::appleLogin);
-    }
-
-    private String handleSocialCallback(
-            HttpServletRequest request,
-            String code,
-            String state,
-            Function<String, BackendAuthClient.LoginSuccess> loginFunction
-    ) {
-        HttpSession session = request.getSession(false);
-        if (session == null) {
-            log.warn("OAuth callback received without an existing session. Redirecting to login with session error.");
-            return "redirect:/login?error=session";
-        }
-        if (!StringUtils.hasText(code) || !StringUtils.hasText(state)) {
-            log.warn("OAuth callback received without required parameters. codePresent={}, statePresent={}",
-                    StringUtils.hasText(code), StringUtils.hasText(state));
-            return "redirect:/login?error=callback";
-        }
-        if (!oAuthStateManager.consumeState(session, state)) {
-            log.warn("State validation failed for session {} and state {}", session.getId(), state);
-            return "redirect:/login?error=state";
-        }
-        try {
-            log.info("Processing social login with session {}", session.getId());
-            BackendAuthClient.LoginSuccess loginSuccess = loginFunction.apply(code);
-            log.info("Social login succeeded for session {}. Writing access token and refresh cookies.", session.getId());
-            loginSessionManager.establishSession(request, new LoginSession(loginSuccess.accessToken()));
-            loginSessionManager.writeRefreshCookiesToResponse(loginSuccess.refreshCookies());
-            return "redirect:/";
-        } catch (RestClientException | IllegalStateException exception) {
-            log.error("Failed to complete social login due to backend error: {}", exception.getMessage(), exception);
-            loginSessionManager.clearSession(request);
-            String backendMessage = extractBackendErrorMessage(exception).orElse(null);
-            UriComponentsBuilder redirectUriBuilder = UriComponentsBuilder.fromPath("/login")
-                    .queryParam("error", "login");
-            if (StringUtils.hasText(backendMessage)) {
-                redirectUriBuilder.queryParam("message", backendMessage);
-            }
-            return "redirect:" + redirectUriBuilder.toUriString();
-        }
-    }
-
-    private Optional<String> extractBackendErrorMessage(Exception exception) {
-        if (exception instanceof RestClientResponseException responseException) {
-            String responseBody = responseException.getResponseBodyAsString();
-            if (StringUtils.hasText(responseBody)) {
-                try {
-                    BackendErrorResponse errorResponse = objectMapper.readValue(responseBody, BackendErrorResponse.class);
-                    if (StringUtils.hasText(errorResponse.message())) {
-                        return Optional.of(errorResponse.message());
-                    }
-                } catch (JsonProcessingException parsingException) {
-                    log.debug("Failed to parse backend error response body: {}", responseBody, parsingException);
-                }
-            }
-        }
-        return Optional.empty();
-    }
-
-    private record BackendErrorResponse(int status, String message) {}
-
-    private String buildKakaoAuthorizeUrl(String state) {
-        SocialLoginProperties.Provider kakao = socialLoginProperties.kakao();
-        return UriComponentsBuilder.fromHttpUrl("https://kauth.kakao.com/oauth/authorize")
-                .queryParam("response_type", "code")
-                .queryParam("client_id", kakao.clientId())
-                .queryParam("redirect_uri", kakao.redirectUri())
-                .queryParam("state", state)
-                .queryParam("scope", "openid account_email")
-                .encode()
-                .toUriString();
-    }
-
-    private String buildAppleAuthorizeUrl(String state) {
-        SocialLoginProperties.Provider apple = socialLoginProperties.apple();
-        return UriComponentsBuilder.fromHttpUrl("https://appleid.apple.com/auth/authorize")
-                .queryParam("response_type", "code")
-                .queryParam("client_id", apple.clientId())
-                .queryParam("redirect_uri", apple.redirectUri())
-                .queryParam("scope", "openid email name")
-                .queryParam("response_mode", "form_post")
-                .queryParam("state", state)
-                .encode()
-                .toUriString();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/AuthExceptionHandler.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.security.BackendUnauthorizedException;
-import apu.saerok_admin.security.LoginSessionManager;
-import org.springframework.web.bind.annotation.ControllerAdvice;
-import org.springframework.web.bind.annotation.ExceptionHandler;
-
-@ControllerAdvice
-public class AuthExceptionHandler {
-
-    private final LoginSessionManager loginSessionManager;
-
-    public AuthExceptionHandler(LoginSessionManager loginSessionManager) {
-        this.loginSessionManager = loginSessionManager;
-    }
-
-    @ExceptionHandler(BackendUnauthorizedException.class)
-    public String handleBackendUnauthorizedException() {
-        loginSessionManager.clearCurrentSession();
-        return "redirect:/login?error=session";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/CollectionController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.CollectionDetail;
-import apu.saerok_admin.web.view.CollectionListItem;
-import apu.saerok_admin.web.view.ToastMessage;
-import java.time.LocalDateTime;
-import java.util.List;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-
-@Controller
-@RequestMapping("/collections")
-public class CollectionController {
-
-    @GetMapping
-    public String list(@RequestParam(required = false) String q,
-                       @RequestParam(required = false) String status,
-                       @RequestParam(defaultValue = "1") int page,
-                       @RequestParam(defaultValue = "20") int size,
-                       Model model) {
-        model.addAttribute("pageTitle", "새록 관리");
-        model.addAttribute("activeMenu", "collections");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("새록")));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastCollectionBulk", "삭제 완료", "선택한 새록을 삭제했습니다."),
-                ToastMessage.success("toastCollectionAction", "조치 완료", "새록 상태가 업데이트되었습니다.")
-        ));
-        model.addAttribute("query", q);
-        model.addAttribute("statusFilter", status);
-        model.addAttribute("page", page);
-        model.addAttribute("size", size);
-        model.addAttribute("totalPages", 9);
-        model.addAttribute("totalElements", 184);
-        model.addAttribute("statusOptions", List.of("전체", "공개", "비공개", "차단"));
-        model.addAttribute("collections", List.of(
-                new CollectionListItem(872, "솔바람", "초여름 갈대밭 풍경과 관찰 기록", "공개", 3, LocalDateTime.now().minusHours(5)),
-                new CollectionListItem(871, "이끼정원", "비 내린 후 숲 속의 향기", "공개", 0, LocalDateTime.now().minusHours(8)),
-                new CollectionListItem(870, "별빛여행", "야간 탐조 준비물 체크리스트", "비공개", 0, LocalDateTime.now().minusHours(12)),
-                new CollectionListItem(869, "새벽지기", "강변 산책 중 만난 물새들", "공개", 1, LocalDateTime.now().minusDays(1)),
-                new CollectionListItem(868, "느린풍경", "도심 공원에서 만난 작은 새들", "차단", 5, LocalDateTime.now().minusDays(2))
-        ));
-        return "collections/list";
-    }
-
-    @GetMapping("/{id}")
-    public String detail(@PathVariable long id, Model model) {
-        CollectionDetail detail = new CollectionDetail(id, "솔바람",
-                "https://images.unsplash.com/photo-1524504388940-b1c1722653e1",
-                "공개", 3, LocalDateTime.now().minusHours(5), LocalDateTime.now().minusHours(2),
-                List.of("갈대밭", "여름", "탐조"),
-                "초여름 갈대밭을 찾아 새벽부터 움직였습니다. 부드러운 바람과 함께 ...");
-        model.addAttribute("pageTitle", "새록 상세");
-        model.addAttribute("activeMenu", "collections");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("새록", "/collections"),
-                Breadcrumb.active("#" + id)));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastCollectionAction", "조치 완료", "새록 상태가 업데이트되었습니다."),
-                ToastMessage.success("toastCollectionBulk", "삭제 완료", "선택한 새록을 삭제했습니다.")
-        ));
-        model.addAttribute("detail", detail);
-        return "collections/detail";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/CommentController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.CommentListItem;
-import apu.saerok_admin.web.view.ToastMessage;
-import java.time.LocalDateTime;
-import java.util.List;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-
-@Controller
-@RequestMapping("/comments")
-public class CommentController {
-
-    @GetMapping
-    public String list(@RequestParam(required = false) String q,
-                       @RequestParam(required = false) String status,
-                       @RequestParam(defaultValue = "1") int page,
-                       @RequestParam(defaultValue = "20") int size,
-                       Model model) {
-        model.addAttribute("pageTitle", "댓글 관리");
-        model.addAttribute("activeMenu", "comments");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("댓글")));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastCommentBulk", "삭제 완료", "선택한 댓글을 삭제했습니다."),
-                ToastMessage.success("toastCommentHide", "조치 완료", "댓글 상태를 변경했습니다.")
-        ));
-        model.addAttribute("query", q);
-        model.addAttribute("statusFilter", status);
-        model.addAttribute("page", page);
-        model.addAttribute("size", size);
-        model.addAttribute("totalPages", 15);
-        model.addAttribute("totalElements", 312);
-        model.addAttribute("statusOptions", List.of("전체", "정상", "숨김", "삭제"));
-        model.addAttribute("comments", List.of(
-                new CommentListItem(481, "솔바람", 872, "갈대밭의 색감이 정말 아름답네요!", 2, LocalDateTime.now().minusHours(1)),
-                new CommentListItem(480, "별빛여행", 865, "정보 감사합니다. 다음 탐조 때 참고할게요.", 0, LocalDateTime.now().minusHours(3)),
-                new CommentListItem(479, "새벽지기", 872, "현장 사진이 더 있으면 좋겠어요.", 1, LocalDateTime.now().minusHours(6)),
-                new CommentListItem(478, "느린풍경", 860, "도심에서도 이런 새들을 만나다니!", 4, LocalDateTime.now().minusHours(8)),
-                new CommentListItem(477, "솔솔바람", 859, "좋은 정보 감사합니다.", 0, LocalDateTime.now().minusHours(10))
-        ));
-        return "comments/list";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/CurrentAdminProfileAdvice.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.CurrentAdminClient;
-import apu.saerok_admin.web.view.CurrentAdminProfile;
-import org.springframework.web.bind.annotation.ControllerAdvice;
-import org.springframework.web.bind.annotation.ModelAttribute;
-
-@ControllerAdvice
-public class CurrentAdminProfileAdvice {
-
-    private final CurrentAdminClient currentAdminClient;
-
-    public CurrentAdminProfileAdvice(CurrentAdminClient currentAdminClient) {
-        this.currentAdminClient = currentAdminClient;
-    }
-
-    @ModelAttribute("currentAdminProfile")
-    public CurrentAdminProfile currentAdminProfile() {
-        return currentAdminClient.fetchCurrentAdminProfile()
-                .orElseGet(CurrentAdminProfile::placeholder);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/DashboardController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.ServiceHealthClient;
-import apu.saerok_admin.infra.report.AdminReportClient;
-import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.DashboardMetric;
-import java.util.List;
-import java.util.Optional;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-
-@Controller
-public class DashboardController {
-
-    private static final Logger log = LoggerFactory.getLogger(DashboardController.class);
-
-    private final ServiceHealthClient serviceHealthClient;
-    private final AdminReportClient adminReportClient;
-
-    public DashboardController(ServiceHealthClient serviceHealthClient, AdminReportClient adminReportClient) {
-        this.serviceHealthClient = serviceHealthClient;
-        this.adminReportClient = adminReportClient;
-    }
-
-    @GetMapping("/")
-    public String dashboard(Model model) {
-        model.addAttribute("pageTitle", "대시보드");
-        model.addAttribute("activeMenu", "dashboard");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.active("대시보드")));
-        model.addAttribute("toastMessages", List.of());
-        model.addAttribute("serviceHealth", serviceHealthClient.checkHealth());
-
-        ReportCounts reportCounts = fetchReportCounts();
-        DashboardMetric reportMetric = reportCounts != null
-                ? new DashboardMetric(
-                "접수된 신고",
-                reportCounts.formattedTotal(),
-                "bi-flag",
-                "primary",
-                reportCounts.subtitle(),
-                "/reports"
-        )
-                : new DashboardMetric(
-                "접수된 신고",
-                "정보 없음",
-                "bi-flag",
-                "secondary",
-                "신고 데이터를 불러오지 못했습니다.",
-                "/reports"
-        );
-
-        model.addAttribute("metrics", List.of(reportMetric));
-        return "dashboard/index";
-    }
-
-    private ReportCounts fetchReportCounts() {
-        try {
-            List<ReportedCollectionListResponse.Item> collectionItems = Optional.ofNullable(adminReportClient.listCollectionReports())
-                    .map(ReportedCollectionListResponse::items)
-                    .orElseGet(List::of);
-            List<ReportedCommentListResponse.Item> commentItems = Optional.ofNullable(adminReportClient.listCommentReports())
-                    .map(ReportedCommentListResponse::items)
-                    .orElseGet(List::of);
-            return new ReportCounts(collectionItems.size(), commentItems.size());
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load report counts. status={}, body={}", exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load report counts.", exception);
-        }
-        return null;
-    }
-
-    private record ReportCounts(int collectionCount, int commentCount) {
-
-        int total() {
-            return collectionCount + commentCount;
-        }
-
-        String formattedTotal() {
-            return total() + "건";
-        }
-
-        String subtitle() {
-            return "새록 " + collectionCount + "건 · 댓글 " + commentCount + "건";
-        }
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/DexController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.DexDetail;
-import apu.saerok_admin.web.view.DexFormModel;
-import apu.saerok_admin.web.view.DexListItem;
-import apu.saerok_admin.web.view.ToastMessage;
-import java.time.LocalDateTime;
-import java.util.List;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-
-@Controller
-@RequestMapping("/dex")
-public class DexController {
-
-    @GetMapping
-    public String list(@RequestParam(required = false) String q,
-                       @RequestParam(required = false) String rarity,
-                       @RequestParam(required = false) String habitat,
-                       @RequestParam(required = false) String stayType,
-                       @RequestParam(defaultValue = "1") int page,
-                       @RequestParam(defaultValue = "20") int size,
-                       Model model) {
-        model.addAttribute("pageTitle", "도감 관리");
-        model.addAttribute("activeMenu", "dex");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("도감")));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastDexDeleted", "삭제 완료", "도감 항목이 삭제 처리되었습니다.")
-        ));
-        model.addAttribute("query", q);
-        model.addAttribute("rarityFilter", rarity);
-        model.addAttribute("habitatFilter", habitat);
-        model.addAttribute("stayFilter", stayType);
-        model.addAttribute("page", page);
-        model.addAttribute("size", size);
-        model.addAttribute("totalPages", 8);
-        model.addAttribute("totalElements", 146);
-        model.addAttribute("rarityOptions", List.of("전체", "COMMON", "UNCOMMON", "RARE", "EPIC"));
-        model.addAttribute("habitatOptions", List.of("전체", "하천", "산림", "해안", "도심"));
-        model.addAttribute("stayOptions", List.of("전체", "철새", "텃새", "나그네새"));
-        model.addAttribute("entries", List.of(
-                new DexListItem(401, "해오라기", "Striated Heron", "Butorides striata",
-                        "하천", "철새", "RARE", LocalDateTime.now().minusDays(1), List.of("야행성", "대형")),
-                new DexListItem(399, "황조롱이", "Common Kestrel", "Falco tinnunculus",
-                        "도심", "텃새", "EPIC", LocalDateTime.now().minusDays(2), List.of("맹금류", "맑은 날")),
-                new DexListItem(398, "어치", "Eurasian Jay", "Garrulus glandarius",
-                        "산림", "텃새", "UNCOMMON", LocalDateTime.now().minusDays(3), List.of("지능형", "소리 흉내")),
-                new DexListItem(397, "개개비", "Oriental Reed Warbler", "Acrocephalus orientalis",
-                        "습지", "철새", "COMMON", LocalDateTime.now().minusDays(4), List.of("아침 활동", "지저귐")),
-                new DexListItem(396, "쇠백로", "Little Egret", "Egretta garzetta",
-                        "하천", "나그네새", "UNCOMMON", LocalDateTime.now().minusDays(5), List.of("무리 생활", "시각 사냥"))
-        ));
-        return "dex/list";
-    }
-
-    @GetMapping("/new")
-    public String createForm(Model model) {
-        model.addAttribute("pageTitle", "도감 등록");
-        model.addAttribute("activeMenu", "dex");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("도감", "/dex"),
-                Breadcrumb.active("신규 등록")));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastDexSaved", "임시 저장", "변경사항을 저장했습니다.")
-        ));
-        model.addAttribute("form", new DexFormModel(null,
-                List.of("하천", "산림", "해안", "도심"),
-                List.of("철새", "텃새", "나그네새"),
-                List.of("COMMON", "UNCOMMON", "RARE", "EPIC")));
-        return "dex/form";
-    }
-
-    @GetMapping("/{id}")
-    public String detail(@PathVariable long id, Model model) {
-        DexDetail detail = new DexDetail(id, "해오라기", "Striated Heron", "Butorides striata",
-                "얕은 물가에서 주로 활동하는 야행성 물새로, 빠른 반사신경으로 사냥을 한다.",
-                "https://images.unsplash.com/photo-1503264116251-35a269479413",
-                List.of("하천", "습지"), "철새", "RARE", List.of("야행성", "대형"), LocalDateTime.now().minusDays(1));
-        model.addAttribute("pageTitle", "도감 상세");
-        model.addAttribute("activeMenu", "dex");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("도감", "/dex"),
-                Breadcrumb.active("#" + id)));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastDexDeleted", "삭제 완료", "도감 항목이 삭제 처리되었습니다.")
-        ));
-        model.addAttribute("detail", detail);
-        return "dex/detail";
-    }
-
-    @GetMapping("/{id}/edit")
-    public String editForm(@PathVariable long id, Model model) {
-        DexDetail detail = new DexDetail(id, "해오라기", "Striated Heron", "Butorides striata",
-                "얕은 물가에서 주로 활동하는 야행성 물새로, 빠른 반사신경으로 사냥을 한다.",
-                "https://images.unsplash.com/photo-1503264116251-35a269479413",
-                List.of("하천", "습지"), "철새", "RARE", List.of("야행성", "대형"), LocalDateTime.now().minusDays(1));
-        model.addAttribute("pageTitle", "도감 수정");
-        model.addAttribute("activeMenu", "dex");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("도감", "/dex"),
-                Breadcrumb.active("수정")
-        ));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastDexSaved", "저장 완료", "도감 정보가 저장되었습니다.")
-        ));
-        model.addAttribute("form", new DexFormModel(detail,
-                List.of("하천", "산림", "해안", "도심"),
-                List.of("철새", "텃새", "나그네새"),
-                List.of("COMMON", "UNCOMMON", "RARE", "EPIC")));
-        return "dex/form";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/EnvironmentProfileAdvice.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.EnvironmentProfileBadge;
-import java.util.Arrays;
-import java.util.List;
-import org.springframework.core.env.Environment;
-import org.springframework.web.bind.annotation.ControllerAdvice;
-import org.springframework.web.bind.annotation.ModelAttribute;
-
-@ControllerAdvice
-public class EnvironmentProfileAdvice {
-
-    private final Environment environment;
-
-    public EnvironmentProfileAdvice(Environment environment) {
-        this.environment = environment;
-    }
-
-    @ModelAttribute("environmentProfileBadge")
-    public EnvironmentProfileBadge environmentProfileBadge() {
-        List<String> activeProfiles = Arrays.asList(environment.getActiveProfiles());
-        if (activeProfiles.isEmpty()) {
-            activeProfiles = Arrays.asList(environment.getDefaultProfiles());
-        }
-        if (activeProfiles.contains("local")) {
-            return new EnvironmentProfileBadge("로컬", "environment-badge--local");
-        }
-        if (activeProfiles.contains("dev") || activeProfiles.contains("qa")) {
-            return new EnvironmentProfileBadge("개발/QA", "environment-badge--dev");
-        }
-        if (activeProfiles.contains("prod")) {
-            return new EnvironmentProfileBadge("운영", "environment-badge--prod");
-        }
-        return new EnvironmentProfileBadge("운영", "environment-badge--prod");
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/NotificationController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.NotificationTargetOption;
-import apu.saerok_admin.web.view.ToastMessage;
-import java.util.List;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-
-@Controller
-@RequestMapping("/notifications")
-public class NotificationController {
-
-    @GetMapping("/compose")
-    public String compose(Model model) {
-        model.addAttribute("pageTitle", "시스템 알림 발송");
-        model.addAttribute("activeMenu", "notifications");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("시스템 알림")
-        ));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastNotificationPreview", "미리보기 생성", "미리보기가 새 창에서 확인 가능합니다."),
-                ToastMessage.success("toastNotificationSent", "발송 완료", "알림 발송 요청이 접수되었습니다.")
-        ));
-        model.addAttribute("targetOptions", List.of(
-                new NotificationTargetOption("ALL", "전체 사용자", "모든 사용자에게 발송"),
-                new NotificationTargetOption("ACTIVE", "최근 30일 활동", "최근 30일 내 활동한 사용자"),
-                new NotificationTargetOption("PREMIUM", "프리미엄", "프리미엄 구독자 대상"),
-                new NotificationTargetOption("CUSTOM", "조건 직접 설정", "세그먼트 규칙으로 지정")
-        ));
-        return "notifications/compose";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/ReportController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.report.AdminReportClient;
-import apu.saerok_admin.infra.report.dto.CollectionCommentsResponse;
-import apu.saerok_admin.infra.report.dto.CollectionDetailResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCollectionDetailResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCollectionListResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCommentDetailResponse;
-import apu.saerok_admin.infra.report.dto.ReportedCommentListResponse;
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.ReportDetail;
-import apu.saerok_admin.web.view.ReportListItem;
-import apu.saerok_admin.web.view.ReportType;
-import java.time.LocalDateTime;
-import java.util.ArrayList;
-import java.util.Comparator;
-import java.util.EnumSet;
-import java.util.HashMap;
-import java.util.LinkedHashSet;
-import java.util.List;
-import java.util.Locale;
-import java.util.Map;
-import java.util.Optional;
-import java.util.Set;
-import java.util.stream.Collectors;
-import java.util.stream.Stream;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.http.HttpStatus;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.util.StringUtils;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.servlet.mvc.support.RedirectAttributes;
-
-@Controller
-@RequestMapping("/reports")
-public class ReportController {
-
-    private static final Logger log = LoggerFactory.getLogger(ReportController.class);
-    private static final Map<String, ReportType> TYPE_PARAM_MAP = Map.of(
-            "collection", ReportType.COLLECTION,
-            "collections", ReportType.COLLECTION,
-            "comment", ReportType.COMMENT,
-            "comments", ReportType.COMMENT
-    );
-
-    private final AdminReportClient adminReportClient;
-
-    public ReportController(AdminReportClient adminReportClient) {
-        this.adminReportClient = adminReportClient;
-    }
-
-    @GetMapping
-    public String list(@RequestParam(name = "type", required = false) List<String> types,
-                       Model model) {
-        model.addAttribute("pageTitle", "신고 관리");
-        model.addAttribute("activeMenu", "reports");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("신고 관리")));
-        ensureToastMessages(model);
-
-        List<String> normalizedTypes = normalizeTypeParams(types);
-        Set<ReportType> selectedTypes = toReportTypes(normalizedTypes);
-        boolean includeCollections = selectedTypes.isEmpty() || selectedTypes.contains(ReportType.COLLECTION);
-        boolean includeComments = selectedTypes.isEmpty() || selectedTypes.contains(ReportType.COMMENT);
-        model.addAttribute("collectionFilterActive", includeCollections);
-        model.addAttribute("commentFilterActive", includeComments);
-        model.addAttribute("selectedTypeParams", normalizedTypes);
-
-        try {
-            List<ReportedCollectionListResponse.Item> rawCollectionReports = Optional.ofNullable(adminReportClient.listCollectionReports())
-                    .map(ReportedCollectionListResponse::items)
-                    .orElseGet(List::of);
-            List<ReportedCommentListResponse.Item> rawCommentReports = Optional.ofNullable(adminReportClient.listCommentReports())
-                    .map(ReportedCommentListResponse::items)
-                    .orElseGet(List::of);
-
-            Map<Long, CollectionListSupplement> collectionSupplements = includeCollections
-                    ? loadCollectionSupplements(rawCollectionReports)
-                    : Map.of();
-
-            List<ReportListItem> collectionReports = rawCollectionReports.stream()
-                    .map(item -> toCollectionListItem(item, collectionSupplements.get(item.reportId())))
-                    .toList();
-            List<ReportListItem> commentReports = rawCommentReports.stream()
-                    .map(this::toCommentListItem)
-                    .toList();
-
-            List<ReportListItem> combined = Stream.concat(collectionReports.stream(), commentReports.stream())
-                    .sorted(Comparator.comparing(ReportListItem::reportedAt, Comparator.nullsLast(Comparator.reverseOrder())))
-                    .collect(Collectors.toCollection(ArrayList::new));
-
-            List<ReportListItem> filtered = combined;
-            if (!selectedTypes.isEmpty()) {
-                filtered = combined.stream()
-                        .filter(item -> selectedTypes.contains(item.type()))
-                        .toList();
-            }
-
-            model.addAttribute("reports", filtered);
-            model.addAttribute("totalCount", combined.size());
-            model.addAttribute("filteredCount", filtered.size());
-            model.addAttribute("collectionCount", collectionReports.size());
-            model.addAttribute("commentCount", commentReports.size());
-            model.addAttribute("loadErrorMessage", null);
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load reports from backend. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            model.addAttribute("reports", List.of());
-            model.addAttribute("loadErrorMessage", "신고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load reports from backend.", exception);
-            model.addAttribute("reports", List.of());
-            model.addAttribute("loadErrorMessage", "신고 목록을 불러오지 못했습니다. 잠시 후 다시 시도해주세요.");
-        }
-
-        return "reports/list";
-    }
-
-    @GetMapping("/collections/{reportId}")
-    public String collectionDetail(@PathVariable long reportId,
-                                   Model model,
-                                   RedirectAttributes redirectAttributes) {
-        model.addAttribute("pageTitle", "신고 상세");
-        model.addAttribute("activeMenu", "reports");
-        ensureToastMessages(model);
-
-        try {
-            ReportedCollectionDetailResponse detailResponse = adminReportClient.getCollectionReportDetail(reportId);
-            ReportedCollectionListResponse.Item metadata = findCollectionReportMetadata(reportId);
-
-            ReportDetail detail = buildCollectionDetail(detailResponse, metadata);
-            model.addAttribute("detail", detail);
-            model.addAttribute("breadcrumbs", List.of(
-                    Breadcrumb.of("대시보드", "/"),
-                    Breadcrumb.of("신고 관리", "/reports"),
-                    Breadcrumb.active("새록 신고 #" + reportId)
-            ));
-            attachFlashDefaults(model);
-            return "reports/detail";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load collection report detail. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load collection report detail.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
-        }
-
-        return "redirect:/reports";
-    }
-
-    @GetMapping("/comments/{reportId}")
-    public String commentDetail(@PathVariable long reportId,
-                                Model model,
-                                RedirectAttributes redirectAttributes) {
-        model.addAttribute("pageTitle", "신고 상세");
-        model.addAttribute("activeMenu", "reports");
-        ensureToastMessages(model);
-
-        try {
-            ReportedCommentDetailResponse detailResponse = adminReportClient.getCommentReportDetail(reportId);
-            ReportedCommentListResponse.Item metadata = findCommentReportMetadata(reportId);
-
-            ReportDetail detail = buildCommentDetail(detailResponse, metadata);
-            model.addAttribute("detail", detail);
-            model.addAttribute("breadcrumbs", List.of(
-                    Breadcrumb.of("대시보드", "/"),
-                    Breadcrumb.of("신고 관리", "/reports"),
-                    Breadcrumb.active("댓글 신고 #" + reportId)
-            ));
-            attachFlashDefaults(model);
-            return "reports/detail";
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to load comment report detail. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load comment report detail.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "신고 #" + reportId + " 정보를 불러오지 못했습니다.");
-        }
-
-        return "redirect:/reports";
-    }
-
-    @PostMapping("/collections/{reportId}/ignore")
-    public String ignoreCollection(@PathVariable long reportId,
-                                   @RequestParam(name = "redirect", defaultValue = "list") String redirect,
-                                   @RequestParam(name = "returnType", required = false) List<String> returnTypes,
-                                   RedirectAttributes redirectAttributes) {
-        return performAction(() -> adminReportClient.ignoreCollectionReport(reportId),
-                reportId,
-                "신고 #" + reportId + "을(를) 무시 처리했습니다.",
-                "신고 #" + reportId + " 무시 처리에 실패했습니다.",
-                redirect,
-                returnTypes,
-                "/reports/collections/" + reportId,
-                redirectAttributes);
-    }
-
-    @PostMapping("/collections/{reportId}/delete")
-    public String deleteCollectionByReport(@PathVariable long reportId,
-                                           @RequestParam(name = "redirect", defaultValue = "list") String redirect,
-                                           @RequestParam(name = "returnType", required = false) List<String> returnTypes,
-                                           @RequestParam(name = "reason", required = false) String reason,
-                                           RedirectAttributes redirectAttributes) {
-        String trimmedReason = reason != null ? reason.trim() : "";
-        if (!StringUtils.hasText(trimmedReason)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제 사유를 입력해주세요.");
-            return determineRedirectUrl(redirect, returnTypes, "/reports/collections/" + reportId);
-        }
-
-        return performAction(() -> adminReportClient.deleteCollectionByReport(reportId, trimmedReason),
-                reportId,
-                "신고 대상 새록을 삭제했습니다.",
-                "신고 대상 새록 삭제에 실패했습니다.",
-                redirect,
-                returnTypes,
-                "/reports/collections/" + reportId,
-                redirectAttributes);
-    }
-
-    @PostMapping("/comments/{reportId}/ignore")
-    public String ignoreComment(@PathVariable long reportId,
-                                @RequestParam(name = "redirect", defaultValue = "list") String redirect,
-                                @RequestParam(name = "returnType", required = false) List<String> returnTypes,
-                                RedirectAttributes redirectAttributes) {
-        return performAction(() -> adminReportClient.ignoreCommentReport(reportId),
-                reportId,
-                "신고 #" + reportId + "을(를) 무시 처리했습니다.",
-                "신고 #" + reportId + " 무시 처리에 실패했습니다.",
-                redirect,
-                returnTypes,
-                "/reports/comments/" + reportId,
-                redirectAttributes);
-    }
-
-    @PostMapping("/comments/{reportId}/delete")
-    public String deleteCommentByReport(@PathVariable long reportId,
-                                        @RequestParam(name = "redirect", defaultValue = "list") String redirect,
-                                        @RequestParam(name = "returnType", required = false) List<String> returnTypes,
-                                        @RequestParam(name = "reason", required = false) String reason,
-                                        RedirectAttributes redirectAttributes) {
-        String trimmedReason = reason != null ? reason.trim() : "";
-        if (!StringUtils.hasText(trimmedReason)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제 사유를 입력해주세요.");
-            return determineRedirectUrl(redirect, returnTypes, "/reports/comments/" + reportId);
-        }
-
-        return performAction(() -> adminReportClient.deleteCommentByReport(reportId, trimmedReason),
-                reportId,
-                "신고 대상 댓글을 삭제했습니다.",
-                "신고 대상 댓글 삭제에 실패했습니다.",
-                redirect,
-                returnTypes,
-                "/reports/comments/" + reportId,
-                redirectAttributes);
-    }
-
-    private String performAction(Runnable action,
-                                 long reportId,
-                                 String successMessage,
-                                 String failureMessage,
-                                 String redirect,
-                                 List<String> returnTypes,
-                                 String detailPath,
-                                 RedirectAttributes redirectAttributes) {
-        try {
-            action.run();
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", successMessage);
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to process report action. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage",
-                    resolveFailureMessage(exception, failureMessage));
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to process report action.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", failureMessage);
-        }
-
-        return determineRedirectUrl(redirect, returnTypes, detailPath);
-    }
-
-    private String determineRedirectUrl(String redirect,
-                                        List<String> returnTypes,
-                                        String detailPath) {
-        if ("detail".equalsIgnoreCase(redirect)) {
-            return "redirect:" + detailPath;
-        }
-
-        StringBuilder url = new StringBuilder("redirect:/reports");
-        List<String> normalized = normalizeTypeParams(returnTypes);
-        if (!normalized.isEmpty() && normalized.size() < ReportType.values().length) {
-            String separator = "?";
-            for (String value : normalized) {
-                url.append(separator).append("type=").append(value);
-                separator = "&";
-            }
-        }
-        return url.toString();
-    }
-
-    private List<String> normalizeTypeParams(List<String> types) {
-        if (types == null || types.isEmpty()) {
-            return List.of();
-        }
-        LinkedHashSet<String> normalized = new LinkedHashSet<>();
-        for (String type : types) {
-            if (!StringUtils.hasText(type)) {
-                continue;
-            }
-            String lowerCase = type.toLowerCase(Locale.ROOT);
-            if ("all".equals(lowerCase)) {
-                return List.of();
-            }
-            ReportType reportType = TYPE_PARAM_MAP.get(lowerCase);
-            if (reportType != null) {
-                normalized.add(canonicalParam(reportType));
-            }
-        }
-        return List.copyOf(normalized);
-    }
-
-    private Set<ReportType> toReportTypes(List<String> normalized) {
-        if (normalized.isEmpty()) {
-            return EnumSet.noneOf(ReportType.class);
-        }
-        EnumSet<ReportType> result = EnumSet.noneOf(ReportType.class);
-        for (String value : normalized) {
-            ReportType type = TYPE_PARAM_MAP.get(value);
-            if (type != null) {
-                result.add(type);
-            }
-        }
-        return result;
-    }
-
-    private String canonicalParam(ReportType type) {
-        return switch (type) {
-            case COLLECTION -> "collection";
-            case COMMENT -> "comment";
-        };
-    }
-
-    private String resolveFailureMessage(RestClientResponseException exception, String defaultMessage) {
-        int status = exception.getRawStatusCode();
-        if (status == HttpStatus.FORBIDDEN.value()) {
-            return "권한이 없어 해당 작업을 수행할 수 없습니다.";
-        }
-        return defaultMessage;
-    }
-
-    private ReportListItem toCollectionListItem(ReportedCollectionListResponse.Item item,
-                                                CollectionListSupplement supplement) {
-        String detailPath = "/reports/collections/" + item.reportId();
-        String note = supplement != null ? supplement.note() : null;
-        String imageUrl = supplement != null ? supplement.imageUrl() : null;
-        String preview = abbreviate(note, 80);
-        return new ReportListItem(
-                item.reportId(),
-                ReportType.COLLECTION,
-                item.reportedAt(),
-                "새록 #" + item.collectionId(),
-                preview,
-                imageUrl,
-                item.reporter() != null ? item.reporter().nickname() : "-",
-                item.reportedUser() != null ? item.reportedUser().nickname() : "-",
-                detailPath,
-                detailPath + "/ignore",
-                detailPath + "/delete"
-        );
-    }
-
-    private ReportListItem toCommentListItem(ReportedCommentListResponse.Item item) {
-        String detailPath = "/reports/comments/" + item.reportId();
-        String preview = abbreviate(item.contentPreview(), 80);
-        return new ReportListItem(
-                item.reportId(),
-                ReportType.COMMENT,
-                item.reportedAt(),
-                "댓글 #" + item.commentId() + " (새록 #" + item.collectionId() + ")",
-                preview,
-                null,
-                item.reporter() != null ? item.reporter().nickname() : "-",
-                item.reportedUser() != null ? item.reportedUser().nickname() : "-",
-                detailPath,
-                detailPath + "/ignore",
-                detailPath + "/delete"
-        );
-    }
-
-    private Map<Long, CollectionListSupplement> loadCollectionSupplements(List<ReportedCollectionListResponse.Item> reports) {
-        Map<Long, CollectionListSupplement> details = new HashMap<>();
-        for (ReportedCollectionListResponse.Item item : reports) {
-            if (item == null || item.reportId() == null) {
-                continue;
-            }
-            try {
-                ReportedCollectionDetailResponse detail = adminReportClient.getCollectionReportDetail(item.reportId());
-                if (detail != null && detail.collection() != null) {
-                    details.put(item.reportId(), new CollectionListSupplement(
-                            detail.collection().note(),
-                            detail.collection().imageUrl()
-                    ));
-                }
-            } catch (RestClientResponseException ex) {
-                log.warn("Failed to fetch collection note for report {}. status={}, body={}",
-                        item.reportId(), ex.getStatusCode(), ex.getResponseBodyAsString(), ex);
-            } catch (RestClientException | IllegalStateException ex) {
-                log.warn("Failed to fetch collection note for report {}.", item.reportId(), ex);
-            }
-        }
-        return details;
-    }
-
-    private ReportDetail buildCollectionDetail(ReportedCollectionDetailResponse detailResponse,
-                                               ReportedCollectionListResponse.Item metadata) {
-        ReportDetail.Person reporter = metadata != null && metadata.reporter() != null
-                ? new ReportDetail.Person(metadata.reporter().userId(), metadata.reporter().nickname())
-                : null;
-        ReportDetail.Person reportedUser = metadata != null && metadata.reportedUser() != null
-                ? new ReportDetail.Person(metadata.reportedUser().userId(), metadata.reportedUser().nickname())
-                : null;
-        List<ReportDetail.Comment> comments = mapComments(detailResponse.comments());
-
-        return new ReportDetail(
-                detailResponse.reportId(),
-                ReportType.COLLECTION,
-                metadata != null ? metadata.reportedAt() : null,
-                reporter,
-                reportedUser,
-                mapCollection(detailResponse.collection()),
-                comments,
-                null,
-                "/reports/collections/" + detailResponse.reportId() + "/ignore",
-                "/reports/collections/" + detailResponse.reportId() + "/delete"
-        );
-    }
-
-    private ReportDetail buildCommentDetail(ReportedCommentDetailResponse detailResponse,
-                                            ReportedCommentListResponse.Item metadata) {
-        ReportDetail.Person reporter = metadata != null && metadata.reporter() != null
-                ? new ReportDetail.Person(metadata.reporter().userId(), metadata.reporter().nickname())
-                : null;
-        ReportDetail.Person reportedUser = metadata != null && metadata.reportedUser() != null
-                ? new ReportDetail.Person(metadata.reportedUser().userId(), metadata.reportedUser().nickname())
-                : null;
-        List<ReportDetail.Comment> comments = mapComments(detailResponse.comments());
-        ReportedCommentDetailResponse.ReportedComment comment = detailResponse.comment();
-        ReportDetail.ReportedComment reportedComment = comment != null
-                ? new ReportDetail.ReportedComment(
-                comment.commentId(),
-                comment.userId(),
-                comment.nickname(),
-                comment.content(),
-                comment.createdAt(),
-                comment.updatedAt())
-                : null;
-
-        LocalDateTime reportedAt = metadata != null ? metadata.reportedAt() : null;
-
-        return new ReportDetail(
-                detailResponse.reportId(),
-                ReportType.COMMENT,
-                reportedAt,
-                reporter,
-                reportedUser,
-                mapCollection(detailResponse.collection()),
-                comments,
-                reportedComment,
-                "/reports/comments/" + detailResponse.reportId() + "/ignore",
-                "/reports/comments/" + detailResponse.reportId() + "/delete"
-        );
-    }
-
-    private ReportDetail.Collection mapCollection(CollectionDetailResponse collection) {
-        if (collection == null) {
-            return null;
-        }
-        String accessLevel = collection.accessLevel();
-        String accessLevelLabel = toAccessLevelLabel(accessLevel);
-        CollectionDetailResponse.BirdInfo bird = collection.bird();
-        CollectionDetailResponse.UserInfo user = collection.user();
-        return new ReportDetail.Collection(
-                collection.collectionId(),
-                bird != null ? bird.birdId() : null,
-                bird != null ? bird.koreanName() : null,
-                bird != null ? bird.scientificName() : null,
-                collection.discoveredDate(),
-                collection.latitude(),
-                collection.longitude(),
-                collection.locationAlias(),
-                collection.address(),
-                collection.note(),
-                accessLevel,
-                accessLevelLabel,
-                collection.likeCount(),
-                collection.commentCount(),
-                collection.isLiked(),
-                collection.isMine(),
-                user != null ? user.userId() : null,
-                user != null ? user.nickname() : null,
-                user != null ? user.profileImageUrl() : null,
-                collection.imageUrl()
-        );
-    }
-
-    private List<ReportDetail.Comment> mapComments(CollectionCommentsResponse commentsResponse) {
-        if (commentsResponse == null || commentsResponse.items() == null) {
-            return List.of();
-        }
-        return commentsResponse.items().stream()
-                .map(item -> new ReportDetail.Comment(
-                        item.commentId(),
-                        item.userId(),
-                        item.nickname(),
-                        item.content(),
-                        item.likeCount(),
-                        item.createdAt(),
-                        item.updatedAt()
-                ))
-                .collect(Collectors.toCollection(ArrayList::new));
-    }
-
-    private ReportedCollectionListResponse.Item findCollectionReportMetadata(long reportId) {
-        return Optional.ofNullable(adminReportClient.listCollectionReports())
-                .map(ReportedCollectionListResponse::items)
-                .orElse(List.of())
-                .stream()
-                .filter(item -> item.reportId() != null && item.reportId() == reportId)
-                .findFirst()
-                .orElse(null);
-    }
-
-    private ReportedCommentListResponse.Item findCommentReportMetadata(long reportId) {
-        return Optional.ofNullable(adminReportClient.listCommentReports())
-                .map(ReportedCommentListResponse::items)
-                .orElse(List.of())
-                .stream()
-                .filter(item -> item.reportId() != null && item.reportId() == reportId)
-                .findFirst()
-                .orElse(null);
-    }
-
-    private String abbreviate(String value, int maxLength) {
-        if (!StringUtils.hasText(value)) {
-            return null;
-        }
-        if (value.length() <= maxLength) {
-            return value;
-        }
-        return value.substring(0, maxLength - 1) + "…";
-    }
-
-    private String toAccessLevelLabel(String accessLevel) {
-        if (!StringUtils.hasText(accessLevel)) {
-            return "-";
-        }
-        return switch (accessLevel.toUpperCase(Locale.ROOT)) {
-            case "PUBLIC" -> "공개";
-            case "PRIVATE" -> "비공개";
-            default -> accessLevel;
-        };
-    }
-
-    private void ensureToastMessages(Model model) {
-        if (!model.containsAttribute("toastMessages")) {
-            model.addAttribute("toastMessages", List.of());
-        }
-    }
-
-    private void attachFlashDefaults(Model model) {
-        if (!model.containsAttribute("flashStatus")) {
-            model.addAttribute("flashStatus", null);
-        }
-        if (!model.containsAttribute("flashMessage")) {
-            model.addAttribute("flashMessage", null);
-        }
-    }
-
-    private record CollectionListSupplement(String note, String imageUrl) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/RoleManagementController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.role.AdminRoleClient;
-import apu.saerok_admin.infra.role.dto.AdminMyRoleResponse;
-import apu.saerok_admin.infra.role.dto.AdminRoleListResponse;
-import apu.saerok_admin.infra.role.dto.AdminRoleUserListResponse;
-import apu.saerok_admin.infra.role.dto.AdminUserRoleResponse;
-import apu.saerok_admin.infra.role.dto.AssignRoleRequest;
-import apu.saerok_admin.infra.role.dto.CreateRoleRequest;
-import apu.saerok_admin.infra.role.dto.PermissionSummaryResponse;
-import apu.saerok_admin.infra.role.dto.RoleDetailResponse;
-import apu.saerok_admin.infra.role.dto.RoleSummaryResponse;
-import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.CurrentAdminProfile;
-import apu.saerok_admin.web.view.role.PermissionOptionView;
-import apu.saerok_admin.web.view.role.PermissionView;
-import apu.saerok_admin.web.view.role.RoleDisplay;
-import apu.saerok_admin.web.view.role.RolePermissionGroupView;
-import apu.saerok_admin.web.view.role.RoleTemplateView;
-import apu.saerok_admin.web.view.role.TeamMemberView;
-import java.util.ArrayList;
-import java.util.Comparator;
-import java.util.LinkedHashMap;
-import java.util.LinkedHashSet;
-import java.util.List;
-import java.util.Locale;
-import java.util.Map;
-import java.util.Objects;
-import java.util.Optional;
-import java.util.Set;
-import java.util.stream.Collectors;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.util.StringUtils;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.ModelAttribute;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-import org.springframework.web.servlet.mvc.support.RedirectAttributes;
-import org.springframework.web.util.UriComponentsBuilder;
-
-@Controller
-@RequestMapping("/admin/roles")
-public class RoleManagementController {
-
-    private static final Logger log = LoggerFactory.getLogger(RoleManagementController.class);
-    private static final String TAB_MY = "my";
-    private static final String TAB_TEAM = "team";
-    private static final String TAB_MANAGE = "manage";
-    private static final String PERMISSION_ADMIN_ROLE_MY_READ = "ADMIN_ROLE_MY_READ";
-    private static final String PERMISSION_ADMIN_ROLE_READ = "ADMIN_ROLE_READ";
-    private static final String PERMISSION_ADMIN_ROLE_WRITE = "ADMIN_ROLE_WRITE";
-
-    private final AdminRoleClient adminRoleClient;
-
-    public RoleManagementController(AdminRoleClient adminRoleClient) {
-        this.adminRoleClient = adminRoleClient;
-    }
-
-    @GetMapping
-    public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                        @RequestParam(name = "tab", required = false) String tab,
-                        @RequestParam(name = "selectedUserId", required = false) Long selectedUserId,
-                        @RequestParam(name = "selectedRoleCode", required = false) String selectedRoleCode,
-                        Model model) {
-        model.addAttribute("pageTitle", "역할과 권한");
-        model.addAttribute("activeMenu", "adminRoles");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("역할과 권한")
-        ));
-        model.addAttribute("toastMessages", List.of());
-
-        boolean canViewMyRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_MY_READ);
-        boolean canViewTeamRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_READ);
-        boolean canManageRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE);
-
-        List<RoleTemplateView> roleTemplates = List.of();
-        Map<String, RoleTemplateView> roleTemplatesByCode = Map.of();
-        List<PermissionOptionView> permissionOptions = List.of();
-        String roleTemplatesLoadError = null;
-
-        if (canViewTeamRoles || canManageRoles) {
-            try {
-                AdminRoleListResponse response = adminRoleClient.listRoles();
-                roleTemplates = Optional.ofNullable(response)
-                        .map(AdminRoleListResponse::roles)
-                        .orElseGet(List::of)
-                        .stream()
-                        .map(this::toRoleTemplateView)
-                        .sorted(roleTemplateComparator())
-                        .toList();
-                roleTemplatesByCode = roleTemplates.stream()
-                        .collect(Collectors.toMap(
-                                RoleTemplateView::code,
-                                template -> template,
-                                (left, right) -> left,
-                                LinkedHashMap::new
-                        ));
-                permissionOptions = buildPermissionOptions(roleTemplates);
-            } catch (RestClientResponseException exception) {
-                log.warn("Failed to load role templates. status={}, body={}",
-                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
-            } catch (RestClientException | IllegalStateException exception) {
-                log.warn("Failed to load role templates.", exception);
-                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
-            }
-        }
-
-        String normalizedRoleCode = normalizeRoleCode(selectedRoleCode);
-        RoleTemplateView selectedRoleTemplate = roleTemplatesByCode.get(normalizedRoleCode);
-        if (selectedRoleTemplate == null && !roleTemplates.isEmpty()) {
-            selectedRoleTemplate = roleTemplates.get(0);
-            normalizedRoleCode = selectedRoleTemplate.code();
-        }
-
-        List<RoleDisplay> myRoles = List.of();
-        List<RolePermissionGroupView> myRolePermissionGroups = List.of();
-        String myRolesLoadError = null;
-
-        if (canViewMyRoles) {
-            try {
-                AdminMyRoleResponse myRoleResponse = adminRoleClient.getMyRoles();
-                myRoles = Optional.ofNullable(myRoleResponse)
-                        .map(AdminMyRoleResponse::roles)
-                        .orElseGet(List::of)
-                        .stream()
-                        .map(this::toRoleDisplay)
-                        .toList();
-                Map<String, RoleTemplateView> mapping = roleTemplatesByCode;
-                myRolePermissionGroups = myRoles.stream()
-                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mapping)))
-                        .toList();
-            } catch (RestClientResponseException exception) {
-                log.warn("Failed to load my roles. status={}, body={}",
-                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
-            } catch (RestClientException | IllegalStateException exception) {
-                log.warn("Failed to load my roles.", exception);
-                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
-            }
-        } else {
-            myRolesLoadError = "내 역할을 조회할 권한이 없습니다.";
-        }
-
-        List<TeamMemberView> teamMembers = List.of();
-        TeamMemberView selectedTeamMember = null;
-        String teamMembersLoadError = null;
-        Long resolvedSelectedUserId = selectedUserId;
-
-        if (canViewTeamRoles) {
-            try {
-                AdminRoleUserListResponse userResponse = adminRoleClient.listAdminUsers();
-                teamMembers = Optional.ofNullable(userResponse)
-                        .map(AdminRoleUserListResponse::users)
-                        .orElseGet(List::of)
-                        .stream()
-                        .map(this::toTeamMemberView)
-                        .sorted(teamMemberComparator())
-                        .toList();
-            } catch (RestClientResponseException exception) {
-                log.warn("Failed to load team members. status={}, body={}",
-                        exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
-            } catch (RestClientException | IllegalStateException exception) {
-                log.warn("Failed to load team members.", exception);
-                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
-            }
-        } else {
-            teamMembersLoadError = "팀원 역할을 조회할 권한이 없습니다.";
-        }
-
-        if (!teamMembers.isEmpty()) {
-            Long currentSelection = resolvedSelectedUserId;
-            boolean hasSelectedMember = currentSelection != null && teamMembers.stream()
-                    .anyMatch(member -> Objects.equals(member.id(), currentSelection));
-            if (!hasSelectedMember) {
-                resolvedSelectedUserId = teamMembers.get(0).id();
-            }
-            Long candidateId = resolvedSelectedUserId;
-            selectedTeamMember = teamMembers.stream()
-                    .filter(member -> Objects.equals(member.id(), candidateId))
-                    .findFirst()
-                    .orElse(null);
-        } else {
-            resolvedSelectedUserId = null;
-        }
-
-        List<RoleDisplay> assignableRoles = roleTemplates.stream()
-                .map(RoleTemplateView::role)
-                .toList();
-
-        boolean teamRoleEditorAvailable = canManageRoles
-                && selectedTeamMember != null
-                && !assignableRoles.isEmpty();
-
-        String normalizedTab = normalizeTab(tab, canViewTeamRoles, canManageRoles);
-
-        model.addAttribute("tab", normalizedTab);
-        model.addAttribute("canViewMyRoles", canViewMyRoles);
-        model.addAttribute("canViewTeamTab", canViewTeamRoles);
-        model.addAttribute("canManageRoles", canManageRoles);
-        model.addAttribute("hasRoleStructureAccess", canViewTeamRoles || canManageRoles);
-
-        model.addAttribute("myRoles", myRoles);
-        model.addAttribute("myRolePermissionGroups", myRolePermissionGroups);
-        model.addAttribute("myRolesLoadError", myRolesLoadError);
-
-        model.addAttribute("teamMembers", teamMembers);
-        model.addAttribute("teamMemberCount", teamMembers.size());
-        model.addAttribute("teamMembersLoadError", teamMembersLoadError);
-        model.addAttribute("selectedTeamMemberId", resolvedSelectedUserId);
-        Map<String, RoleTemplateView> mappingForTeam = roleTemplatesByCode;
-        List<RolePermissionGroupView> selectedTeamMemberRoleGroups = selectedTeamMember == null
-                ? List.of()
-                : selectedTeamMember.roles().stream()
-                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mappingForTeam)))
-                        .toList();
-
-        model.addAttribute("selectedTeamMember", selectedTeamMember);
-        model.addAttribute("selectedTeamMemberRoleGroups", selectedTeamMemberRoleGroups);
-        model.addAttribute("assignableRoles", assignableRoles);
-        model.addAttribute("teamRoleEditorAvailable", teamRoleEditorAvailable);
-
-        model.addAttribute("roleTemplates", roleTemplates);
-        model.addAttribute("roleTemplateCount", roleTemplates.size());
-        model.addAttribute("selectedRoleTemplate", selectedRoleTemplate);
-        model.addAttribute("selectedRoleCode", normalizedRoleCode);
-        model.addAttribute("roleTemplatesLoadError", roleTemplatesLoadError);
-        model.addAttribute("permissionOptions", permissionOptions);
-
-        return "admin-role/index";
-    }
-
-    @PostMapping("/team-members/{userId}/roles")
-    public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                        @PathVariable Long userId,
-                                        @RequestParam(name = "roleCodes", required = false) List<String> roleCodes,
-                                        RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
-            return redirectToTeam(userId);
-        }
-
-        Set<String> desiredRoles = new LinkedHashSet<>(normalizeRoleCodes(roleCodes));
-
-        try {
-            AdminRoleUserListResponse response = adminRoleClient.listAdminUsers();
-            Optional<AdminUserRoleResponse> targetUser = Optional.ofNullable(response)
-                    .map(AdminRoleUserListResponse::users)
-                    .orElseGet(List::of)
-                    .stream()
-                    .filter(user -> Objects.equals(user.userId(), userId))
-                    .findFirst();
-            if (targetUser.isEmpty()) {
-                redirectAttributes.addFlashAttribute("flashStatus", "error");
-                redirectAttributes.addFlashAttribute("flashMessage", "선택한 팀원을 찾을 수 없습니다.");
-                return redirectToTeam(userId);
-            }
-
-            Set<String> currentRoles = Optional.of(targetUser.get())
-                    .map(AdminUserRoleResponse::roles)
-                    .orElseGet(List::of)
-                    .stream()
-                    .map(RoleSummaryResponse::code)
-                    .map(this::normalizeRoleCode)
-                    .filter(StringUtils::hasText)
-                    .collect(Collectors.toCollection(LinkedHashSet::new));
-
-            Set<String> toGrant = new LinkedHashSet<>(desiredRoles);
-            toGrant.removeAll(currentRoles);
-            Set<String> toRevoke = new LinkedHashSet<>(currentRoles);
-            toRevoke.removeAll(desiredRoles);
-
-            for (String code : toGrant) {
-                adminRoleClient.grantRole(userId, new AssignRoleRequest(code));
-            }
-            for (String code : toRevoke) {
-                adminRoleClient.revokeRole(userId, code);
-            }
-
-            String message = toGrant.isEmpty() && toRevoke.isEmpty()
-                    ? "변경 사항이 없어 기존 구성을 유지했습니다."
-                    : "팀원 역할 구성을 업데이트했습니다.";
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", message);
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to update team member roles. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to update team member roles.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
-        }
-
-        return redirectToTeam(userId);
-    }
-
-    @PostMapping("/new")
-    public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @RequestParam String code,
-                             @RequestParam String displayName,
-                             @RequestParam String description,
-                             @RequestParam(name = "permissions", required = false) List<String> permissions,
-                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 생성할 권한이 없습니다.");
-            return redirectToManage(null);
-        }
-
-        String normalizedCode = normalizeRoleCode(code);
-        String normalizedDisplayName = StringUtils.hasText(displayName) ? displayName.trim() : "";
-        String normalizedDescription = StringUtils.hasText(description) ? description.trim() : "";
-
-        if (!StringUtils.hasText(normalizedCode) || !StringUtils.hasText(normalizedDisplayName)
-                || !StringUtils.hasText(normalizedDescription)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 코드, 이름, 설명을 모두 입력해 주세요.");
-            return redirectToManage(normalizedCode);
-        }
-
-        try {
-            adminRoleClient.createRole(new CreateRoleRequest(normalizedCode, normalizedDisplayName, normalizedDescription));
-            List<String> permissionKeys = normalizePermissionKeys(permissions);
-            if (!permissionKeys.isEmpty()) {
-                adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
-            }
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성했습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to create role. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 입력값을 확인해 주세요.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to create role.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 잠시 후 다시 시도해 주세요.");
-        }
-
-        return redirectToManage(normalizedCode);
-    }
-
-    @PostMapping("/{roleCode}/permissions")
-    public String updateRolePermissions(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                                        @PathVariable String roleCode,
-                                        @RequestParam(name = "permissions", required = false) List<String> permissions,
-                                        RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
-            return redirectToManage(roleCode);
-        }
-
-        String normalizedCode = normalizeRoleCode(roleCode);
-        List<String> permissionKeys = normalizePermissionKeys(permissions);
-
-        try {
-            adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "권한 구성을 업데이트했습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to update role permissions. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to update role permissions.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
-        }
-
-        return redirectToManage(normalizedCode);
-    }
-
-    @PostMapping("/{roleCode}/delete")
-    public String deleteRole(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
-                             @PathVariable String roleCode,
-                             RedirectAttributes redirectAttributes) {
-        if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제할 권한이 없습니다.");
-            return redirectToManage(roleCode);
-        }
-
-        String normalizedCode = normalizeRoleCode(roleCode);
-        if (!StringUtils.hasText(normalizedCode)) {
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제할 역할 코드를 확인해 주세요.");
-            return redirectToManage(null);
-        }
-
-        try {
-            adminRoleClient.deleteRole(normalizedCode);
-            redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제했습니다.");
-        } catch (RestClientResponseException exception) {
-            log.warn("Failed to delete role. status={}, body={}",
-                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to delete role.", exception);
-            redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
-        }
-
-        return redirectToManage(null);
-    }
-
-    private Comparator<RoleTemplateView> roleTemplateComparator() {
-        return Comparator
-                .comparing(RoleTemplateView::displayName, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
-                .thenComparing(RoleTemplateView::code, String.CASE_INSENSITIVE_ORDER);
-    }
-
-    private Comparator<TeamMemberView> teamMemberComparator() {
-        return Comparator
-                .comparing(TeamMemberView::nickname, Comparator.nullsLast(String.CASE_INSENSITIVE_ORDER))
-                .thenComparing(TeamMemberView::id, Comparator.nullsLast(Long::compareTo));
-    }
-
-    private List<PermissionView> resolvePermissions(String roleCode, Map<String, RoleTemplateView> mapping) {
-        if (!StringUtils.hasText(roleCode) || mapping.isEmpty()) {
-            return List.of();
-        }
-        String normalized = normalizeRoleCode(roleCode);
-        RoleTemplateView template = mapping.get(normalized);
-        if (template == null || template.permissions() == null) {
-            return List.of();
-        }
-        return template.permissions();
-    }
-
-    private RoleTemplateView toRoleTemplateView(RoleDetailResponse response) {
-        RoleDisplay display = new RoleDisplay(
-                response.id(),
-                response.code(),
-                response.displayName(),
-                response.description(),
-                response.builtin()
-        );
-        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
-                .orElseGet(List::of)
-                .stream()
-                .map(this::toPermissionView)
-                .toList();
-        return new RoleTemplateView(display, permissions);
-    }
-
-    private RoleDisplay toRoleDisplay(RoleSummaryResponse response) {
-        if (response == null) {
-            return new RoleDisplay(null, "", "", "", false);
-        }
-        return new RoleDisplay(
-                response.id(),
-                response.code(),
-                response.displayName(),
-                response.description(),
-                response.builtin()
-        );
-    }
-
-    private PermissionView toPermissionView(PermissionSummaryResponse response) {
-        if (response == null) {
-            return new PermissionView("", "");
-        }
-        return new PermissionView(response.key(), response.description());
-    }
-
-    private TeamMemberView toTeamMemberView(AdminUserRoleResponse response) {
-        List<RoleDisplay> roles = Optional.ofNullable(response.roles())
-                .orElseGet(List::of)
-                .stream()
-                .map(this::toRoleDisplay)
-                .toList();
-        List<PermissionView> permissions = Optional.ofNullable(response.permissions())
-                .orElseGet(List::of)
-                .stream()
-                .map(this::toPermissionView)
-                .toList();
-        return new TeamMemberView(
-                response.userId(),
-                response.nickname(),
-                response.email(),
-                response.superAdmin(),
-                roles,
-                permissions
-        );
-    }
-
-    private List<PermissionOptionView> buildPermissionOptions(List<RoleTemplateView> templates) {
-        if (templates.isEmpty()) {
-            return List.of();
-        }
-        Map<String, PermissionOptionView> deduplicated = new LinkedHashMap<>();
-        for (RoleTemplateView template : templates) {
-            for (PermissionView permission : template.permissions()) {
-                deduplicated.putIfAbsent(permission.key(), new PermissionOptionView(permission.key(), permission.description()));
-            }
-        }
-        Comparator<PermissionOptionView> comparator = Comparator
-                .comparing(PermissionOptionView::label, String.CASE_INSENSITIVE_ORDER)
-                .thenComparing(PermissionOptionView::key, String.CASE_INSENSITIVE_ORDER);
-        return deduplicated.values().stream().sorted(comparator).toList();
-    }
-
-    private String normalizeTab(String requestedTab, boolean canViewTeamRoles, boolean canManageRoles) {
-        List<String> order = new ArrayList<>();
-        order.add(TAB_MY);
-        if (canViewTeamRoles) {
-            order.add(TAB_TEAM);
-        }
-        if (canManageRoles) {
-            order.add(TAB_MANAGE);
-        }
-        String normalized = StringUtils.hasText(requestedTab) ? requestedTab.trim().toLowerCase(Locale.ROOT) : TAB_MY;
-        if (!order.contains(normalized)) {
-            normalized = order.get(0);
-        }
-        return normalized;
-    }
-
-    private String normalizeRoleCode(String code) {
-        if (!StringUtils.hasText(code)) {
-            return "";
-        }
-        return code.trim().toUpperCase(Locale.ROOT);
-    }
-
-    private List<String> normalizeRoleCodes(List<String> rawCodes) {
-        if (rawCodes == null || rawCodes.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String raw : rawCodes) {
-            String value = normalizeRoleCode(raw);
-            if (StringUtils.hasText(value)) {
-                normalized.add(value);
-            }
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-
-    private List<String> normalizePermissionKeys(List<String> rawKeys) {
-        if (rawKeys == null || rawKeys.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String raw : rawKeys) {
-            if (!StringUtils.hasText(raw)) {
-                continue;
-            }
-            normalized.add(raw.trim().toUpperCase(Locale.ROOT));
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-
-    private String redirectToTeam(Long selectedUserId) {
-        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
-                .queryParam("tab", TAB_TEAM);
-        if (selectedUserId != null) {
-            builder.queryParam("selectedUserId", selectedUserId);
-        }
-        return "redirect:" + builder.toUriString();
-    }
-
-    private String redirectToManage(String selectedRoleCode) {
-        UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
-                .queryParam("tab", TAB_MANAGE);
-        if (StringUtils.hasText(selectedRoleCode)) {
-            builder.queryParam("selectedRoleCode", normalizeRoleCode(selectedRoleCode));
-        }
-        return "redirect:" + builder.toUriString();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightAjaxResponse.java =====
-package apu.saerok_admin.web.serviceinsight;
-
-import apu.saerok_admin.web.view.ServiceInsightViewModel;
-import com.fasterxml.jackson.annotation.JsonProperty;
-import java.time.LocalDate;
-
-public record ServiceInsightAjaxResponse(
-        @JsonProperty("viewModel") ServiceInsightViewModel viewModel,
-        @JsonProperty("selectedRange") String selectedRange,
-        @JsonProperty("customRangeActive") boolean customRangeActive,
-        @JsonProperty("startDate") LocalDate startDate,
-        @JsonProperty("endDate") LocalDate endDate,
-        @JsonProperty("error") boolean error
-) {
-}
-
-
-// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightQuery.java =====
-package apu.saerok_admin.web.serviceinsight;
-
-import java.time.LocalDate;
-
-public record ServiceInsightQuery(LocalDate startDate, LocalDate endDate) {
-
-    public static ServiceInsightQuery all() {
-        return new ServiceInsightQuery(null, null);
-    }
-
-    public boolean hasRange() {
-        return startDate != null && endDate != null;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightRangePreset.java =====
-package apu.saerok_admin.web.serviceinsight;
-
-import java.time.LocalDate;
-import java.util.Arrays;
-import java.util.List;
-import java.util.Locale;
-import java.util.Optional;
-
-public enum ServiceInsightRangePreset {
-
-    LAST_7_DAYS("recent-7", "최근 1주", 7),
-    LAST_14_DAYS("recent-14", "최근 2주", 14),
-    LAST_30_DAYS("recent-30", "최근 1달", 30),
-    ALL("all", "전체", null),
-    CUSTOM("custom", "사용자 지정", null);
-
-    private final String paramValue;
-    private final String displayLabel;
-    private final Integer days;
-
-    ServiceInsightRangePreset(String paramValue, String displayLabel, Integer days) {
-        this.paramValue = paramValue;
-        this.displayLabel = displayLabel;
-        this.days = days;
-    }
-
-    public String paramValue() {
-        return paramValue;
-    }
-
-    public String displayLabel() {
-        return displayLabel;
-    }
-
-    public boolean isCustom() {
-        return this == CUSTOM;
-    }
-
-    public boolean isAll() {
-        return this == ALL;
-    }
-
-    public Optional<RangeWindow> toWindow(LocalDate today) {
-        if (days == null) {
-            return Optional.empty();
-        }
-        if (today == null) {
-            return Optional.empty();
-        }
-        if (days <= 0) {
-            return Optional.empty();
-        }
-        LocalDate endDate = today;
-        LocalDate startDate = today.minusDays(days - 1L);
-        return Optional.of(new RangeWindow(startDate, endDate));
-    }
-
-    public static Optional<ServiceInsightRangePreset> fromParameter(String parameter) {
-        if (parameter == null || parameter.isBlank()) {
-            return Optional.empty();
-        }
-        String normalized = parameter.trim().toLowerCase(Locale.ROOT);
-        return Arrays.stream(values())
-                .filter(preset -> preset.paramValue.equalsIgnoreCase(normalized) || preset.name().equalsIgnoreCase(normalized))
-                .findFirst();
-    }
-
-    public static List<ServiceInsightRangePreset> quickSelections() {
-        return List.of(LAST_7_DAYS, LAST_14_DAYS, LAST_30_DAYS, ALL);
-    }
-
-    public record RangeWindow(LocalDate startDate, LocalDate endDate) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/serviceinsight/ServiceInsightService.java =====
-package apu.saerok_admin.web.serviceinsight;
-
-import apu.saerok_admin.infra.stat.AdminStatClient;
-import apu.saerok_admin.infra.stat.StatMetric;
-import apu.saerok_admin.infra.stat.dto.StatSeriesResponse;
-import apu.saerok_admin.web.view.ServiceInsightViewModel;
-import apu.saerok_admin.web.view.ServiceInsightViewModel.ComponentSeries;
-import apu.saerok_admin.web.view.ServiceInsightViewModel.MetricOption;
-import apu.saerok_admin.web.view.ServiceInsightViewModel.Point;
-import apu.saerok_admin.web.view.ServiceInsightViewModel.Series;
-import java.time.LocalDate;
-import java.util.ArrayList;
-import java.util.LinkedHashMap;
-import java.util.List;
-import java.util.Map;
-import java.util.Objects;
-import java.util.Optional;
-import java.util.stream.Collectors;
-import org.springframework.stereotype.Service;
-
-@Service
-public class ServiceInsightService {
-
-    private final AdminStatClient adminStatClient;
-
-    public ServiceInsightService(AdminStatClient adminStatClient) {
-        this.adminStatClient = adminStatClient;
-    }
-
-    public ServiceInsightViewModel loadViewModel() {
-        return loadViewModel(ServiceInsightQuery.all());
-    }
-
-    public ServiceInsightViewModel loadViewModel(ServiceInsightQuery query) {
-        LocalDate startDate = query != null ? query.startDate() : null;
-        LocalDate endDate = query != null ? query.endDate() : null;
-        StatSeriesResponse response = adminStatClient.fetchSeries(List.of(StatMetric.values()), startDate, endDate);
-        return buildViewModel(response);
-    }
-
-    public ServiceInsightViewModel defaultViewModel() {
-        return buildViewModel(null);
-    }
-
-    private ServiceInsightViewModel buildViewModel(StatSeriesResponse response) {
-        Map<String, StatSeriesResponse.Series> responseMap = Optional.ofNullable(response)
-                .map(StatSeriesResponse::series)
-                .orElseGet(List::of)
-                .stream()
-                .filter(Objects::nonNull)
-                .collect(Collectors.toMap(
-                        StatSeriesResponse.Series::metric,
-                        series -> series,
-                        (left, right) -> right,
-                        LinkedHashMap::new
-                ));
-
-        List<MetricOption> metricOptions = new ArrayList<>();
-        List<Series> chartSeries = new ArrayList<>();
-        Map<String, Map<String, String>> componentLabels = new LinkedHashMap<>();
-
-        for (StatMetric metric : StatMetric.values()) {
-            metricOptions.add(toMetricOption(metric));
-            chartSeries.add(toSeries(metric, responseMap.get(metric.name())));
-            if (metric.multiSeries()) {
-                componentLabels.put(metric.name(), metric.componentLabels());
-            }
-        }
-
-        return new ServiceInsightViewModel(metricOptions, chartSeries, componentLabels);
-    }
-
-    private MetricOption toMetricOption(StatMetric metric) {
-        return new MetricOption(
-                metric.name(),
-                metric.label(),
-                metric.description(),
-                metric.unit(),
-                metric.multiSeries(),
-                metric.defaultActive()
-        );
-    }
-
-    private Series toSeries(StatMetric metric, StatSeriesResponse.Series source) {
-        List<Point> points = new ArrayList<>();
-        List<ComponentSeries> components = new ArrayList<>();
-
-        if (source != null) {
-            if (source.points() != null) {
-                for (StatSeriesResponse.Point point : source.points()) {
-                    if (point == null || point.date() == null || point.value() == null) {
-                        continue;
-                    }
-                    points.add(new Point(point.date(), point.value().doubleValue()));
-                }
-            }
-            if (source.components() != null) {
-                for (StatSeriesResponse.ComponentSeries component : source.components()) {
-                    if (component == null || component.key() == null) {
-                        continue;
-                    }
-                    List<Point> componentPoints = new ArrayList<>();
-                    if (component.points() != null) {
-                        for (StatSeriesResponse.Point point : component.points()) {
-                            if (point == null || point.date() == null || point.value() == null) {
-                                continue;
-                            }
-                            componentPoints.add(new Point(point.date(), point.value().doubleValue()));
-                        }
-                    }
-                    components.add(new ComponentSeries(component.key(), componentPoints));
-                }
-            }
-        }
-
-        if (!metric.multiSeries()) {
-            components = List.of();
-        }
-
-        return new Series(metric.name(), points, components);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/ServiceInsightController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.serviceinsight.ServiceInsightAjaxResponse;
-import apu.saerok_admin.web.serviceinsight.ServiceInsightQuery;
-import apu.saerok_admin.web.serviceinsight.ServiceInsightRangePreset;
-import apu.saerok_admin.web.serviceinsight.ServiceInsightService;
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.ServiceInsightViewModel;
-import apu.saerok_admin.web.view.ToastMessage;
-import com.fasterxml.jackson.core.JsonProcessingException;
-import com.fasterxml.jackson.databind.ObjectMapper;
-import com.fasterxml.jackson.databind.SerializationFeature;
-import com.fasterxml.jackson.datatype.jsr310.JavaTimeModule;
-import java.time.LocalDate;
-import java.time.ZoneId;
-import java.util.ArrayList;
-import java.util.List;
-import org.slf4j.Logger;
-import org.slf4j.LoggerFactory;
-import org.springframework.format.annotation.DateTimeFormat;
-import org.springframework.http.MediaType;
-import org.springframework.http.ResponseEntity;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.client.RestClientException;
-import org.springframework.web.client.RestClientResponseException;
-
-@Controller
-public class ServiceInsightController {
-
-    private static final Logger log = LoggerFactory.getLogger(ServiceInsightController.class);
-    private static final String ERROR_TOAST_ID = "toastServiceInsightError";
-    private static final ZoneId DEFAULT_ZONE = ZoneId.of("Asia/Seoul");
-    private static final ServiceInsightRangePreset DEFAULT_PRESET = ServiceInsightRangePreset.LAST_14_DAYS;
-
-    private final ServiceInsightService serviceInsightService;
-    private final ObjectMapper objectMapper;
-
-    public ServiceInsightController(ServiceInsightService serviceInsightService, ObjectMapper objectMapper) {
-        this.serviceInsightService = serviceInsightService;
-        // ObjectMapper 설정 강화
-        this.objectMapper = objectMapper.copy()
-                .registerModule(new JavaTimeModule())
-                .disable(SerializationFeature.WRITE_DATES_AS_TIMESTAMPS);
-    }
-
-    @GetMapping(value = "/service-insight", produces = MediaType.TEXT_HTML_VALUE)
-    public String serviceInsight(
-            Model model,
-            @RequestParam(value = "range", required = false) String rangeParam,
-            @RequestParam(value = "startDate", required = false)
-            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate startDate,
-            @RequestParam(value = "endDate", required = false)
-            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate endDate
-    ) {
-        model.addAttribute("pageTitle", "서비스 인사이트");
-        model.addAttribute("activeMenu", "serviceInsight");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("서비스 인사이트")
-        ));
-        ensureToastMessages(model);
-
-        PageData pageData = loadPageData(rangeParam, startDate, endDate);
-        ServiceInsightViewModel viewModel = pageData.viewModel();
-        RangeSelection rangeSelection = pageData.rangeSelection();
-        if (pageData.hadError()) {
-            attachErrorToast(model);
-        }
-
-        model.addAttribute("serviceInsight", viewModel);
-        String chartDataJson = toJson(viewModel);
-        model.addAttribute("chartDataJson", chartDataJson);
-        model.addAttribute("rangeQuickOptions", ServiceInsightRangePreset.quickSelections());
-        model.addAttribute("selectedRange", rangeSelection.preset().paramValue());
-        model.addAttribute("customRangeActive", rangeSelection.preset() == ServiceInsightRangePreset.CUSTOM);
-        model.addAttribute("selectedStartDate", rangeSelection.query().startDate());
-        model.addAttribute("selectedEndDate", rangeSelection.query().endDate());
-
-        log.debug("Chart data JSON length: {}", chartDataJson.length());
-
-        return "service-insight/index";
-    }
-
-    @GetMapping(value = "/service-insight", produces = MediaType.APPLICATION_JSON_VALUE)
-    public ResponseEntity<ServiceInsightAjaxResponse> serviceInsightData(
-            @RequestParam(value = "range", required = false) String rangeParam,
-            @RequestParam(value = "startDate", required = false)
-            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate startDate,
-            @RequestParam(value = "endDate", required = false)
-            @DateTimeFormat(iso = DateTimeFormat.ISO.DATE) LocalDate endDate
-    ) {
-        PageData pageData = loadPageData(rangeParam, startDate, endDate);
-        RangeSelection rangeSelection = pageData.rangeSelection();
-
-        ServiceInsightAjaxResponse response = new ServiceInsightAjaxResponse(
-                pageData.viewModel(),
-                rangeSelection.preset().paramValue(),
-                rangeSelection.preset() == ServiceInsightRangePreset.CUSTOM,
-                rangeSelection.query().startDate(),
-                rangeSelection.query().endDate(),
-                pageData.hadError()
-        );
-
-        return ResponseEntity.ok(response);
-    }
-
-    private void ensureToastMessages(Model model) {
-        if (!model.containsAttribute("toastMessages")) {
-            model.addAttribute("toastMessages", List.of());
-        }
-    }
-
-    private PageData loadPageData(String rangeParam, LocalDate startDate, LocalDate endDate) {
-        RangeSelection rangeSelection = resolveRange(rangeParam, startDate, endDate);
-
-        try {
-            ServiceInsightViewModel viewModel = serviceInsightService.loadViewModel(rangeSelection.query());
-            log.info("Successfully loaded service insight view model with {} metrics (range: {} - {}, preset: {})",
-                    viewModel.metricOptions().size(),
-                    rangeSelection.query().startDate(),
-                    rangeSelection.query().endDate(),
-                    rangeSelection.preset().name());
-            return new PageData(rangeSelection, viewModel, false);
-        } catch (RestClientResponseException exception) {
-            log.warn(
-                    "Failed to load service insight stats. status={}, body={}",
-                    exception.getStatusCode(),
-                    exception.getResponseBodyAsString(),
-                    exception
-            );
-        } catch (RestClientException | IllegalStateException exception) {
-            log.warn("Failed to load service insight stats.", exception);
-        }
-
-        ServiceInsightViewModel fallback = serviceInsightService.defaultViewModel();
-        return new PageData(rangeSelection, fallback, true);
-    }
-
-    private RangeSelection resolveRange(String rangeParam, LocalDate startDate, LocalDate endDate) {
-        LocalDate today = LocalDate.now(DEFAULT_ZONE);
-
-        ServiceInsightRangePreset requestedPreset = ServiceInsightRangePreset.fromParameter(rangeParam)
-                .orElse(DEFAULT_PRESET);
-
-        if (startDate != null || endDate != null) {
-            requestedPreset = ServiceInsightRangePreset.CUSTOM;
-        }
-
-        if (requestedPreset == ServiceInsightRangePreset.ALL) {
-            return new RangeSelection(ServiceInsightRangePreset.ALL, ServiceInsightQuery.all());
-        }
-
-        if (requestedPreset == ServiceInsightRangePreset.CUSTOM) {
-            if (startDate == null || endDate == null) {
-                log.debug("Incomplete custom range supplied (start={}, end={}), falling back to default preset {}",
-                        startDate,
-                        endDate,
-                        DEFAULT_PRESET.name());
-                return buildPresetSelection(DEFAULT_PRESET, today);
-            }
-
-            LocalDate effectiveStart = startDate;
-            LocalDate effectiveEnd = endDate;
-
-            if (effectiveEnd.isBefore(effectiveStart)) {
-                effectiveStart = endDate;
-                effectiveEnd = startDate;
-            }
-
-            if (effectiveEnd.isAfter(today)) {
-                effectiveEnd = today;
-            }
-
-            if (effectiveStart.isAfter(effectiveEnd)) {
-                effectiveStart = effectiveEnd;
-            }
-
-            return new RangeSelection(ServiceInsightRangePreset.CUSTOM, new ServiceInsightQuery(effectiveStart, effectiveEnd));
-        }
-
-        return buildPresetSelection(requestedPreset, today);
-    }
-
-    private RangeSelection buildPresetSelection(ServiceInsightRangePreset preset, LocalDate today) {
-        return preset.toWindow(today)
-                .map(window -> new RangeSelection(preset, new ServiceInsightQuery(window.startDate(), window.endDate())))
-                .orElseGet(() -> new RangeSelection(ServiceInsightRangePreset.ALL, ServiceInsightQuery.all()));
-    }
-
-    private void attachErrorToast(Model model) {
-        ToastMessage errorToast = new ToastMessage(
-                ERROR_TOAST_ID,
-                "데이터 로드 실패",
-                "통계 데이터를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.",
-                "danger",
-                false
-        );
-        List<ToastMessage> messages = new ArrayList<>();
-        Object existing = model.getAttribute("toastMessages");
-        if (existing instanceof List<?> list) {
-            for (Object item : list) {
-                if (item instanceof ToastMessage toastMessage && !ERROR_TOAST_ID.equals(toastMessage.id())) {
-                    messages.add(toastMessage);
-                }
-            }
-        }
-        messages.add(errorToast);
-        model.addAttribute("toastMessages", List.copyOf(messages));
-    }
-
-    private String toJson(ServiceInsightViewModel viewModel) {
-        try {
-            String json = objectMapper.writeValueAsString(viewModel);
-            log.debug("Serialized view model to JSON successfully");
-            return json;
-        } catch (JsonProcessingException exception) {
-            log.error("Failed to serialize service insight payload.", exception);
-            return "{\"metricOptions\":[],\"series\":[],\"componentLabels\":{}}";
-        }
-    }
-
-    private record RangeSelection(ServiceInsightRangePreset preset, ServiceInsightQuery query) {
-    }
-
-    private record PageData(RangeSelection rangeSelection, ServiceInsightViewModel viewModel, boolean hadError) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/UnsplashController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.infra.unsplash.UnsplashService;
-import apu.saerok_admin.infra.unsplash.UnsplashService.Photo;
-import org.springframework.http.MediaType;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-import org.springframework.web.bind.annotation.RestController;
-
-/**
- * 인증 없이 접근 가능한 프록시 엔드포인트.
- * - /public/unsplash/random-bird?orientation=landscape|portrait
- * 브라우저에는 키를 절대 노출하지 않고 단일 사진 메타만 반환한다.
- */
-@RestController
-public class UnsplashController {
-
-    private final UnsplashService unsplashService;
-
-    public UnsplashController(UnsplashService unsplashService) {
-        this.unsplashService = unsplashService;
-    }
-
-    @GetMapping(path = "/public/unsplash/random-bird", produces = MediaType.APPLICATION_JSON_VALUE)
-    public Photo randomBird(@RequestParam(name = "orientation", required = false) String orientation) {
-        return unsplashService.fetchRandomBird(orientation);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/UserController.java =====
-package apu.saerok_admin.web;
-
-import apu.saerok_admin.web.view.Breadcrumb;
-import apu.saerok_admin.web.view.UserActivity;
-import apu.saerok_admin.web.view.UserDetail;
-import apu.saerok_admin.web.view.UserListItem;
-import apu.saerok_admin.web.view.ToastMessage;
-import java.time.LocalDateTime;
-import java.util.List;
-import org.springframework.stereotype.Controller;
-import org.springframework.ui.Model;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PathVariable;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RequestParam;
-
-@Controller
-@RequestMapping("/users")
-public class UserController {
-
-    @GetMapping
-    public String list(@RequestParam(required = false) String q,
-                       @RequestParam(required = false) String status,
-                       @RequestParam(defaultValue = "1") int page,
-                       @RequestParam(defaultValue = "20") int size,
-                       Model model) {
-        model.addAttribute("pageTitle", "사용자 관리");
-        model.addAttribute("activeMenu", "users");
-        model.addAttribute("breadcrumbs", List.of(Breadcrumb.of("대시보드", "/"), Breadcrumb.active("사용자")));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastUserAction", "조치 완료", "사용자 상태를 업데이트했습니다."),
-                ToastMessage.success("toastUserNotify", "알림 발송", "사용자에게 알림을 전송했습니다.")
-        ));
-        model.addAttribute("query", q);
-        model.addAttribute("statusFilter", status);
-        model.addAttribute("page", page);
-        model.addAttribute("size", size);
-        model.addAttribute("totalPages", 14);
-        model.addAttribute("totalElements", 512);
-        model.addAttribute("statusOptions", List.of("전체", "정상", "휴면", "차단"));
-        model.addAttribute("users", List.of(
-                new UserListItem(501, "솔바람", "sol@saerok.app", LocalDateTime.now().minusMonths(5), "정상", 48, 2),
-                new UserListItem(502, "별빛여행", "star@saerok.app", LocalDateTime.now().minusMonths(3), "정상", 36, 0),
-                new UserListItem(503, "느린풍경", "slow@saerok.app", LocalDateTime.now().minusMonths(8), "차단", 12, 7),
-                new UserListItem(504, "새벽지기", "dawn@saerok.app", LocalDateTime.now().minusMonths(1), "정상", 18, 1),
-                new UserListItem(505, "이끼정원", "moss@saerok.app", LocalDateTime.now().minusMonths(10), "휴면", 5, 0)
-        ));
-        return "users/list";
-    }
-
-    @GetMapping("/{id}")
-    public String detail(@PathVariable long id, Model model) {
-        UserDetail detail = new UserDetail(id, "솔바람", "sol@saerok.app", "010-1234-5678", "정상",
-                LocalDateTime.now().minusMonths(5), LocalDateTime.now().minusDays(1), 48, 2,
-                List.of(
-                        new UserActivity("새록", "초여름 갈대밭 일지", LocalDateTime.now().minusDays(1), "공개"),
-                        new UserActivity("댓글", "강변 산책 중 만난 물새들", LocalDateTime.now().minusDays(2), "공개"),
-                        new UserActivity("신고", "댓글 신고 #2041", LocalDateTime.now().minusDays(3), "검토중"),
-                        new UserActivity("새록", "가을철 맹금류 관찰 노트", LocalDateTime.now().minusDays(7), "공개")
-                ));
-        model.addAttribute("pageTitle", "사용자 상세");
-        model.addAttribute("activeMenu", "users");
-        model.addAttribute("breadcrumbs", List.of(
-                Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.of("사용자", "/users"),
-                Breadcrumb.active("#" + id)));
-        model.addAttribute("toastMessages", List.of(
-                ToastMessage.success("toastUserAction", "조치 완료", "사용자 상태를 업데이트했습니다."),
-                ToastMessage.success("toastUserNotify", "알림 발송", "사용자에게 알림을 전송했습니다.")
-        ));
-        model.addAttribute("detail", detail);
-        return "users/detail";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdForm.java =====
-package apu.saerok_admin.web.view.ad;
-
-import org.springframework.util.StringUtils;
-
-public record AdForm(
-        Long id,
-        String name,
-        String targetUrl,
-        String memo,
-        String objectKey,
-        String contentType,
-        String imageUrl
-) {
-
-    public boolean hasExistingImage() {
-        return StringUtils.hasText(imageUrl);
-    }
-
-    public boolean hasUploadedImage() {
-        return StringUtils.hasText(objectKey) && StringUtils.hasText(contentType);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdListItem.java =====
-package apu.saerok_admin.web.view.ad;
-
-import java.time.OffsetDateTime;
-import org.springframework.util.StringUtils;
-
-public record AdListItem(
-        Long id,
-        String name,
-        String memo,
-        String imageUrl,
-        String contentType,
-        String targetUrl,
-        OffsetDateTime createdAt,
-        OffsetDateTime updatedAt
-) {
-
-    public boolean hasImage() {
-        return StringUtils.hasText(imageUrl);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdPlacementForm.java =====
-package apu.saerok_admin.web.view.ad;
-
-public record AdPlacementForm(
-        Long id,
-        Long adId,
-        Long slotId,
-        String startDate,
-        String endDate,
-        Short weight,
-        Boolean enabled
-) {
-
-    public boolean isEdit() {
-        return id != null;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdPlacementGroup.java =====
-package apu.saerok_admin.web.view.ad;
-
-import java.util.List;
-
-public record AdPlacementGroup(
-        Long slotId,
-        String slotCode,
-        String slotDescription,
-        double fallbackRatioPercent,
-        int slotTtlSeconds,
-        List<AdPlacementItem> placements
-) {
-
-    public boolean hasPlacements() {
-        return placements != null && !placements.isEmpty();
-    }
-
-    public String fallbackProbabilityLabel() {
-        if (!hasPlacements()) {
-            return "100%";
-        }
-        return Math.round(fallbackRatioPercent) + "%";
-    }
-
-    public boolean hasFallbackProbability() {
-        if (!hasPlacements()) {
-            return true;
-        }
-        return fallbackRatioPercent > 0.0;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdPlacementItem.java =====
-package apu.saerok_admin.web.view.ad;
-
-import java.time.LocalDate;
-import java.time.OffsetDateTime;
-import java.time.format.DateTimeFormatter;
-
-public record AdPlacementItem(
-        Long id,
-        Long adId,
-        String adName,
-        String adImageUrl,
-        Long slotId,
-        String slotName,
-        LocalDate startDate,
-        LocalDate endDate,
-        short weight,
-        boolean enabled,
-        OffsetDateTime createdAt,
-        OffsetDateTime updatedAt,
-        PlacementTimeStatus timeStatus,
-        double displayProbabilityPercent
-) {
-
-    private static final DateTimeFormatter PERIOD_FORMATTER = DateTimeFormatter.ofPattern("yyyy.MM.dd");
-    private static final double PROBABILITY_EPSILON = 1.0E-6;
-
-    public String periodLabel() {
-        // 시작/종료일이 모두 없는 경우
-        if (startDate == null && endDate == null) {
-            return "기간 미지정";
-        }
-
-        // 시작일만 없는 경우: 열린 시작
-        if (startDate == null) {
-            return "~ " + PERIOD_FORMATTER.format(endDate);
-        }
-
-        // 종료일만 없는 경우: 열린 종료
-        if (endDate == null) {
-            return PERIOD_FORMATTER.format(startDate) + " ~";
-        }
-
-        // 둘 다 있는 경우
-        return PERIOD_FORMATTER.format(startDate) + " ~ " + PERIOD_FORMATTER.format(endDate);
-    }
-
-    public AdPlacementItem withDisplayProbability(double probabilityPercent) {
-        return new AdPlacementItem(
-                id,
-                adId,
-                adName,
-                adImageUrl,
-                slotId,
-                slotName,
-                startDate,
-                endDate,
-                weight,
-                enabled,
-                createdAt,
-                updatedAt,
-                timeStatus,
-                probabilityPercent
-        );
-    }
-
-    public boolean isActiveNow() {
-        return timeStatus == PlacementTimeStatus.ACTIVE;
-    }
-
-    public boolean isProbabilityEligible() {
-        return isActiveNow() && enabled;
-    }
-
-    public boolean hasPositiveProbability() {
-        return displayProbabilityPercent > PROBABILITY_EPSILON;
-    }
-
-    public boolean canToggle() {
-        return isActiveNow();
-    }
-
-    public String displayStatusLabel() {
-        if (isActiveNow()) {
-            return enabled ? "진행 중" : "일시 중지";
-        }
-        return switch (timeStatus) {
-            case UPCOMING -> "시작 예정";
-            case ENDED -> "종료";
-            case ACTIVE -> "진행 중";
-        };
-    }
-
-    public String timeStatusLabel() {
-        return switch (timeStatus) {
-            case ACTIVE -> "진행 중";
-            case UPCOMING -> "시작 예정";
-            case ENDED -> "종료";
-        };
-    }
-
-    public String timeStatusBadgeClass() {
-        return switch (timeStatus) {
-            case ACTIVE -> "text-bg-success";
-            case UPCOMING -> "text-bg-info";
-            case ENDED -> "text-bg-secondary";
-        };
-    }
-
-    public String statusBadgeClass() {
-        if (isActiveNow()) {
-            return enabled ? "text-bg-success" : "text-bg-warning";
-        }
-        return switch (timeStatus) {
-            case UPCOMING -> "text-bg-info";
-            case ENDED -> "text-bg-secondary";
-            case ACTIVE -> enabled ? "text-bg-success" : "text-bg-warning";
-        };
-    }
-
-    public String weightLabel() {
-        return switch (weight) {
-            case 1 -> "매우 낮음";
-            case 2 -> "낮음";
-            case 3 -> "보통";
-            case 4 -> "높음";
-            case 5 -> "매우 높음";
-            default -> Short.toString(weight);
-        };
-    }
-
-    public String priorityBadgeClass() {
-        return switch (weight) {
-            case 1 -> "ads-priority-badge--very-low";
-            case 2 -> "ads-priority-badge--low";
-            case 3 -> "ads-priority-badge--medium";
-            case 4 -> "ads-priority-badge--high";
-            case 5 -> "ads-priority-badge--very-high";
-            default -> "ads-priority-badge--unknown";
-        };
-    }
-
-    public boolean hasImage() {
-        return adImageUrl != null && !adImageUrl.isBlank();
-    }
-
-    public String probabilityLabel() {
-        return Math.round(displayProbabilityPercent) + "%";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdSlotForm.java =====
-package apu.saerok_admin.web.view.ad;
-
-public record AdSlotForm(
-        Long id,
-        String code,
-        String description,
-        Double fallbackRatioPercent,
-        Integer ttlSeconds
-) {
-
-    public boolean isEdit() {
-        return id != null;
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdSlotListItem.java =====
-package apu.saerok_admin.web.view.ad;
-
-import java.time.OffsetDateTime;
-
-public record AdSlotListItem(
-        Long id,
-        String code,
-        String description,
-        double fallbackRatioPercent,
-        int ttlSeconds,
-        OffsetDateTime createdAt,
-        OffsetDateTime updatedAt,
-        int connectedScheduleCount
-) {
-
-    public String fallbackRatioLabel() {
-        return String.format("%.1f%%", fallbackRatioPercent);
-    }
-
-    public String fallbackProbabilityLabel() {
-        return Math.round(fallbackRatioPercent) + "%";
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/AdSummaryMetrics.java =====
-package apu.saerok_admin.web.view.ad;
-
-public record AdSummaryMetrics(
-        int adCount,
-        int slotCount,
-        int activePlacementCount
-) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ad/PlacementTimeStatus.java =====
-package apu.saerok_admin.web.view.ad;
-
-public enum PlacementTimeStatus {
-    ACTIVE,
-    UPCOMING,
-    ENDED
-}
-
-
-// ===== java/apu/saerok_admin/web/view/AdminAuditLogItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record AdminAuditLogItem(
-        long id,
-        LocalDateTime occurredAt,
-        String adminNickname,
-        String actionLabel,
-        String actionDescription,
-        String actionBadgeClass,
-        String targetDisplay,
-        String reportDisplay,
-        List<MetadataEntry> metadataEntries
-) {
-
-    public record MetadataEntry(String key, String value) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/Breadcrumb.java =====
-package apu.saerok_admin.web.view;
-
-public record Breadcrumb(String label, String href, boolean active) {
-    public static Breadcrumb of(String label, String href) {
-        return new Breadcrumb(label, href, false);
-    }
-
-    public static Breadcrumb active(String label) {
-        return new Breadcrumb(label, null, true);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/CollectionDetail.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record CollectionDetail(long id, String author, String avatarUrl, String status, int reportCount,
-                               LocalDateTime createdAt, LocalDateTime updatedAt, List<String> tags,
-                               String content) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/CollectionListItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record CollectionListItem(long id, String author, String excerpt, String status,
-                                 int reportCount, LocalDateTime createdAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/CommentListItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record CommentListItem(long id, String author, long parentId, String excerpt,
-                              int reportCount, LocalDateTime createdAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/CurrentAdminProfile.java =====
-package apu.saerok_admin.web.view;
-
-import java.util.LinkedHashSet;
-import java.util.List;
-import java.util.Locale;
-import java.util.Set;
-import org.springframework.util.StringUtils;
-
-public record CurrentAdminProfile(
-        String nickname,
-        String email,
-        String profileImageUrl,
-        List<String> roleDisplayNames,
-        List<String> roleCodes,
-        List<String> permissionKeys
-) {
-
-    private static final String DEFAULT_PROFILE_IMAGE_URL =
-            "https://images.unsplash.com/photo-1524504388940-b1c1722653e1";
-    private static final String DEFAULT_NICKNAME = "운영자";
-    private static final String DEFAULT_EMAIL = "admin@saerok.app";
-
-    public CurrentAdminProfile {
-        nickname = StringUtils.hasText(nickname) ? nickname : DEFAULT_NICKNAME;
-        email = StringUtils.hasText(email) ? email : DEFAULT_EMAIL;
-        profileImageUrl = StringUtils.hasText(profileImageUrl) ? profileImageUrl : DEFAULT_PROFILE_IMAGE_URL;
-        roleDisplayNames = normalizeRoleDisplayNames(roleDisplayNames);
-        roleCodes = normalizeRoleCodes(roleCodes);
-        permissionKeys = normalizePermissionKeys(permissionKeys);
-    }
-
-    public boolean hasRoleDisplayNames() {
-        return !roleDisplayNames.isEmpty();
-    }
-
-    public boolean hasRole(String roleCode) {
-        if (!StringUtils.hasText(roleCode)) {
-            return false;
-        }
-        String normalized = roleCode.toUpperCase(Locale.ROOT);
-        return roleCodes.contains(normalized);
-    }
-
-    public boolean isAdminEditor() {
-        return hasRole("ADMIN_EDITOR");
-    }
-
-    public boolean isAdminViewerOnly() {
-        return hasRole("ADMIN_VIEWER") && !isAdminEditor();
-    }
-
-    public static CurrentAdminProfile placeholder() {
-        return new CurrentAdminProfile(null, null, null, List.of(), List.of(), List.of());
-    }
-
-    public boolean hasPermission(String permissionKey) {
-        if (!StringUtils.hasText(permissionKey)) {
-            return false;
-        }
-        String normalized = permissionKey.toUpperCase(Locale.ROOT);
-        return permissionKeys.contains(normalized);
-    }
-
-    private static List<String> normalizeRoleCodes(List<String> rawRoles) {
-        if (rawRoles == null || rawRoles.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String role : rawRoles) {
-            if (!StringUtils.hasText(role)) {
-                continue;
-            }
-            normalized.add(role.toUpperCase(Locale.ROOT));
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-
-    private static List<String> normalizePermissionKeys(List<String> rawKeys) {
-        if (rawKeys == null || rawKeys.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String key : rawKeys) {
-            if (!StringUtils.hasText(key)) {
-                continue;
-            }
-            normalized.add(key.toUpperCase(Locale.ROOT));
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-
-    private static List<String> normalizeRoleDisplayNames(List<String> names) {
-        if (names == null || names.isEmpty()) {
-            return List.of();
-        }
-        Set<String> normalized = new LinkedHashSet<>();
-        for (String name : names) {
-            if (!StringUtils.hasText(name)) {
-                continue;
-            }
-            normalized.add(name.trim());
-        }
-        if (normalized.isEmpty()) {
-            return List.of();
-        }
-        return List.copyOf(normalized);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/DashboardMetric.java =====
-package apu.saerok_admin.web.view;
-
-public record DashboardMetric(
-        String label,
-        String value,
-        String icon,
-        String variant,
-        String subtitle,
-        String linkHref
-) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/DexDetail.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record DexDetail(long id, String koreanName, String englishName, String scientificName,
-                        String description, String imageUrl, List<String> habitats, String stayType, String rarity,
-                        List<String> tags, LocalDateTime updatedAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/DexFormModel.java =====
-package apu.saerok_admin.web.view;
-
-import java.util.List;
-
-public record DexFormModel(DexDetail detail, List<String> habitatOptions, List<String> stayOptions,
-                           List<String> rarityOptions) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/DexListItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record DexListItem(long id, String koreanName, String englishName, String scientificName,
-                          String habitat, String stayType, String rarity, LocalDateTime updatedAt, List<String> tags) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/EnvironmentProfileBadge.java =====
-package apu.saerok_admin.web.view;
-
-public record EnvironmentProfileBadge(String label, String cssClass) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/NotificationTargetOption.java =====
-package apu.saerok_admin.web.view;
-
-public record NotificationTargetOption(String value, String label, String description) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/RecentDexEntry.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDate;
-
-public record RecentDexEntry(long id, String koreanName, String englishName, LocalDate updatedAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/RecentReport.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record RecentReport(long id, String type, String targetId, String reason, String status, LocalDateTime createdAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ReportDetail.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDate;
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record ReportDetail(
-        long reportId,
-        ReportType type,
-        LocalDateTime reportedAt,
-        Person reporter,
-        Person reportedUser,
-        Collection collection,
-        List<Comment> comments,
-        ReportedComment reportedComment,
-        String ignoreAction,
-        String deleteAction
-) {
-
-    public record Person(Long userId, String nickname) {
-    }
-
-    public record Collection(
-            long collectionId,
-            Long birdId,
-            String birdKoreanName,
-            String birdScientificName,
-            LocalDate discoveredDate,
-            Double latitude,
-            Double longitude,
-            String locationAlias,
-            String address,
-            String note,
-            String accessLevel,
-            String accessLevelLabel,
-            Long likeCount,
-            Long commentCount,
-            Boolean liked,
-            Boolean mine,
-            Long authorId,
-            String authorNickname,
-            String authorProfileImageUrl,
-            String imageUrl
-    ) {
-    }
-
-    public record Comment(
-            Long commentId,
-            Long userId,
-            String nickname,
-            String content,
-            int likeCount,
-            LocalDateTime createdAt,
-            LocalDateTime updatedAt
-    ) {
-    }
-
-    public record ReportedComment(
-            Long commentId,
-            Long userId,
-            String nickname,
-            String content,
-            LocalDateTime createdAt,
-            LocalDateTime updatedAt
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ReportListItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record ReportListItem(
-        long reportId,
-        ReportType type,
-        LocalDateTime reportedAt,
-        String targetSummary,
-        String contentPreview,
-        String collectionImageUrl,
-        String reporterNickname,
-        String reportedUserNickname,
-        String detailPath,
-        String ignoreAction,
-        String deleteAction
-) {
-
-    public boolean hasContentPreview() {
-        return contentPreview != null && !contentPreview.isBlank();
-    }
-
-    public boolean hasCollectionImage() {
-        return collectionImageUrl != null && !collectionImageUrl.isBlank();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ReportType.java =====
-package apu.saerok_admin.web.view;
-
-public enum ReportType {
-    COLLECTION("새록", "primary"),
-    COMMENT("댓글", "warning");
-
-    private final String displayName;
-    private final String badgeVariant;
-
-    ReportType(String displayName, String badgeVariant) {
-        this.displayName = displayName;
-        this.badgeVariant = badgeVariant;
-    }
-
-    public String displayName() {
-        return displayName;
-    }
-
-    public String badgeVariant() {
-        return badgeVariant;
-    }
-
-    public boolean isCollection() {
-        return this == COLLECTION;
-    }
-
-    public boolean isComment() {
-        return this == COMMENT;
-    }
-
-    public String targetNoun() {
-        return switch (this) {
-            case COLLECTION -> "새록";
-            case COMMENT -> "댓글";
-        };
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/PermissionOptionView.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.Locale;
-import org.springframework.util.StringUtils;
-
-public record PermissionOptionView(
-        String key,
-        String description
-) {
-
-    public PermissionOptionView {
-        key = normalizeKey(key);
-        description = StringUtils.hasText(description) ? description.trim() : "";
-    }
-
-    public String label() {
-        return StringUtils.hasText(description) ? description : key;
-    }
-
-    private static String normalizeKey(String value) {
-        if (!StringUtils.hasText(value)) {
-            return "";
-        }
-        return value.trim().toUpperCase(Locale.ROOT);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/PermissionView.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.Locale;
-import org.springframework.util.StringUtils;
-
-public record PermissionView(
-        String key,
-        String description
-) {
-
-    public PermissionView {
-        key = normalizeKey(key);
-        description = StringUtils.hasText(description) ? description.trim() : "";
-    }
-
-    public String label() {
-        return StringUtils.hasText(description) ? description : key;
-    }
-
-    private static String normalizeKey(String value) {
-        if (!StringUtils.hasText(value)) {
-            return "";
-        }
-        return value.trim().toUpperCase(Locale.ROOT);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/RoleDisplay.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.Locale;
-import org.springframework.util.StringUtils;
-
-public record RoleDisplay(
-        Long id,
-        String code,
-        String displayName,
-        String description,
-        boolean builtin
-) {
-
-    public RoleDisplay {
-        code = normalizeCode(code);
-        displayName = StringUtils.hasText(displayName) ? displayName.trim() : code;
-        description = StringUtils.hasText(description) ? description.trim() : "";
-    }
-
-    public String label() {
-        return StringUtils.hasText(displayName) ? displayName : code;
-    }
-
-    public boolean hasDescription() {
-        return StringUtils.hasText(description);
-    }
-
-    private static String normalizeCode(String value) {
-        if (!StringUtils.hasText(value)) {
-            return "";
-        }
-        return value.trim().toUpperCase(Locale.ROOT);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/RolePermissionGroupView.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.List;
-
-public record RolePermissionGroupView(
-        RoleDisplay role,
-        List<PermissionView> permissions
-) {
-
-    public RolePermissionGroupView {
-        permissions = permissions == null ? List.of() : List.copyOf(permissions);
-    }
-
-    public boolean hasPermissions() {
-        return !permissions.isEmpty();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/RoleTemplateView.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.List;
-import java.util.Locale;
-import org.springframework.util.StringUtils;
-
-public record RoleTemplateView(
-        RoleDisplay role,
-        List<PermissionView> permissions
-) {
-
-    public RoleTemplateView {
-        permissions = permissions == null ? List.of() : List.copyOf(permissions);
-    }
-
-    public Long id() {
-        return role.id();
-    }
-
-    public String code() {
-        return role.code();
-    }
-
-    public String displayName() {
-        return role.displayName();
-    }
-
-    public String description() {
-        return role.description();
-    }
-
-    public boolean builtin() {
-        return role.builtin();
-    }
-
-    public boolean hasPermissions() {
-        return !permissions.isEmpty();
-    }
-
-    public boolean hasPermission(String permissionKey) {
-        if (!StringUtils.hasText(permissionKey)) {
-            return false;
-        }
-        String normalized = permissionKey.trim().toUpperCase(Locale.ROOT);
-        return permissions.stream().anyMatch(permission -> normalized.equals(permission.key()));
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/role/TeamMemberView.java =====
-package apu.saerok_admin.web.view.role;
-
-import java.util.List;
-import java.util.Locale;
-import org.springframework.util.StringUtils;
-
-public record TeamMemberView(
-        Long id,
-        String nickname,
-        String email,
-        boolean superAdmin,
-        List<RoleDisplay> roles,
-        List<PermissionView> permissions
-) {
-
-    public TeamMemberView {
-        roles = roles == null ? List.of() : List.copyOf(roles);
-        permissions = permissions == null ? List.of() : List.copyOf(permissions);
-    }
-
-    public String initials() {
-        if (!StringUtils.hasText(nickname)) {
-            return "팀";
-        }
-        String trimmed = nickname.trim();
-        return trimmed.substring(0, Math.min(2, trimmed.length()));
-    }
-
-    public boolean hasRole(String roleCode) {
-        if (!StringUtils.hasText(roleCode)) {
-            return false;
-        }
-        String normalized = roleCode.trim().toUpperCase(Locale.ROOT);
-        return roles.stream().anyMatch(role -> normalized.equals(role.code()));
-    }
-
-    public boolean hasPermissions() {
-        return !permissions.isEmpty();
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ServiceHealthStatus.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record ServiceHealthStatus(boolean alive, String message, LocalDateTime checkedAt) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ServiceInsightViewModel.java =====
-package apu.saerok_admin.web.view;
-
-import apu.saerok_admin.infra.stat.StatMetric.MetricUnit;
-import com.fasterxml.jackson.annotation.JsonProperty;
-import java.time.LocalDate;
-import java.util.List;
-import java.util.Map;
-
-public record ServiceInsightViewModel(
-        @JsonProperty("metricOptions") List<MetricOption> metricOptions,
-        @JsonProperty("series") List<Series> series,
-        @JsonProperty("componentLabels") Map<String, Map<String, String>> componentLabels
-) {
-
-    public record MetricOption(
-            @JsonProperty("metric") String metric,
-            @JsonProperty("label") String label,
-            @JsonProperty("description") String description,
-            @JsonProperty("unit") MetricUnit unit,
-            @JsonProperty("multiSeries") boolean multiSeries,
-            @JsonProperty("defaultActive") boolean defaultActive
-    ) {
-    }
-
-    public record Series(
-            @JsonProperty("metric") String metric,
-            @JsonProperty("points") List<Point> points,
-            @JsonProperty("components") List<ComponentSeries> components
-    ) {
-    }
-
-    public record Point(
-            @JsonProperty("date") LocalDate date,
-            @JsonProperty("value") double value
-    ) {
-    }
-
-    public record ComponentSeries(
-            @JsonProperty("key") String key,
-            @JsonProperty("points") List<Point> points
-    ) {
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/ToastMessage.java =====
-package apu.saerok_admin.web.view;
-
-public record ToastMessage(String id, String title, String body, String variant, boolean autohide) {
-    public static ToastMessage success(String id, String title, String body) {
-        return new ToastMessage(id, title, body, "success", true);
-    }
-
-    public static ToastMessage info(String id, String title, String body) {
-        return new ToastMessage(id, title, body, "info", true);
-    }
-}
-
-
-// ===== java/apu/saerok_admin/web/view/UserActivity.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record UserActivity(String type, String title, LocalDateTime createdAt, String status) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/UserDetail.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-import java.util.List;
-
-public record UserDetail(long id, String nickname, String email, String phone, String status,
-                         LocalDateTime joinedAt, LocalDateTime lastLoginAt, int postCount,
-                         int reportCount, List<UserActivity> recentActivities) {
-}
-
-
-// ===== java/apu/saerok_admin/web/view/UserListItem.java =====
-package apu.saerok_admin.web.view;
-
-import java.time.LocalDateTime;
-
-public record UserListItem(long id, String nickname, String email, LocalDateTime joinedAt,
-                           String status, int postCount, int reportCount) {
-}
-
-
-// ===== resources/application-codex.yml =====
-server:
-  port: 8081
-
-oauth:
-  kakao:
-    client-id: ${KAKAO_CLIENT_ID}
-    redirect-uri: ${KAKAO_REDIRECT_URI}
-  apple:
-    client-id: ${APPLE_CLIENT_ID}
-    redirect-uri: ${APPLE_REDIRECT_URI}
-
-saerok:
-  api:
-    base-url: ${SAEROK_API_BASE_URL}
-    prefix: /api/v1
-
-unsplash:
-  access-key: ${UNSPLASH_ACCESS_KEY}
-  app-name: ${UNSPLASH_APP_NAME}
-
-
-// ===== resources/application.yml =====
-spring:
-  application:
-    name: saerok-admin
-
-server:
-  port: 8081
-
-oauth:
-  kakao:
-    client-id: ${KAKAO_CLIENT_ID}
-    redirect-uri: ${KAKAO_REDIRECT_URI}
-  apple:
-    client-id: ${APPLE_CLIENT_ID}
-    redirect-uri: ${APPLE_REDIRECT_URI}
-
-saerok:
-  api:
-    base-url: ${SAEROK_API_BASE_URL}
-    prefix: ${SAEROK_API_PREFIX}
-
-unsplash:
-  access-key: ${UNSPLASH_ACCESS_KEY}
-  app-name: ${UNSPLASH_APP_NAME}
-
-
-// ===== resources/static/css/admin-theme.css =====
-:root {
-    color-scheme: light;
-    --font-sans: 'Pretendard', 'Apple SD Gothic Neo', 'Noto Sans KR', sans-serif;
-    --surface-page: #f5f6fa;
-    --surface-primary: #ffffff;
-    --surface-muted: #f1f5f9;
-    --surface-subtle: #e2e8f0;
-    --surface-sidebar: #0f172a;
-    --surface-sidebar-active: rgba(59, 130, 246, 0.18);
-    --surface-sidebar-hover: rgba(59, 130, 246, 0.12);
-    --surface-overlay: rgba(15, 23, 42, 0.75);
-    --surface-overlay-strong: rgba(15, 23, 42, 0.85);
-    --border-subtle: #e2e8f0;
-    --border-strong: rgba(59, 130, 246, 0.4);
-    --shadow-soft: 0 10px 30px rgba(15, 23, 42, 0.08);
-    --shadow-overlay: 0 24px 48px rgba(15, 23, 42, 0.24);
-    --text-primary: #1f2a37;
-    --text-muted: #64748b;
-    --text-inverse: #f8fafc;
-    --accent-primary: #3b82f6;
-    --accent-primary-strong: #1d4ed8;
-    --accent-success: #22c55e;
-    --accent-warning: #f97316;
-    --accent-danger: #ef4444;
-    --radius-sm: 0.5rem;
-    --radius-md: 0.75rem;
-    --radius-lg: 1rem;
-    --radius-xl: 1.5rem;
-    --spacing-xs: 0.375rem;
-    --spacing-sm: 0.75rem;
-    --spacing-md: 1.25rem;
-    --spacing-lg: 2rem;
-    --spacing-xl: 3rem;
-
-    /* 추가: 아바타 이미지 변수 기본값 */
-    --avatar-image: none;
-}
-
-body {
-    font-family: var(--font-sans);
-    background: var(--surface-page);
-    color: var(--text-primary);
-}
-
-p,
-span,
-small,
-label,
-input,
-select,
-textarea,
-button {
-    font-family: inherit;
-}
-
-a { color: var(--accent-primary); }
-a:hover, a:focus { color: var(--accent-primary-strong); }
-
-.app-shell {
-    min-height: 100vh;
-    background: linear-gradient(180deg, rgba(248, 250, 252, 0.98) 0%, rgba(248, 250, 252, 0.6) 100%);
-}
-
-.app-sidebar {
-    width: 260px;
-    min-height: 100vh;
-    background: var(--surface-sidebar);
-    color: var(--text-inverse);
-    padding: var(--spacing-lg) var(--spacing-md);
-    box-shadow: var(--shadow-soft);
-}
-
-.app-sidebar__brand {
-    display: flex;
-    align-items: center;
-    gap: 0.75rem;
-    margin-bottom: var(--spacing-lg);
-}
-.app-sidebar__title { font-size: 1.25rem; font-weight: 700; }
-
-.app-sidebar__nav { display: flex; flex-direction: column; gap: 0.5rem; }
-
-.app-sidebar__link {
-    display: flex; align-items: center; gap: 0.75rem;
-    padding: 0.75rem 1rem; border-radius: var(--radius-md);
-    color: rgba(248, 250, 252, 0.74);
-    font-weight: 500; text-decoration: none;
-    transition: background 0.2s ease, color 0.2s ease;
-}
-.app-sidebar__link:hover, .app-sidebar__link:focus { background: var(--surface-sidebar-hover); color: var(--text-inverse); }
-.app-sidebar__link.is-active {
-    background: var(--surface-sidebar-active); color: var(--text-inverse);
-    border-left: 4px solid var(--accent-primary);
-    padding-left: calc(1rem - 4px + 0.25rem);
-}
-.app-sidebar__link.is-disabled { color: rgba(248, 250, 252, 0.35); cursor: not-allowed; opacity: 0.65; }
-
-.app-sidebar__footer {
-    margin-top: auto; padding-top: var(--spacing-lg);
-    font-size: 0.85rem; color: rgba(248, 250, 252, 0.5);
-}
-
-.app-content {
-    flex-grow: 1; min-height: 100vh;
-    display: flex; flex-direction: column; background: transparent;
-}
-@media (min-width: 992px) { .app-content { margin-left: 260px; } }
-
-.app-main { padding: 1.5rem 1.5rem 2.5rem; }
-@media (min-width: 992px) { .app-main { padding: 2rem 2.5rem 3.5rem; } }
-
-.card-elevated {
-    border: none !important; background: var(--surface-primary);
-    border-radius: var(--radius-lg); box-shadow: var(--shadow-soft);
-}
-.card-elevated .card-header, .card-elevated .card-body { border: none; background: transparent; }
-
-.section-heading { font-weight: 600; font-size: 2rem; }
-
-.badge-soft { background: rgba(59,130,246,0.15) !important; color: var(--accent-primary-strong) !important; }
-
-/* ===== Environment badge ===== */
-.environment-badge {
-    display: inline-flex; align-items: center; gap: .4ch;
-    padding: 0.22rem 0.66rem; border-radius: 999px;
-    font-size: .78rem; font-weight: 700; letter-spacing: -.01em;
-    line-height: 1.15; white-space: nowrap;
-    text-shadow: 0 1px 0 rgba(0,0,0,.35);
-}
-.environment-badge--local{--badge-start:#06b6d4;--badge-end:#3b82f6;--badge-ring:rgba(56,189,248,.55);--badge-glow:rgba(56,189,248,.32);color:#fff;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
-.environment-badge--dev  {--badge-start:#e879f9;--badge-end:#8b5cf6;--badge-ring:rgba(232,121,249,.55);--badge-glow:rgba(139,92,246,.32);color:#fff;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
-.environment-badge--prod {--badge-start:#a3e635;--badge-end:#22c55e;--badge-ring:rgba(163,230,53,.55);--badge-glow:rgba(34,197,94,.30);color:#0b1b13;background:linear-gradient(90deg,var(--badge-start)0%,var(--badge-end)100%);box-shadow:0 0 0 1px var(--badge-ring) inset,0 6px 18px var(--badge-glow);}
-@media (prefers-color-scheme: light){
-    .app-content .environment-badge--local,.card .environment-badge--local{box-shadow:0 0 0 1px rgba(56,189,248,.35) inset;}
-    .app-content .environment-badge--dev,.card .environment-badge--dev{box-shadow:0 0 0 1px rgba(232,121,249,.35) inset;}
-    .app-content .environment-badge--prod,.card .environment-badge--prod{box-shadow:0 0 0 1px rgba(163,230,53,.35) inset;}
-}
-
-.table-modern thead th {
-    background: var(--surface-muted); font-size: 0.875rem; font-weight: 600;
-    color: var(--text-muted); border-bottom: 1px solid var(--border-subtle);
-}
-.table-modern tbody tr:hover { background: rgba(59,130,246,0.06); }
-.table-modern tbody td { vertical-align: middle; }
-.table-responsive { border-radius: var(--radius-lg); overflow: hidden; }
-.table-responsive .table { margin-bottom: 0; }
-.table-shell { border-radius: var(--radius-lg); overflow: hidden; border: 1px solid var(--border-subtle); }
-.table-shell .table { margin-bottom: 0; }
-
-.btn-icon {
-    width: 2.5rem; height: 2.5rem;
-    display: inline-flex; align-items: center; justify-content: center;
-    border-radius: var(--radius-md);
-}
-
-.status-dot { width: 10px; height: 10px; border-radius: 999px; display: inline-block; margin-right: 0.5rem; }
-.status-active { background: var(--accent-success); }
-.status-pending{ background: var(--accent-warning); }
-.status-danger { background: var(--accent-danger); }
-.status-muted  { background: rgba(148, 163, 184, 1); }
-
-.form-control::placeholder { color: rgba(148,163,184,0.9); }
-
-.breadcrumb-item + .breadcrumb-item::before {
-    content: "\f285"; font-family: "Bootstrap-icons"; font-size: 0.75rem;
-}
-
-.tooltip-bubble .tooltip-inner {
-    background-color: #1f2937; color: #ffffff;
-    border-radius: var(--radius-md); box-shadow: var(--shadow-soft);
-    padding: 0.5rem 0.75rem;
-}
-.tooltip-bubble .tooltip-arrow::before {
-    border-width: 0.5rem 0.5rem 0; border-top-color: #1f2937;
-    filter: drop-shadow(0 6px 6px rgba(15, 23, 42, 0.2));
-}
-
-.upcoming-feature { opacity: 0.55; cursor: not-allowed !important; }
-.upcoming-feature:hover, .upcoming-feature:focus { opacity: 0.55; }
-
-.tooltip-wrapper { display: block; width: 100%; cursor: not-allowed; }
-.tooltip-wrapper .btn { pointer-events: none; }
-
-.media-thumb { border-radius: var(--radius-lg); object-fit: cover; display: block; }
-.media-thumb--square-lg { width: 72px; height: 72px; }
-
-.text-truncate-md { max-width: 260px; }
-
-.collection-image-thumbnail {
-    max-height: 320px; object-fit: cover; width: 100%; border-radius: var(--radius-xl);
-}
-.collection-image-modal { position: fixed; inset: 0; display: flex; align-items: center; justify-content: center; z-index: 1080; }
-.collection-image-modal.d-none { display: none !important; }
-.collection-image-modal .collection-image-backdrop { position: absolute; inset: 0; background: var(--surface-overlay); }
-.collection-image-modal .collection-image-dialog { position: relative; max-width: min(90vw, 1024px); max-height: 90vh; box-shadow: var(--shadow-overlay); }
-.collection-image-modal .collection-image-dialog img { width: 100%; height: auto; max-height: 90vh; object-fit: contain; border-radius: var(--radius-xl); }
-.collection-image-modal .btn-close {
-    position: absolute; top: -16px; right: -16px; background-color: var(--surface-overlay-strong);
-    border-radius: 999px; padding: 0.75rem; opacity: 1;
-}
-
-.collection-note-highlight {
-    background: rgba(59, 130, 246, 0.08);
-    border: 1px solid rgba(59, 130, 246, 0.2);
-    border-radius: var(--radius-xl);
-    padding: var(--spacing-md);
-}
-.note-label {
-    font-size: 0.75rem; letter-spacing: 0.08em; text-transform: uppercase;
-    color: var(--accent-primary-strong); font-weight: 600;
-}
-.collection-one-line-note { white-space: pre-line; font-weight: 600; font-size: 1rem; }
-.collection-detail-meta dl { font-size: 0.9rem; }
-
-.surface-muted { background: var(--surface-muted) !important; color: var(--text-primary); }
-.rounded-lg { border-radius: var(--radius-lg) !important; }
-
-.profile-avatar {
-    width: 64px; height: 64px; border-radius: 50%;
-    background: rgba(148, 163, 184, 0.35);
-    display: flex; align-items: center; justify-content: center;
-    color: var(--text-muted); font-size: 1.5rem;
-    background-image: var(--avatar-image, none);
-    background-size: cover; background-position: center; background-repeat: no-repeat;
-}
-
-.table-empty-state { padding: 3rem 0; color: var(--text-muted); }
-
-.metric-card { transition: transform 0.2s ease, box-shadow 0.2s ease; }
-.metric-card--interactive { cursor: pointer; }
-.metric-card--interactive:hover, .metric-card--interactive:focus-visible {
-    transform: translateY(-4px); box-shadow: var(--shadow-soft);
-}
-.metric-card--interactive:focus-visible { outline: 2px solid var(--accent-primary); outline-offset: 4px; }
-
-.report-card { border: none; background: transparent; }
-.report-card + .report-card { border-top: 1px solid var(--border-subtle); }
-.report-card__link {
-    display: block; padding: var(--spacing-md); border-radius: var(--radius-lg);
-    transition: background-color 0.2s ease, box-shadow 0.2s ease, transform 0.2s ease;
-}
-.report-card__link:hover, .report-card__link:focus-visible {
-    background: var(--surface-muted); box-shadow: var(--shadow-soft); transform: translateY(-2px);
-}
-.report-card__link:focus-visible { outline: 2px solid var(--accent-primary); outline-offset: 2px; }
-.report-card:hover .report-card__link, .report-card:focus-within .report-card__link {
-    background: var(--surface-muted); box-shadow: var(--shadow-soft);
-}
-.report-card__footer { padding: var(--spacing-sm) var(--spacing-md) var(--spacing-md); border-color: var(--border-subtle) !important; }
-
-.audit-log-card { border: none; background: transparent; }
-.audit-log-card + .audit-log-card { border-top: 1px solid var(--border-subtle); }
-.audit-log-card__content { padding: var(--spacing-md); display: flex; flex-direction: column; gap: var(--spacing-md); }
-.audit-log-details { display: block; }
-.audit-log-details__summary {
-    display: inline-flex; align-items: center; gap: var(--spacing-xs);
-    cursor: pointer; font-weight: 600; color: var(--accent-primary); text-decoration: none;
-}
-.audit-log-details__summary:hover, .audit-log-details__summary:focus-visible { color: var(--accent-primary-strong); outline: none; }
-.audit-log-details__summary::-webkit-details-marker { display: none; }
-.audit-log-details__summary::after { content: '\25BC'; font-size: 0.75rem; transition: transform 0.2s ease; }
-.audit-log-details[open] .audit-log-details__summary::after { transform: rotate(-180deg); }
-.audit-log-details__content { margin-top: var(--spacing-sm); }
-
-.offcanvas .app-sidebar__link { color: var(--text-primary); }
-.offcanvas .app-sidebar__link.is-disabled { color: rgba(100, 116, 139, 0.6); }
-.offcanvas .app-sidebar__link.is-active {
-    color: var(--accent-primary); border-left: none; background: rgba(59, 130, 246, 0.12);
-}
-
-.text-muted-soft { color: rgba(100, 116, 139, 0.85) !important; }
-.alert-elevated { border-radius: var(--radius-md); border: none; box-shadow: var(--shadow-soft); }
-.card-header-tight { padding: var(--spacing-sm) var(--spacing-md); border-bottom: 1px solid rgba(15, 23, 42, 0.06); }
-.card-body-comfy { padding: var(--spacing-md); }
-.flex-gap-sm { gap: var(--spacing-sm); }
-.flex-gap-md { gap: var(--spacing-md); }
-.btn-ghost { background: transparent; border: 1px solid var(--border-subtle); color: var(--text-primary); }
-.btn-ghost:hover, .btn-ghost:focus { background: var(--surface-muted); }
-.shadow-soft { box-shadow: var(--shadow-soft) !important; }
-.border-subtle { border: 1px solid var(--border-subtle) !important; }
-.bg-overlay-muted { background: rgba(15, 23, 42, 0.04) !important; }
-.th-text-muted { color: var(--text-muted) !important; }
-.form-legend { font-size: 0.875rem; font-weight: 600; color: var(--text-muted); text-transform: uppercase; letter-spacing: 0.08em; }
-.app-section-title { font-size: 1.125rem; font-weight: 600; }
-
-/* ===== Service Insight ===== */
-.service-insight {
-    display: flex; flex-direction: column; gap: var(--spacing-lg);
-}
-.service-insight__container {
-    /* ← 여기서 좌우 스크롤 분리용 컨테이너 고정 높이 + 내부 스크롤 */
-    display: grid;
-    grid-template-columns: 280px 1fr;
-    gap: var(--spacing-lg);
-    overflow: hidden;          /* 내부 컬럼만 스크롤 */
-    min-height: 0;             /* 그리드 자식 overflow 동작 보장 */
-    /* 높이는 JS가 런타임에 직접 설정 (뷰포트-오프셋 계산) */
-}
-@media (min-width: 992px) { .service-insight__container { grid-template-columns: 280px 1fr; } }
-@media (max-width: 991.98px) { .service-insight__container { grid-template-columns: 1fr; } }
-
-/* 좌우 컬럼을 각각 스크롤 */
-.service-insight__metrics,
-.service-insight__chart {
-    height: 100%;          /* 컨테이너 높이를 채움 (JS가 container 높이 세팅) */
-    overflow-y: auto;      /* 각자 스크롤 */
-    min-height: 0;
-}
-
-.service-insight__metrics { display: flex; flex-direction: column; gap: var(--spacing-md); }
-.service-insight__metrics-header { display: flex; flex-direction: column; gap: 0.25rem; }
-
-.service-insight__metric-list { display: flex; flex-direction: column; gap: 0.75rem; }
-.service-insight__metric-button {
-    width: 100%; text-align: left; background: transparent;
-    border: 1px solid var(--border-subtle); border-radius: var(--radius-lg);
-    padding: var(--spacing-sm) var(--spacing-md);
-    display: flex; flex-direction: column; gap: 0.35rem;
-    color: inherit; transition: border-color 0.2s, box-shadow 0.2s, transform 0.2s;
-}
-.service-insight__metric-button:hover,
-.service-insight__metric-button:focus-visible {
-    border-color: var(--accent-primary);
-    box-shadow: 0 12px 32px rgba(59,130,246,0.12);
-    transform: translateY(-1px); outline: none;
-}
-.service-insight__metric-button.is-active {
-    border-color: var(--accent-primary);
-    background: rgba(59,130,246,0.08);
-    box-shadow: 0 16px 32px rgba(59,130,246,0.18);
-}
-.service-insight__metric-label { font-weight: 600; }
-.service-insight__metric-badge { align-self: flex-start; }
-
-.service-insight__chart { min-width: 0; }
-
-.service-insight__chart-surface { position: relative; height: 360px; }
-@media (min-width: 1200px) { .service-insight__chart-surface { height: 420px; } }
-.service-insight__chart-surface canvas { width: 100% !important; height: 100%; display: block; }
-
-.service-insight__unit { font-weight: 600; }
-.service-insight__empty-state {
-    border: 1px dashed var(--border-subtle); border-radius: var(--radius-lg);
-    background: rgba(15, 23, 42, 0.02);
-}
-
-/* 질문형 인사이트(호환) */
-.siq-grid { display: grid; gap: var(--spacing-lg); }
-@media (min-width: 992px) { .siq-grid--two { grid-template-columns: 1fr 1fr; } }
-.siq-card__surface { position: relative; height: 360px; }
-@media (min-width: 1200px) { .siq-card__surface { height: 420px; } }
-.siq-card__surface canvas { width: 100% !important; height: 100%; display: block; }
-
-/* ===== DnD 플롯/그룹 UI ===== */
-.si-sidebar { display: flex; flex-direction: column; gap: var(--spacing-md); }
-.si-sidebar__header { display: flex; align-items: baseline; justify-content: space-between; padding: 0 var(--spacing-sm); }
-.si-sidebar__title { font-weight: 700; }
-.si-sidebar__hint  { color: var(--text-muted); font-size: 0.85rem; }
-.si-groups { display: flex; flex-direction: column; gap: var(--spacing-sm); }
-
-.si-group { border: 1px solid var(--border-subtle); border-radius: var(--radius-lg); background: var(--surface-primary); overflow: hidden; }
-.si-group[open] .si-group__summary { border-bottom: 1px solid var(--border-subtle); }
-.si-group__summary {
-    display: flex; align-items: center; justify-content: space-between; gap: var(--spacing-sm);
-    padding: var(--spacing-sm) var(--spacing-md); cursor: pointer;
-}
-.si-group__title { font-weight: 600; }
-.si-group__tools { display: inline-flex; gap: 0.25rem; }
-.si-group__btn {
-    border: 1px solid var(--border-subtle); background: transparent; border-radius: var(--radius-sm);
-    padding: 0.25rem 0.5rem; font-size: 0.8rem; color: var(--text-muted);
-}
-.si-group__btn:hover { color: var(--accent-primary); border-color: var(--accent-primary); }
-.si-group__body { padding: var(--spacing-sm) var(--spacing-md); }
-.si-chip-list { display: flex; flex-direction: column; gap: 0.5rem; }
-
-.si-chip {
-    display: flex; align-items: center; gap: 0.6rem;
-    border: 1px dashed var(--border-subtle);
-    background: rgba(15,23,42,0.02);
-    border-radius: var(--radius-md);
-    padding: 0.45rem 0.6rem;
-    cursor: grab; user-select: none;
-}
-.si-chip:active { cursor: grabbing; }
-.si-chip:hover { border-color: var(--accent-primary); background: rgba(59,130,246,0.06); }
-.si-chip__dot { width: 10px; height: 10px; border-radius: 999px; flex: 0 0 10px; }
-.si-chip__label { flex: 1 1 auto; white-space: nowrap; overflow: hidden; text-overflow: ellipsis; font-weight: 600; }
-.si-chip__meta { color: var(--text-muted); font-size: 0.8rem; }
-.si-grip { font-family: ui-monospace, SFMono-Regular, Menlo, monospace; opacity: .6; }
-
-.si-plots { display: flex; flex-direction: column; gap: var(--spacing-md); }
-.si-plots__toolbar { display: flex; justify-content: space-between; align-items: center; padding: 0 0.25rem; }
-.si-size { display: inline-flex; gap: 0.4rem; }
-.si-size__btn.is-active { border-color: var(--accent-primary); color: var(--accent-primary); }
-
-.si-plot-grid { display: grid; gap: var(--spacing-lg); grid-template-columns: 1fr; }
-@media (min-width: 1200px) { .si-plot-grid { grid-template-columns: 1fr 1fr; } }
-
-.si-plot-card {
-    border: 1px solid var(--border-subtle); border-radius: var(--radius-lg);
-    background: var(--surface-primary); box-shadow: var(--shadow-soft); overflow: hidden;
-}
-.si-plot__header {
-    display: flex; align-items: center; justify-content: space-between; gap: var(--spacing-sm);
-    padding: var(--spacing-sm) var(--spacing-md); border-bottom: 1px solid var(--border-subtle);
-}
-.si-plot__title { font-weight: 600; }
-.si-plot__tools { display: inline-flex; gap: 0.35rem; }
-
-.si-plot__datasets {
-    display: flex; flex-wrap: wrap; gap: 0.35rem;
-    padding: 0.5rem var(--spacing-md);
-    border-bottom: 1px dashed var(--border-subtle);
-    background: rgba(15,23,42,0.02);
-}
-.si-ds-chip {
-    display: inline-flex; align-items: center; gap: 0.4rem;
-    border: 1px solid var(--border-subtle);
-    border-radius: 999px; padding: 0.2rem 0.5rem;
-    font-size: 0.85rem; background: #fff; cursor: grab;
-}
-.si-ds-chip:active { cursor: grabbing; }
-.si-ds-chip__dot { width: 8px; height: 8px; border-radius: 999px; }
-.si-ds-chip__rm { border: none; background: transparent; color: var(--text-muted); padding: 0; line-height: 1; font-size: 1rem; cursor: pointer; }
-.si-ds-chip__rm:hover { color: var(--accent-danger); }
-
-.si-dropzone {
-    display: flex; align-items: center; justify-content: center;
-    padding: var(--spacing-md);
-    border: 2px dashed var(--border-subtle);
-    border-radius: var(--radius-lg);
-    color: var(--text-muted); font-weight: 600;
-    transition: border-color .15s ease, background-color .15s ease;
-}
-.si-dropzone.is-dragover { border-color: var(--accent-primary); background: rgba(59,130,246,0.06); }
-
-.si-plot__surface { position: relative; }
-.si-plots[data-size="compact"] .si-plot__surface { height: 240px; }
-.si-plots[data-size="cozy"]    .si-plot__surface { height: 300px; }
-.si-plots[data-size="roomy"]   .si-plot__surface { height: 420px; }
-.si-plot__surface canvas { width: 100% !important; height: 100%; display: block; }
-
-.si-empty {
-    position: absolute; inset: 0;
-    display: flex; align-items: center; justify-content: center;
-    color: var(--text-muted); pointer-events: none;
-}
-
-/* ===== Role management ===== */
-.role-tab-nav {
-    display: flex;
-    flex-wrap: wrap;
-    gap: 0.75rem;
-}
-.role-tab {
-    flex: 1;
-    min-width: 200px;
-    text-decoration: none;
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-lg);
-    padding: 1rem 1.25rem;
-    color: inherit;
-    transition: all 0.2s ease;
-    background: #fff;
-}
-.role-tab.is-active {
-    border-color: var(--accent-primary);
-    box-shadow: 0 10px 30px rgba(15, 23, 42, 0.08);
-}
-.role-tab.is-disabled {
-    cursor: not-allowed;
-    opacity: 0.6;
-    background: var(--surface-muted);
-}
-.role-pill-wrap,
-.role-chip-row {
-    display: flex;
-    flex-wrap: wrap;
-    gap: 0.75rem;
-}
-.role-pill,
-.role-chip {
-    border: 1px solid var(--border-subtle);
-    border-radius: 999px;
-    padding: 0.35rem 0.85rem;
-    background: var(--surface-muted);
-    font-size: 0.9rem;
-    display: inline-flex;
-    align-items: center;
-    gap: 0.35rem;
-    line-height: 1.2;
-}
-.role-chip--action {
-    cursor: pointer;
-    background: var(--surface-primary);
-    border-color: rgba(59, 130, 246, 0.24);
-    box-shadow: 0 6px 18px rgba(15, 23, 42, 0.08);
-    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
-}
-.role-chip--action:hover,
-.role-chip--action:focus-visible {
-    border-color: var(--accent-primary);
-    box-shadow: 0 12px 30px rgba(59, 130, 246, 0.16);
-    transform: translateY(-1px);
-    outline: none;
-}
-.role-chip__cta {
-    font-size: 0.75rem;
-    color: var(--accent-primary);
-    text-transform: uppercase;
-    letter-spacing: 0.06em;
-    font-weight: 600;
-    display: inline-flex;
-    align-items: center;
-    gap: 0.15rem;
-}
-.role-permission-list {
-    list-style: none;
-    padding: 0;
-    margin: 0;
-    display: flex;
-    flex-direction: column;
-    gap: 0.75rem;
-}
-.role-permission-trigger-grid {
-    display: grid;
-    gap: 1rem;
-    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
-}
-.role-permission-trigger {
-    width: 100%;
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-xl);
-    padding: 1.15rem 1.25rem;
-    background: var(--surface-primary);
-    display: flex;
-    flex-direction: column;
-    gap: 0.85rem;
-    text-align: left;
-    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
-}
-.role-permission-trigger:hover,
-.role-permission-trigger:focus-visible {
-    border-color: var(--accent-primary);
-    box-shadow: var(--shadow-soft);
-    transform: translateY(-2px);
-    outline: none;
-}
-.role-permission-trigger__title {
-    font-size: 1.05rem;
-    font-weight: 600;
-}
-.role-permission-trigger__meta {
-    display: flex;
-    justify-content: space-between;
-    align-items: center;
-    gap: 0.5rem;
-    font-size: 0.85rem;
-}
-.role-permission-trigger__cta {
-    display: inline-flex;
-    align-items: center;
-    gap: 0.15rem;
-    font-weight: 600;
-    color: var(--accent-primary);
-}
-.role-permission-modal {
-    border-radius: var(--radius-xl);
-    border: none;
-    box-shadow: var(--shadow-overlay);
-    overflow: hidden;
-}
-.role-permission-modal__eyebrow {
-    font-size: 0.75rem;
-    font-weight: 700;
-    letter-spacing: 0.12em;
-    color: var(--accent-primary-strong);
-    margin-bottom: 0.35rem;
-}
-.role-permission-modal__description {
-    font-size: 0.95rem;
-}
-.permission-modal-list {
-    list-style: none;
-    margin: 0;
-    padding: 0;
-    display: flex;
-    flex-direction: column;
-    gap: 0.85rem;
-}
-.permission-modal-item {
-    border: 1px solid rgba(59, 130, 246, 0.25);
-    border-radius: var(--radius-lg);
-    padding: 0.85rem 1rem;
-    background: linear-gradient(135deg, rgba(59, 130, 246, 0.08), rgba(15, 23, 42, 0.02));
-    box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.4);
-}
-.permission-modal-description {
-    font-weight: 600;
-    font-size: 1rem;
-    margin-bottom: 0.35rem;
-}
-.permission-modal-key {
-    display: inline-flex;
-    align-items: center;
-    gap: 0.25rem;
-    font-family: 'JetBrains Mono', 'SFMono-Regular', Consolas, monospace;
-    font-size: 0.75rem;
-    letter-spacing: 0.08em;
-    text-transform: uppercase;
-    color: var(--text-muted);
-    background: rgba(15, 23, 42, 0.05);
-    border-radius: 999px;
-    padding: 0.1rem 0.75rem;
-}
-.permission-modal-empty {
-    border: 1px dashed var(--border-subtle);
-    border-radius: var(--radius-lg);
-    padding: 1rem;
-    color: var(--text-muted);
-    text-align: center;
-}
-.team-member-grid {
-    display: grid;
-    gap: 0.85rem;
-    grid-template-columns: repeat(auto-fill, minmax(220px, 1fr));
-}
-.team-member-card {
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-lg);
-    padding: 0.75rem;
-    display: flex;
-    gap: 0.85rem;
-    text-decoration: none;
-    color: inherit;
-    transition: border-color 0.2s ease, box-shadow 0.2s ease;
-}
-.team-member-card.is-active {
-    border-color: var(--accent-primary);
-    box-shadow: var(--shadow-soft);
-}
-.team-member-card__avatar {
-    width: 48px;
-    height: 48px;
-    border-radius: 999px;
-    background: var(--surface-muted);
-    display: inline-flex;
-    align-items: center;
-    justify-content: center;
-    font-weight: 600;
-}
-.team-member-card__body {
-    flex: 1;
-    min-width: 0;
-}
-.role-editor-panel summary {
-    cursor: pointer;
-    font-weight: 600;
-}
-.permission-grid {
-    display: grid;
-    gap: 0.75rem;
-    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
-}
-.role-option,
-.permission-option {
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-md);
-    padding: 0.65rem;
-    gap: 0.5rem;
-    align-items: flex-start;
-}
-.role-template-list {
-    display: flex;
-    flex-direction: column;
-    gap: 0.5rem;
-}
-.role-template-item {
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-md);
-    padding: 0.75rem;
-    text-decoration: none;
-    color: inherit;
-    display: block;
-}
-.role-template-item.is-active {
-    border-color: var(--accent-primary);
-    background: rgba(59, 130, 246, 0.08);
-}
-
-
-// ===== resources/static/css/ads.css =====
-:root {
-    color-scheme: light;
-}
-
-.ads-page {
-    display: flex;
-    flex-direction: column;
-    gap: 1.75rem;
-}
-
-.ads-page-header h1 {
-    font-weight: 700;
-    color: #0f172a;
-}
-
-.ads-page-header p {
-    color: #64748b;
-}
-
-.ads-summary-row {
-    --ads-card-radius: 1.25rem;
-}
-
-.ads-summary-card {
-    position: relative;
-    border: 0;
-    border-radius: var(--ads-card-radius);
-    background: linear-gradient(135deg, var(--ads-card-start, #eef2ff), var(--ads-card-end, #dbeafe));
-    box-shadow: 0 18px 40px rgba(15, 23, 42, 0.12);
-    overflow: hidden;
-    transition: transform 0.2s ease, box-shadow 0.2s ease;
-}
-
-.ads-summary-card:hover {
-    transform: translateY(-4px);
-    box-shadow: 0 22px 48px rgba(15, 23, 42, 0.16);
-}
-
-.ads-summary-card::after {
-    content: "";
-    position: absolute;
-    inset: 0;
-    background: radial-gradient(circle at top right, rgba(255, 255, 255, 0.45), transparent 55%);
-    pointer-events: none;
-}
-
-.ads-summary-card--ads {
-    --ads-card-start: #eef2ff;
-    --ads-card-end: #e0f2fe;
-    --ads-icon-bg: rgba(79, 70, 229, 0.16);
-    --ads-icon-color: #4338ca;
-}
-
-.ads-summary-card--slots {
-    --ads-card-start: #f1f5f9;
-    --ads-card-end: #d9f99d;
-    --ads-icon-bg: rgba(34, 197, 94, 0.16);
-    --ads-icon-color: #15803d;
-}
-
-.ads-summary-card--placements {
-    --ads-card-start: #fef3c7;
-    --ads-card-end: #e0e7ff;
-    --ads-icon-bg: rgba(245, 158, 11, 0.18);
-    --ads-icon-color: #b45309;
-}
-
-.ads-summary-icon {
-    width: 3rem;
-    height: 3rem;
-    border-radius: 50%;
-    display: flex;
-    align-items: center;
-    justify-content: center;
-    background-color: var(--ads-icon-bg, rgba(15, 23, 42, 0.1));
-    color: var(--ads-icon-color, #1d4ed8);
-    font-size: 1.5rem;
-    margin-bottom: 1rem;
-}
-
-.ads-summary-label {
-    font-weight: 600;
-    color: #334155;
-    margin-bottom: 0.25rem;
-}
-
-.ads-summary-value {
-    font-size: 2.25rem;
-    font-weight: 700;
-    color: #0f172a;
-}
-
-.ads-tabs {
-    border: 0;
-    background: rgba(226, 232, 240, 0.6);
-    padding: 0.4rem;
-    border-radius: 999px;
-    display: inline-flex;
-    gap: 0.25rem;
-}
-
-.ads-tabs .nav-link {
-    border: 0;
-    border-radius: 999px;
-    color: #64748b;
-    font-weight: 500;
-    padding: 0.55rem 1.4rem;
-    transition: color 0.2s ease, background 0.2s ease, box-shadow 0.2s ease;
-}
-
-.ads-tabs .nav-link:hover {
-    color: #1e293b;
-}
-
-.ads-tabs .nav-link.active {
-    background: linear-gradient(135deg, #6366f1, #22d3ee);
-    color: #ffffff;
-    box-shadow: 0 12px 30px rgba(14, 165, 233, 0.35);
-}
-
-.ads-panel {
-    border: 0;
-    border-radius: 1.25rem;
-    box-shadow: 0 18px 36px rgba(15, 23, 42, 0.12);
-    background-color: #ffffff;
-}
-
-.ads-panel .card-header {
-    border: 0;
-    background: linear-gradient(180deg, rgba(148, 163, 184, 0.18), rgba(255, 255, 255, 0));
-    padding: 1.5rem 1.5rem 1.1rem;
-}
-
-.ads-panel .card-body {
-    padding: 1.6rem 1.6rem 1.9rem;
-}
-
-.ads-panel .table-responsive {
-    border-radius: 1rem;
-}
-
-.ads-table thead th {
-    background: #f8fafc;
-    border-bottom: none;
-    font-weight: 600;
-    color: #475569;
-}
-
-.ads-table tbody td {
-    border-top-color: rgba(226, 232, 240, 0.7);
-    color: #1f2937;
-}
-
-.ads-table tbody tr:hover {
-    background: rgba(226, 232, 240, 0.35);
-}
-
-.ads-thumb-surface {
-    border-radius: 1rem;
-    overflow: hidden;
-    border: 1px solid rgba(148, 163, 184, 0.35);
-    box-shadow: 0 12px 28px rgba(15, 23, 42, 0.12);
-    background: #ffffff;
-}
-
-.ads-thumb-surface--lg {
-    width: 120px;
-}
-
-.ads-thumb-surface--sm {
-    width: 64px;
-}
-
-.ads-thumb-placeholder {
-    display: flex;
-    align-items: center;
-    justify-content: center;
-    border-radius: 1rem;
-    background: linear-gradient(135deg, rgba(226, 232, 240, 0.6), rgba(148, 163, 184, 0.3));
-    border: 1px dashed rgba(148, 163, 184, 0.6);
-    color: #94a3b8;
-    box-shadow: inset 0 0 0 1px rgba(255, 255, 255, 0.4);
-}
-
-.ads-thumb-placeholder--lg {
-    width: 120px;
-    height: 90px;
-}
-
-.ads-thumb-placeholder--sm {
-    width: 64px;
-    height: 64px;
-}
-
-.ads-thumb-placeholder i {
-    font-size: 1.6rem;
-}
-
-.ads-form-page {
-    max-width: 780px;
-    margin: 0 auto;
-}
-
-.ads-form-card {
-    border: 0;
-    border-radius: 1.5rem;
-    background: linear-gradient(180deg, #ffffff 0%, #f5f7ff 100%);
-    box-shadow: 0 28px 56px rgba(15, 23, 42, 0.15);
-}
-
-.ads-form-card__header {
-    border-bottom: 0;
-    padding: 1.85rem 1.85rem 0;
-    background: transparent;
-}
-
-.ads-form-card__body {
-    padding: 1.85rem;
-}
-
-.ads-form-card__body .form-control,
-.ads-form-card__body .form-select,
-.ads-form-card__body .form-range {
-    border-radius: 0.75rem;
-    border-color: rgba(148, 163, 184, 0.45);
-    box-shadow: none;
-    transition: border-color 0.2s ease, box-shadow 0.2s ease;
-}
-
-.ads-slider-group .form-range {
-    accent-color: #6366f1;
-}
-
-.ads-form-card__body .form-control:focus,
-.ads-form-card__body .form-select:focus,
-.ads-form-card__body .form-range:focus {
-    border-color: #6366f1;
-    box-shadow: 0 0 0 0.25rem rgba(99, 102, 241, 0.18);
-}
-
-.ads-upload-area {
-    border-radius: 1rem;
-    border: 1px dashed rgba(99, 102, 241, 0.25);
-    background: rgba(226, 232, 240, 0.45);
-    padding: 1.1rem;
-}
-
-.ads-image-preview {
-    width: 200px;
-    border-radius: 1rem;
-    overflow: hidden;
-    border: 1px solid rgba(99, 102, 241, 0.25);
-    box-shadow: 0 18px 34px rgba(15, 23, 42, 0.14);
-    background: linear-gradient(135deg, rgba(99, 102, 241, 0.15), rgba(14, 165, 233, 0.1));
-}
-
-.ads-upload-status {
-    color: #475569;
-}
-
-.ads-form-actions .btn {
-    min-width: 120px;
-    border-radius: 999px;
-}
-
-.ads-weight-group {
-    gap: 0.4rem;
-}
-
-.ads-weight-group .btn {
-    border-radius: 999px;
-    border-width: 2px;
-    font-weight: 600;
-    color: #475569;
-    background: rgba(148, 163, 184, 0.12);
-}
-
-.ads-weight-group .btn:hover {
-    color: #111827;
-}
-
-.ads-weight-group .btn-check:checked + .btn {
-    color: #ffffff;
-    background: linear-gradient(135deg, #6366f1, #22d3ee);
-    border-color: transparent;
-    box-shadow: 0 12px 28px rgba(99, 102, 241, 0.35);
-}
-
-.ads-status-switch .form-check-input {
-    width: 3.25rem;
-    height: 1.6rem;
-    background-color: #e2e8f0;
-    border: none;
-}
-
-.ads-status-switch .form-check-input:focus {
-    box-shadow: 0 0 0 0.2rem rgba(99, 102, 241, 0.2);
-}
-
-.ads-status-switch .form-check-input:checked {
-    background-color: #6366f1;
-}
-
-.ads-status-switch .form-check-label {
-    font-weight: 600;
-    color: #334155;
-}
-
-.ads-panel .badge {
-    border-radius: 999px;
-    padding: 0.45rem 0.9rem;
-    font-weight: 600;
-}
-
-.ads-period-badge,
-.ads-status-badge {
-    display: inline-flex;
-    align-items: center;
-    border-radius: 999px;
-    padding: 0.35rem 0.75rem;
-    font-size: 0.78rem;
-    font-weight: 600;
-    letter-spacing: 0.02em;
-}
-
-.ads-status-badge {
-    font-size: 0.8rem;
-}
-
-.ads-priority-badge {
-    --ads-priority-bg: rgba(226, 232, 240, 0.85);
-    --ads-priority-border: rgba(148, 163, 184, 0.45);
-    --ads-priority-color: #334155;
-    --ads-priority-shadow: 0 12px 24px rgba(148, 163, 184, 0.18);
-    --ads-priority-shadow-hover: 0 16px 32px rgba(148, 163, 184, 0.24);
-    display: inline-flex;
-    align-items: center;
-    justify-content: center;
-    min-width: 3.5rem;
-    padding: 0.45rem 1.15rem;
-    border-radius: 999px;
-    font-size: 0.85rem;
-    font-weight: 700;
-    letter-spacing: 0.01em;
-    text-transform: none;
-    background: var(--ads-priority-bg);
-    color: var(--ads-priority-color);
-    border: 1px solid var(--ads-priority-border);
-    box-shadow: var(--ads-priority-shadow);
-    transition: transform 0.2s ease, box-shadow 0.2s ease;
-}
-
-.ads-priority-badge:hover {
-    transform: translateY(-2px);
-    box-shadow: var(--ads-priority-shadow-hover);
-}
-
-.ads-priority-badge--very-low {
-    --ads-priority-bg: rgba(148, 163, 184, 0.22);
-    --ads-priority-border: rgba(148, 163, 184, 0.38);
-    --ads-priority-color: #475569;
-    --ads-priority-shadow: 0 12px 26px rgba(148, 163, 184, 0.26);
-    --ads-priority-shadow-hover: 0 16px 34px rgba(148, 163, 184, 0.3);
-}
-
-.ads-priority-badge--low {
-    --ads-priority-bg: rgba(110, 231, 183, 0.24);
-    --ads-priority-border: rgba(16, 185, 129, 0.32);
-    --ads-priority-color: #047857;
-    --ads-priority-shadow: 0 12px 26px rgba(16, 185, 129, 0.28);
-    --ads-priority-shadow-hover: 0 16px 34px rgba(16, 185, 129, 0.32);
-}
-
-.ads-priority-badge--medium {
-    --ads-priority-bg: rgba(253, 230, 138, 0.28);
-    --ads-priority-border: rgba(217, 119, 6, 0.32);
-    --ads-priority-color: #b45309;
-    --ads-priority-shadow: 0 12px 26px rgba(217, 119, 6, 0.26);
-    --ads-priority-shadow-hover: 0 16px 34px rgba(217, 119, 6, 0.3);
-}
-
-.ads-priority-badge--high {
-    --ads-priority-bg: rgba(96, 165, 250, 0.28);
-    --ads-priority-border: rgba(37, 99, 235, 0.35);
-    --ads-priority-color: #1d4ed8;
-    --ads-priority-shadow: 0 12px 26px rgba(59, 130, 246, 0.3);
-    --ads-priority-shadow-hover: 0 16px 34px rgba(59, 130, 246, 0.35);
-}
-
-.ads-priority-badge--very-high {
-    --ads-priority-bg: rgba(248, 113, 113, 0.26);
-    --ads-priority-border: rgba(225, 29, 72, 0.35);
-    --ads-priority-color: #be123c;
-    --ads-priority-shadow: 0 12px 26px rgba(225, 29, 72, 0.3);
-    --ads-priority-shadow-hover: 0 16px 34px rgba(225, 29, 72, 0.34);
-}
-
-.ads-priority-badge--unknown {
-    --ads-priority-bg: rgba(226, 232, 240, 0.85);
-    --ads-priority-border: rgba(148, 163, 184, 0.45);
-    --ads-priority-color: #334155;
-    --ads-priority-shadow: 0 12px 24px rgba(148, 163, 184, 0.18);
-    --ads-priority-shadow-hover: 0 16px 32px rgba(148, 163, 184, 0.24);
-}
-
-.ads-probability-badge {
-    display: inline-flex;
-    align-items: center;
-    justify-content: center;
-    min-width: 3.25rem;
-    padding: 0.45rem 0.95rem;
-    border-radius: 999px;
-    font-size: 0.95rem;
-    font-weight: 700;
-    font-variant-numeric: tabular-nums;
-    transition: transform 0.2s ease, box-shadow 0.2s ease;
-}
-
-.ads-probability-badge--active {
-    background: linear-gradient(135deg, #1d4ed8, #6366f1);
-    color: #ffffff;
-    box-shadow: 0 14px 28px rgba(99, 102, 241, 0.3);
-}
-
-.ads-probability-badge--active:hover {
-    transform: translateY(-2px);
-    box-shadow: 0 18px 36px rgba(99, 102, 241, 0.35);
-}
-
-.ads-probability-badge--muted {
-    background: #e2e8f0;
-    color: #475569;
-}
-
-.ads-fallback-row {
-    background: linear-gradient(90deg, rgba(99, 102, 241, 0.08), rgba(14, 165, 233, 0.05));
-}
-
-.ads-fallback-row td {
-    border-top: none;
-}
-
-.ads-fallback-icon {
-    width: 48px;
-    height: 48px;
-    border-radius: 16px;
-    display: flex;
-    align-items: center;
-    justify-content: center;
-    background: linear-gradient(135deg, rgba(59, 130, 246, 0.2), rgba(99, 102, 241, 0.18));
-    color: #1d4ed8;
-    font-size: 1.5rem;
-    box-shadow: 0 14px 28px rgba(59, 130, 246, 0.18);
-}
-
-.ads-card-list {
-    display: flex;
-    flex-direction: column;
-    gap: 1rem;
-}
-
-.ads-card-list .list-group-item {
-    border: none;
-    background: transparent;
-}
-
-.ads-card {
-    border: none;
-    background: transparent;
-}
-
-.ads-card__content {
-    display: flex;
-    flex-direction: column;
-    gap: 1rem;
-    padding: 1.25rem;
-    border-radius: 1rem;
-    border: 1px solid rgba(226, 232, 240, 0.7);
-    background: #ffffff;
-    box-shadow: 0 12px 28px rgba(15, 23, 42, 0.12);
-}
-
-.ads-card__header {
-    display: flex;
-    gap: 1rem;
-    align-items: flex-start;
-}
-
-.ads-card__thumb {
-    border-radius: 1rem;
-    overflow: hidden;
-    border: 1px solid rgba(148, 163, 184, 0.35);
-    box-shadow: 0 10px 24px rgba(15, 23, 42, 0.1);
-    background: #ffffff;
-}
-
-.ads-card__thumb--wide {
-    width: 120px;
-}
-
-.ads-card__thumb--wide .ratio {
-    width: 100%;
-}
-
-.ads-card__thumb--square {
-    width: 72px;
-    height: 72px;
-    display: flex;
-}
-
-.ads-card__thumb--square img {
-    width: 100%;
-    height: 100%;
-    object-fit: cover;
-}
-
-.ads-card__thumb-placeholder {
-    display: flex;
-    align-items: center;
-    justify-content: center;
-    background: linear-gradient(135deg, rgba(226, 232, 240, 0.6), rgba(148, 163, 184, 0.3));
-    border-style: dashed;
-    border-color: rgba(148, 163, 184, 0.6);
-    color: #94a3b8;
-    box-shadow: inset 0 0 0 1px rgba(255, 255, 255, 0.4);
-}
-
-.ads-card__thumb--wide.ads-card__thumb-placeholder {
-    height: 90px;
-}
-
-.ads-card__thumb--square.ads-card__thumb-placeholder {
-    height: 72px;
-}
-
-.ads-card__thumb-placeholder i {
-    font-size: 1.5rem;
-}
-
-.ads-card__body {
-    display: flex;
-    flex-direction: column;
-    gap: 0.5rem;
-    flex: 1 1 auto;
-}
-
-.ads-card__meta {
-    display: flex;
-    flex-direction: column;
-    gap: 0.35rem;
-}
-
-.ads-card__meta-label,
-.ads-card__metric-label {
-    font-size: 0.75rem;
-    letter-spacing: 0.06em;
-    text-transform: uppercase;
-    color: #64748b;
-    font-weight: 600;
-}
-
-.ads-card__metrics {
-    display: flex;
-    flex-direction: column;
-    gap: 0.75rem;
-}
-
-.ads-card__metric {
-    display: flex;
-    flex-direction: column;
-    gap: 0.4rem;
-}
-
-.ads-card__metric-value {
-    display: flex;
-    align-items: center;
-    gap: 0.5rem;
-}
-
-.ads-card__actions {
-    display: flex;
-    flex-wrap: wrap;
-    gap: 0.5rem;
-}
-
-.ads-card__actions .btn {
-    flex: 1 1 auto;
-}
-
-.ads-card__action-form {
-    flex: 1 1 auto;
-}
-
-.ads-card__action-form .btn {
-    width: 100%;
-}
-
-.ads-card--fallback .ads-card__content {
-    background: linear-gradient(135deg, rgba(99, 102, 241, 0.08), rgba(14, 165, 233, 0.06));
-    border-color: rgba(99, 102, 241, 0.2);
-}
-
-@media (min-width: 992px) {
-    .ads-card__metrics {
-        display: grid;
-        grid-template-columns: repeat(auto-fit, minmax(180px, 1fr));
-        gap: 0.85rem;
-        align-items: stretch;
-    }
-
-    .ads-card__metric {
-        flex-direction: row;
-        align-items: stretch;
-        justify-content: space-between;
-        padding: 0.85rem 1rem;
-        border-radius: 0.9rem;
-        background: linear-gradient(135deg, rgba(226, 232, 240, 0.35), rgba(248, 250, 252, 0.4));
-        box-shadow: inset 0 0 0 1px rgba(148, 163, 184, 0.18);
-        gap: 0.75rem;
-    }
-
-    .ads-card__metric-value {
-        margin-left: auto;
-    }
-
-    .ads-card__metric--probability {
-        background: linear-gradient(135deg, rgba(99, 102, 241, 0.18), rgba(56, 189, 248, 0.18));
-        box-shadow: inset 0 0 0 1px rgba(99, 102, 241, 0.26);
-    }
-
-    .ads-card__metric--probability .ads-card__metric-label {
-        color: #4338ca;
-    }
-
-    .ads-card__metric--probability .ads-card__metric-value {
-        justify-content: flex-end;
-        width: 50%;
-    }
-}
-
-@media (max-width: 575.98px) {
-    .ads-card__thumb--wide {
-        width: 100px;
-    }
-}
-
-@media (max-width: 991.98px) {
-    .ads-tabs {
-        width: 100%;
-        justify-content: space-between;
-    }
-
-    .ads-tabs .nav-link {
-        flex: 1 1 0;
-        text-align: center;
-    }
-
-    .ads-summary-row {
-        gap: 1rem;
-    }
-
-    .ads-form-card__header,
-    .ads-form-card__body {
-        padding: 1.5rem;
-    }
-
-    .ads-form-actions {
-        flex-direction: column;
-        align-items: stretch;
-    }
-
-    .ads-form-actions .btn {
-        width: 100%;
-    }
-}
-
-@media (min-width: 768px) {
-    .ads-card__actions {
-        justify-content: flex-end;
-    }
-
-    .ads-card__actions .btn,
-    .ads-card__action-form {
-        flex: 0 0 auto;
-    }
-
-    .ads-card__action-form .btn {
-        width: auto;
-    }
-}
-
-
-// ===== resources/static/css/service-insight.css =====
-/* ===== Service Insight 전용 ===== */
-.service-insight { --x: 0px; --y: 0px; }
-
-.service-insight .si-group__summary {
-    position: relative;
-    cursor: pointer;
-    user-select: none;
-}
-.service-insight .si-group__summary::-webkit-details-marker { display: none; }
-.service-insight .si-group__summary::before {
-    content: "";
-    width: .55rem; height: .55rem;
-    border-right: 2px solid #94a3b8;
-    border-bottom: 2px solid #94a3b8;
-    transform: rotate(45deg);
-    margin-right: .4rem;
-    display: inline-block;
-    transition: transform .18s ease, border-color .18s ease;
-}
-.service-insight .si-group[open] .si-group__summary::before { transform: rotate(225deg); }
-.service-insight .si-group__summary:hover::before { border-color: #334155; }
-
-/* 플롯 영역 여백 + 포커스 그림자 */
-.service-insight .service-insight__chart { margin-left: 16px; }
-.service-insight .si-plots__toolbar {
-    display: flex;
-    align-items: flex-start;
-    justify-content: space-between;
-    gap: 1rem;
-    flex-wrap: wrap;
-}
-.service-insight .si-range {
-    display: flex;
-    flex-direction: column;
-    gap: .5rem;
-    margin-right: auto;
-}
-.service-insight .si-range__bar {
-    display: flex;
-    flex-wrap: wrap;
-    align-items: center;
-    gap: .5rem;
-}
-.service-insight .si-range__label {
-    font-size: .82rem;
-    font-weight: 600;
-    color: #334155;
-    letter-spacing: .02em;
-    text-transform: uppercase;
-}
-.service-insight .si-range__quick {
-    display: flex;
-    flex-wrap: wrap;
-    gap: .35rem;
-}
-.service-insight .si-range__btn {
-    border-radius: 999px;
-    padding-inline: .85rem;
-    font-weight: 500;
-    transition: color .18s ease, background-color .18s ease, box-shadow .18s ease;
-}
-.service-insight .si-range__custom-toggle {
-    border-radius: 999px;
-    display: inline-flex;
-    align-items: center;
-    gap: .35rem;
-    transition: color .18s ease, background-color .18s ease, box-shadow .18s ease;
-}
-.service-insight .si-range__btn:hover,
-.service-insight .si-range__btn:focus-visible,
-.service-insight .si-range__custom-toggle:hover,
-.service-insight .si-range__custom-toggle:focus-visible {
-    box-shadow: 0 4px 12px rgba(59, 130, 246, .18);
-}
-.service-insight .si-range__form {
-    display: none;
-    align-items: center;
-    gap: .75rem;
-    flex-wrap: wrap;
-    padding: .65rem .75rem;
-    border-radius: .75rem;
-    border: 1px solid rgba(148, 163, 184, .45);
-    background: rgba(248, 250, 252, .9);
-}
-.service-insight .si-range__form.is-open {
-    display: flex;
-}
-.service-insight .si-range__fields {
-    display: flex;
-    align-items: center;
-    gap: .5rem;
-    flex-wrap: wrap;
-}
-.service-insight .si-range__fields .form-control {
-    min-width: 9rem;
-}
-.service-insight .si-range__dash {
-    font-weight: 600;
-    color: #64748b;
-}
-.service-insight .si-range__actions {
-    display: flex;
-    align-items: center;
-    gap: .5rem;
-}
-.service-insight .si-range__apply {
-    border-radius: 999px;
-    padding-inline: 1.1rem;
-    font-weight: 600;
-}
-.service-insight .si-plot-card { transition: box-shadow .22s ease, border-color .22s ease, transform .12s ease; will-change: box-shadow, transform; }
-.service-insight .si-plot-card.si-plot--active{
-    box-shadow:
-            0 2px 8px rgba(0,0,0,.06),
-            0 10px 24px rgba(15,23,42,.08),
-            0 0 0 2px rgba(99,102,241,.18),
-            0 0 0 10px rgba(99,102,241,.06);
-    border-color: rgba(99,102,241,.25);
-}
-
-/* 데이터셋 스트립 */
-.service-insight .si-plot__datasets{
-    display:flex;flex-wrap:wrap;gap:.35rem;
-    padding:.35rem .5rem .5rem .5rem;min-height:40px;
-    background:#f8fafc;border-radius:.5rem;border:1px dashed rgba(148,163,184,.45);
-}
-.service-insight .si-plot__datasets[data-empty="true"]{position:relative;}
-.service-insight .si-plot__datasets[data-empty="true"]::before{
-    content:"여기에 데이터를 드래그해서 놓으세요";color:#64748b;font-size:.9rem;
-}
-
-/* aside 칩 */
-.service-insight__metrics .si-chip.si-chip--toggle{
-    appearance:none;border:1px solid rgba(15,23,42,.08);
-    background:linear-gradient(180deg,#fff,#fbfdff);color:#0b0f1a;
-    padding:.38rem .6rem;border-radius:999px;display:inline-flex;align-items:center;gap:.45rem;
-    line-height:1;font-size:.92rem;cursor:pointer!important;
-    box-shadow:0 1px 1px rgba(0,0,0,.03), inset 0 1px 0 rgba(255,255,255,.9);
-    transition:background .15s ease,border-color .15s ease,box-shadow .15s ease,transform .02s ease;
-}
-.service-insight__metrics .si-chip.si-chip--toggle:hover{
-    background:#f9fbff;border-color:rgba(59,130,246,.18);box-shadow:0 2px 6px rgba(30,64,175,.06);
-}
-.service-insight__metrics .si-chip.si-chip--toggle:active{transform:translateY(1px);}
-.service-insight__metrics .si-chip.si-chip--toggle .si-chip__dot{
-    width:.55rem;height:.55rem;border-radius:50%;box-shadow:0 0 0 2px #fff,0 0 0 3px rgba(15,23,42,.05);
-}
-.service-insight__metrics .si-chip.si-chip--toggle .si-chip__check{
-    width:1rem;height:1rem;display:inline-flex;align-items:center;justify-content:center;border-radius:50%;
-    border:1px solid rgba(15,23,42,.12);background:#fff;position:relative;flex:0 0 1rem;box-sizing:border-box;
-}
-.service-insight__metrics .si-chip.si-chip--toggle.is-active .si-chip__check{
-    border-color:rgba(34,197,94,.35);
-    background:linear-gradient(180deg,rgba(34,197,94,.18),rgba(34,197,94,.28));
-}
-.service-insight__metrics .si-chip.si-chip--toggle.is-active .si-chip__check::after{
-    content:"";width:.7rem;height:.7rem;display:block;
-    background:conic-gradient(from 0deg at 50% 50%,#22c55e,#16a34a);
-    -webkit-mask:url("data:image/svg+xml,%3Csvg width='14' height='14' viewBox='0 0 20 20' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='M6.5 11.6 4 9.1l-1.4 1.4 3.9 3.9L17.4 3.5 16 2.1 6.5 11.6z' fill='black'/%3E%3C/svg%3E") center/100% 100% no-repeat;
-    mask:url("data:image/svg+xml,%3Csvg width='14' height='14' viewBox='0 0 20 20' xmlns='http://www.w3.org/2000/svg'%3E%3Cpath d='M6.5 11.6 4 9.1l-1.4 1.4 3.9 3.9L17.4 3.5 16 2.1 6.5 11.6z' fill='black'/%3E%3C/svg%3E") center/100% 100% no-repeat;
-}
-
-/* 플롯 상단 칩 */
-.service-insight .si-ds-chip{
-    display:inline-flex;align-items:center;gap:.45rem;padding:.28rem .55rem;border-radius:.55rem;
-    border:1px solid rgba(15,23,42,.1);background:#fff;box-shadow:0 1px 2px rgba(0,0,0,.04);cursor:grab;user-select:none;
-}
-.service-insight .si-ds-chip:active{cursor:grabbing;}
-.service-insight .si-ds-chip .si-grip{display:inline-block;font-weight:700;color:#94a3b8;margin-right:.1rem;}
-.service-insight .si-ds-chip__dot{width:.55rem;height:.55rem;border-radius:50%;box-shadow:0 0 0 2px #fff,0 0 0 3px rgba(15,23,42,.05);}
-.service-insight .si-ds-chip__rm{margin-left:.25rem;width:1.15rem;height:1.15rem;border-radius:.5rem;border:1px solid rgba(15,23,42,.1);background:#fff;color:#0b0f1a;line-height:1;font-size:.95rem;padding:0;}
-.service-insight .si-ds-chip__rm:hover{background:#fee2e2;border-color:#fecaca;}
-.service-insight .si-ds-chip__label{white-space:nowrap;}
-
-/* 드래그 고스트 & 드랍 강조 */
-.service-insight .si-chip--ghost{
-    position:fixed;left:0;top:0;
-    transform:translate3d(var(--x,0px),var(--y,0px),0);
-    pointer-events:none;z-index:999999;border:1px solid rgba(148,163,184,.45);
-    background:linear-gradient(180deg,rgba(255,255,255,.98),rgba(255,255,255,.92));
-    color:#0b0c0f;border-radius:.6rem;box-shadow:0 12px 36px rgba(0,0,0,.35);
-    padding:.3rem .55rem;will-change:transform;transition:transform 160ms cubic-bezier(.2,.8,.2,1);
-}
-.service-insight .si-drop-target{outline:2px dashed rgba(91,140,255,.7);outline-offset:4px;}
-body.is-dragging{cursor:grabbing;} body.is-dragging *{user-select:none!important;}
-
-/* 이미지/링크 네이티브 드래그 억제 */
-.service-insight img, .service-insight a{-webkit-user-drag:none;}
-
-/* 기타 */
-.service-insight .si-chip__meta, .service-insight .si-chip .si-chip__unit{display:none!important;}
-
-
-// ===== resources/static/css/service-insight.mobile.css =====
-/* ===== Service Insight: 모바일 전용 오버라이드 =====
-   - 사이드바 숨김, DnD 힌트 제거, 차트 컴팩트, FAB(모바일만) 등
-*/
-
-.service-insight__container { height: auto !important; overflow: visible !important; }
-.service-insight__metrics,
-.service-insight__chart    { height: auto !important; min-height: 0 !important; overflow: visible !important; }
-
-/* 사이드바는 모바일에서 숨김(바텀시트 이용) */
-.service-insight__metrics { display: none !important; }
-
-/* DnD affordance 제거 */
-.service-insight .si-plot__datasets,
-.service-insight .si-dropzone { display: none !important; }
-
-/* 차트 높이 컴팩트 */
-.si-plots .si-plot__surface { height: 280px !important; }
-
-/* FAB: 모바일에서만 표출 */
-#si-fab {
-    display: inline-flex !important;
-    position: fixed; right: max(16px, env(safe-area-inset-right));
-    bottom: calc(max(16px, env(safe-area-inset-bottom)) + 8px);
-    width: 56px; height: 56px; z-index: 1055;
-    align-items: center; justify-content: center;
-    border-radius: 50%; padding: 0; line-height: 1;
-}
-
-/* 바텀시트 */
-.offcanvas.offcanvas-bottom#siDataPicker {
-    height: 75vh; border-top-left-radius: 1rem; border-top-right-radius: 1rem;
-    box-shadow: var(--shadow-overlay);
-}
-.offcanvas.offcanvas-bottom#siDataPicker .offcanvas-header { padding: 0.75rem 1rem; }
-.offcanvas.offcanvas-bottom#siDataPicker .offcanvas-body   { padding: 0.5rem 1rem 1rem; overflow: auto; }
-
-/* 툴바 줄바꿈 */
-.si-plots__toolbar { flex-direction: column; align-items: stretch; gap: 1rem; }
-.si-range { width: 100%; gap: .75rem; }
-.si-range__bar { width: 100%; align-items: stretch; gap: .6rem; }
-.si-range__label { font-size: .78rem; letter-spacing: .06em; }
-.si-range__quick { flex: 1 1 auto; width: 100%; overflow-x: auto; padding-bottom: .15rem; gap: .5rem; }
-.si-range__quick::-webkit-scrollbar { height: 6px; }
-.si-range__quick::-webkit-scrollbar-thumb { background: rgba(148,163,184,.55); border-radius: 999px; }
-.si-range__btn,
-.si-range__custom-toggle { flex: 0 0 auto; }
-.si-range__form { width: 100%; flex-direction: column; align-items: stretch; gap: .65rem; }
-.si-range__fields { width: 100%; flex-direction: column; align-items: stretch; gap: .65rem; }
-.si-range__fields .form-control { width: 100%; min-width: 0; }
-.si-range__dash { display: none; }
-.si-range__actions { width: 100%; justify-content: stretch; }
-.si-range__apply { width: 100%; padding-block: .65rem; }
-.si-plots__toolbar .si-actions { display: flex; gap: .5rem; flex-wrap: wrap; }
-
-/* 안전 여백 */
-.service-insight { padding-bottom: max(72px, env(safe-area-inset-bottom)); }
-
-
-// ===== resources/static/css/service-insight.target.css =====
-/* ===== resources/static/css/service-insight.target.css ===== */
-/* ===== 전역(PC/모바일 공통) ===== */
-
-/* FAB는 PC 기본 숨김, 모바일 전용 CSS에서만 표출 */
-#si-fab { display: none !important; }
-
-/* "플롯 n 데이터 선택" – 인라인 타이틀 */
-.si-targettitle {
-    display: inline-flex;
-    align-items: center;
-    gap: .55rem;
-    font-size: 1rem;
-    font-weight: 800;
-    letter-spacing: -0.2px;
-}
-.si-targettitle__prefix,
-.si-targettitle__suffix { font-weight: 800; }
-
-/* 숫자 Select: 클릭감 강화 */
-.si-targettitle__select {
-    -webkit-appearance: none;
-    appearance: none;
-    cursor: pointer;
-    min-width: 4.5rem;
-    width: auto;
-    border-radius: 999px;
-    padding-inline: 1.25rem 2rem; /* 오른쪽 캐럿 공간 */
-    padding-block: .35rem;
-    line-height: 1.2;
-    border: 1px solid var(--border-strong, #c4cbd3);
-    background:
-            linear-gradient(to bottom, rgba(0,0,0,0.02), rgba(0,0,0,0)) padding-box,
-            url("data:image/svg+xml,%3Csvg xmlns='http://www.w3.org/2000/svg' width='12' height='12' viewBox='0 0 16 16'%3E%3Cpath fill='%23666' d='M3.2 6l4.8 5L12.8 6z'/%3E%3C/svg%3E")
-            no-repeat right .6rem center/12px 12px;
-    box-shadow: 0 1px 0 rgba(0,0,0,.02);
-    transition: box-shadow .15s ease, transform .04s ease, border-color .15s ease;
-    font-weight: 700;
-}
-.si-targettitle__select:hover {
-    border-color: var(--accent, #0d6efd);
-    box-shadow: 0 0 0 .2rem rgba(13,110,253,.12);
-}
-.si-targettitle__select:active { transform: translateY(1px); }
-.si-targettitle__select:focus {
-    outline: none;
-    border-color: var(--accent, #0d6efd);
-    box-shadow: 0 0 0 .24rem rgba(13,110,253,.16);
-}
-
-/* 데이터 패널 레이아웃 */
-.si-data-panel { display: flex; flex-direction: column; gap: .75rem; }
-
-/* ========== ✅ 체크 인디케이터: "오른쪽 단일"로 통일 ========== */
-/* (1) 좌측 체크를 만들던 예전 커스텀 규칙들 강제 무력화 */
-.si-data-panel .si-chip::before,
-.si-data-panel [data-si-chip]::before,
-.si-data-panel .si-chip--toggle::before { content: none !important; }
-
-/* (2) 우측 ::after 하나만 사용 (PC/모바일 공통) */
-.si-data-panel .si-chip,
-.si-data-panel [data-si-chip],
-.si-data-panel .si-chip--toggle {
-    position: relative;
-    padding-right: 28px; /* 오른쪽 체크 공간 확보 */
-}
-
-.si-data-panel .si-chip::after,
-.si-data-panel [data-si-chip]::after,
-.si-data-panel .si-chip--toggle::after {
-    content: "";
-    position: absolute;
-    right: 8px;
-    top: 50%;
-    transform: translateY(-50%);
-    width: 16px; height: 16px;
-    border-radius: 999px;
-    border: 1.5px solid var(--border-subtle, #cfd4d9);
-    background: var(--surface-primary, #fff);
-    pointer-events: none; /* 클릭 간섭 방지 */
-    transition: background-color .12s ease, border-color .12s ease, box-shadow .12s ease;
-}
-
-/* (3) 활성 조건: .is-active 또는 [data-checked="true"] 중 하나라도 true면 체크 표시 */
-.si-data-panel .si-chip.is-active::after,
-.si-data-panel [data-si-chip].is-active::after,
-.si-data-panel .si-chip--toggle.is-active::after,
-.si-data-panel .si-chip[data-checked="true"]::after,
-.si-data-panel [data-si-chip][data-checked="true"]::after,
-.si-data-panel .si-chip--toggle[data-checked="true"]::after {
-    content: "✓";
-    font-weight: 700;
-    font-size: 12px;
-    text-align: center;
-    line-height: 16px;
-    color: var(--accent-contrast, #fff);
-    background: var(--accent, #0d6efd);
-    border-color: var(--accent, #0d6efd);
-    box-shadow: 0 0 0 2px rgba(13,110,253,.15);
-}
-
-/* 키보드 포커스 접근성 */
-.si-chip.si-chip--toggle:focus-visible {
-    outline: none;
-    box-shadow: 0 0 0 .2rem rgba(59,130,246,.20);
-    border-color: rgba(59,130,246,.35);
-}
-
-/* 모바일 폰트 톤 조정 */
-@media (max-width: 991.98px) {
-    .si-targettitle { font-size: 1.05rem; }
-}
-
-
-// ===== resources/static/images/kakao-symbol.svg =====
-<?xml version="1.0" encoding="UTF-8"?>
-<svg xmlns="http://www.w3.org/2000/svg" width="24" height="24" viewBox="0 0 24 24" role="img" aria-labelledby="title">
-    <title>카카오 심볼</title>
-    <circle cx="12" cy="12" r="12" fill="#FEE500" />
-    <path fill="#381E1F" d="M12 5C7.305 5 3.5 8.027 3.5 11.76c0 2.246 1.383 4.248 3.56 5.5l-.533 3.72a.4.4 0 00.6.41l3.94-2.12c.654.1 1.327.15 1.996.15 4.695 0 8.5-3.027 8.5-6.76C21.063 8.027 16.695 5 12 5zm3.12 10.247l-.84-2.238c-.087-.231-.134-.377-.134-.44 0-.064.01-.105.031-.124.02-.02.074-.034.16-.044l.75-.09v-.59h-3.226v.59l.78.09c.083.01.136.028.16.054.023.025.034.066.034.12 0 .054-.035.176-.105.367l-.883 2.304-.988-2.53c-.173-.441-.26-.707-.26-.794 0-.074.02-.126.059-.153.04-.028.119-.048.238-.061l.583-.063v-.59H8.01v.59l.527.063c.128.015.214.044.257.086.043.042.094.14.153.294l1.68 4.295h.83l1.12-2.9 1.12 2.9h.83l1.68-4.295c.066-.172.123-.28.17-.324.047-.045.13-.075.248-.09l.528-.063v-.59h-2.707v.59l.523.063c.126.016.211.045.254.088.043.044.099.154.168.329l-1.074 2.74z"/>
-</svg>
-
-
-// ===== resources/static/js/ads-image-upload.js =====
-(function () {
-    var form = document.getElementById('adForm');
-    if (!form) {
-        return;
-    }
-
-    var fileInput = document.getElementById('adImageFile');
-    var objectKeyInput = document.getElementById('adObjectKey');
-    var contentTypeInput = document.getElementById('adContentType');
-    var statusElement = document.getElementById('adImageUploadStatus');
-    var previewImage = document.getElementById('adImagePreview');
-
-    var setStatus = function (message, variantClass) {
-        if (!statusElement) {
-            return;
-        }
-        statusElement.textContent = message;
-        statusElement.classList.remove('text-success', 'text-danger', 'text-muted');
-        statusElement.classList.add(variantClass || 'text-muted');
-    };
-
-    var uploadFile = function (file) {
-        if (!file) {
-            return;
-        }
-        var contentType = file.type || 'application/octet-stream';
-        setStatus('이미지 업로드 URL을 요청하고 있습니다...', 'text-muted');
-
-        fetch('/ads/image/presign', {
-            method: 'POST',
-            headers: { 'Content-Type': 'application/json' },
-            body: JSON.stringify({ contentType: contentType })
-        }).then(function (response) {
-            if (!response.ok) {
-                throw new Error('Presign failed');
-            }
-            return response.json();
-        }).then(function (data) {
-            if (!data || !data.presignedUrl || !data.objectKey) {
-                throw new Error('Invalid presign response');
-            }
-            setStatus('이미지를 업로드하는 중입니다...', 'text-muted');
-            return fetch(data.presignedUrl, {
-                method: 'PUT',
-                headers: { 'Content-Type': contentType },
-                body: file
-            }).then(function (uploadResponse) {
-                if (!uploadResponse.ok) {
-                    throw new Error('Upload failed');
-                }
-                objectKeyInput.value = data.objectKey;
-                contentTypeInput.value = contentType;
-                if (previewImage) {
-                    var objectUrl = URL.createObjectURL(file);
-                    previewImage.src = objectUrl;
-                    previewImage.onload = function () {
-                        URL.revokeObjectURL(objectUrl);
-                    };
-                }
-                setStatus('이미지 업로드가 완료되었습니다.', 'text-success');
-            });
-        }).catch(function () {
-            setStatus('이미지 업로드에 실패했습니다. 잠시 후 다시 시도해주세요.', 'text-danger');
-        });
-    };
-
-    if (fileInput) {
-        fileInput.addEventListener('change', function () {
-            var file = fileInput.files && fileInput.files[0];
-            if (!file) {
-                return;
-            }
-            uploadFile(file);
-        });
-    }
-})();
-
-
-// ===== resources/static/js/service-insight.js =====
-// ===== resources/static/js/service-insight.js =====
-(function () {
-    // ---------- 0) 데이터 파싱 ----------
-    const dataElement = document.getElementById('serviceInsightData');
-    if (!dataElement) return;
-
-    const dataEndpoint = dataElement.dataset?.endpoint || window.location.pathname;
-
-    let payload = {};
-    try { payload = JSON.parse(dataElement.textContent || '{}'); }
-    catch (err) { console.warn('Failed to parse service insight payload.', err); }
-
-    let metricOptions = [];
-    let seriesList = [];
-    let componentLabels = {};
-    let optionMap = new Map();
-    let seriesMap = new Map();
-
-    function applyViewModelPayload(source) {
-        payload = (source && typeof source === 'object') ? source : {};
-        metricOptions = Array.isArray(payload.metricOptions) ? payload.metricOptions : [];
-        seriesList = Array.isArray(payload.series) ? payload.series : [];
-        componentLabels = (payload.componentLabels && typeof payload.componentLabels === 'object') ? payload.componentLabels : {};
-        optionMap = new Map(metricOptions.map(o => [o.metric, o]));
-        seriesMap = new Map(seriesList.map(s => [s.metric, s]));
-        try {
-            dataElement.textContent = JSON.stringify(payload);
-        } catch (err) {
-            console.warn('Failed to cache service insight payload JSON.', err);
-        }
-    }
-
-    applyViewModelPayload(payload);
-
-    const rangeQuickContainer = document.querySelector('.si-range__quick');
-    const rangeForm = document.querySelector('.si-range__form');
-    const rangeStartInput = rangeForm?.querySelector('input[name="startDate"]') || null;
-    const rangeEndInput = rangeForm?.querySelector('input[name="endDate"]') || null;
-    const rangeApplyButton = rangeForm?.querySelector('button[type="submit"]') || null;
-    const rangeCustomToggle = document.getElementById('si-range-custom-toggle');
-
-    function setCustomRangeOpen(open) {
-        const next = !!open;
-        if (rangeForm) {
-            rangeForm.classList.toggle('is-open', next);
-        }
-        if (rangeCustomToggle) {
-            rangeCustomToggle.setAttribute('aria-expanded', next ? 'true' : 'false');
-            rangeCustomToggle.classList.toggle('btn-primary', next);
-            rangeCustomToggle.classList.toggle('btn-outline-secondary', !next);
-        }
-        if (rangeApplyButton) {
-            rangeApplyButton.classList.toggle('btn-primary', next);
-            rangeApplyButton.classList.toggle('btn-outline-secondary', !next);
-        }
-    }
-
-    setCustomRangeOpen(rangeForm ? rangeForm.classList.contains('is-open') : false);
-
-    // 서버 enum 키
-    const METRICS = {
-        TOTAL_COUNT:      'COLLECTION_TOTAL_COUNT',
-        PRIVATE_RATIO:    'COLLECTION_PRIVATE_RATIO',
-        PENDING_COUNT:    'BIRD_ID_PENDING_COUNT',
-        RESOLVED_COUNT:   'BIRD_ID_RESOLVED_COUNT',
-        // ✅ 누적 제거 → 28일 지표로 박스플롯 분기 키를 교체
-        RESOLUTION_STATS: 'BIRD_ID_RESOLUTION_STATS_28D', // components: min_hours, avg_hours, max_hours, stddev_hours
-
-        // ===== 유저 지표 =====
-        USER_COMPLETED_TOTAL: 'USER_COMPLETED_TOTAL',
-        USER_SIGNUP_DAILY:    'USER_SIGNUP_DAILY',
-        USER_WITHDRAWAL_DAILY:'USER_WITHDRAWAL_DAILY',
-        USER_DAU:             'USER_DAU',
-        USER_WAU:             'USER_WAU',
-        USER_MAU:             'USER_MAU',
-    };
-
-    // (아래부터는 기존 로직 그대로입니다. 색상/그룹/플롯/툴팁/박스플롯 렌더링 등 전체 원본 유지)
-
-    // 컬러 팔레트
-    const PALETTE = ['#2563eb','#16a34a','#dc2626','#f97316','#9333ea','#0ea5e9','#059669','#ea580c','#3b82f6','#14b8a6'];
-    const colorCache = new Map();
-    const colorForMetric = key => {
-        if (colorCache.has(key)) return colorCache.get(key);
-        const idx = colorCache.size % PALETTE.length;
-        const c = PALETTE[idx]; colorCache.set(key, c); return c;
-    };
-
-    // ---------- 레이아웃: 좌·우 스크롤 분리 ----------
-    const container = document.querySelector('.service-insight__container');
-    const leftCol   = document.querySelector('.service-insight__metrics');
-    const rightCol  = document.querySelector('.service-insight__chart');
-
-    function applyIndependentScroll() {
-        if (!container || !leftCol || !rightCol) return;
-        const rect = container.getBoundingClientRect();
-        const avail = Math.max(240, window.innerHeight - rect.top - 16);
-        container.style.height = avail + 'px';
-        container.style.overflow = 'hidden';
-        [leftCol, rightCol].forEach(el => {
-            el.style.height = '100%';
-            el.style.minHeight = '0';
-            el.style.overflowY = 'auto';
-        });
-    }
-    applyIndependentScroll();
-
-    // 리사이즈 보정
-    function resizeAllCharts() {
-        for (const [, p] of plots) { try { p.chart.resize(); } catch(_){} }
-    }
-    window.addEventListener('resize', () => { applyIndependentScroll(); resizeAllCharts(); });
-
-    // ---------- 유틸 ----------
-    function escapeHtml(str) {
-        return String(str ?? '')
-            .replace(/&/g, '&amp;')
-            .replace(/</g, '&lt;')
-            .replace(/>/g, '&gt;')
-            .replace(/"/g, '&quot;')
-            .replace(/'/g, '&#39;');
-    }
-
-    // KST 기준 날짜 정규화
-    const TZ = 'Asia/Seoul';
-    function toDateKST(d) {
-        if (!d) return null;
-        if (d instanceof Date) return d;
-        if (typeof d === 'number') return new Date(d);
-        const s = String(d).trim();
-        const dateOnly = /^\d{4}-\d{2}-\d{2}$/.test(s);
-        const L = window.luxon;
-        if (L && L.DateTime) {
-            let dt = L.DateTime.fromISO(s, { zone: TZ });
-            if (!dt.isValid) dt = L.DateTime.fromJSDate(new Date(s), { zone: TZ });
-            if (!dt.isValid) return null;
-            if (dateOnly) dt = dt.startOf('day');
-            return dt.toJSDate();
-        }
-        const t = new Date(s);
-        if (isNaN(t.getTime())) return null;
-        if (dateOnly) return new Date(t.getFullYear(), t.getMonth(), t.getDate());
-        return t;
-    }
-
-    // aside 툴팁 초기화
-    function initTooltipsIn(scope) {
-        const root = scope || document;
-        if (!window.bootstrap || !window.bootstrap.Tooltip) return;
-        root.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (el) {
-            const prev = window.bootstrap.Tooltip.getInstance(el);
-            if (prev) prev.dispose();
-            const inst = new window.bootstrap.Tooltip(el, {
-                trigger: 'hover focus',
-                html: true,
-                sanitize: true,
-                boundary: 'window',
-                container: 'body',
-                placement: el.dataset.bsPlacement || 'right',
-                customClass: el.dataset.bsCustomClass || 'tooltip-bubble'
-            });
-        });
-    }
-
-    // ---------- 그룹(사이드바) ----------
-    const GROUPS = [
-        { key:'collection', name:'새록', metrics:[METRICS.TOTAL_COUNT, METRICS.PRIVATE_RATIO] },
-        { key:'user',       name:'유저', metrics:[
-                METRICS.USER_COMPLETED_TOTAL, METRICS.USER_SIGNUP_DAILY, METRICS.USER_WITHDRAWAL_DAILY,
-                METRICS.USER_DAU, METRICS.USER_WAU, METRICS.USER_MAU
-            ] },
-        { key:'id',         name:'동정 요청', metrics:[METRICS.PENDING_COUNT, METRICS.RESOLVED_COUNT, METRICS.RESOLUTION_STATS] },
-    ];
-    const known = new Set(GROUPS.flatMap(g => g.metrics));
-    (metricOptions || []).forEach(opt => { if (!known.has(opt.metric)) known.add(opt.metric); });
-
-    const groupsWrap = document.getElementById('si-groups');
-
-    function renderGroups(){
-        if (!groupsWrap) return;
-        groupsWrap.innerHTML = '';
-
-        GROUPS.forEach(group => {
-            const details = document.createElement('details');
-            details.className = 'si-group';
-            details.open = true;
-
-            const summary = document.createElement('summary');
-            summary.className = 'si-group__summary';
-            summary.innerHTML = `
-        <span class="si-group__title">${escapeHtml(group.name)}</span>
-        <span class="si-group__tools">
-          <button type="button" class="si-group__btn" data-act="addAll">+ 전체</button>
-          <button type="button" class="si-group__btn" data-act="removeAll">– 전체</button>
-        </span>
-      `;
-            details.appendChild(summary);
-
-            const body = document.createElement('div'); body.className = 'si-group__body';
-            const list = document.createElement('div'); list.className = 'si-chip-list';
-
-            (group.metrics || []).forEach(metricKey => {
-                const opt = optionMap.get(metricKey); if (!opt) return;
-                const color = colorForMetric(metricKey);
-
-                const chip = document.createElement('button');
-                chip.type = 'button';
-                chip.className = 'si-chip si-chip--toggle';
-                chip.dataset.metric = metricKey;
-
-                chip.setAttribute('draggable','false');
-                chip.addEventListener('dragstart', e => e.preventDefault());
-
-                // aside 툴팁: 제목+설명 (설명은 서버 enum에서 내려옴 → 28일 기준으로 변경됨)
-                const titleText = opt.label || metricKey;
-                const descText  = opt.description || '';
-                const tooltipHtml = `<b>${escapeHtml(titleText)}</b>` + (descText ? `<br>${escapeHtml(descText)}` : '');
-                chip.setAttribute('data-bs-toggle', 'tooltip');
-                chip.setAttribute('data-bs-placement', 'right');
-                chip.setAttribute('data-bs-title', tooltipHtml);
-                chip.removeAttribute('title');
-
-                chip.innerHTML = `
-          <span class="si-chip__dot" style="background:${color}"></span>
-          <span class="si-chip__label">${escapeHtml(opt.label || metricKey)}</span>
-          <span class="si-chip__check" aria-hidden="true"></span>
-        `;
-
-                chip.addEventListener('click', ()=>{
-                    const activePlot = getActivePlotId() ?? ensureAtLeastOnePlot();
-                    toggleMetricGroupOnPlot(activePlot, metricKey);
-                    if (window.bootstrap?.Tooltip) {
-                        const inst = window.bootstrap.Tooltip.getInstance(chip);
-                        try { inst?.hide(); } catch(_) {}
-                    }
-                    syncAsideActiveStates();
-                });
-
-                chip.addEventListener('mouseleave', ()=>{
-                    if (window.bootstrap?.Tooltip) {
-                        const inst = window.bootstrap.Tooltip.getInstance(chip);
-                        try { inst?.hide(); } catch(_) {}
-                    }
-                });
-
-                list.appendChild(chip);
-            });
-
-            body.appendChild(list);
-            details.appendChild(body);
-
-            summary.querySelector('[data-act="addAll"]').addEventListener('click', (ev)=>{
-                ev.preventDefault(); ev.stopPropagation();
-                const activePlot = getActivePlotId() ?? ensureAtLeastOnePlot();
-                (group.metrics||[]).forEach(m => addMetricGroupToPlot(activePlot, m));
-                syncAsideActiveStates();
-            });
-            summary.querySelector('[data-act="removeAll"]').addEventListener('click', (ev)=>{
-                ev.preventDefault(); ev.stopPropagation();
-                (group.metrics||[]).forEach(m => removeMetricGroupFromAllPlots(m));
-                syncAsideActiveStates();
-            });
-
-            groupsWrap.appendChild(details);
-        });
-
-        initTooltipsIn(groupsWrap);
-        syncAsideActiveStates();
-    }
-
-    // ---------- 플롯 ----------
-    const plotGrid   = document.getElementById('si-plot-grid');
-    const plotsHost  = document.getElementById('si-plots');
-    const addPlotBtn = document.getElementById('si-add-plot');
-    const clearAllBtn= document.getElementById('si-clear-all');
-
-    if (plotsHost) plotsHost.setAttribute('data-size', 'roomy');
-
-    let plotSeq = 0;
-    // plots: id -> { id, index, el, chart, datasets:Set<string>, groups: Map<metric, Set<datasetId>>, active:boolean }
-    const plots = new Map();
-
-    function refreshAllPlots() {
-        for (const [plotId, plot] of plots) {
-            const metrics = [...plot.groups.keys()];
-            plot.chart.data.datasets = [];
-            plot.datasets.clear();
-            plot.groups.clear();
-
-            if (metrics.length === 0) {
-                renderPlotGroupChips(plotId);
-                updateEmptyState(plotId);
-                continue;
-            }
-
-            metrics.forEach(metric => addMetricGroupToPlot(plotId, metric));
-        }
-
-        resizeAllCharts();
-        syncAsideActiveStates();
-    }
-
-    function ensureAtLeastOnePlot() { if (plots.size===0) return createPlot(); return [...plots.keys()][0]; }
-    function getActivePlotId(){ for (const [id,p] of plots){ if (p.active) return id; } return null; }
-    function setActivePlot(id){
-        for (const [pid,p] of plots){
-            p.active = (pid===id);
-            const title = p.el.querySelector('.si-plot__title');
-            if (title) title.textContent = `플롯 ${p.index}`;
-            p.el.classList.toggle('si-plot--active', p.active);
-        }
-        syncAsideActiveStates();
-    }
-
-    // 박스플롯 플러그인(평균 중앙선, ±표준편차 상자, 최소~최대 수염)
-    const boxPlotPlugin = {
-        id: 'siBoxPlot',
-        afterDatasetsDraw(chart) {
-            const ctx = chart.ctx;
-            (chart.data.datasets || []).forEach((ds, i) => {
-                if (!ds._boxplot || !chart.isDatasetVisible(i)) return;
-                const meta = chart.getDatasetMeta(i);
-                const xScale = meta.xScale, yScale = meta.yScale;
-                const boxHalf = 6;
-                const capHalf = 10;
-
-                ds._boxplot.forEach(entry => {
-                    const x = xScale.getPixelForValue(entry._time);
-                    const yMin  = yScale.getPixelForValue(entry.min);
-                    const yMax  = yScale.getPixelForValue(entry.max);
-                    const yMean = yScale.getPixelForValue(entry.mean);
-                    const yLo   = yScale.getPixelForValue(entry.mean - entry.std);
-                    const yHi   = yScale.getPixelForValue(entry.mean + entry.std);
-
-                    const ctx2 = ctx; ctx2.save();
-                    // 수염(최소~최대)
-                    ctx2.strokeStyle = 'rgba(148,163,184,.9)';
-                    ctx2.lineWidth = 2;
-                    ctx2.beginPath(); ctx2.moveTo(x, yMin); ctx2.lineTo(x, yMax); ctx2.stroke();
-                    ctx2.beginPath();
-                    ctx2.moveTo(x - capHalf, yMin); ctx2.lineTo(x + capHalf, yMin);
-                    ctx2.moveTo(x - capHalf, yMax); ctx2.lineTo(x + capHalf, yMax);
-                    ctx2.stroke();
-
-                    // 박스(±표준편차)
-                    ctx2.fillStyle = 'rgba(91,140,255,.18)';
-                    ctx2.strokeStyle = 'rgba(91,140,255,.9)';
-                    ctx2.lineWidth = 2;
-                    const top = Math.min(yLo, yHi), height = Math.abs(yHi - yLo) || 2;
-                    ctx2.beginPath();
-                    ctx2.rect(x - boxHalf, top, boxHalf*2, height);
-                    ctx2.fill(); ctx2.stroke();
-
-                    // 평균선
-                    ctx2.strokeStyle = 'rgba(30,41,59,.95)';
-                    ctx2.lineWidth = 2;
-                    ctx2.beginPath();
-                    ctx2.moveTo(x - (boxHalf + 3), yMean);
-                    ctx2.lineTo(x + (boxHalf + 3), yMean);
-                    ctx2.stroke();
-                    ctx2.restore();
-                });
-            });
-        }
-    };
-    if (window.Chart && Chart.register) Chart.register(boxPlotPlugin);
-
-    function createPlot(){
-        const id = `plot-${++plotSeq}`; const index = plots.size + 1;
-        const card = document.createElement('div');
-        card.className='si-plot-card'; card.dataset.plotId = id;
-        card.innerHTML = `
-      <div class="si-plot__header">
-        <div class="si-plot__title">플롯 ${index}</div>
-        <div class="si-plot__tools">
-          <button type="button" class="btn btn-ghost btn-sm" data-act="removePlot" title="플롯 삭제">
-            <i class="bi bi-trash"></i>
-          </button>
-        </div>
-      </div>
-      <div class="si-plot__datasets si-dropzone" data-dropzone="datasets" data-empty="true"></div>
-      <div class="si-plot__surface">
-        <canvas></canvas>
-        <div class="si-empty d-none">표시할 데이터가 없습니다</div>
-      </div>
-    `;
-        plotGrid.appendChild(card);
-
-        card.addEventListener('mousedown', ()=> setActivePlot(id));
-        card.addEventListener('focusin', ()=> setActivePlot(id));
-
-        const canvas = card.querySelector('canvas');
-        const chart = new Chart(canvas.getContext('2d'), { type:'line', data:{datasets:[]}, options: makeBaseChartOptions() });
-
-        card.querySelector('[data-act="removePlot"]').addEventListener('click', ()=> removePlot(id));
-
-        const dz = card.querySelector('[data-dropzone="datasets"]');
-        dz.addEventListener('dragover', e=>{ e.preventDefault(); dz.classList.add('is-dragover'); });
-        dz.addEventListener('dragleave', ()=> dz.classList.remove('is-dragover'));
-        dz.addEventListener('drop', e=>{
-            e.preventDefault(); dz.classList.remove('is-dragover');
-            try{
-                const payload = JSON.parse(e.dataTransfer.getData('application/json') || '{}');
-                if (payload.type === 'datasetGroup' && payload.groupId && payload.fromPlotId){
-                    moveGroupToPlot(payload.groupId, payload.fromPlotId, id);
-                }
-            }catch(_){}
-        });
-
-        plots.set(id, {
-            id, index, el: card, chart,
-            datasets: new Set(),
-            groups: new Map(),
-            active: false
-        });
-
-        if (plots.size===1) setActivePlot(id);
-        updateEmptyState(id);
-        return id;
-    }
-
-    function markDatasetsStripState(strip) {
-        const hasChip = !!strip.querySelector('.si-ds-chip');
-        strip.setAttribute('data-empty', hasChip ? 'false' : 'true');
-    }
-
-    function removePlot(id){
-        const p = plots.get(id); if (!p) return;
-        p.chart.destroy();
-        p.el.remove();
-        plots.delete(id);
-
-        let i = 0;
-        for (const [pid, plot] of plots){
-            plot.index = ++i;
-            const title = plot.el.querySelector('.si-plot__title');
-            if (title) title.textContent = `플롯 ${plot.index}`;
-        }
-        if (plots.size === 0) createPlot();
-        syncAsideActiveStates();
-    }
-
-    function updateEmptyState(plotId){
-        const p = plots.get(plotId); if (!p) return;
-        const emptyEl = p.el.querySelector('.si-empty');
-        const hasAny = (p.chart.data.datasets || []).some(ds => (ds.data||[]).length>0);
-        emptyEl.classList.toggle('d-none', hasAny);
-
-        const strip = p.el.querySelector('.si-plot__datasets');
-        strip.setAttribute('data-empty', (p.groups.size === 0) ? 'true' : 'false');
-    }
-
-    // ---------- 데이터 변환/축 ----------
-    function toPoints(series, unit) {
-        const points = Array.isArray(series?.points) ? series.points : [];
-        return points
-            .map(pt => {
-                const x = toDateKST(pt.date);
-                const y = normalizeValue(pt.value, unit);
-                return (x && y != null) ? ({ x, y }) : null;
-            })
-            .filter(Boolean);
-    }
-    function formatHoursAdaptive(hours) {
-        if (!Number.isFinite(hours)) return '-';
-        const H_PER_DAY = 24;
-        const D_PER_MONTH = 30;
-
-        const abs = Math.abs(hours);
-        if (abs >= H_PER_DAY * D_PER_MONTH) {
-            const months = hours / (H_PER_DAY * D_PER_MONTH);
-            const sig = Math.abs(months) >= 10 ? 0 : 1;
-            return `${months.toFixed(sig)}개월`;
-        }
-        if (abs >= H_PER_DAY) {
-            const days = hours / H_PER_DAY;
-            const sig = Math.abs(days) >= 10 ? 0 : 1;
-            return `${days.toFixed(sig)}일`;
-        }
-        return `${hours.toFixed(2)}시간`;
-    }
-
-    function formatValue(v, unit){
-        if (!Number.isFinite(v)) return '-';
-        if (unit==='RATIO') return `${v.toFixed(1)}%`;
-        if (unit==='HOURS') return formatHoursAdaptive(v);
-        return Math.round(v).toLocaleString();
-    }
-
-    function normalizeValue(num, unit){
-        const v = typeof num === 'string' ? Number(num) : Number(num);
-        if (!Number.isFinite(v)) return null;
-        if (unit==='RATIO') return v <= 1.000001 ? v*100 : v;
-        return v;
-    }
-    function axisByUnit(unit){ if (unit==='RATIO') return 'ratio'; if (unit==='HOURS') return 'hours'; return 'count'; }
-
-    function makeBaseChartOptions(){
-        return {
-            responsive: true, maintainAspectRatio: false,
-            interaction: { mode:'nearest', intersect:false },
-            elements: { line:{borderWidth:2}, point:{radius:0, hoverRadius:4, hitRadius:8} },
-            scales: {
-                x: {
-                    type:'time',
-                    time:{
-                        unit:'day',
-                        round:'day',
-                        tooltipFormat:'yyyy-LL-dd',
-                        zone: TZ
-                    },
-                    adapters:{ date:{ zone: TZ } },
-                    ticks:{ autoSkip:true, maxRotation:0 },
-                    grid:{ color:'rgba(148, 163, 184, 0.2)' }
-                },
-                count: { display:false, position:'left', beginAtZero:true, ticks:{ precision:0, maxTicksLimit:8, callback:v => Number.isInteger(v)? v.toLocaleString():'' } },
-                ratio: { display:false, position:'right', beginAtZero:true, min:0, max:100, grid:{ drawOnChartArea:false }, ticks:{ stepSize:10, maxTicksLimit:6, callback:v=>`${v}%` } },
-                hours: { display:false, position:'right', beginAtZero:true, grid:{ drawOnChartArea:false }, ticks:{ maxTicksLimit:6, callback:v=>(typeof v==='number'? v.toFixed(1):v) } }
-            },
-            plugins: {
-                legend: { position:'bottom', labels:{ usePointStyle:true, boxWidth:8, boxHeight:8 } },
-                tooltip: {
-                    mode:'index', intersect:false,
-                    callbacks: {
-                        label(ctx){
-                            const ds   = ctx.dataset || {};
-                            const unit = ds._saUnit;
-                            const base = ds.label || '';
-                            const v    = ctx.parsed.y;
-
-                            if (ds._boxIndex) {
-                                const x = ctx.raw?.x instanceof Date ? ctx.raw.x.getTime() : new Date(ctx.raw?.x).getTime();
-                                const st = ds._boxIndex.get(String(x));
-                                if (st) {
-                                    const mean = (typeof v === 'number') ? v : null;
-                                    const lo = (mean!=null && Number.isFinite(st.std)) ? (mean - st.std) : null;
-                                    const hi = (mean!=null && Number.isFinite(st.std)) ? (mean + st.std) : null;
-                                    const fmt = (n)=>formatValue(n,'HOURS');
-                                    if (mean!=null && lo!=null && hi!=null) {
-                                        return [
-                                            `${base}: 평균 ${fmt(lo)} ~ ${fmt(hi)}`,
-                                            `(최소: ${fmt(st.min)}, 최대: ${fmt(st.max)})`
-                                        ];
-                                    }
-                                }
-                                return `${base}: 평균 ${formatValue(v,'HOURS')}`;
-                            }
-
-                            return base ? `${base}: ${formatValue(v,unit)}` : formatValue(v,unit);
-                        }
-                    }
-                }
-            }
-        };
-    }
-
-    function niceNum(x, round){
-        const exp = Math.floor(Math.log10(x));
-        const f = x / Math.pow(10,exp);
-        let nf;
-        if (round){ nf = f < 1.5 ? 1 : f < 3 ? 2 : f < 7 ? 5 : 10; }
-        else { nf = f <= 1 ? 1 : f <= 2 ? 2 : f <= 5 ? 5 : 10; }
-        return nf * Math.pow(10,exp);
-    }
-    function niceScale(min,max,maxTicks=6,integerOnly=false){
-        const range = Math.max(1e-9, max-min);
-        let step = niceNum(range / Math.max(2,(maxTicks-1)), true);
-        if (integerOnly) step = Math.max(1, Math.round(step));
-        const niceMin = Math.floor(min/step)*step;
-        const niceMax = Math.ceil(max/step)*step;
-        return {min:niceMin,max:niceMax,step};
-    }
-    function bounds(chart, axis){
-        let min=Infinity, max=-Infinity, used=false;
-        (chart.data.datasets||[]).forEach(ds=>{
-            if (ds.yAxisID!==axis || !Array.isArray(ds.data)) return;
-            ds.data.forEach(pt=>{
-                if (pt && Number.isFinite(pt.y)){ used=true; if (pt.y<min) min=pt.y; if (pt.y>max) max=pt.y; }
-            });
-        });
-        if (!used) return {used:false,min:0,max:1};
-        if (min===max){ min-=1; max+=1; }
-        return {used:true,min,max};
-    }
-
-    // 축 자동 스케일 + 우측축 겹침 보정(offset)
-    function applyAutoYAxisScaling(chart){
-        const b = { count: bounds(chart,'count'), ratio: bounds(chart,'ratio'), hours: bounds(chart,'hours') };
-
-        // count (좌)
-        if (b.count.used){
-            const nice = niceScale(b.count.min, b.count.max, 7, true);
-            const s = chart.options.scales.count; s.display=true; s.min=nice.min; s.max=nice.max; s.ticks.stepSize=nice.step; s.ticks.precision=0;
-        } else chart.options.scales.count.display=false;
-
-        // 오른쪽 축 2개(ratio, hours) 동시 사용 시 시각 분리
-        const bothRight = b.ratio.used && b.hours.used;
-
-        if (b.ratio.used){
-            const s = chart.options.scales.ratio;
-            const range=Math.max(5,b.ratio.max-b.ratio.min);
-            const step = range<=30?5:10;
-            s.display=true; s.position='right'; s.offset = bothRight ? false : false;
-            s.min=Math.max(0,Math.floor(b.ratio.min/step)*step);
-            s.max=Math.min(100,Math.ceil(b.ratio.max/step)*step);
-            s.ticks.stepSize=step;
-        } else chart.options.scales.ratio.display=false;
-
-        if (b.hours.used){
-            const nice = niceScale(b.hours.min, b.hours.max, 6, false);
-            const s = chart.options.scales.hours;
-            s.display=true; s.position='right'; s.offset = bothRight ? true : false;
-            s.min=nice.min; s.max=nice.max; s.ticks.stepSize=nice.step;
-        } else chart.options.scales.hours.display=false;
-    }
-
-    function datasetIdFor(metric, compKey){
-        return compKey ? `${metric}::${compKey}` : metric;
-    }
-
-    // ---------- 핵심: 추가/제거/이동 ----------
-    function addMetricGroupToPlot(plotId, metric){
-        const p = plots.get(plotId); if (!p) return;
-        const opt = optionMap.get(metric); if (!opt) return;
-
-        const color = colorForMetric(metric);
-        const groupSet = p.groups.get(metric) || new Set();
-        let changed = false;
-
-        if (metric === METRICS.RESOLUTION_STATS) {
-            // 박스플롯 데이터 구성 (KST 기준 병합)
-            const series = seriesMap.get(metric);
-            const comps = Array.isArray(series?.components) ? series.components : [];
-            const mapByKey = new Map(comps.map(c => [c.key, c.points || []]));
-            const get = (k) => mapByKey.get(k) || mapByKey.get(k?.toLowerCase()) || [];
-            const minPts = get('min_hours');
-            const maxPts = get('max_hours');
-            const avgPts = get('avg_hours');
-            const stdPts = get('stddev_hours');
-
-            const byTime = new Map(); // key: ms timestamp
-            const ensure = (d) => {
-                const t = toDateKST(d);
-                if (!t) return null;
-                const k = t.getTime();
-                if (!byTime.has(k)) byTime.set(k, { _time: t });
-                return byTime.get(k);
-            };
-
-            avgPts.forEach(pt => { const e=ensure(pt.date); if (e) e.mean = Number(pt.value); });
-            minPts.forEach(pt => { const e=ensure(pt.date); if (e) e.min  = Number(pt.value); });
-            maxPts.forEach(pt => { const e=ensure(pt.date); if (e) e.max  = Number(pt.value); });
-            stdPts.forEach(pt => { const e=ensure(pt.date); if (e) e.std  = Number(pt.value); });
-
-            const merged = [...byTime.values()]
-                .filter(v => Number.isFinite(v.mean) && Number.isFinite(v.min) && Number.isFinite(v.max) && Number.isFinite(v.std))
-                .sort((a,b)=>a._time - b._time);
-
-            const meanPoints = merged.map(v => ({ x: v._time, y: v.mean }));
-
-            const id = datasetIdFor(metric, 'boxplot');
-            if (!p.datasets.has(id)) {
-                const indexMap = new Map(merged.map(v => [String(v._time.getTime()), { min:v.min, max:v.max, std:v.std }]));
-                const ds = {
-                    _id: id,
-                    label: (opt.label || '동정 해결 시간'),
-                    data: meanPoints,
-                    parsing: { xAxisKey: 'x', yAxisKey: 'y' },
-                    borderColor: color,
-                    backgroundColor: color,
-                    tension: 0.25,
-                    pointRadius: 0,
-                    pointHoverRadius: 4,
-                    fill: false,
-                    spanGaps: true,
-                    yAxisID: 'hours',
-                    _saUnit: 'HOURS',
-                    _boxIndex: indexMap   // ← 툴팁 계산에만 사용
-                };
-
-                p.chart.data.datasets.push(ds);
-                p.datasets.add(id);
-                groupSet.add(id);
-                changed = true;
-            }
-        } else {
-            const unit = String(optionMap.get(metric)?.unit || '').toUpperCase();
-            const s = seriesMap.get(metric);
-            const points = toPoints(s, unit);
-            const id = datasetIdFor(metric);
-            if (!p.datasets.has(id)) {
-                const yAxis = axisByUnit(unit);
-                const ds = {
-                    _id: id,
-                    label: optionMap.get(metric)?.label || metric,
-                    data: points,
-                    parsing: { xAxisKey: 'x', yAxisKey: 'y' },
-                    borderColor: color,
-                    backgroundColor: color,
-                    tension: 0.25,
-                    pointRadius: 0,
-                    pointHoverRadius: 4,
-                    fill: false,
-                    spanGaps: true,
-                    yAxisID: yAxis,
-                    _saUnit: unit
-                };
-                p.chart.data.datasets.push(ds);
-                p.datasets.add(id);
-                groupSet.add(id);
-                changed = true;
-            }
-        }
-
-        if (changed) {
-            p.groups.set(metric, groupSet);
-            renderPlotGroupChips(plotId);
-            applyAutoYAxisScaling(p.chart);
-            p.chart.update();
-            updateEmptyState(plotId);
-            resizeAllCharts();
-            syncAsideActiveStates();
-        }
-    }
-
-    function removeMetricGroupFromPlot(plotId, metric){
-        const p = plots.get(plotId); if (!p) return;
-        const ids = p.groups.get(metric) || new Set();
-        p.chart.data.datasets = (p.chart.data.datasets || []).filter(ds => !ids.has(ds._id));
-        ids.forEach(id => p.datasets.delete(id));
-        p.groups.delete(metric);
-        renderPlotGroupChips(plotId);
-        applyAutoYAxisScaling(p.chart);
-        p.chart.update();
-        updateEmptyState(plotId);
-        resizeAllCharts();
-        syncAsideActiveStates();
-    }
-
-    function toggleMetricGroupOnPlot(plotId, metric){
-        const p = plots.get(plotId); if (!p) return;
-        if (p.groups.has(metric)) removeMetricGroupFromPlot(plotId, metric);
-        else addMetricGroupToPlot(plotId, metric);
-    }
-
-    function removeMetricGroupFromAllPlots(metric){
-        for (const [plotId] of plots) removeMetricGroupFromPlot(plotId, metric);
-        syncAsideActiveStates();
-    }
-
-    function moveGroupToPlot(metric, fromPlotId, toPlotId){
-        if (fromPlotId === toPlotId) return;
-        removeMetricGroupFromPlot(fromPlotId, metric);
-        addMetricGroupToPlot(toPlotId, metric);
-        const fromStrip = document.querySelector(`.si-plot-card[data-plot-id="${fromPlotId}"] .si-plot__datasets`);
-        const toStrip   = document.querySelector(`.si-plot-card[data-plot-id="${toPlotId}"] .si-plot__datasets`);
-        if (fromStrip) markDatasetsStripState(fromStrip);
-        if (toStrip)   markDatasetsStripState(toStrip);
-    }
-
-    // 플롯 상단 칩(그룹 단위) — 드래그 이동 허용
-    function renderPlotGroupChips(plotId){
-        const p = plots.get(plotId); if (!p) return;
-        const wrap = p.el.querySelector('.si-plot__datasets');
-        const hasAny = p.chart.data.datasets.length > 0;
-
-        wrap.innerHTML = '';
-        wrap.classList.add('si-dropzone');
-        wrap.setAttribute('data-empty', hasAny ? 'false' : 'true');
-
-        if (!hasAny) return;
-
-        for (const [groupId, children] of p.groups){
-            const opt = optionMap.get(groupId);
-            const color = colorForMetric(groupId);
-            const label = opt?.label || groupId;
-            const empty = [...children].every(id => {
-                const ds = p.chart.data.datasets.find(d => d._id === id);
-                return !ds || !Array.isArray(ds.data) || ds.data.length === 0;
-            });
-
-            const chip = document.createElement('div');
-            chip.className='si-ds-chip';
-            chip.dataset.groupId = groupId;
-            chip.style.touchAction = 'none';
-            chip.setAttribute('draggable','false');
-            chip.addEventListener('dragstart', e => e.preventDefault());
-            chip.innerHTML = `
-        <span class="si-grip" aria-hidden="true">⋮</span>
-        <span class="si-ds-chip__dot" style="background:${color}"></span>
-        <span class="si-ds-chip__label">${escapeHtml(label)}</span>
-        <small class="si-ds-chip__empty" aria-hidden="true" style="color:#94a3b8;">${empty ? '(데이터 없음)' : ''}</small>
-        <button type="button" class="si-ds-chip__rm" data-no-drag title="제거" aria-label="제거">×</button>
-      `;
-
-            const rm = chip.querySelector('.si-ds-chip__rm');
-            rm.addEventListener('click', (ev)=> {
-                ev.preventDefault();
-                ev.stopPropagation();
-                removeMetricGroupFromPlot(plotId, groupId);
-                const strip = chip.closest('.si-plot__datasets');
-                if (strip) markDatasetsStripState(strip);
-            });
-
-            enablePointerDnD(
-                chip,
-                () => ({ type:'datasetGroup', groupId, fromPlotId: plotId }),
-                (targetStrip, payload, done) => {
-                    const toPlotId = targetStrip.closest('.si-plot-card')?.dataset.plotId || plotId;
-                    moveGroupToPlot(payload.groupId, payload.fromPlotId, toPlotId);
-                    markDatasetsStripState(targetStrip);
-                    done();
-                }
-            );
-
-            wrap.appendChild(chip);
-        }
-    }
-
-    // aside 칩 상태 동기화 (활성 플롯 기준)
-    function syncAsideActiveStates(){
-        const active = getActivePlotId();
-        const activeGroups = active ? (plots.get(active)?.groups || new Map()) : new Map();
-        document.querySelectorAll('.service-insight__metrics .si-chip.si-chip--toggle').forEach(chip=>{
-            const metric = chip.dataset.metric;
-            const on = activeGroups.has(metric);
-            chip.classList.toggle('is-active', !!on);
-            chip.setAttribute('aria-pressed', on ? 'true' : 'false');
-        });
-    }
-
-    function updateRangeControlsState(meta) {
-        if (!meta) return;
-
-        const selectedRange = typeof meta.selectedRange === 'string' ? meta.selectedRange : '';
-        const customActive = !!meta.customRangeActive;
-        const startValue = meta.startDate != null ? String(meta.startDate) : '';
-        const endValue = meta.endDate != null ? String(meta.endDate) : '';
-
-        document.querySelectorAll('.si-range__quick .si-range__btn').forEach(btn => {
-            const value = btn.getAttribute('data-range') || '';
-            const isActive = !customActive && selectedRange && value === selectedRange;
-            btn.classList.toggle('btn-primary', isActive);
-            btn.classList.toggle('btn-outline-primary', !isActive);
-            btn.setAttribute('aria-pressed', isActive ? 'true' : 'false');
-        });
-
-        if (rangeStartInput) rangeStartInput.value = startValue;
-        if (rangeEndInput) rangeEndInput.value = endValue;
-
-        setCustomRangeOpen(customActive);
-    }
-
-    function updateBrowserUrl(meta) {
-        if (!window.history || !window.history.replaceState) return;
-        const url = new URL(window.location.href);
-        url.searchParams.delete('range');
-        url.searchParams.delete('startDate');
-        url.searchParams.delete('endDate');
-
-        if (meta && typeof meta.selectedRange === 'string' && meta.selectedRange) {
-            url.searchParams.set('range', meta.selectedRange);
-        }
-
-        if (meta && meta.customRangeActive) {
-            if (meta.startDate) url.searchParams.set('startDate', meta.startDate);
-            if (meta.endDate) url.searchParams.set('endDate', meta.endDate);
-        }
-
-        const query = url.searchParams.toString();
-        const next = url.pathname + (query ? `?${query}` : '');
-        window.history.replaceState(null, document.title, next);
-    }
-
-    async function requestAndApplyRange(target, fallbackHref) {
-        let url;
-        try {
-            url = target instanceof URL ? target : new URL(String(target), window.location.origin || window.location.href);
-        } catch (error) {
-            console.warn('Invalid service insight range URL.', error);
-            if (fallbackHref) window.location.href = fallbackHref;
-            return;
-        }
-
-        try {
-            const response = await fetch(url.toString(), {
-                method: 'GET',
-                headers: { 'Accept': 'application/json' },
-                credentials: 'same-origin'
-            });
-
-            if (!response.ok) {
-                throw new Error(`HTTP ${response.status}`);
-            }
-
-            const data = await response.json();
-            if (!data || typeof data !== 'object' || !data.viewModel) {
-                throw new Error('Invalid response payload');
-            }
-
-            applyViewModelPayload(data.viewModel);
-            refreshAllPlots();
-            updateRangeControlsState(data);
-            updateBrowserUrl(data);
-
-            if (data.error) {
-                console.warn('Service insight stats responded with a fallback dataset.');
-            }
-        } catch (error) {
-            console.warn('Failed to refresh service insight data without reloading.', error);
-            if (fallbackHref) {
-                window.location.href = fallbackHref;
-            }
-        }
-    }
-
-    function setupRangeControls() {
-        if (rangeQuickContainer) {
-            rangeQuickContainer.querySelectorAll('.si-range__btn').forEach(btn => {
-                btn.addEventListener('click', (event) => {
-                    if (event.defaultPrevented) return;
-                    if (event.button !== 0) return;
-                    if (event.metaKey || event.ctrlKey || event.shiftKey || event.altKey) return;
-
-                    const href = btn.getAttribute('href');
-                    if (!href) return;
-
-                    event.preventDefault();
-                    setCustomRangeOpen(false);
-                    const absoluteHref = btn.href || href;
-                    requestAndApplyRange(absoluteHref, absoluteHref);
-                });
-            });
-        }
-
-        if (rangeCustomToggle && rangeForm) {
-            rangeCustomToggle.addEventListener('click', (event) => {
-                event.preventDefault();
-                const currentlyOpen = rangeForm.classList.contains('is-open');
-                const next = !currentlyOpen;
-                setCustomRangeOpen(next);
-                if (next && rangeStartInput) {
-                    try { rangeStartInput.focus(); } catch (_) {}
-                }
-            });
-        }
-
-        if (rangeForm) {
-            rangeForm.addEventListener('submit', (event) => {
-                if (event.defaultPrevented) return;
-                event.preventDefault();
-
-                const base = rangeForm.getAttribute('action') || dataEndpoint || window.location.pathname;
-                let url;
-                try {
-                    url = new URL(base, window.location.origin || window.location.href);
-                } catch (error) {
-                    console.warn('Invalid service insight form action URL.', error);
-                    if (typeof rangeForm.submit === 'function') {
-                        rangeForm.submit();
-                    }
-                    return;
-                }
-
-                url.searchParams.set('range', 'custom');
-
-                const startValue = rangeStartInput?.value ? rangeStartInput.value.trim() : '';
-                const endValue = rangeEndInput?.value ? rangeEndInput.value.trim() : '';
-
-                if (startValue) url.searchParams.set('startDate', startValue);
-                else url.searchParams.delete('startDate');
-
-                if (endValue) url.searchParams.set('endDate', endValue);
-                else url.searchParams.delete('endDate');
-
-                requestAndApplyRange(url, url.toString());
-            });
-        }
-    }
-
-    // 컨트롤
-    if (addPlotBtn) addPlotBtn.addEventListener('click', ()=> createPlot());
-    if (clearAllBtn) clearAllBtn.addEventListener('click', ()=>{
-        for (const [plotId, p] of plots){
-            p.chart.data.datasets = [];
-            p.datasets.clear();
-            p.groups.clear();
-            p.chart.update();
-            renderPlotGroupChips(plotId);
-            updateEmptyState(plotId);
-        }
-        resizeAllCharts();
-        syncAsideActiveStates();
-    });
-
-    // 초기 렌더
-    renderGroups();
-    createPlot();
-    setupRangeControls();
-
-    // 툴팁 초기화
-    window.addEventListener('load', () => initTooltipsIn(document));
-
-    // 전역: 드래그 중 기본 drag/select/스크롤 억제
-    document.addEventListener('dragstart', (e) => {
-        if (document.body.classList.contains('is-dragging')) e.preventDefault();
-    }, true);
-    document.addEventListener('selectstart', (e) => {
-        if (document.body.classList.contains('is-dragging')) e.preventDefault();
-    }, true);
-    window.addEventListener('touchmove', (e) => {
-        if (document.body.classList.contains('is-dragging')) e.preventDefault();
-    }, { passive: false });
-
-    // ===== DnD 유틸 =====
-    function enablePointerDnD(el, onDragData, onDropToStrip){
-        let dragging = false;
-        let ghost = null;
-
-        const onPointerDown = (e)=>{
-            if (e.target?.hasAttribute?.('data-no-drag')) return;
-            dragging = true;
-            document.body.classList.add('is-dragging');
-            el.classList.add('is-dragging');
-            const rect = el.getBoundingClientRect();
-
-            ghost = el.cloneNode(true);
-            ghost.classList.add('si-ds-chip--ghost');
-            ghost.style.position = 'fixed';
-            ghost.style.pointerEvents = 'none';
-            ghost.style.left = `${e.clientX - rect.width/2}px`;
-            ghost.style.top  = `${e.clientY - rect.height/2}px`;
-            ghost.style.width = `${rect.width}px`;
-            ghost.style.opacity = '0.75';
-            ghost.style.zIndex = '1050';
-            document.body.appendChild(ghost);
-
-            e.preventDefault();
-        };
-
-        const onPointerMove = (e)=>{
-            if (!dragging || !ghost) return;
-            ghost.style.left = `${e.clientX - ghost.offsetWidth/2}px`;
-            ghost.style.top  = `${e.clientY - ghost.offsetHeight/2}px`;
-        };
-
-        const onPointerUp = (e)=>{
-            if (!dragging) return;
-            dragging = false;
-            document.body.classList.remove('is-dragging');
-            el.classList.remove('is-dragging');
-            if (ghost) { ghost.remove(); ghost = null; }
-
-            // drop target 판별
-            const targetStrip = document.elementFromPoint(e.clientX, e.clientY)?.closest?.('.si-plot__datasets.si-dropzone');
-            if (targetStrip) {
-                const payload = typeof onDragData === 'function' ? onDragData() : onDragData;
-                if (payload && typeof onDropToStrip === 'function') {
-                    onDropToStrip(targetStrip, payload, ()=>{});
-                }
-            }
-        };
-
-        el.addEventListener('pointerdown', onPointerDown);
-        window.addEventListener('pointermove', onPointerMove);
-        window.addEventListener('pointerup', onPointerUp);
-    }
-})();
-
-
-// ===== resources/static/js/service-insight.mobile.js =====
-// ===== resources/static/js/service-insight.mobile.js =====
-// 모바일 전용 보조 스크립트: 데이터 패널(#si-data-panel) + 타이틀(#si-target-title) 이동
-(function () {
-    const MOBILE_MAX = 991.98;
-
-    function q(id){ return document.getElementById(id); }
-
-    function relocate() {
-        const panel = q('si-data-panel');
-        const desktopPanelAnchor = q('si-groups-desktop-anchor');
-        const mobilePanelHost = q('si-data-panel-mobile-host');
-
-        const title = q('si-target-title');
-        const desktopTitleAnchor = q('si-target-title-desktop-anchor');
-        const mobileTitleHost = q('si-target-title-mobile-host');
-
-        if (!panel || !desktopPanelAnchor || !mobilePanelHost) return;
-        if (!title || !desktopTitleAnchor || !mobileTitleHost) return;
-
-        const isMobile = window.innerWidth <= MOBILE_MAX;
-
-        // 패널 이동
-        const panelParent = panel.parentElement;
-        if (isMobile && panelParent !== mobilePanelHost) {
-            mobilePanelHost.appendChild(panel);
-        } else if (!isMobile && panelParent !== desktopPanelAnchor) {
-            desktopPanelAnchor.appendChild(panel);
-        }
-
-        // 타이틀 이동 (단일 표시 지점 보장)
-        const titleParent = title.parentElement;
-        if (isMobile && titleParent !== mobileTitleHost) {
-            mobileTitleHost.prepend(title);
-        } else if (!isMobile && titleParent !== desktopTitleAnchor) {
-            desktopTitleAnchor.prepend(title);
-        }
-    }
-
-    // FAB 가시성 제어: 바텀시트 열릴 때 숨기고, 닫히면 복원
-    function setupFabVisibility(){
-        const fab = q('si-fab');            // FAB 버튼
-        const sheet = q('siDataPicker');    // 데이터 선택 바텀시트(Offcanvas)
-        if (!fab || !sheet) return;
-
-        const hideFab = () => {
-            // 모바일 CSS가 #si-fab { display: inline-flex !important; }이므로
-            // inline + !important로 안전하게 가린다.
-            try {
-                fab.style.setProperty('display', 'none', 'important');
-            } catch {
-                fab.style.display = 'none';
-            }
-        };
-        const showFab = () => {
-            fab.style.removeProperty('display'); // CSS 원래 규칙으로 복귀
-        };
-
-        sheet.addEventListener('show.bs.offcanvas', hideFab);
-        sheet.addEventListener('hidden.bs.offcanvas', showFab);
-
-        // 새로고침 등으로 시트가 이미 열려있는 경우 대비
-        if (sheet.classList.contains('show')) hideFab();
-    }
-
-    // helper: 실제 화면에 보이는지 판단 (fixed 요소 대응)
-    function isElementShown(el){
-        if (!el) return false;
-        const cs = window.getComputedStyle(el);
-        if (cs.display === 'none' || cs.visibility === 'hidden' || cs.opacity === '0') return false;
-        // fixed 요소는 offsetParent가 null일 수 있으므로 rect 기반으로 판단
-        return el.getClientRects().length > 0;
-    }
-
-    // 최초 진입 툴팁: "보고 싶은 데이터를 선택하세요"
-    function setupFabFirstRunTooltip(){
-        const fab   = q('si-fab');
-        const sheet = q('siDataPicker');
-        // Bootstrap 전역 객체가 없으면 조용히 패스 (필수는 아님)
-        if (!fab || !window.bootstrap || !window.bootstrap.Tooltip) return;
-
-        const KEY = 'si.fab.tooltip.dismissed';
-        const isMobile = window.innerWidth <= MOBILE_MAX;
-
-        // 세션 저장소로만 체크: 이 세션에서 한 번 닫으면 다시 안 뜨지만, 새 세션에서는 다시 뜸
-        let dismissed = false;
-        try {
-            dismissed = (sessionStorage.getItem(KEY) === '1');
-        } catch (_) {
-            // sessionStorage 접근 불가 환경에서는 안내를 계속 띄우도록 false 유지
-        }
-
-        if (!isMobile || dismissed) return;
-
-        // 혹시 기존 인스턴스가 있다면 정리
-        const prev = window.bootstrap.Tooltip.getInstance(fab);
-        if (prev) { try { prev.dispose(); } catch(_){} }
-
-        const tip = new window.bootstrap.Tooltip(fab, {
-            trigger: 'manual',
-            placement: 'left',           // FAB 위치 특성상 좌측이 자연스러움
-            container: 'body',
-            customClass: 'tooltip-bubble',
-            title: '보고 싶은 데이터를 선택하세요'
-        });
-
-        const maybeShow = () => {
-            // 시트가 열려 있으면 미표시
-            if (sheet && sheet.classList.contains('show')) return;
-            if (!isElementShown(fab)) return;
-            try { tip.show(); } catch(_) {}
-        };
-
-        // 사용자 상호작용 시: 이 세션에서만 영구 비표시
-        const onClick = () => {
-            try { tip.hide(); } catch(_) {}
-            try { sessionStorage.setItem(KEY, '1'); } catch(_) {}
-            fab.removeEventListener('click', onClick);
-            window.removeEventListener('resize', onResizeCheck);
-        };
-
-        // 레이아웃 안정 후 노출
-        setTimeout(maybeShow, 500);
-
-        // 바텀시트가 열릴 때는 숨기고, 닫히면(아직 미해제라면) 다시 한 번 보여줌
-        if (sheet) {
-            sheet.addEventListener('show.bs.offcanvas', () => { try { tip.hide(); } catch(_) {} });
-            sheet.addEventListener('hidden.bs.offcanvas', () => {
-                // 세션에서만 체크
-                let stillDismissed = false;
-                try { stillDismissed = (sessionStorage.getItem(KEY) === '1'); } catch(_) {}
-                if (!stillDismissed) setTimeout(maybeShow, 250);
-            });
-        }
-
-        // 리사이즈 시 모바일 유지되는 동안만 안내 (데스크탑 전환 시 숨김)
-        const onResizeCheck = () => {
-            if (window.innerWidth > MOBILE_MAX) { try { tip.hide(); } catch(_) {} }
-        };
-
-        fab.addEventListener('click', onClick, { once: true });
-        window.addEventListener('resize', onResizeCheck);
-    }
-
-    // === 그룹 헤더 테마 색 + 기본 접힘 + 드롭다운 인디케이터(왼쪽) ===
-    function injectGroupThemeCss(){
-        if (document.getElementById('si-group-theme-style')) return;
-        const style = document.createElement('style');
-        style.id = 'si-group-theme-style';
-        style.textContent = `
-/* 공통 스코프: 데스크탑(.service-insight) + 모바일 바텀시트(#siDataPicker) */
-:is(.service-insight,#siDataPicker) details.si-group {
-  border-radius: 10px;
-  overflow: hidden;
-}
-:is(.service-insight,#siDataPicker) .si-group__summary{
-  position: relative;
-  display: flex;
-  align-items: center;
-  gap: .5rem;
-  padding: .75rem .875rem .75rem 2rem; /* 왼쪽 chevron 공간 확보 */
-  background: linear-gradient(90deg, rgba(var(--group-accent-rgb), .10), rgba(var(--group-accent-rgb), 0) 70%);
-  border-left: 6px solid rgba(var(--group-accent-rgb), .90);
-  cursor: pointer;
-  user-select: none;
-  transition: background-color .18s ease, box-shadow .18s ease;
-}
-:is(.service-insight,#siDataPicker) .si-group[open] .si-group__summary{
-  background: linear-gradient(90deg, rgba(var(--group-accent-rgb), .14), rgba(var(--group-accent-rgb), .03) 70%);
-}
-:is(.service-insight,#siDataPicker) .si-group__summary:hover{
-  box-shadow: inset 0 0 0 999px rgba(var(--group-accent-rgb), .03);
-}
-/* 드롭다운 꺾쇠(왼쪽) */
-:is(.service-insight,#siDataPicker) .si-group__summary::before{
-  content: "";
-  position: absolute;
-  left: .625rem;
-  top: 50%;
-  width: .6rem;
-  height: .6rem;
-  margin-top: -.3rem;
-  border-right: 2px solid rgba(var(--group-accent-rgb), .80);
-  border-bottom: 2px solid rgba(var(--group-accent-rgb), .80);
-  transform: translateY(-50%) rotate(-45deg); /* 닫힘: ∨ 느낌 */
-  transition: transform .16s ease, border-color .16s ease, opacity .16s ease;
-  opacity: .95;
-}
-:is(.service-insight,#siDataPicker) .si-group[open] .si-group__summary::before{
-  transform: translateY(-50%) rotate(45deg); /* 펼침: ∧ 느낌 */
-  opacity: 1;
-}
-/* 액션 버튼 hover에 포커스 색상 */
-:is(.service-insight,#siDataPicker) .si-group__btn:hover{
-  color: rgb(var(--group-accent-rgb)) !important;
-  border-color: rgba(var(--group-accent-rgb), .6) !important;
-}
-/* 그룹별 팔레트: hue 대비를 키워 확실히 구분 (collection=블루, user=그린, id=레드, others=퍼플) */
-:is(.service-insight,#siDataPicker) .si-group { --group-accent-rgb: 59,130,246; }            /* 기본 파랑 */
-:is(.service-insight,#siDataPicker) .si-group--collection { --group-accent-rgb: 37,99,235; }  /* 새록: blue-600 */
-:is(.service-insight,#siDataPicker) .si-group--user       { --group-accent-rgb: 5,150,105; }  /* 유저: emerald-600 */
-:is(.service-insight,#siDataPicker) .si-group--id         { --group-accent-rgb: 220,38,38; }  /* 동정 요청: red-600 */
-:is(.service-insight,#siDataPicker) .si-group--others     { --group-accent-rgb: 139,92,246; } /* 기타: violet-500 */
-
-/* [+ 전체] [- 전체] 버튼 미관 개선 */
-:is(.service-insight,#siDataPicker) .si-bulk-btn {
-  --btn-bg: rgba(0,0,0,.02);
-  --btn-bd: rgba(0,0,0,.12);
-  --btn-bg-h: rgba(0,0,0,.04);
-  --btn-bd-h: rgba(0,0,0,.28);
-  display: inline-flex;
-  align-items: center;
-  gap: .35rem;
-  padding: .25rem .6rem;
-  font-size: .85rem;
-  line-height: 1.1;
-  border-radius: 999px;
-  border: 1px solid var(--btn-bd);
-  background: var(--btn-bg);
-  text-decoration: none !important;
-}
-:is(.service-insight,#siDataPicker) .si-bulk-btn:hover{
-  background: var(--btn-bg-h);
-  border-color: var(--btn-bd-h);
-}
-:is(.service-insight,#siDataPicker) .si-bulk-toolbar{
-  display: flex;
-  gap: .5rem;
-  align-items: center;
-  justify-content: flex-end;
-  flex-wrap: wrap;
-}
-        `.trim();
-        document.head.appendChild(style);
-    }
-
-    function setupGroupThemingAndCollapse(){
-        const containers = [
-            document.getElementById('si-groups'),
-            document.getElementById('siDataPicker')
-        ].filter(Boolean);
-
-        const applyTo = (root) => {
-            const groups = Array.from(root.querySelectorAll('details.si-group'));
-            if (!groups.length) return false;
-
-            groups.forEach((details) => {
-                // 1) 기본 접힘
-                details.open = false;
-
-                // 2) 이름 -> 키 매핑 후 테마 클래스 부여 (새록 => collection)
-                const name = details.querySelector('.si-group__title')?.textContent?.trim() || '';
-                let key = 'others';
-                if (name.includes('새록')) key = 'collection';
-                else if (name.includes('유저')) key = 'user';
-                else if (name.includes('동정')) key = 'id';
-
-                details.classList.remove('si-group--privacy','si-group--collection','si-group--user','si-group--id','si-group--others');
-                details.classList.add(`si-group--${key}`);
-
-                // 3) summary 기본 클래스 보강 (없다면 붙여 UI 일관화)
-                const summary = details.querySelector('summary');
-                if (summary && !summary.classList.contains('si-group__summary')) {
-                    summary.classList.add('si-group__summary');
-                }
-            });
-            return true;
-        };
-
-        // 즉시 적용 시도
-        let foundAny = false;
-        containers.forEach(root => { if (applyTo(root)) foundAny = true; });
-
-        // 렌더가 늦는 경우를 대비해 컨테이너별로 감시
-        if (!foundAny) {
-            containers.forEach(root => {
-                const mo = new MutationObserver(() => {
-                    if (applyTo(root)) mo.disconnect();
-                });
-                mo.observe(root, { childList: true, subtree: true });
-            });
-        }
-    }
-
-    // [+ 전체] / [- 전체] 컨트롤을 세련된 pill 버튼으로 치장 (기존 클릭 동작 유지)
-    function setupBulkControlStyling(){
-        const SCOPE_SEL = '#si-groups, #siDataPicker';
-        const enhance = (root) => {
-            const nodes = Array.from(root.querySelectorAll('button, a'));
-            if (!nodes.length) return;
-
-            const isPlus = (t) => /\[\+\s*전체\]/.test(t) || /모두\s*펼치기/.test(t);
-            const isMinus = (t) => /\[-\s*전체\]/.test(t) || /모두\s*접기/.test(t);
-
-            let plusEl = null, minusEl = null;
-
-            nodes.forEach(el => {
-                if (el.dataset.siEnhanced) return;
-                const text = (el.textContent || '').trim();
-
-                if (isPlus(text)) {
-                    el.classList.add('si-bulk-btn');
-                    el.setAttribute('data-si-enhanced','1');
-                    el.innerHTML = '<i class="bi bi-chevron-double-down"></i><span>모두 펼치기</span>';
-                    if (el.tagName === 'BUTTON' && !el.getAttribute('type')) el.setAttribute('type','button');
-                    plusEl = el;
-                } else if (isMinus(text)) {
-                    el.classList.add('si-bulk-btn');
-                    el.setAttribute('data-si-enhanced','1');
-                    el.innerHTML = '<i class="bi bi-chevron-double-up"></i><span>모두 접기</span>';
-                    if (el.tagName === 'BUTTON' && !el.getAttribute('type')) el.setAttribute('type','button');
-                    minusEl = el;
-                }
-            });
-
-            // 두 버튼의 부모에 툴바 정렬 보강
-            const host = plusEl?.parentElement || minusEl?.parentElement;
-            if (host && !host.classList.contains('si-bulk-toolbar')) {
-                host.classList.add('si-bulk-toolbar');
-            }
-        };
-
-        document.querySelectorAll(SCOPE_SEL).forEach(enhance);
-
-        // 동적 렌더 대응
-        const roots = document.querySelectorAll(SCOPE_SEL);
-        roots.forEach(root => {
-            const mo = new MutationObserver(() => enhance(root));
-            mo.observe(root, { childList: true, subtree: true });
-        });
-    }
-
-    // 초기/리사이즈
-    let t = null;
-    function onResize(){
-        clearTimeout(t);
-        t = setTimeout(relocate, 120);
-    }
-
-    if (document.readyState === 'loading') {
-        document.addEventListener('DOMContentLoaded', () => {
-            relocate();
-            setupFabVisibility();
-            setupFabFirstRunTooltip();
-            injectGroupThemeCss();
-            setupGroupThemingAndCollapse();
-            setupBulkControlStyling();
-            window.addEventListener('resize', onResize);
-        });
-    } else {
-        relocate();
-        setupFabVisibility();
-        setupFabFirstRunTooltip();
-        injectGroupThemeCss();
-        setupGroupThemingAndCollapse();
-        setupBulkControlStyling();
-        window.addEventListener('resize', onResize);
-    }
-})();
-
-
-// ===== resources/static/js/service-insight.target.js =====
-// ===== resources/static/js/service-insight.target.js =====
-(function () {
-    const grid   = document.getElementById('si-plot-grid');
-    const select = document.getElementById('si-target-select');
-    const groups = document.getElementById('si-groups');
-    const offcanvasEl = document.getElementById('siDataPicker');
-    if (!grid || !select || !groups) return;
-
-    /* ---------- Helpers ---------- */
-    function getActivePlotCard() {
-        return grid.querySelector('.si-plot-card.si-plot--active');
-    }
-
-    function getActivePlotIdFromDOM() {
-        const active = getActivePlotCard();
-        return active ? active.getAttribute('data-plot-id') : null;
-    }
-
-    function listPlots() {
-        return Array.from(grid.querySelectorAll('.si-plot-card')).map((card, idx) => {
-            const id = card.getAttribute('data-plot-id') || String(idx + 1);
-            const titleEl = card.querySelector('.si-plot__title');
-            const title = (titleEl?.textContent?.trim()) || `플롯 ${idx + 1}`;
-            return { id, title, index: idx + 1 };
-        });
-    }
-
-    function ensureActivePlotViaDom(id) {
-        const card = id && grid.querySelector(`.si-plot-card[data-plot-id="${CSS.escape(id)}"]`);
-        if (!card) return;
-        const ev = new MouseEvent('mousedown', { bubbles: true, cancelable: true, view: window });
-        card.dispatchEvent(ev);
-    }
-
-    // 🔧 FIX: aside 칩에서 metric 키 추출
-    function getChipKey(chip) {
-        return chip.getAttribute('data-metric')
-            || chip.getAttribute('data-key')
-            || chip.getAttribute('data-dsid')
-            || chip.getAttribute('data-dataset-id')
-            || chip.getAttribute('data-id')
-            || null;
-    }
-
-    // 🔧 FIX: 플롯 카드 안에서 해당 metric이 포함되어 있는지 확인
-    // 플롯 내부에는 data-group-id로 저장되어 있음!
-    function activePlotContainsKey(key) {
-        if (!key) return false;
-        const card = getActivePlotCard();
-        if (!card) return false;
-
-        // 플롯 카드 안의 데이터셋 칩들을 검색 (data-group-id로 저장됨)
-        const selector = `[data-group-id="${CSS.escape(key)}"]`;
-        const found = !!card.querySelector(selector);
-
-        return found;
-    }
-
-    /* ---------- Select ↔ Focus 동기화 ---------- */
-    function refreshSelectOptions() {
-        const active = getActivePlotIdFromDOM();
-        const items = listPlots();
-        const prev = select.value;
-
-        select.innerHTML = '';
-        items.forEach(({id, index}) => {
-            const opt = document.createElement('option');
-            opt.value = id;
-            opt.textContent = String(index);
-            select.appendChild(opt);
-        });
-
-        if (items.length) {
-            const toSelect = (prev && items.some(i => i.id === prev)) ? prev : (active || items[0].id);
-            select.value = toSelect;
-        }
-    }
-
-    function syncSelectToActive() {
-        const active = getActivePlotIdFromDOM();
-        if (active && select.value !== active) select.value = active;
-    }
-
-    select.addEventListener('change', () => {
-        const picked = select.value;
-        if (picked) ensureActivePlotViaDom(picked);
-        scheduleChecklist();
-    });
-
-    /* ---------- 체크 인디케이터 ---------- */
-    function computeChipChecked(chip) {
-        const key = getChipKey(chip);
-
-        // 1순위: 활성 플롯에 실제로 포함되어 있는지 확인
-        if (key) {
-            const isInPlot = activePlotContainsKey(key);
-            return isInPlot;
-        }
-
-        // 2순위: 휴리스틱 (key가 없는 경우)
-        const ap = chip.getAttribute('aria-pressed');
-        const ac = chip.getAttribute('aria-checked');
-        const cls = chip.className || '';
-        const truthyAttr = (v) => v === 'true' || v === '1';
-        return truthyAttr(ap) || truthyAttr(ac) || /\b(is-)?(active|selected|on)\b/.test(cls);
-    }
-
-    function updateChecklist() {
-        // PC와 모바일 모두의 칩을 찾아서 업데이트
-        const chips = document.querySelectorAll('#si-data-panel .si-chip.si-chip--toggle');
-
-        chips.forEach(chip => {
-            const checked = computeChipChecked(chip);
-            chip.setAttribute('data-checked', checked ? 'true' : 'false');
-
-            // 디버깅용 로그 (필요시 주석 해제)
-            // const key = getChipKey(chip);
-            // console.log('[Checklist]', key, 'checked:', checked);
-        });
-    }
-
-    // 즉시 + 다음 프레임 조합으로 확실하게 갱신
-    const scheduleChecklist = (() => {
-        let rafId = null;
-        let timeoutId = null;
-
-        return function () {
-            // 즉시 실행
-            updateChecklist();
-
-            // RAF로 한 번 더
-            if (rafId) cancelAnimationFrame(rafId);
-            rafId = requestAnimationFrame(() => {
-                updateChecklist();
-                rafId = null;
-
-                // 그래도 안전하게 한 번 더 (비동기 처리 대비)
-                if (timeoutId) clearTimeout(timeoutId);
-                timeoutId = setTimeout(() => {
-                    updateChecklist();
-                    timeoutId = null;
-                }, 50);
-            });
-        };
-    })();
-
-    // 칩 상호작용 이벤트
-    groups.addEventListener('click', scheduleChecklist, false);
-    groups.addEventListener('pointerup', scheduleChecklist, false);
-    groups.addEventListener('keyup', (e) => {
-        if (e.key === 'Enter' || e.key === ' ') scheduleChecklist();
-    }, false);
-    groups.addEventListener('change', scheduleChecklist, false);
-
-    // DOM 변경 관찰
-    const obsGroups = new MutationObserver(() => {
-        scheduleChecklist();
-    });
-    obsGroups.observe(groups, {
-        subtree: true,
-        childList: true,
-        attributes: true,
-        attributeFilter: ['class', 'aria-pressed', 'aria-checked']
-    });
-
-    // 플롯 구조 변경 관찰
-    const obsGrid = new MutationObserver(() => {
-        refreshSelectOptions();
-        syncSelectToActive();
-        scheduleChecklist();
-    });
-    obsGrid.observe(grid, {
-        childList: true,
-        subtree: true,
-        attributes: true,
-        attributeFilter: ['class', 'data-plot-id']
-    });
-
-    // Offcanvas 이벤트
-    if (offcanvasEl) {
-        offcanvasEl.addEventListener('show.bs.offcanvas', () => {
-            refreshSelectOptions();
-            syncSelectToActive();
-            scheduleChecklist();
-        });
-
-        offcanvasEl.addEventListener('shown.bs.offcanvas', () => {
-            scheduleChecklist();
-        });
-
-        // 닫힐 때도 갱신 (다음 열림을 대비)
-        offcanvasEl.addEventListener('hidden.bs.offcanvas', () => {
-            scheduleChecklist();
-        });
-    }
-
-    // 초기 동기화
-    if (document.readyState === 'loading') {
-        document.addEventListener('DOMContentLoaded', () => {
-            refreshSelectOptions();
-            syncSelectToActive();
-            scheduleChecklist();
-        });
-    } else {
-        refreshSelectOptions();
-        syncSelectToActive();
-        scheduleChecklist();
-    }
-
-    /* ---------- 코어 syncAsideActiveStates 오버라이드 ---------- */
-    try {
-        const original = window.syncAsideActiveStates;
-
-        window.syncAsideActiveStates = function patchedSyncAsideActiveStates() {
-            // 1) 코어 로직 실행 (데스크톱 칩 갱신)
-            if (typeof original === 'function') {
-                try {
-                    original();
-                } catch (e) {
-                    console.warn('[SyncAsideActiveStates] Original failed:', e);
-                }
-            }
-
-            // 2) 모바일 포함 모든 칩 갱신
-            const allChips = document.querySelectorAll('#si-data-panel .si-chip.si-chip--toggle');
-
-            allChips.forEach(chip => {
-                const key = getChipKey(chip);
-                const isActive = key ? activePlotContainsKey(key) : false;
-
-                chip.classList.toggle('is-active', isActive);
-                chip.setAttribute('aria-pressed', isActive ? 'true' : 'false');
-            });
-
-            // 3) 체크 인디케이터도 갱신
-            scheduleChecklist();
-        };
-
-        console.log('[ServiceInsight] syncAsideActiveStates overridden successfully');
-
-    } catch (e) {
-        console.error('[ServiceInsight] Failed to override syncAsideActiveStates:', e);
-    }
-})();
-
-
-// ===== resources/templates/admin-audit/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy d-flex flex-wrap justify-content-between align-items-center gap-3">
-                <div>
-                    <div class="fw-semibold">관리자 활동 로그를 확인하세요</div>
-                    <div class="text-muted small">주요 관리자 활동이 시간순으로 기록됩니다.</div>
-                </div>
-                <form class="d-flex align-items-center gap-2" method="get">
-                    <input type="hidden" name="page" value="1">
-                    <label class="form-label small text-uppercase text-muted mb-0" for="pageSize">페이지당 표시</label>
-                    <select class="form-select form-select-sm" id="pageSize" name="size">
-                        <option th:each="option : ${pageSizeOptions}" th:value="${option}"
-                                th:selected="${option == size}" th:text="${option + '건'}">20건</option>
-                    </select>
-                    <button type="submit" class="btn btn-outline-secondary btn-sm">적용</button>
-                </form>
-            </div>
-        </div>
-
-        <div class="card card-elevated">
-            <div class="table-responsive table-shell d-none d-md-block">
-                <table class="table table-modern align-middle table-hover">
-                    <thead>
-                    <tr>
-                        <th scope="col">ID</th>
-                        <th scope="col">발생 시각</th>
-                        <th scope="col">관리자</th>
-                        <th scope="col">작업</th>
-                        <th scope="col">추가 정보</th>
-                    </tr>
-                    </thead>
-                    <tbody>
-                    <tr th:if="${loadErrorMessage != null}">
-                        <td colspan="5" class="text-center text-danger py-5" th:text="${loadErrorMessage}">
-                            관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.
-                        </td>
-                    </tr>
-                    <tr th:if="${loadErrorMessage == null && #lists.isEmpty(logs)}">
-                        <td colspan="5" class="text-center text-muted py-5">기록된 관리자 활동이 없습니다.</td>
-                    </tr>
-                    <tr th:each="log : ${logs}"
-                        th:with="hasTarget=${log.targetDisplay() != null and !#strings.isEmpty(log.targetDisplay())},
-                                 hasReport=${log.reportDisplay() != null and !#strings.isEmpty(log.reportDisplay())},
-                                 hasMetadata=${!#lists.isEmpty(log.metadataEntries())},
-                                 hasExtraInfo=${hasTarget or hasReport or hasMetadata}">
-                        <td class="text-muted" th:text="${'#' + log.id()}">#1</td>
-                        <td>
-                            <div class="fw-semibold"
-                                 th:text="${log.occurredAt() != null ? #temporals.format(log.occurredAt(), 'yyyy.MM.dd HH:mm') : '-'}">
-                                2025.01.01 10:00
-                            </div>
-                        </td>
-                        <td>
-                            <span class="fw-semibold" th:text="${log.adminNickname()}">운영자</span>
-                        </td>
-                        <td>
-                            <span class="badge" th:classappend="' ' + ${log.actionBadgeClass()}"
-                                  th:text="${log.actionLabel()}">신고 무시</span>
-                            <div class="small text-muted" th:text="${log.actionDescription()}">신고를 추가 조치 없이 마감했습니다.</div>
-                        </td>
-                        <td>
-                            <details class="audit-log-details" th:if="${hasExtraInfo}">
-                                <summary class="audit-log-details__summary">추가 정보 보기</summary>
-                                <div class="audit-log-details__content">
-                                    <ul class="list-unstyled small mb-0 d-flex flex-column gap-1">
-                                        <li th:if="${hasTarget}">
-                                            <span class="text-muted" th:text="|대상: ${log.targetDisplay()}|">대상: 컬렉션 신고 #12</span>
-                                        </li>
-                                        <li th:if="${hasReport}">
-                                            <span class="text-muted" th:text="|관련 신고: ${log.reportDisplay()}|">관련 신고: 신고 #12</span>
-                                        </li>
-                                        <li th:each="meta : ${log.metadataEntries()}">
-                                            <span class="text-muted" th:text="|${meta.key()}: ${meta.value()}|">사유: 스팸</span>
-                                        </li>
-                                    </ul>
-                                </div>
-                            </details>
-                            <span class="text-muted" th:unless="${hasExtraInfo}">-</span>
-                        </td>
-                    </tr>
-                    </tbody>
-                </table>
-            </div>
-            <div class="list-group list-group-flush d-md-none">
-                <div th:if="${loadErrorMessage != null}"
-                     class="list-group-item py-5 text-center text-danger"
-                     th:text="${loadErrorMessage}">
-                    관리자 활동 로그를 불러오지 못했습니다. 잠시 후 다시 시도해주세요.
-                </div>
-                <div th:if="${loadErrorMessage == null && #lists.isEmpty(logs)}"
-                     class="list-group-item py-5 text-center text-muted">
-                    기록된 관리자 활동이 없습니다.
-                </div>
-                <article class="list-group-item p-0 audit-log-card"
-                         th:if="${loadErrorMessage == null}"
-                         th:each="log : ${logs}"
-                         th:with="hasTarget=${log.targetDisplay() != null and !#strings.isEmpty(log.targetDisplay())},
-                                  hasReport=${log.reportDisplay() != null and !#strings.isEmpty(log.reportDisplay())},
-                                  hasMetadata=${!#lists.isEmpty(log.metadataEntries())},
-                                  hasExtraInfo=${hasTarget or hasReport or hasMetadata}">
-                    <div class="audit-log-card__content">
-                        <div class="d-flex flex-column gap-3">
-                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
-                                <div class="d-flex flex-column gap-2">
-                                    <div class="d-flex flex-wrap align-items-center gap-2">
-                                        <span class="badge" th:classappend="' ' + ${log.actionBadgeClass()}"
-                                              th:text="${log.actionLabel()}">신고 무시</span>
-                                        <span class="text-muted small" th:text="${'#' + log.id()}">#1</span>
-                                    </div>
-                                </div>
-                                <div class="text-end">
-                                    <div class="text-muted small">발생 시각</div>
-                                    <div class="fw-semibold"
-                                         th:text="${log.occurredAt() != null ? #temporals.format(log.occurredAt(), 'yyyy.MM.dd HH:mm') : '-'}">
-                                        2025.01.01 10:00
-                                    </div>
-                                </div>
-                            </div>
-                            <div>
-                                <div class="text-muted small mb-1">관리자</div>
-                                <div class="fw-semibold" th:text="${log.adminNickname()}">운영자</div>
-                            </div>
-                            <div>
-                                <div class="text-muted small mb-1">설명</div>
-                                <div class="text-break" th:text="${log.actionDescription()}">신고를 추가 조치 없이 마감했습니다.</div>
-                            </div>
-                            <div>
-                                <div class="text-muted small mb-1">추가 정보</div>
-                                <details class="audit-log-details" th:if="${hasExtraInfo}">
-                                    <summary class="audit-log-details__summary small">자세히 보기</summary>
-                                    <div class="audit-log-details__content mt-2">
-                                        <ul class="list-unstyled small mb-0 d-flex flex-column gap-1">
-                                            <li th:if="${hasTarget}">
-                                                <span class="text-muted" th:text="|대상: ${log.targetDisplay()}|">대상: 컬렉션 신고 #12</span>
-                                            </li>
-                                            <li th:if="${hasReport}">
-                                                <span class="text-muted" th:text="|관련 신고: ${log.reportDisplay()}|">관련 신고: 신고 #12</span>
-                                            </li>
-                                            <li th:each="meta : ${log.metadataEntries()}">
-                                                <span class="text-muted" th:text="|${meta.key()}: ${meta.value()}|">사유: 스팸</span>
-                                            </li>
-                                        </ul>
-                                    </div>
-                                </details>
-                                <span class="text-muted small" th:unless="${hasExtraInfo}">-</span>
-                            </div>
-                        </div>
-                    </div>
-                </article>
-            </div>
-            <div class="card-footer bg-white border-0 py-3">
-                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2">
-                    <span class="text-muted small">
-                        <span th:if="${rangeEnd > 0}" th:text="|${rangeStart} - ${rangeEnd}건 표시|">1 - 20건 표시</span>
-                        <span th:if="${rangeEnd > 0}"> · 페이지당 <strong th:text="${size}">20</strong>건</span>
-                        <span th:unless="${rangeEnd > 0}">표시할 로그가 없습니다.</span>
-                    </span>
-                    <ul class="pagination pagination-sm mb-0">
-                        <li class="page-item" th:classappend="${hasPrevious} ? '' : ' disabled'">
-                            <a class="page-link"
-                               th:href="@{/admin/audit-logs(page=${page > 1 ? page - 1 : 1}, size=${size})}">이전</a>
-                        </li>
-                        <li class="page-item active"><span class="page-link" th:text="${page}">1</span></li>
-                        <li class="page-item" th:classappend="${hasNext} ? '' : ' disabled'">
-                            <a class="page-link"
-                               th:href="@{/admin/audit-logs(page=${hasNext ? page + 1 : page}, size=${size})}">다음</a>
-                        </li>
-                    </ul>
-                </div>
-            </div>
-        </div>
-</th:block>
-</html>
-
-
-// ===== resources/templates/admin-role/index.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-    <div class="card card-elevated mb-4">
-        <div class="card-body card-body-comfy">
-            <div class="d-flex flex-wrap justify-content-between align-items-center gap-3">
-                <div>
-                    <h1 class="section-heading mb-2">역할과 권한</h1>
-                    <p class="text-muted mb-0">팀의 역할 구조를 한눈에 파악하고 필요한 권한을 빠르게 조정하세요.</p>
-                </div>
-                <div class="text-muted small text-end">
-                    <div class="fw-semibold">내 역할 요약</div>
-                    <div th:if="${currentAdminProfile.hasRoleDisplayNames()}"
-                         th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">
-                        확인 중...
-                    </div>
-                    <div th:unless="${currentAdminProfile.hasRoleDisplayNames()}">부여된 역할 정보를 불러오는 중입니다.</div>
-                </div>
-            </div>
-        </div>
-    </div>
-
-    <div class="alert d-flex align-items-center mb-4"
-         th:if="${flashMessage != null}"
-         th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
-        <i class="bi"
-           th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
-        <span th:text="${flashMessage}">알림</span>
-    </div>
-
-    <div class="card card-elevated mb-4">
-        <div class="card-body card-body-tight">
-            <div class="role-tab-nav">
-                <a th:href="@{/admin/roles(tab='my')}"
-                   class="role-tab"
-                   th:classappend="${tab} == 'my' ? ' is-active' : ''">
-                    <div class="fw-semibold">내 역할</div>
-                    <div class="text-muted small">나에게 부여된 역할과 권한</div>
-                </a>
-                <th:block th:if="${canViewTeamTab}">
-                    <a th:href="${selectedTeamMemberId != null} ? @{/admin/roles(tab='team', selectedUserId=${selectedTeamMemberId})} : @{/admin/roles(tab='team')}"
-                       class="role-tab"
-                       th:classappend="${tab} == 'team' ? ' is-active' : ''">
-                        <div class="fw-semibold">팀원 역할</div>
-                        <div class="text-muted small">팀원의 역할 현황과 권한</div>
-                    </a>
-                </th:block>
-                <th:block th:unless="${canViewTeamTab}">
-                    <span class="role-tab is-disabled" title="ADMIN_ROLE_READ 권한이 필요합니다.">
-                        <div class="fw-semibold">팀원 역할</div>
-                        <div class="text-muted small">권한이 없어 접근할 수 없습니다.</div>
-                    </span>
-                </th:block>
-                <th:block th:if="${canManageRoles}">
-                    <a th:href="${#strings.isEmpty(selectedRoleCode)} ? @{/admin/roles(tab='manage')} : @{/admin/roles(tab='manage', selectedRoleCode=${selectedRoleCode})}"
-                       class="role-tab"
-                       th:classappend="${tab} == 'manage' ? ' is-active' : ''">
-                        <div class="fw-semibold">역할 관리</div>
-                        <div class="text-muted small">역할 템플릿 편집 및 생성</div>
-                    </a>
-                </th:block>
-            </div>
-        </div>
-    </div>
-
-    <div th:if="${tab} == 'my'">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
-                    <div>
-                        <h2 class="h5 mb-1">내가 가진 역할</h2>
-                        <div class="text-muted small">현재 세션에 부여된 역할과 설명입니다.</div>
-                    </div>
-                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRoles)} + '개 역할'"></span>
-                </div>
-                <div class="alert alert-warning" th:if="${myRolesLoadError != null}" th:text="${myRolesLoadError}">로드 오류</div>
-                <div th:if="${myRolesLoadError == null}">
-                    <div class="text-muted" th:if="${#lists.isEmpty(myRoles)}">
-                        아직 부여된 역할이 없습니다.
-                    </div>
-                    <div class="role-pill-wrap" th:if="${!#lists.isEmpty(myRoles)}">
-                        <div class="role-pill" th:each="role : ${myRoles}">
-                            <div class="fw-semibold" th:text="${role.label()}">팀 멤버</div>
-                            <div class="text-muted small" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</div>
-                            <div class="text-muted small" th:unless="${role.hasDescription()}" th:text="${role.code()}">TEAM_MEMBER</div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
-                    <div>
-                        <h2 class="h5 mb-1">역할별 권한</h2>
-                        <div class="text-muted small">역할 카드를 눌러 포함된 권한을 모달에서 확인하세요.</div>
-                    </div>
-                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRolePermissionGroups)} + '개 역할'">0개 역할</span>
-                </div>
-                <div class="alert alert-info"
-                     th:if="${myRolesLoadError == null && #lists.isEmpty(myRolePermissionGroups)}">
-                    역할 템플릿을 불러오지 못해 권한 목록을 표시할 수 없습니다.
-                </div>
-                <div class="role-permission-trigger-grid" th:if="${!#lists.isEmpty(myRolePermissionGroups)}">
-                    <div class="role-permission-trigger-card" th:each="group : ${myRolePermissionGroups}">
-                        <button type="button"
-                                class="role-permission-trigger"
-                                data-role-modal-trigger="true"
-                                th:data-role-code="${group.role().code()}"
-                                th:data-role-label="${group.role().label()}"
-                                th:data-role-description="${group.role().description()}"
-                                th:data-role-permission-template="${'permission-template-my-' + group.role().code()}"
-                                th:attr="aria-label=|${group.role().label()} 권한 보기|">
-                            <div>
-                                <div class="role-permission-trigger__title" th:text="${group.role().label()}">팀 멤버</div>
-                                <div class="text-muted small" th:if="${group.role().hasDescription()}" th:text="${group.role().description()}">팀 공통 권한</div>
-                                <div class="text-muted small" th:unless="${group.role().hasDescription()}" th:text="${group.role().code()}">TEAM_MEMBER</div>
-                            </div>
-                            <div class="role-permission-trigger__meta">
-                                <span class="text-muted small" th:text="${group.permissions().size()} + '개 권한'"></span>
-                                <span class="role-permission-trigger__cta">
-                                    권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
-                                </span>
-                            </div>
-                        </button>
-                        <template th:id="${'permission-template-my-' + group.role().code()}">
-                            <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
-                                <li th:each="permission : ${group.permissions()}">
-                                    <div class="permission-modal-item">
-                                        <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
-                                        <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
-                                    </div>
-                                </li>
-                            </ul>
-                            <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
-                                이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
-                            </div>
-                        </template>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-
-    <div th:if="${tab} == 'team'">
-        <div class="alert alert-warning" th:if="${!canViewTeamTab}">
-            팀원 역할을 확인하려면 ADMIN_ROLE_READ 권한이 필요합니다.
-        </div>
-        <div class="row g-4" th:if="${canViewTeamTab}">
-            <div class="col-12 col-xl-5">
-                <div class="card card-elevated h-100">
-                    <div class="card-body card-body-comfy d-flex flex-column h-100">
-                        <div class="d-flex justify-content-between align-items-center flex-wrap gap-3 mb-3">
-                            <div>
-                                <h2 class="h5 mb-1">팀원 목록</h2>
-                                <div class="text-muted small" th:text="|${teamMemberCount}명 참여 중|">0명 참여 중</div>
-                            </div>
-                        </div>
-                        <div class="alert alert-warning" th:if="${teamMembersLoadError != null}" th:text="${teamMembersLoadError}">로드 오류</div>
-                        <div class="flex-grow-1" th:if="${teamMembersLoadError == null}">
-                            <div class="text-muted text-center py-5" th:if="${#lists.isEmpty(teamMembers)}">
-                                관리 대상 팀원이 없습니다.
-                            </div>
-                            <div class="team-member-grid" th:if="${!#lists.isEmpty(teamMembers)}">
-                                <a class="team-member-card"
-                                   th:each="member : ${teamMembers}"
-                                   th:href="@{/admin/roles(tab='team', selectedUserId=${member.id()})}"
-                                   th:classappend="${selectedTeamMemberId != null && selectedTeamMemberId == member.id()} ? ' is-active' : ''">
-                                    <div class="team-member-card__avatar">
-                                        <span th:text="${member.initials()}">팀</span>
-                                    </div>
-                                    <div class="team-member-card__body">
-                                        <div class="d-flex align-items-center gap-2">
-                                            <div class="fw-semibold text-truncate" th:text="${member.nickname()}">운영자</div>
-                                            <span class="badge bg-warning-subtle text-dark" th:if="${member.superAdmin()}">SUPER</span>
-                                        </div>
-                                        <div class="role-chip-row">
-                                            <span class="role-chip" th:each="role : ${member.roles()}" th:text="${role.label()}">팀 멤버</span>
-                                            <span class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">역할 없음</span>
-                                        </div>
-                                    </div>
-                                </a>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-xl-7">
-                <div class="card card-elevated h-100">
-                    <div class="card-body card-body-comfy h-100">
-                        <div th:if="${selectedTeamMember == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
-                            왼쪽에서 팀원을 선택하면 상세 역할과 권한을 확인할 수 있습니다.
-                        </div>
-                        <div th:if="${selectedTeamMember != null}" class="d-flex flex-column gap-4 h-100">
-                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
-                                <div>
-                                    <div class="d-flex align-items-center gap-2">
-                                        <h2 class="h4 mb-0" th:text="${selectedTeamMember.nickname()}">운영자</h2>
-                                        <span class="badge bg-warning-subtle text-dark" th:if="${selectedTeamMember.superAdmin()}">슈퍼 관리자</span>
-                                    </div>
-                                </div>
-                                    <div class="text-end">
-                                        <div class="text-muted small">보유 역할</div>
-                                        <div class="fw-semibold" th:text="${#lists.size(selectedTeamMemberRoleGroups)} + '개'"></div>
-                                    </div>
-                            </div>
-                            <div>
-                                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2 mb-2">
-                                    <div class="text-muted small">역할</div>
-                                    <div class="text-muted small">역할 태그를 눌러 권한을 확인하세요.</div>
-                                </div>
-                                <div class="role-chip-row" th:if="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
-                                    <th:block th:each="group, iterStat : ${selectedTeamMemberRoleGroups}">
-                                        <th:block th:with="templateId=${'permission-template-team-' + group.role().code() + '-' + iterStat.index}">
-                                            <button type="button"
-                                                    class="role-chip role-chip--action"
-                                                    data-role-modal-trigger="true"
-                                                    th:data-role-code="${group.role().code()}"
-                                                    th:data-role-label="${group.role().label()}"
-                                                    th:data-role-description="${group.role().description()}"
-                                                    th:data-role-permission-template="${templateId}"
-                                                    th:attr="aria-label=|${group.role().label()} 권한 보기|">
-                                                ...
-                                            </button>
-                                            <template th:id="${templateId}">
-                                                ...
-                                            </template>
-                                        </th:block>
-                                    </th:block>
-                                </div>
-                                <div class="text-muted" th:unless="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
-                                    부여된 역할이 없습니다.
-                                </div>
-                            </div>
-                            <div th:if="${teamRoleEditorAvailable}">
-                                <details class="role-editor-panel">
-                                    <summary>역할 편집</summary>
-                                    <div class="mt-3">
-                                        <form th:action="@{|/admin/roles/team-members/${selectedTeamMember.id()}/roles|}"
-                                              method="post" class="role-editor-form">
-                                            <div class="alert alert-light border"
-                                                 th:if="${#lists.isEmpty(assignableRoles)}">
-                                                편집 가능한 역할 템플릿이 없습니다.
-                                            </div>
-                                            <div class="permission-grid" th:if="${!#lists.isEmpty(assignableRoles)}">
-                                                <label class="form-check role-option" th:each="role : ${assignableRoles}">
-                                                    <input class="form-check-input" type="checkbox" name="roleCodes"
-                                                           th:value="${role.code()}" th:checked="${selectedTeamMember.hasRole(role.code())}">
-                                                    <div>
-                                                        <div class="fw-semibold" th:text="${role.label()}">역할 이름</div>
-                                                        <small class="text-muted" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</small>
-                                                        <small class="text-muted" th:unless="${role.hasDescription()}" th:text="${role.code()}">CODE</small>
-                                                    </div>
-                                                </label>
-                                            </div>
-                                            <div class="d-flex justify-content-between align-items-center mt-3">
-                                                <div class="text-muted small">선택한 항목이 즉시 저장됩니다.</div>
-                                                <button type="submit" class="btn btn-primary btn-sm">변경 사항 저장</button>
-                                            </div>
-                                        </form>
-                                    </div>
-                                </details>
-                            </div>
-                            <div th:if="${!teamRoleEditorAvailable && canManageRoles}" class="alert alert-light border">
-                                역할 템플릿 정보를 불러오지 못해 편집 UI를 표시할 수 없습니다.
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-
-    <div th:if="${tab} == 'manage'">
-        <div class="alert alert-warning" th:if="${!canManageRoles}">
-            역할 관리 기능은 ADMIN_ROLE_WRITE 권한을 가진 사용자만 사용할 수 있습니다.
-        </div>
-        <div th:if="${canManageRoles}">
-            <div class="card card-elevated mb-4">
-                <div class="card-body card-body-comfy">
-                    <div class="d-flex justify-content-between align-items-center flex-wrap gap-3">
-                        <div>
-                            <h2 class="h5 mb-1">새 역할 추가</h2>
-                            <div class="text-muted small">역할 코드, 표시 이름, 설명을 입력한 뒤 필요한 권한을 선택하세요.</div>
-                        </div>
-                        <button class="btn btn-outline-primary btn-sm" type="button" data-bs-toggle="collapse" data-bs-target="#newRoleForm">
-                            새 역할 폼 열기
-                        </button>
-                    </div>
-                    <div id="newRoleForm" class="collapse mt-4" th:classappend="${roleTemplateCount == 0} ? ' show' : ''">
-                        <form action="/admin/roles/new" method="post" class="role-editor-form">
-                            <div class="row g-3">
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleCodeInput">역할 코드</label>
-                                    <input type="text" class="form-control" id="roleCodeInput" name="code" placeholder="예: CONTENT_REVIEWER" required>
-                                </div>
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleNameInput">표시 이름</label>
-                                    <input type="text" class="form-control" id="roleNameInput" name="displayName" placeholder="예: 콘텐츠 검토자" required>
-                                </div>
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleDescriptionInput">설명</label>
-                                    <input type="text" class="form-control" id="roleDescriptionInput" name="description" placeholder="역할 목적을 입력하세요" required>
-                                </div>
-                            </div>
-                            <div class="mt-4">
-                                <div class="text-muted small mb-2">포함할 권한</div>
-                                <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
-                                    선택할 수 있는 권한 목록을 불러오지 못했습니다.
-                                </div>
-                                <div class="permission-grid" th:if="${!#lists.isEmpty(permissionOptions)}">
-                                    <label class="form-check permission-option" th:each="option : ${permissionOptions}">
-                                        <input class="form-check-input" type="checkbox" name="permissions" th:value="${option.key()}">
-                                        <div>
-                                            <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
-                                            <small class="text-muted" th:text="${option.key()}">KEY</small>
-                                        </div>
-                                    </label>
-                                </div>
-                            </div>
-                            <div class="d-flex justify-content-end mt-3">
-                                <button type="submit" class="btn btn-primary">새 역할 저장</button>
-                            </div>
-                        </form>
-                    </div>
-                </div>
-            </div>
-
-            <div class="row g-4">
-                <div class="col-12 col-xl-4">
-                    <div class="card card-elevated h-100">
-                        <div class="card-body card-body-comfy">
-                            <div class="d-flex justify-content-between align-items-center mb-3">
-                                <div>
-                                    <h2 class="h5 mb-1">역할 목록</h2>
-                                    <div class="text-muted small" th:text="|총 ${roleTemplateCount}개|">총 0개</div>
-                                </div>
-                            </div>
-                            <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
-                            <div class="role-template-list" th:if="${roleTemplatesLoadError == null}">
-                                <div class="text-muted" th:if="${#lists.isEmpty(roleTemplates)}">등록된 역할이 없습니다.</div>
-                                <a class="role-template-item"
-                                   th:each="role : ${roleTemplates}"
-                                   th:href="@{/admin/roles(tab='manage', selectedRoleCode=${role.code()})}"
-                                   th:classappend="${selectedRoleCode == role.code()} ? ' is-active' : ''">
-                                    <div class="fw-semibold" th:text="${role.displayName()}">역할 이름</div>
-                                    <div class="text-muted small" th:text="${role.code()}">ROLE_CODE</div>
-                                </a>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-                <div class="col-12 col-xl-8">
-                    <div class="card card-elevated h-100">
-                        <div class="card-body card-body-comfy h-100">
-                            <div th:if="${selectedRoleTemplate == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
-                                왼쪽 목록에서 편집할 역할을 선택하세요.
-                            </div>
-                            <div th:if="${selectedRoleTemplate != null}" class="d-flex flex-column gap-4 h-100">
-                                <div class="d-flex justify-content-between align-items-start gap-3 flex-wrap">
-                                    <div>
-                                        <h2 class="h4 mb-1" th:text="${selectedRoleTemplate.displayName()}">역할 이름</h2>
-                                        <div class="text-muted" th:text="${selectedRoleTemplate.description()}">역할 설명</div>
-                                        <div class="text-muted small" th:text="${selectedRoleTemplate.code()}">ROLE_CODE</div>
-                                    </div>
-                                    <span class="badge bg-secondary-subtle text-dark" th:if="${selectedRoleTemplate.builtin()}">시스템 내장</span>
-                                </div>
-                                <div>
-                                    <div class="text-muted small mb-2">권한 목록</div>
-                                    <ul class="role-permission-list" th:if="${selectedRoleTemplate.hasPermissions()}">
-                                        <li th:each="permission : ${selectedRoleTemplate.permissions()}">
-                                            <div class="fw-semibold" th:text="${permission.label()}">권한</div>
-                                            <div class="text-muted small" th:text="${permission.key()}">KEY</div>
-                                        </li>
-                                    </ul>
-                                    <div class="text-muted" th:unless="${selectedRoleTemplate.hasPermissions()}">아직 연결된 권한이 없습니다.</div>
-                                </div>
-                                <div>
-                                    <h3 class="h6 mb-2">권한 편집</h3>
-                                    <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
-                                        선택 가능한 권한 목록이 없어 편집할 수 없습니다.
-                                    </div>
-                                    <form th:if="${!#lists.isEmpty(permissionOptions)}"
-                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/permissions|}"
-                                          method="post" class="role-editor-form">
-                                        <div class="permission-grid">
-                                            <label class="form-check permission-option" th:each="option : ${permissionOptions}">
-                                                <input class="form-check-input" type="checkbox" name="permissions"
-                                                       th:value="${option.key()}"
-                                                       th:checked="${selectedRoleTemplate.hasPermission(option.key())}">
-                                                <div>
-                                                    <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
-                                                    <small class="text-muted" th:text="${option.key()}">KEY</small>
-                                                </div>
-                                            </label>
-                                        </div>
-                                        <div class="d-flex justify-content-end mt-3">
-                                            <button type="submit" class="btn btn-primary btn-sm">권한 저장</button>
-                                        </div>
-                                    </form>
-                                </div>
-                                <div>
-                                    <form th:if="${!selectedRoleTemplate.builtin()}"
-                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/delete|}"
-                                          method="post"
-                                          onsubmit="return confirm('정말 이 역할을 삭제하시겠습니까? 되돌릴 수 없습니다.');">
-                                        <button type="submit" class="btn btn-outline-danger btn-sm">역할 삭제</button>
-                                    </form>
-                                    <div class="alert alert-light border" th:if="${selectedRoleTemplate.builtin()}">
-                                        시스템 내장 역할은 삭제할 수 없습니다.
-                                    </div>
-                                </div>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-    <div class="modal fade" id="rolePermissionModal" tabindex="-1" aria-hidden="true">
-        <div class="modal-dialog modal-lg modal-dialog-centered modal-dialog-scrollable">
-            <div class="modal-content role-permission-modal">
-                <div class="modal-header">
-                    <div>
-                        <div class="role-permission-modal__eyebrow">역할 권한</div>
-                        <h5 class="modal-title" data-role-modal-title>역할 이름</h5>
-                        <p class="role-permission-modal__description mb-0 text-muted" data-role-modal-description>역할 설명</p>
-                    </div>
-                    <button type="button" class="btn-close" data-bs-dismiss="modal" data-role-modal-dismiss aria-label="닫기"></button>
-                </div>
-                <div class="modal-body">
-                    <div data-role-modal-permissions>
-                        <div class="permission-modal-empty">권한 정보를 불러오는 중입니다.</div>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-
-    <script>
-        (function () {
-            const modalElement = document.getElementById('rolePermissionModal');
-            if (!modalElement) {
-                return;
-            }
-
-            const titleElement = modalElement.querySelector('[data-role-modal-title]');
-            const descriptionElement = modalElement.querySelector('[data-role-modal-description]');
-            const permissionsContainer = modalElement.querySelector('[data-role-modal-permissions]');
-            const bodyElement = document.body;
-            let storedOverflow = '';
-
-            function openModal() {
-                if (window.bootstrap && window.bootstrap.Modal) {
-                    window.bootstrap.Modal.getOrCreateInstance(modalElement).show();
-                    return;
-                }
-
-                storedOverflow = bodyElement.style.overflow;
-                modalElement.classList.add('show');
-                modalElement.style.display = 'block';
-                modalElement.removeAttribute('aria-hidden');
-                modalElement.setAttribute('aria-modal', 'true');
-                bodyElement.classList.add('modal-open');
-                bodyElement.style.overflow = 'hidden';
-            }
-
-            function closeModal() {
-                if (window.bootstrap && window.bootstrap.Modal) {
-                    const instance = window.bootstrap.Modal.getInstance(modalElement);
-                    if (instance) {
-                        instance.hide();
-                    }
-                    return;
-                }
-
-                modalElement.classList.remove('show');
-                modalElement.style.display = 'none';
-                modalElement.setAttribute('aria-hidden', 'true');
-                modalElement.removeAttribute('aria-modal');
-                bodyElement.classList.remove('modal-open');
-                bodyElement.style.overflow = storedOverflow || '';
-            }
-
-            modalElement.addEventListener('click', function (event) {
-                if (event.target.closest('[data-role-modal-dismiss]')) {
-                    event.preventDefault();
-                    closeModal();
-                    return;
-                }
-
-                if (!window.bootstrap && event.target === modalElement) {
-                    closeModal();
-                }
-            });
-
-            document.addEventListener('click', function (event) {
-                const trigger = event.target.closest('[data-role-modal-trigger]');
-                if (!trigger) {
-                    return;
-                }
-                event.preventDefault();
-
-                const templateId = trigger.getAttribute('data-role-permission-template');
-                const template = templateId ? document.getElementById(templateId) : null;
-
-                permissionsContainer.innerHTML = '';
-                if (template && template.content) {
-                    permissionsContainer.appendChild(template.content.cloneNode(true));
-                } else {
-                    const fallback = document.createElement('div');
-                    fallback.className = 'permission-modal-empty';
-                    fallback.textContent = '권한 정보를 불러오지 못했습니다.';
-                    permissionsContainer.appendChild(fallback);
-                }
-
-                const roleLabel = trigger.getAttribute('data-role-label') || '역할 권한';
-                const roleDescription = trigger.getAttribute('data-role-description') || '';
-                const roleCode = trigger.getAttribute('data-role-code') || '';
-
-                titleElement.textContent = roleLabel;
-                const subtitle = roleDescription.trim() || roleCode;
-                descriptionElement.textContent = subtitle || '';
-                descriptionElement.hidden = !subtitle;
-
-                openModal();
-            });
-        })();
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/ads/ad-form.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-
-    <div class="ads-page ads-form-page">
-        <div class="card card-elevated ads-form-card">
-            <div class="card-header card-header-tight ads-form-card__header">
-                <h1 class="h5 mb-0" th:text="${form.id() == null} ? '새 광고 등록' : '광고 수정'">새 광고 등록</h1>
-            </div>
-            <div class="card-body card-body-comfy ads-form-card__body">
-            <form th:action="${form.id() == null} ? @{/ads} : @{/ads/edit}" method="post" class="vstack gap-4" id="adForm">
-                <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.id() != null}">
-                <input type="hidden" name="objectKey" id="adObjectKey" th:value="${form.objectKey()}">
-                <input type="hidden" name="contentType" id="adContentType" th:value="${form.contentType()}">
-
-                <div>
-                    <label for="adName" class="form-label">광고 이름</label>
-                    <input type="text" class="form-control" id="adName" name="name" th:value="${form.name()}" required>
-                </div>
-
-                <div>
-                    <label for="adTargetUrl" class="form-label">이동할 링크(URL)</label>
-                    <input type="url" class="form-control" id="adTargetUrl" name="targetUrl" th:value="${form.targetUrl()}" required>
-                    <div class="form-text">광고 클릭 시 이동할 주소를 입력하세요.</div>
-                </div>
-
-                <div>
-                    <label for="adImageFile" class="form-label">광고 이미지 업로드</label>
-                    <div class="d-flex flex-column flex-md-row gap-3 align-items-start ads-upload-area">
-                        <div class="flex-shrink-0">
-                            <div class="ratio ratio-4x3 ads-image-preview" id="adImagePreviewContainer">
-                                <img th:if="${form.hasExistingImage()}" th:src="${form.imageUrl()}" alt="광고 미리보기"
-                                     id="adImagePreview" class="media-thumb w-100 h-100">
-                                <img th:if="${!form.hasExistingImage()}" src="https://placehold.co/400x300?text=Preview"
-                                     alt="광고 미리보기" id="adImagePreview" class="media-thumb w-100 h-100">
-                            </div>
-                        </div>
-                        <div class="flex-grow-1 w-100">
-                            <input type="file" class="form-control" id="adImageFile" accept="image/*">
-                            <div class="form-text">이미지 선택 시 자동으로 업로드됩니다.</div>
-                            <div id="adImageUploadStatus" class="ads-upload-status text-muted small mt-2">
-                                <span th:text="${form.hasUploadedImage() || form.hasExistingImage()} ? '이미지가 준비되었습니다.' : '아직 업로드된 이미지가 없습니다.'">이미지를 업로드해주세요.</span>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-
-                <div>
-                    <label for="adMemo" class="form-label">메모 (내부 참고용)</label>
-                    <textarea class="form-control" id="adMemo" name="memo" rows="4"
-                              th:text="${form.memo()}"></textarea>
-                </div>
-
-                <div class="d-flex justify-content-end gap-2 ads-form-actions">
-                    <a class="btn btn-outline-secondary" th:href="@{/ads(tab='ads')}">취소</a>
-                    <button type="submit" class="btn btn-primary">저장</button>
-                </div>
-            </form>
-        </div>
-    </div>
-    </div>
-
-    <script th:src="@{/js/ads-image-upload.js}"></script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/ads/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-
-    <div class="ads-page">
-        <div class="d-flex flex-wrap justify-content-between align-items-center gap-3 mb-4 ads-page-header">
-            <div>
-                <h1 class="h3 mb-1 fw-semibold">광고 관리</h1>
-                <p class="text-muted-soft mb-0">광고와 광고 스케줄을 한 곳에서 관리합니다.</p>
-            </div>
-        </div>
-
-        <div class="row g-3 mb-4 ads-summary-row">
-            <div class="col-12 col-md-4">
-                <div class="card ads-summary-card ads-summary-card--placements h-100">
-                    <div class="card-body">
-                        <div class="ads-summary-icon">
-                            <i class="bi bi-calendar3"></i>
-                        </div>
-                        <div class="ads-summary-label">지금 진행 중인 광고 수</div>
-                        <div class="ads-summary-value" th:text="${summary.activePlacementCount()}">0</div>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
-             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
-            <i class="bi"
-               th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
-            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
-        </div>
-
-        <div class="mb-3">
-            <ul class="nav nav-tabs nav-tabs-line ads-tabs">
-                <li class="nav-item">
-                    <a class="nav-link" th:classappend="${tab} == 'ads' ? ' active'"
-                       th:href="@{/ads(tab='ads')}">
-                        광고
-                    </a>
-                </li>
-                <li class="nav-item">
-                    <a class="nav-link" th:classappend="${tab} == 'schedule' ? ' active'"
-                       th:href="@{/ads(tab='schedule')}">
-                        광고 스케줄
-                    </a>
-                </li>
-            </ul>
-        </div>
-
-        <!-- 광고 탭 -->
-        <div th:if="${tab} == 'ads'">
-            <div th:if="${adsLoadError}" class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
-                <i class="bi bi-exclamation-triangle-fill me-2"></i>
-                <span th:text="${adsLoadError}">광고 목록을 불러오지 못했습니다.</span>
-            </div>
-
-            <div class="card card-elevated ads-panel mb-4">
-                <div class="card-body">
-                    <h2 class="h6 mb-1 fw-semibold">광고</h2>
-                    <p class="text-muted small mb-0">노출할 광고의 이름, 링크, 이미지를 설정합니다.</p>
-                </div>
-            </div>
-
-            <div class="card card-elevated ads-panel">
-                <div class="card-header card-header-tight d-flex justify-content-between align-items-center">
-                    <h2 class="h6 mb-0 fw-semibold">광고 목록</h2>
-                    <div th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
-                        <a class="btn btn-sm btn-primary" th:href="@{/ads/new}">
-                            <i class="bi bi-plus-circle me-1"></i>
-                            <span>새 광고 등록</span>
-                        </a>
-                    </div>
-                </div>
-                <div class="list-group list-group-flush ads-card-list">
-                    <div th:if="${ads.isEmpty()}"
-                         class="list-group-item py-4 text-center text-muted">
-                        등록된 광고가 없습니다.
-                    </div>
-                    <article class="list-group-item p-0 ads-card"
-                             th:each="ad : ${ads}">
-                        <div class="ads-card__content">
-                            <div class="ads-card__header">
-                                <div class="ads-card__thumb ads-card__thumb--wide" th:if="${ad.hasImage()}">
-                                    <div class="ratio ratio-4x3">
-                                        <img th:src="${ad.imageUrl()}" alt="광고 이미지"
-                                             class="media-thumb w-100 h-100">
-                                    </div>
-                                </div>
-                                <div class="ads-card__thumb ads-card__thumb--wide ads-card__thumb-placeholder"
-                                     th:if="${!ad.hasImage()}">
-                                    <i class="bi bi-image"></i>
-                                </div>
-                                <div class="ads-card__body">
-                                    <div class="ads-card__meta-label">광고 이름</div>
-                                    <div class="fw-semibold" th:text="${ad.name()}">광고 이름</div>
-                                </div>
-                            </div>
-                            <div class="ads-card__meta">
-                                <div class="ads-card__meta-label">이동할 링크 (URL)</div>
-                                <a th:href="${ad.targetUrl()}" th:text="${ad.targetUrl()}" class="text-break"
-                                   target="_blank" rel="noopener">
-                                    https://example.com
-                                </a>
-                            </div>
-                            <div class="ads-card__meta">
-                                <div class="ads-card__meta-label">메모</div>
-                                <div class="text-break" th:text="${#strings.isEmpty(ad.memo()) ? '-' : ad.memo()}">메모</div>
-                            </div>
-                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
-                                <a class="btn btn-sm btn-outline-primary"
-                                   th:href="@{/ads/edit(id=${ad.id()})}">수정</a>
-                                <form th:action="@{/ads/delete}" method="post" class="ads-card__action-form">
-                                    <input type="hidden" name="id" th:value="${ad.id()}">
-                                    <button type="submit" class="btn btn-sm btn-outline-danger"
-                                            th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
-                                        삭제
-                                    </button>
-                                </form>
-                            </div>
-                        </div>
-                    </article>
-                </div>
-            </div>
-        </div>
-
-        <!-- 광고 스케줄 탭 -->
-        <div th:if="${tab} == 'schedule'">
-            <div class="card card-elevated ads-panel mb-4">
-                <div class="card-body">
-                    <h2 class="h6 mb-1 fw-semibold">광고 스케줄</h2>
-                    <p class="text-muted small mb-0">광고를 노출할 스케줄을 설정합니다.</p>
-                </div>
-            </div>
-
-            <div th:if="${placementsLoadError}"
-                 class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
-                <i class="bi bi-exclamation-triangle-fill me-2"></i>
-                <span th:text="${placementsLoadError}">광고 노출 스케줄을 불러오지 못했습니다.</span>
-            </div>
-
-            <div th:if="${slotsLoadError}"
-                 class="alert alert-danger alert-elevated d-flex align-items-center mb-3">
-                <i class="bi bi-exclamation-triangle-fill me-2"></i>
-                <span th:text="${slotsLoadError}">광고 위치를 불러오지 못했습니다.</span>
-            </div>
-
-            <div th:if="${placementGroups.isEmpty()}" class="card card-elevated ads-panel">
-                <div class="card-body text-center py-5 text-muted">
-                    등록된 광고 노출 스케줄이 없습니다.
-                </div>
-            </div>
-
-            <div th:each="group : ${placementGroups}" class="card card-elevated ads-panel mb-4">
-                <div class="card-header card-header-tight d-flex flex-wrap justify-content-between align-items-center gap-2">
-                    <div>
-                        <h3 class="h6 mb-1 fw-semibold" th:text="${group.slotCode()}">HOME_TOP</h3>
-                        <p class="text-muted small mb-0"
-                           th:text="${#strings.isEmpty(group.slotDescription()) ? '설명이 없습니다.' : group.slotDescription()}">
-                            광고 위치 설명
-                        </p>
-                    </div>
-                    <div class="d-flex flex-wrap gap-2"
-                         th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') or currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE')}">
-                        <a class="btn btn-sm btn-outline-primary"
-                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}"
-                           th:href="@{/ads/placements/new(slotId=${group.slotId()})}">
-                            <i class="bi bi-plus-circle me-1"></i>
-                            <span>새 스케줄 등록</span>
-                        </a>
-                        <a class="btn btn-sm btn-outline-secondary"
-                           th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') and group.slotId() != null}"
-                           th:href="@{/ads/slots/edit(id=${group.slotId()})}">광고 위치 설정</a>
-                        <form th:if="${currentAdminProfile.hasPermission('ADMIN_SLOT_DELETE') and group.slotId() != null}"
-                              th:action="@{/ads/slots/delete}" method="post" class="d-inline">
-                            <input type="hidden" name="id" th:value="${group.slotId()}">
-                            <button type="submit" class="btn btn-sm btn-outline-danger"
-                                    th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
-                                이 광고 위치 삭제
-                            </button>
-                        </form>
-                    </div>
-                </div>
-                <div class="list-group list-group-flush ads-card-list">
-                    <article class="list-group-item p-0 ads-card ads-card--fallback">
-                        <div class="ads-card__content">
-                            <div class="d-flex align-items-center gap-3">
-                                <div class="ads-fallback-icon flex-shrink-0">
-                                    <i class="bi bi-stars"></i>
-                                </div>
-                                <div>
-                                    <div class="fw-semibold">기본 광고 (Kakao AdFit)</div>
-                                    <div class="text-muted small">광고가 없을 때 표시되는 기본 콘텐츠입니다.</div>
-                                </div>
-                            </div>
-                            <div class="ads-card__metrics">
-                                <div class="ads-card__metric ads-card__metric--probability">
-                                    <div class="ads-card__metric-label">광고가 뜰 확률</div>
-                                    <div class="ads-card__metric-value">
-                                        <span class="badge ads-probability-badge"
-                                              th:classappend="${group.hasFallbackProbability()} ? ' ads-probability-badge--active' : ' ads-probability-badge--muted'"
-                                              th:text="${group.fallbackProbabilityLabel()}">50%</span>
-                                    </div>
-                                </div>
-                            </div>
-                            <div class="ads-card__actions"
-                                 th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE') && group.slotId() != null && group.slotCode() != null}">
-                                <button type="button" class="btn btn-sm btn-outline-primary"
-                                        data-bs-toggle="modal"
-                                        data-bs-target="#fallbackRatioModal"
-                                        th:attr="data-slot-id=${group.slotId()}, data-slot-code=${group.slotCode()}, data-fallback-ratio=${group.fallbackRatioPercent()}, data-slot-description=${group.slotDescription() == null ? '' : group.slotDescription()}, data-slot-ttl=${group.slotTtlSeconds()}">
-                                    기본 광고 표시 확률 수정
-                                </button>
-                            </div>
-                        </div>
-                    </article>
-                    <div th:if="${!group.hasPlacements()}"
-                         class="list-group-item py-4 text-center text-muted">
-                        등록된 스케줄이 없습니다.
-                    </div>
-                    <article class="list-group-item p-0 ads-card"
-                             th:each="placement : ${group.placements()}">
-                        <div class="ads-card__content">
-                            <div class="ads-card__header">
-                                <div class="ads-card__thumb ads-card__thumb--square" th:if="${placement.hasImage()}">
-                                    <img th:src="${placement.adImageUrl()}" alt="광고 미리보기"
-                                         class="media-thumb w-100 h-100">
-                                </div>
-                                <div class="ads-card__thumb ads-card__thumb--square ads-card__thumb-placeholder"
-                                     th:if="${!placement.hasImage()}">
-                                    <i class="bi bi-image"></i>
-                                </div>
-                                <div class="ads-card__body">
-                                    <div class="ads-card__meta-label">광고</div>
-                                    <div class="fw-semibold" th:text="${placement.adName()}">광고 이름</div>
-                                </div>
-                            </div>
-                            <div class="ads-card__metrics">
-                                <div class="ads-card__metric">
-                                    <div class="ads-card__metric-label">진행 상태</div>
-                                    <div class="ads-card__metric-value">
-                                        <span class="badge ads-status-badge"
-                                              th:classappend="${placement.statusBadgeClass()}"
-                                              th:text="${placement.displayStatusLabel()}">진행 중</span>
-                                    </div>
-                                </div>
-                                <div class="ads-card__metric">
-                                    <div class="ads-card__metric-label">우선순위</div>
-                                    <div class="ads-card__metric-value">
-                                        <span class="badge ads-priority-badge"
-                                              th:classappend="${placement.priorityBadgeClass()}"
-                                              th:text="${placement.weightLabel()}">매우 낮음</span>
-                                    </div>
-                                </div>
-                                <div class="ads-card__metric ads-card__metric--probability">
-                                    <div class="ads-card__metric-label">광고가 뜰 확률</div>
-                                    <div class="ads-card__metric-value">
-                                        <span class="badge ads-probability-badge"
-                                              th:classappend="${placement.hasPositiveProbability()} ? ' ads-probability-badge--active' : ' ads-probability-badge--muted'"
-                                              th:text="${placement.probabilityLabel()}">0%</span>
-                                    </div>
-                                </div>
-                            </div>
-                            <div class="ads-card__meta">
-                                <div class="ads-card__meta-label">진행 기간</div>
-                                <div class="fw-semibold" th:text="${placement.periodLabel()}">2025.01.01 ~ 2025.01.31</div>
-                            </div>
-                            <div class="ads-card__actions" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
-                                <form th:if="${placement.canToggle()}" th:action="@{/ads/placements/toggle}"
-                                      method="post" class="ads-card__action-form">
-                                    <input type="hidden" name="id" th:value="${placement.id()}">
-                                    <input type="hidden" name="enabled" th:value="${!placement.enabled()}">
-                                    <button type="submit" class="btn btn-sm"
-                                            th:classappend="${placement.enabled()} ? ' btn-outline-warning' : ' btn-outline-success'"
-                                            th:onclick="${placement.enabled()} ? 'return confirm(\'이 스케줄을 일시 중지하면 광고가 노출되지 않습니다. 계속하시겠습니까?\');' : 'return confirm(\'이 스케줄을 다시 활성화합니다.\');'">
-                                        <span th:text="${placement.enabled() ? '일시 중지' : '다시 활성화'}">일시 중지</span>
-                                    </button>
-                                </form>
-                                <a class="btn btn-sm btn-outline-primary"
-                                   th:href="@{/ads/placements/edit(id=${placement.id()})}">수정</a>
-                                <form th:action="@{/ads/placements/delete}" method="post" class="ads-card__action-form">
-                                    <input type="hidden" name="id" th:value="${placement.id()}">
-                                    <button type="submit" class="btn btn-sm btn-outline-danger"
-                                            th:onclick="|return confirm('정말 삭제하시겠습니까? 삭제하면 되돌릴 수 없습니다.');|">
-                                        삭제
-                                    </button>
-                                </form>
-                            </div>
-                        </div>
-                    </article>
-                </div>
-            </div>
-
-            <div class="mt-3" th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
-                <a class="btn btn-outline-primary w-100" th:href="@{/ads/slots/new}">
-                    <i class="bi bi-plus-circle me-1"></i>
-                    <span>새 광고 위치 추가</span>
-                </a>
-            </div>
-        </div>
-
-        <div class="modal fade" id="fallbackRatioModal" tabindex="-1" aria-hidden="true"
-             th:if="${currentAdminProfile.hasPermission('ADMIN_AD_WRITE')}">
-            <div class="modal-dialog modal-dialog-centered">
-                <div class="modal-content">
-                    <form th:action="@{/ads/slots/edit}" method="post" class="needs-validation" novalidate>
-                        <div class="modal-header">
-                            <h5 class="modal-title">기본 광고 표시 확률 수정</h5>
-                            <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-                        </div>
-                        <div class="modal-body">
-                            <input type="hidden" name="id">
-                            <input type="hidden" name="description">
-                            <input type="hidden" name="ttlSeconds">
-                            <input type="hidden" name="redirectTab" value="schedule">
-                            <div class="mb-3">
-                                <label class="form-label text-muted small">광고 위치</label>
-                                <div class="fw-semibold fallback-slot-code">-</div>
-                                <div class="text-muted small fallback-slot-description"></div>
-                            </div>
-                            <div class="mb-3">
-                                <label for="fallbackRatioInput" class="form-label">기본 광고 표시 확률 (%)</label>
-                                <input type="number" class="form-control" id="fallbackRatioInput" name="fallbackRatio"
-                                       min="0" max="100" step="1" required>
-                                <div class="form-text">현재 설정값: <span class="fallback-current-ratio">0%</span></div>
-                                <div class="invalid-feedback">0에서 100 사이의 값을 입력하세요.</div>
-                            </div>
-                        </div>
-                        <div class="modal-footer">
-                            <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                            <button type="submit" class="btn btn-primary">저장</button>
-                        </div>
-                    </form>
-                </div>
-            </div>
-        </div>
-
-        <script th:inline="javascript">
-        document.addEventListener('DOMContentLoaded', function () {
-            var fallbackModal = document.getElementById('fallbackRatioModal');
-            if (!fallbackModal) {
-                return;
-            }
-            fallbackModal.addEventListener('show.bs.modal', function (event) {
-                var trigger = event.relatedTarget;
-                if (!trigger) {
-                    return;
-                }
-
-                var slotId = trigger.getAttribute('data-slot-id');
-                var slotCode = trigger.getAttribute('data-slot-code');
-                var fallbackRatio = trigger.getAttribute('data-fallback-ratio');
-                var slotDescription = trigger.getAttribute('data-slot-description') || '';
-                var slotTtl = trigger.getAttribute('data-slot-ttl') || '0';
-
-                var idInput = fallbackModal.querySelector('input[name="id"]');
-                var ratioInput = fallbackModal.querySelector('input[name="fallbackRatio"]');
-                var descriptionInput = fallbackModal.querySelector('input[name="description"]');
-                var ttlInput = fallbackModal.querySelector('input[name="ttlSeconds"]');
-                if (idInput) {
-                    idInput.value = slotId || '';
-                }
-                if (ratioInput) {
-                    ratioInput.value = fallbackRatio || '';
-                }
-                if (descriptionInput) {
-                    descriptionInput.value = slotDescription;
-                }
-                if (ttlInput) {
-                    ttlInput.value = slotTtl;
-                }
-
-                var codeLabel = fallbackModal.querySelector('.fallback-slot-code');
-                if (codeLabel) {
-                    codeLabel.textContent = slotCode || '-';
-                }
-
-                var descriptionLabel = fallbackModal.querySelector('.fallback-slot-description');
-                if (descriptionLabel) {
-                    descriptionLabel.textContent = slotDescription || '설명이 없습니다.';
-                }
-
-                var currentRatioLabel = fallbackModal.querySelector('.fallback-current-ratio');
-                if (currentRatioLabel) {
-                    var ratioNumber = Number(fallbackRatio);
-                    currentRatioLabel.textContent = Number.isFinite(ratioNumber)
-                        ? Math.round(ratioNumber) + '%'
-                        : '-';
-                }
-            });
-        });
-        </script>
-
-    </div>
-</th:block>
-</html>
-
-
-// ===== resources/templates/ads/placement-form.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-
-    <div class="ads-page ads-form-page">
-        <div class="card card-elevated ads-form-card">
-            <div class="card-header card-header-tight ads-form-card__header">
-                <h1 class="h5 mb-0" th:text="${form.isEdit()} ? '스케줄 수정' : '새 스케줄 등록'">새 스케줄 등록</h1>
-            </div>
-            <div class="card-body card-body-comfy ads-form-card__body">
-                <form th:action="${form.isEdit()} ? @{/ads/placements/edit} : @{/ads/placements}" method="post" class="vstack gap-4">
-                    <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.isEdit()}">
-
-                    <div>
-                        <label for="placementAdId" class="form-label">광고 선택</label>
-                        <select id="placementAdId" name="adId" class="form-select" required th:disabled="${form.isEdit()}">
-                            <option value="" th:selected="${form.adId() == null}">광고를 선택하세요</option>
-                            <option th:each="ad : ${adOptions}" th:value="${ad.id()}"
-                                    th:selected="${ad.id() == form.adId()}"
-                                    th:text="${ad.name()}">광고</option>
-                        </select>
-                        <div class="form-text" th:if="${form.isEdit()}">광고는 수정할 수 없습니다. 새 스케줄을 등록하세요.</div>
-                    </div>
-
-                    <div>
-                        <label for="placementSlotId" class="form-label">광고 위치 선택</label>
-                        <select id="placementSlotId" name="slotId" class="form-select" required>
-                            <option value="" th:selected="${form.slotId() == null}">광고 위치를 선택하세요</option>
-                            <option th:each="slot : ${slotOptions}" th:value="${slot.id()}"
-                                    th:selected="${slot.id() == form.slotId()}"
-                                    th:text="${slot.code()}">광고 위치</option>
-                        </select>
-                    </div>
-
-                    <div class="row g-3">
-                        <div class="col-12 col-md-6">
-                            <label for="startDate" class="form-label">진행 기간</label>
-                            <input type="date" class="form-control" id="startDate" name="startDate"
-                                   th:value="${form.startDate()}" required>
-                            <div class="form-text">시작일</div>
-                        </div>
-                        <div class="col-12 col-md-6">
-                            <label class="form-label invisible">종료일</label>
-                            <input type="date" class="form-control" id="endDate" name="endDate"
-                                   th:value="${form.endDate()}" required>
-                            <div class="form-text">종료일</div>
-                        </div>
-                    </div>
-
-                    <div class="row g-4 align-items-center">
-                        <div class="col-12 col-lg-8">
-                            <label class="form-label d-block">우선순위</label>
-                            <div class="btn-group ads-weight-group" role="group" aria-label="우선순위 선택">
-                                <input type="radio" class="btn-check" name="weight" id="weight1" value="1"
-                                       th:checked="${form.weight() == null or form.weight() == 1}" required>
-                                <label class="btn btn-outline-primary" for="weight1">매우 낮음</label>
-
-                                <input type="radio" class="btn-check" name="weight" id="weight2" value="2"
-                                       th:checked="${form.weight() == 2}">
-                                <label class="btn btn-outline-primary" for="weight2">낮음</label>
-
-                                <input type="radio" class="btn-check" name="weight" id="weight3" value="3"
-                                       th:checked="${form.weight() == 3}">
-                                <label class="btn btn-outline-primary" for="weight3">보통</label>
-
-                                <input type="radio" class="btn-check" name="weight" id="weight4" value="4"
-                                       th:checked="${form.weight() == 4}">
-                                <label class="btn btn-outline-primary" for="weight4">높음</label>
-
-                                <input type="radio" class="btn-check" name="weight" id="weight5" value="5"
-                                       th:checked="${form.weight() == 5}">
-                                <label class="btn btn-outline-primary" for="weight5">매우 높음</label>
-                            </div>
-                            <div class="form-text">우선순위가 높을수록 화면에 등장하는 빈도가 늘어납니다.</div>
-                        </div>
-                        <div class="col-12 col-lg-4">
-                            <label for="enabledSwitch" class="form-label">진행 상태</label>
-                            <div class="form-check form-switch ads-status-switch">
-                                <input class="form-check-input" type="checkbox" role="switch" id="enabledSwitch" name="enabled"
-                                       value="true" th:checked="${form.enabled() == null or form.enabled()}">
-                                <label class="form-check-label" for="enabledSwitch">진행 중으로 유지</label>
-                            </div>
-                            <div class="form-text">꺼짐으로 전환하면 이 스케줄이 즉시 일시 중지됩니다.</div>
-                        </div>
-                    </div>
-
-                    <div class="d-flex justify-content-end gap-2 ads-form-actions">
-                        <a class="btn btn-outline-secondary" th:href="@{/ads(tab='schedule')}">취소</a>
-                        <button type="submit" class="btn btn-primary">저장</button>
-                    </div>
-                </form>
-            </div>
-        </div>
-    </div>
-    </div>
-</th:block>
-</html>
-
-
-
-
-// ===== resources/templates/ads/slot-form.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-    <link th:href="@{/css/ads.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-
-    <div class="ads-page ads-form-page">
-        <div class="card card-elevated ads-form-card">
-            <div class="card-header card-header-tight ads-form-card__header">
-                <h1 class="h5 mb-0" th:text="${form.isEdit()} ? '광고 위치 수정' : '새 광고 위치 추가'">새 광고 위치 추가</h1>
-            </div>
-            <div class="card-body card-body-comfy ads-form-card__body">
-                <form th:action="${form.isEdit()} ? @{/ads/slots/edit} : @{/ads/slots}" method="post" class="vstack gap-4" id="slotForm">
-                <input type="hidden" name="id" th:value="${form.id()}" th:if="${form.isEdit()}">
-
-                <div>
-                    <label for="slotCode" class="form-label">광고 위치 코드</label>
-                    <input type="text" class="form-control" id="slotCode" name="code"
-                           th:value="${form.code()}" th:readonly="${form.isEdit()}" required>
-                    <div class="form-text">예: HOME_TOP, COLLECTION_DETAIL_RIGHT 등</div>
-                </div>
-
-                <div>
-                    <label for="slotDescription" class="form-label">광고 위치 설명</label>
-                    <textarea class="form-control" id="slotDescription" name="description" rows="4"
-                              th:text="${form.description()}"></textarea>
-                </div>
-
-                <div>
-                    <label for="fallbackRatioInput" class="form-label">기본 광고 표시 확률(%)</label>
-                    <div class="row g-2 align-items-center ads-slider-group">
-                        <div class="col-12 col-md">
-                            <input type="range" class="form-range" min="0" max="100" step="1"
-                                   id="fallbackRatioInput" th:value="${form.fallbackRatioPercent() != null ? form.fallbackRatioPercent() : 0}">
-                        </div>
-                        <div class="col-4 col-md-auto">
-                            <div class="input-group">
-                                <input type="number" class="form-control" id="fallbackRatioNumber" name="fallbackRatio" min="0" max="100" step="1"
-                                       th:value="${form.fallbackRatioPercent() != null ? form.fallbackRatioPercent() : 0}" required>
-                                <span class="input-group-text">%</span>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-
-                <div>
-                    <label for="ttlSeconds" class="form-label">같은 광고 유지 시간(초)</label>
-                    <input type="number" class="form-control" id="ttlSeconds" name="ttlSeconds" min="0"
-                           th:value="${form.ttlSeconds() != null ? form.ttlSeconds() : 60}" required>
-                </div>
-
-                <div class="d-flex justify-content-end gap-2 ads-form-actions">
-                    <a class="btn btn-outline-secondary" th:href="@{/ads(tab='schedule')}">취소</a>
-                    <button type="submit" class="btn btn-primary">저장</button>
-                </div>
-            </form>
-        </div>
-        </div>
-    </div>
-
-    <script>
-        document.addEventListener('DOMContentLoaded', function () {
-            var rangeInput = document.getElementById('fallbackRatioInput');
-            var numberInput = document.getElementById('fallbackRatioNumber');
-            if (!rangeInput || !numberInput) {
-                return;
-            }
-            var syncFromRange = function () {
-                numberInput.value = rangeInput.value;
-            };
-            var syncFromNumber = function () {
-                var value = Number(numberInput.value);
-                if (Number.isNaN(value)) {
-                    value = 0;
-                }
-                value = Math.min(100, Math.max(0, value));
-                numberInput.value = value;
-                rangeInput.value = value;
-            };
-            rangeInput.addEventListener('input', syncFromRange);
-            numberInput.addEventListener('input', syncFromNumber);
-            syncFromNumber();
-        });
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/auth/login.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<head th:replace="~{fragments/_head :: head('새록 어드민 로그인')}"></head>
-<body class="login-page">
-
-<!--
-  풀 블리드 사진을 배경으로 깔고(Unsplash Random Bird),
-  상단은 타이틀 오버레이, 하단은 버튼/저작자 오버레이(그라데이션)로 중앙 사진을 선명하게.
-  최초 진입 시점의 뷰포트 비율로 orientation을 결정하여 단 한 장만 요청한다.
--->
-
-<div class="login-shell">
-    <!-- Background visual (full-bleed) -->
-    <aside class="login-visual" aria-hidden="false">
-        <a id="photoLink" class="login-visual__image-link" href="#" target="_blank" rel="noopener">
-            <img id="loginPhoto" class="login-visual__image" alt="" decoding="async">
-        </a>
-        <div class="login-visual__scrim"></div>
-        <p class="login-visual__credit small mb-0" hidden>
-            <span>사진을 불러오는 중…</span>
-        </p>
-    </aside>
-
-    <!-- Top overlay: title area (dark→transparent) -->
-    <header class="overlay-header">
-        <div class="overlay-header__scrim"></div>
-        <div class="overlay-header__content">
-            <img class="overlay-logo"
-                 th:src="@{/images/saerok-admin-icon.png}"
-                 src="/images/saerok-admin-icon.png"
-                 alt="새록 어드민 로고"
-                 decoding="async">
-            <div class="d-flex align-items-center gap-2 flex-wrap">
-                <h1 class="overlay-title fw-bold mb-0 text-white">새록 어드민</h1>
-                <span class="environment-badge"
-                      th:if="${environmentProfileBadge != null}"
-                      th:classappend="' ' + ${environmentProfileBadge.cssClass}"
-                      th:text="${environmentProfileBadge.label}">환경</span>
-            </div>
-            <p class="overlay-subtitle text-white-50 small mb-0 mt-1">로그인 페이지</p>
-        </div>
-    </header>
-
-    <!-- Bottom overlay: attribution + buttons (transparent→dark) -->
-    <footer class="overlay-actions">
-        <div class="overlay-actions__scrim"></div>
-
-        <!-- Login error banner (glass alert) -->
-        <div class="overlay-actions__error"
-             th:if="${param.error}"
-             th:with="err=${#strings.toString(param.error[0])}">
-            <div class="alert alert-dismissible fade show alert-login"
-                 th:classappend="${err == 'state' or err == 'session'} ? ' alert-warning'
-                       : (${err} == 'callback' ? ' alert-info' : ' alert-danger')"
-                 role="alert">
-                <!-- 아이콘: 삼항 대신 조건 분기 -->
-                <i class="bi bi-info-circle-fill me-2" th:if="${err == 'callback'}"></i>
-                <i class="bi bi-exclamation-triangle-fill me-2" th:if="${err == 'state' or err == 'session'}"></i>
-                <i class="bi bi-x-octagon-fill me-2"
-                   th:if="${err != 'callback' and err != 'state' and err != 'session'}"></i>
-
-                <!-- 메시지 본문 -->
-                <span th:switch="${err}">
-                  <span th:case="'state'">보안 검증에 실패했습니다. 새로고침 후 다시 로그인해주세요.</span>
-                  <span th:case="'callback'">필수 인증 정보가 누락되었습니다. 창/앱을 닫았다면 다시 시도해주세요.</span>
-                  <span th:case="'session'">세션이 만료되었습니다. 다시 로그인해주세요.</span>
-                  <span th:case="'login'">
-                    <span th:if="${param.message}" th:text="${param.message[0]}">로그인 중 오류가 발생했습니다. 다시 시도해주세요.</span>
-                    <span th:unless="${param.message}">로그인 중 오류가 발생했습니다. 다시 시도해주세요.</span>
-                  </span>
-                  <span th:case="*">로그인에 실패했습니다. 다시 시도해주세요.</span>
-                </span>
-
-                <button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="닫기"></button>
-            </div>
-        </div>
-
-
-        <!-- Unsplash attribution -->
-        <div id="attributionOverlay" class="overlay-actions__attr small text-white-75">
-            <span>사진을 불러오는 중…</span>
-        </div>
-
-        <!-- Buttons -->
-        <div class="overlay-actions__buttons">
-            <a th:href="${kakaoAuthUrl}"
-               class="btn btn-lg w-100 d-flex align-items-center justify-content-center gap-2"
-               role="button"
-               style="background-color: #FEE500; color: #191600;"
-               aria-label="카카오 계정으로 로그인">
-                <img th:src="@{/images/kakao-symbol.svg}" src="/images/kakao-symbol.svg" alt="카카오 심볼" width="20"
-                     height="20">
-                <span class="fw-semibold">카카오로 로그인</span>
-            </a>
-
-            <div class="tooltip-wrapper w-100"
-                 data-bs-toggle="tooltip"
-                 data-bs-placement="top"
-                 data-bs-title="추후 제공 예정인 기능">
-                <button type="button"
-                        class="btn btn-lg w-100 d-flex align-items-center justify-content-center gap-2 upcoming-feature"
-                        style="background-color: #000000; color: #ffffff;"
-                        aria-disabled="true" disabled>
-                    <i class="bi bi-apple fs-4" aria-hidden="true"></i>
-                    <span class="fw-semibold">Sign in with Apple</span>
-                </button>
-            </div>
-        </div>
-
-        <div class="overlay-actions__safe"></div>
-    </footer>
-</div>
-
-<th:block th:replace="~{fragments/_scripts :: scripts}"></th:block>
-
-<script>
-    const imgEl = document.getElementById('loginPhoto');
-    const linkEl = document.getElementById('photoLink');
-    const attrEl = document.getElementById('attributionOverlay');
-
-    // imgix(Unsplash CDN) 파라미터: 화면 크기에 맞춰 다운샘플 + entropy 크롭
-    function buildSmartUrl(base, w, h) {
-        try {
-            const u = new URL(base);
-            u.searchParams.set('w', Math.round(w));
-            u.searchParams.set('h', Math.round(h));
-            u.searchParams.set('q', '80');
-            u.searchParams.set('auto', 'format');
-            u.searchParams.set('fit', 'crop');
-            u.searchParams.set('crop', 'entropy');
-            return u.toString();
-        } catch {
-            return base;
-        }
-    }
-
-    function renderImage(baseUrl) {
-        if (!baseUrl) return;
-        const rect = document.querySelector('.login-visual').getBoundingClientRect();
-        const dpr = Math.min(2, window.devicePixelRatio || 1);
-        const w = rect.width * dpr;
-        const h = rect.height * dpr;
-        imgEl.src = buildSmartUrl(baseUrl, w, h);
-    }
-
-    function pickInitialOrientation() {
-        // 순수 뷰포트 비율로 결정: 가로가 크면 landscape, 아니면 portrait
-        const ratio = (window.innerWidth || document.documentElement.clientWidth) /
-            (window.innerHeight || document.documentElement.clientHeight);
-        return ratio >= 1 ? 'landscape' : 'portrait';
-    }
-
-    async function loadRandomBirdViaProxy() {
-        try {
-            const orientation = pickInitialOrientation();
-            const res = await fetch('/public/unsplash/random-bird?orientation=' + orientation, {cache: 'no-store'});
-            if (!res.ok) throw new Error('Proxy request failed: ' + res.status);
-            const photo = await res.json(); // { imageUrl, htmlLink, photographerName, photographerLink, unsplashHome }
-
-            // 클릭 시 Unsplash 사진 페이지로 이동 (가이드라인 준수)
-            linkEl.href = photo.htmlLink;
-
-            // 저작자/Unsplash 표기 (가이드라인 준수)
-            const creditHtml = `Photo by <a href="${photo.photographerLink || photo.unsplashHome || 'https://unsplash.com'}" target="_blank" rel="noopener">`
-                + `${photo.photographerName || 'Unknown'}</a> on `
-                + `<a href="${photo.unsplashHome || 'https://unsplash.com'}" target="_blank" rel="noopener">Unsplash</a>`;
-            attrEl.innerHTML = creditHtml;
-
-            // 최초 한 장만 요청 → 이후에는 재요청 없이 화면 크기에 맞춰 리렌더만 수행
-            renderImage(photo.imageUrl);
-
-            // 리사이즈/회전 시 품질 유지용 리렌더(재요청 없음)
-            const base = photo.imageUrl;
-            const ro = new ResizeObserver(() => renderImage(base));
-            ro.observe(document.querySelector('.login-visual'));
-            window.addEventListener('orientationchange', () => setTimeout(() => renderImage(base), 250));
-            window.addEventListener('resize', () => {
-                clearTimeout(window.__saerok_login_resize_timer);
-                window.__saerok_login_resize_timer = setTimeout(() => renderImage(base), 120);
-            });
-        } catch (e) {
-            console.warn(e);
-            attrEl.textContent = '이미지를 불러오지 못했습니다.';
-        }
-    }
-
-    document.addEventListener('DOMContentLoaded', loadRandomBirdViaProxy);
-
-    // 툴팁 초기화
-    document.addEventListener('DOMContentLoaded', function () {
-        if (!window.bootstrap || !window.bootstrap.Tooltip) return;
-        document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
-            var existing = window.bootstrap.Tooltip.getInstance(triggerEl);
-            if (existing) existing.dispose();
-            new window.bootstrap.Tooltip(triggerEl, {
-                trigger: 'hover focus',
-                delay: {show: 0, hide: 100},
-                customClass: 'tooltip-bubble'
-            });
-        });
-    });
-</script>
-
-<style>
-    :root {
-        --panel-bg: rgba(248, 250, 252, .80);
-        --panel-border: rgba(255, 255, 255, .28);
-        --panel-shadow: 0 20px 40px rgba(15, 23, 42, .25);
-        --scrim-top: rgba(0, 0, 0, .70);
-        --scrim-mid: rgba(0, 0, 0, .28);
-        --scrim-btm: rgba(0, 0, 0, .74);
-    }
-
-    .login-page {
-        min-height: 100dvh;
-        background: #0b1220;
-        overflow: hidden;
-    }
-
-    .login-shell {
-        position: relative;
-        min-height: 100dvh;
-    }
-
-    /* Background (full-bleed) */
-    .login-visual {
-        position: absolute;
-        inset: 0;
-        z-index: 0;
-        overflow: hidden;
-        background: #0b1220;
-    }
-
-    .login-visual__image-link, .login-visual__image {
-        display: block;
-        width: 100%;
-        height: 100%;
-    }
-
-    .login-visual__image {
-        object-fit: cover;
-    }
-
-    .login-visual__scrim {
-        position: absolute;
-        inset: 0;
-        pointer-events: none;
-        background: linear-gradient(180deg, var(--scrim-top) 0%, rgba(0, 0, 0, 0) 32%, rgba(0, 0, 0, 0) 68%, var(--scrim-btm) 100%);
-    }
-
-    .login-visual__credit {
-        display: none;
-    }
-
-    /* Top overlay: title */
-    .overlay-header {
-        position: fixed;
-        z-index: 2;
-        inset: 0 0 auto 0;
-        padding: max(1.25rem, env(safe-area-inset-top)) 1.25rem .75rem;
-        pointer-events: none;
-    }
-
-    .overlay-header__scrim {
-        position: absolute;
-        inset: 0 0 auto 0;
-        height: 32dvh;
-        pointer-events: none;
-        background: linear-gradient(180deg, var(--scrim-top) 0%, var(--scrim-mid) 55%, rgba(0, 0, 0, 0) 100%);
-    }
-
-    .overlay-header__content {
-        position: relative;
-        z-index: 1;
-        pointer-events: auto;
-        max-width: min(960px, 80vw);
-    }
-
-    .overlay-logo {
-        width: 56px;
-        height: 56px;
-        display: inline-block;
-        margin-bottom: .5rem;
-    }
-
-    .overlay-title {
-        font-size: clamp(1.5rem, 2.8vw, 2.25rem);
-    }
-
-    .overlay-subtitle {
-        font-size: clamp(.85rem, 1.4vw, .95rem);
-    }
-
-    /* Bottom overlay: attribution + buttons */
-    .overlay-actions {
-        position: fixed;
-        z-index: 2;
-        inset: auto 0 0 0;
-        padding: 0 1.25rem max(1.25rem, env(safe-area-inset-bottom));
-        pointer-events: none;
-        display: flex;
-        flex-direction: column;
-        gap: .75rem;
-    }
-
-    .overlay-actions__scrim {
-        position: absolute;
-        inset: auto 0 0 0;
-        height: 40dvh;
-        pointer-events: none;
-        background: linear-gradient(0deg, var(--scrim-btm) 0%, var(--scrim-mid) 55%, rgba(0, 0, 0, 0) 100%);
-    }
-
-    .overlay-actions__error {
-        position: relative;
-        z-index: 1;
-        pointer-events: auto;
-    }
-
-    /* Glassy alert on dark background */
-    .alert-login {
-        backdrop-filter: saturate(140%) blur(8px);
-        -webkit-backdrop-filter: saturate(140%) blur(8px);
-        border: 1px solid rgba(255, 255, 255, .22);
-        border-radius: .8rem;
-        box-shadow: 0 10px 28px rgba(0, 0, 0, .28);
-        color: #fff;
-    }
-
-    .alert-login.alert-danger {
-        background: rgba(220, 38, 38, .90);
-    }
-
-    .alert-login.alert-warning {
-        background: rgba(234, 179, 8, .92);
-        color: #0b0b0b;
-    }
-
-    .alert-login.alert-info {
-        background: rgba(59, 130, 246, .92);
-    }
-
-    .overlay-actions__attr {
-        position: relative;
-        z-index: 1;
-        pointer-events: auto;
-        color: #fff;
-        text-shadow: 0 1px 1px rgba(0, 0, 0, .6);
-    }
-
-    .overlay-actions__attr a {
-        color: #fff;
-        text-decoration: underline;
-    }
-
-    .overlay-actions__buttons {
-        position: relative;
-        z-index: 1;
-        pointer-events: auto;
-        display: grid;
-        gap: .75rem;
-        width: 100%;
-        max-width: min(600px, 92vw);
-        margin-inline: auto;
-    }
-
-    .overlay-actions__safe {
-        height: .25rem;
-        position: relative;
-        z-index: 1;
-    }
-
-    @media (min-width: 992px) {
-        .overlay-header {
-            padding: max(1.75rem, env(safe-area-inset-top)) 2rem 1rem;
-        }
-
-        .overlay-header__scrim {
-            height: 34dvh;
-        }
-
-        .overlay-logo {
-            width: 64px;
-            height: 64px;
-        }
-
-        .overlay-title {
-            font-size: clamp(1.75rem, 2.2vw, 2.5rem);
-        }
-
-        .overlay-subtitle {
-            font-size: clamp(.9rem, 1vw, 1rem);
-        }
-
-        .overlay-actions {
-            padding: 0 2rem max(2rem, env(safe-area-inset-bottom));
-        }
-
-        .overlay-actions__scrim {
-            height: 42dvh;
-        }
-
-        .overlay-actions__buttons {
-            max-width: 640px;
-        }
-    }
-
-    @media (max-height: 640px) {
-        .overlay-header__scrim {
-            height: 28dvh;
-        }
-
-        .overlay-actions__scrim {
-            height: 44dvh;
-        }
-    }
-</style>
-
-</body>
-</html>
-
-
-// ===== resources/templates/collections/detail.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="row g-4">
-            <div class="col-12 col-lg-8">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <div class="d-flex align-items-center mb-3">
-                            <img th:src="${detail.avatarUrl()}" alt="작성자" class="rounded-circle me-3" width="56" height="56">
-                            <div>
-                                <h2 class="h5 mb-0" th:text="${detail.author()}">솔바람</h2>
-                                <div class="text-muted small">작성 <span th:text="${#temporals.format(detail.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01</span> · 업데이트 <span th:text="${#temporals.format(detail.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.02</span></div>
-                            </div>
-                        </div>
-                        <div class="d-flex align-items-center gap-2 mb-4">
-                            <span class="badge rounded-pill" th:classappend="${detail.status()} == '공개' ? ' text-bg-success' : (${detail.status()} == '비공개' ? ' text-bg-secondary' : ' text-bg-danger')"
-                                  th:text="${detail.status()}">공개</span>
-                            <span class="badge text-bg-light"><i class="bi bi-flag me-1 text-danger"></i>신고 <span th:text="${detail.reportCount()}">3</span>건</span>
-                            <span class="badge text-bg-light" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
-                        </div>
-                        <div class="bg-light rounded-4 p-4 lh-lg" th:text="${detail.content()}">본문 내용</div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-lg-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">빠른 조치</h3>
-                        <div class="d-grid gap-2">
-                            <button class="btn btn-primary" data-bs-toggle="modal" data-bs-target="#statusModal">상태 변경</button>
-                            <button class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteModal">새록 삭제</button>
-                            <button class="btn btn-outline-secondary" data-bs-toggle="modal" data-bs-target="#notifyModal">작성자 알림</button>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">활동 요약</h3>
-                        <ul class="list-unstyled small text-muted mb-0">
-                            <li class="mb-2"><i class="bi bi-journal-text me-2 text-primary"></i>등록 새록 48건</li>
-                            <li class="mb-2"><i class="bi bi-chat-square-text me-2 text-success"></i>댓글 126건</li>
-                            <li><i class="bi bi-flag me-2 text-danger"></i>누적 신고 5건</li>
-                        </ul>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div class="modal fade" id="statusModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">상태 변경</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong th:text="${detail.author()}">솔바람</strong>님의 새록 상태를 변경합니다.</p>
-                        <select class="form-select">
-                            <option>공개</option>
-                            <option>비공개</option>
-                            <option>차단</option>
-                        </select>
-                        <div class="mt-3">
-                            <label class="form-label">조치 메모</label>
-                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">저장</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="deleteModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">새록 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p>새록 <strong th:text="${'#' + detail.id()}">#872</strong>를 삭제하시겠습니까? 삭제 시 본문은 비공개 처리됩니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="notifyModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">작성자 알림</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong th:text="${detail.author()}">솔바람</strong>님에게 발송할 메시지를 작성하세요.</p>
-                        <textarea class="form-control" rows="4" placeholder="안내 메시지"></textarea>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">알림 발송</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </th:block>
-</html>
-
-
-// ===== resources/templates/collections/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <form class="row g-3 align-items-end" method="get">
-                    <div class="col-md-4">
-                        <label class="form-label small text-uppercase text-muted" for="collectionQuery">검색어</label>
-                        <input type="search" class="form-control" id="collectionQuery" name="q" placeholder="작성자 또는 내용" th:value="${query}">
-                    </div>
-                    <div class="col-md-3">
-                        <label class="form-label small text-uppercase text-muted" for="collectionStatus">상태</label>
-                        <select class="form-select" id="collectionStatus" name="status">
-                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2 d-flex gap-2">
-                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
-                        <a th:href="@{/collections}" class="btn btn-outline-secondary">초기화</a>
-                    </div>
-                </form>
-            </div>
-        </div>
-        <div class="d-flex justify-content-between align-items-center mb-3">
-            <div class="d-flex align-items-center gap-2">
-                <div class="form-check">
-                    <input class="form-check-input" type="checkbox" id="selectAllCollections">
-                    <label class="form-check-label" for="selectAllCollections">전체 선택</label>
-                </div>
-                <button class="btn btn-sm btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#bulkDeleteModal">선택 삭제</button>
-            </div>
-            <p class="mb-0 text-muted small">총 <strong th:text="${totalElements}">184</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">9</span> 페이지</p>
-        </div>
-        <div class="card card-elevated">
-            <div class="table-responsive table-shell">
-                <table class="table table-modern align-middle table-hover">
-                    <thead>
-                    <tr>
-                        <th><input class="form-check-input" type="checkbox" id="selectAllCollectionsHead"></th>
-                        <th>ID</th>
-                        <th>작성자</th>
-                        <th>본문 요약</th>
-                        <th>상태</th>
-                        <th>신고 수</th>
-                        <th>생성일</th>
-                        <th class="text-end">액션</th>
-                    </tr>
-                    </thead>
-                    <tbody>
-                    <tr th:each="collection : ${collections}" th:data-collection-id="${collection.id()}">
-                        <td><input class="form-check-input collection-checkbox" type="checkbox" th:value="${collection.id()}"></td>
-                        <td class="fw-semibold" th:text="${'#' + collection.id()}">#872</td>
-                        <td th:text="${collection.author()}">솔바람</td>
-                        <td>
-                            <div class="fw-semibold" th:text="${collection.excerpt()}">초여름 갈대밭 풍경과 관찰 기록</div>
-                        </td>
-                        <td>
-                            <span class="badge rounded-pill" th:classappend="${collection.status()} == '공개' ? ' text-bg-success' : (${collection.status()} == '비공개' ? ' text-bg-secondary' : ' text-bg-danger')"
-                                  th:text="${collection.status()}">공개</span>
-                        </td>
-                        <td>
-                            <span class="badge text-bg-light" th:text="${collection.reportCount()}">3</span>
-                        </td>
-                        <td th:text="${#temporals.format(collection.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 09:10</td>
-                        <td class="text-end">
-                            <div class="btn-group btn-group-sm">
-                                <a th:href="@{'/collections/' + ${collection.id()}}" class="btn btn-outline-secondary">상세</a>
-                                <button class="btn btn-outline-primary" type="button" data-bs-toggle="modal" data-bs-target="#statusModal"
-                                        th:attr="data-collection='새록 #' + ${collection.id()}">상태 변경</button>
-                                <button class="btn btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#singleDeleteModal"
-                                        th:attr="data-collection='새록 #' + ${collection.id()}">삭제</button>
-                            </div>
-                        </td>
-                    </tr>
-                    </tbody>
-                </table>
-            </div>
-            <div class="card-footer bg-white border-0 py-3">
-                <ul class="pagination pagination-sm justify-content-end mb-0">
-                    <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
-                        <a class="page-link" th:href="@{/collections(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
-                    </li>
-                    <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
-                        <a class="page-link" th:text="${pageNum}" th:href="@{/collections(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
-                    </li>
-                    <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
-                        <a class="page-link" th:href="@{/collections(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
-                    </li>
-                </ul>
-            </div>
-        </div>
-
-        <div class="modal fade" id="bulkDeleteModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">선택 항목 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p>선택한 <strong id="bulkDeleteCount">0</strong>개의 새록을 삭제하시겠습니까?</p>
-                        <p class="small text-muted mb-0">삭제 시 신고 기록은 유지되지만 본문은 비공개 처리됩니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="singleDeleteModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">새록 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="singleDeleteTarget">새록</strong>을 삭제하시겠습니까?</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCollectionBulk">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="statusModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">상태 변경</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="statusTarget">새록</strong>의 상태를 변경합니다.</p>
-                        <select class="form-select">
-                            <option value="공개">공개</option>
-                            <option value="비공개">비공개</option>
-                            <option value="차단">차단</option>
-                        </select>
-                        <div class="mt-3">
-                            <label class="form-label">메모</label>
-                            <textarea class="form-control" rows="3" placeholder="조치 사유를 입력하세요."></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCollectionAction">저장</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    <script>
-    const checkboxes = document.querySelectorAll('.collection-checkbox');
-    const selectAll = document.getElementById('selectAllCollections');
-    const selectAllHead = document.getElementById('selectAllCollectionsHead');
-    const bulkCount = document.getElementById('bulkDeleteCount');
-
-    function updateBulkCount() {
-        const count = Array.from(checkboxes).filter(cb => cb.checked).length;
-        if (bulkCount) {
-            bulkCount.textContent = count;
-        }
-    }
-
-    function toggleAll(state) {
-        checkboxes.forEach(cb => cb.checked = state);
-        if (selectAll) selectAll.checked = state;
-        if (selectAllHead) selectAllHead.checked = state;
-        updateBulkCount();
-    }
-
-    [selectAll, selectAllHead].forEach(controller => {
-        if (controller) {
-            controller.addEventListener('change', event => toggleAll(event.target.checked));
-        }
-    });
-
-    checkboxes.forEach(cb => cb.addEventListener('change', updateBulkCount));
-
-    const bulkModal = document.getElementById('bulkDeleteModal');
-    if (bulkModal) {
-        bulkModal.addEventListener('show.bs.modal', updateBulkCount);
-    }
-
-    const singleModal = document.getElementById('singleDeleteModal');
-    if (singleModal) {
-        singleModal.addEventListener('show.bs.modal', event => {
-            const button = event.relatedTarget;
-            const target = button ? button.getAttribute('data-collection') : '새록';
-            singleModal.querySelector('#singleDeleteTarget').textContent = target;
-        });
-    }
-
-    const statusModal = document.getElementById('statusModal');
-    if (statusModal) {
-        statusModal.addEventListener('show.bs.modal', event => {
-            const button = event.relatedTarget;
-            const target = button ? button.getAttribute('data-collection') : '새록';
-            statusModal.querySelector('#statusTarget').textContent = target;
-        });
-    }
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/comments/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <form class="row g-3 align-items-end" method="get">
-                    <div class="col-md-4">
-                        <label class="form-label small text-uppercase text-muted" for="commentQuery">검색어</label>
-                        <input type="search" class="form-control" id="commentQuery" name="q" placeholder="작성자 또는 본문" th:value="${query}">
-                    </div>
-                    <div class="col-md-3">
-                        <label class="form-label small text-uppercase text-muted" for="commentStatus">상태</label>
-                        <select class="form-select" id="commentStatus" name="status">
-                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2 d-flex gap-2">
-                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
-                        <a th:href="@{/comments}" class="btn btn-outline-secondary">초기화</a>
-                    </div>
-                </form>
-            </div>
-        </div>
-        <div class="d-flex justify-content-between align-items-center mb-3">
-            <div class="d-flex align-items-center gap-2">
-                <div class="form-check">
-                    <input class="form-check-input" type="checkbox" id="selectAllComments">
-                    <label class="form-check-label" for="selectAllComments">전체 선택</label>
-                </div>
-                <button class="btn btn-sm btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#commentBulkDelete">선택 삭제</button>
-                <button class="btn btn-sm btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#commentBulkHide">선택 숨김</button>
-            </div>
-            <p class="mb-0 text-muted small">총 <strong th:text="${totalElements}">312</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">15</span> 페이지</p>
-        </div>
-        <div class="card card-elevated">
-            <div class="table-responsive table-shell">
-                <table class="table table-modern table-hover align-middle">
-                    <thead>
-                    <tr>
-                        <th><input class="form-check-input" type="checkbox" id="selectAllCommentsHead"></th>
-                        <th>ID</th>
-                        <th>작성자</th>
-                        <th>원글</th>
-                        <th>본문 요약</th>
-                        <th>신고 수</th>
-                        <th>생성일</th>
-                        <th class="text-end">액션</th>
-                    </tr>
-                    </thead>
-                    <tbody>
-                    <tr th:each="comment : ${comments}" th:data-comment="${'#' + comment.id()}">
-                        <td><input class="form-check-input comment-checkbox" type="checkbox" th:value="${comment.id()}"></td>
-                        <td class="fw-semibold" th:text="${'#' + comment.id()}">#481</td>
-                        <td th:text="${comment.author()}">솔바람</td>
-                        <td th:text="${'#' + comment.parentId()}">#872</td>
-                        <td>
-                            <div class="fw-semibold" th:text="${comment.excerpt()}">갈대밭의 색감이 정말 아름답네요!</div>
-                        </td>
-                        <td><span class="badge text-bg-light" th:text="${comment.reportCount()}">2</span></td>
-                        <td th:text="${#temporals.format(comment.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 08:10</td>
-                        <td class="text-end">
-                            <div class="btn-group btn-group-sm">
-                                <button class="btn btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#commentHideModal"
-                                        th:attr="data-comment='댓글 ' + ${'#' + comment.id()}">상태 변경</button>
-                                <button class="btn btn-outline-danger" type="button" data-bs-toggle="modal" data-bs-target="#commentDeleteModal"
-                                        th:attr="data-comment='댓글 ' + ${'#' + comment.id()}">삭제</button>
-                            </div>
-                        </td>
-                    </tr>
-                    </tbody>
-                </table>
-            </div>
-            <div class="card-footer bg-white border-0 py-3">
-                <ul class="pagination pagination-sm justify-content-end mb-0">
-                    <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
-                        <a class="page-link" th:href="@{/comments(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
-                    </li>
-                    <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
-                        <a class="page-link" th:text="${pageNum}" th:href="@{/comments(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
-                    </li>
-                    <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
-                        <a class="page-link" th:href="@{/comments(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
-                    </li>
-                </ul>
-            </div>
-        </div>
-
-        <div class="modal fade" id="commentBulkDelete" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">선택 댓글 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p>선택된 <strong id="commentBulkDeleteCount">0</strong>개의 댓글을 삭제하시겠습니까?</p>
-                        <p class="small text-muted mb-0">삭제 시 댓글은 즉시 비공개 처리됩니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCommentBulk">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="commentBulkHide" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">선택 댓글 숨김</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p>선택된 댓글을 숨김 처리하시겠습니까?</p>
-                        <p class="small text-muted mb-0">언제든지 다시 표시할 수 있습니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCommentHide">숨김 처리</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="commentHideModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">댓글 상태 변경</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="commentHideTarget">댓글</strong>을 어떻게 조치하시겠습니까?</p>
-                        <select class="form-select">
-                            <option value="정상">정상</option>
-                            <option value="숨김">숨김</option>
-                            <option value="삭제">삭제</option>
-                        </select>
-                        <div class="mt-3">
-                            <label class="form-label">운영자 메모</label>
-                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastCommentHide">저장</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="commentDeleteModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">댓글 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="commentDeleteTarget">댓글</strong>을 삭제하시겠습니까?</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastCommentBulk">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    <script>
-    const commentCheckboxes = document.querySelectorAll('.comment-checkbox');
-    const selectAllComments = document.getElementById('selectAllComments');
-    const selectAllCommentsHead = document.getElementById('selectAllCommentsHead');
-    const bulkDeleteCount = document.getElementById('commentBulkDeleteCount');
-
-    function updateCommentBulkCount() {
-        const count = Array.from(commentCheckboxes).filter(cb => cb.checked).length;
-        if (bulkDeleteCount) {
-            bulkDeleteCount.textContent = count;
-        }
-    }
-
-    function toggleCommentAll(state) {
-        commentCheckboxes.forEach(cb => cb.checked = state);
-        if (selectAllComments) selectAllComments.checked = state;
-        if (selectAllCommentsHead) selectAllCommentsHead.checked = state;
-        updateCommentBulkCount();
-    }
-
-    [selectAllComments, selectAllCommentsHead].forEach(controller => {
-        if (controller) {
-            controller.addEventListener('change', event => toggleCommentAll(event.target.checked));
-        }
-    });
-
-    commentCheckboxes.forEach(cb => cb.addEventListener('change', updateCommentBulkCount));
-
-    const hideModal = document.getElementById('commentHideModal');
-    if (hideModal) {
-        hideModal.addEventListener('show.bs.modal', event => {
-            const button = event.relatedTarget;
-            const target = button ? button.getAttribute('data-comment') : '댓글';
-            hideModal.querySelector('#commentHideTarget').textContent = target;
-        });
-    }
-
-    const deleteModal = document.getElementById('commentDeleteModal');
-    if (deleteModal) {
-        deleteModal.addEventListener('show.bs.modal', event => {
-            const button = event.relatedTarget;
-            const target = button ? button.getAttribute('data-comment') : '댓글';
-            deleteModal.querySelector('#commentDeleteTarget').textContent = target;
-        });
-    }
-
-    const bulkDeleteModal = document.getElementById('commentBulkDelete');
-    if (bulkDeleteModal) {
-        bulkDeleteModal.addEventListener('show.bs.modal', updateCommentBulkCount);
-    }
-
-    const bulkHideModal = document.getElementById('commentBulkHide');
-    if (bulkHideModal) {
-        bulkHideModal.addEventListener('show.bs.modal', updateCommentBulkCount);
-    }
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/dashboard/index.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <section class="row g-4 mb-4" th:if="${serviceHealth != null}">
-            <div class="col-12">
-                <div class="alert d-flex align-items-center mb-0"
-                     th:classappend="${serviceHealth.alive()} ? ' alert-success' : ' alert-danger'">
-                    <i class="bi fs-4"
-                       th:classappend="${serviceHealth.alive()} ? ' bi-check-circle-fill' : ' bi-exclamation-octagon-fill'"></i>
-                    <div class="ms-3">
-                        <h2 class="h6 mb-1 fw-semibold">서비스 서버 상태</h2>
-                        <p class="mb-1" th:text="${serviceHealth.message()}">서버가 정상 응답했습니다.</p>
-                        <p class="mb-0 text-muted small"
-                           th:text="${#temporals.format(serviceHealth.checkedAt(), 'yyyy.MM.dd HH:mm:ss')}"
-                        >2024.06.01 12:00:00</p>
-                    </div>
-                </div>
-            </div>
-        </section>
-        <section class="row g-4 mb-4">
-            <div class="col-12 col-xl-4 col-md-6" th:each="metric : ${metrics}">
-                <th:block th:with="metricLink=${metric.linkHref()}">
-                    <a th:if="${metricLink != null}"
-                       th:href="@{${metricLink}}"
-                       class="card card-elevated metric-card metric-card--interactive h-100 text-decoration-none text-reset"
-                       th:aria-label="|${metric.label()} 바로가기|">
-                        <div class="card-body d-flex align-items-center justify-content-between gap-3">
-                            <div>
-                                <div class="text-muted text-uppercase small fw-semibold" th:text="${metric.label()}">오늘 신고</div>
-                                <div class="display-6 fw-bold mt-2" th:text="${metric.value()}">18건</div>
-                                <div class="text-muted small" th:text="${metric.subtitle()}">지난주 대비 +12%</div>
-                            </div>
-                            <div class="bg-opacity-10 rounded-4 p-3"
-                                 th:classappend="${metric.variant() != null ? ' bg-' + metric.variant() + ' text-' + metric.variant() : ' bg-primary text-primary'}">
-                                <i class="bi fs-2" th:classappend="' ' + ${metric.icon()}"></i>
-                            </div>
-                        </div>
-                    </a>
-                    <div th:if="${metricLink == null}" class="card card-elevated metric-card h-100">
-                        <div class="card-body d-flex align-items-center justify-content-between gap-3">
-                            <div>
-                                <div class="text-muted text-uppercase small fw-semibold" th:text="${metric.label()}">오늘 신고</div>
-                                <div class="display-6 fw-bold mt-2" th:text="${metric.value()}">18건</div>
-                                <div class="text-muted small" th:text="${metric.subtitle()}">지난주 대비 +12%</div>
-                            </div>
-                            <div class="bg-opacity-10 rounded-4 p-3"
-                                 th:classappend="${metric.variant() != null ? ' bg-' + metric.variant() + ' text-' + metric.variant() : ' bg-primary text-primary'}">
-                                <i class="bi fs-2" th:classappend="' ' + ${metric.icon()}"></i>
-                            </div>
-                        </div>
-                    </div>
-                </th:block>
-            </div>
-        </section>
-
-    </th:block>
-</html>
-
-
-// ===== resources/templates/dex/detail.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="row g-4">
-            <div class="col-12 col-lg-8">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body p-0">
-                        <div class="ratio ratio-21x9 rounded-top" th:style="${'background:url(' + detail.imageUrl() + ') center/cover no-repeat'}"></div>
-                        <div class="p-4 p-lg-5">
-                            <div class="d-flex align-items-center mb-3">
-                                <span class="badge bg-primary-subtle text-primary me-2" th:text="${detail.rarity()}">RARE</span>
-                                <span class="badge text-bg-light" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
-                            </div>
-                            <h2 class="h3 fw-bold" th:text="${detail.koreanName()}">해오라기</h2>
-                            <p class="text-muted mb-1" th:text="${detail.englishName()}">Striated Heron</p>
-                            <p class="text-muted fst-italic" th:text="${detail.scientificName()}">Butorides striata</p>
-                            <p class="fs-6 lh-lg" th:text="${detail.description()}">설명</p>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-header bg-white border-0">
-                        <h3 class="h6 mb-0 fw-semibold">최근 업데이트</h3>
-                    </div>
-                    <div class="card-body">
-                        <dl class="row mb-0">
-                            <dt class="col-sm-3 text-muted">ID</dt>
-                            <dd class="col-sm-9" th:text="${'#' + detail.id()}">#401</dd>
-                            <dt class="col-sm-3 text-muted">업데이트</dt>
-                            <dd class="col-sm-9" th:text="${#temporals.format(detail.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 12:00</dd>
-                            <dt class="col-sm-3 text-muted">태그</dt>
-                            <dd class="col-sm-9">
-                                <span class="badge text-bg-light me-1" th:each="tag : ${detail.tags()}" th:text="${tag}">태그</span>
-                            </dd>
-                        </dl>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-lg-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">서식 정보</h3>
-                        <ul class="list-unstyled mb-0 small text-muted">
-                            <li class="mb-2"><i class="bi bi-geo-alt me-2 text-primary"></i>
-                                <span th:each="habitat : ${detail.habitats()}" th:text="${habitat}"
-                                      th:append="${!#lists.isLast(habitat, detail.habitats()) ? ', ' : ''}">하천</span>
-                            </li>
-                            <li class="mb-2"><i class="bi bi-shield-check me-2 text-success"></i>보호 등급 <strong th:text="${detail.rarity()}">RARE</strong></li>
-                        </ul>
-                        <div class="d-grid gap-2 mt-4">
-                            <a th:href="@{'/dex/' + ${detail.id()} + '/edit'}" class="btn btn-primary">도감 수정</a>
-                            <button class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteDexModal" data-entry="상세 #" th:data-entry="${'#' + detail.id() + ' ' + detail.koreanName()}">삭제</button>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">관련 링크</h3>
-                        <ul class="list-unstyled mb-0">
-                            <li class="mb-2"><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>현장 사진 아카이브</a></li>
-                            <li class="mb-2"><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>관찰 데이터 다운로드</a></li>
-                            <li><a href="#" class="text-decoration-none"><i class="bi bi-link-45deg me-2"></i>관련 새록 모음</a></li>
-                        </ul>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="deleteDexModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog modal-dialog-centered">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">도감 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong th:text="${detail.koreanName()}">해오라기</strong> 도감 항목을 삭제하시겠습니까? 삭제 후 복구할 수 없습니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastDexDeleted">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </th:block>
-</html>
-
-
-// ===== resources/templates/dex/form.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <form class="row g-4" novalidate>
-            <div class="col-12 col-xl-8">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <h2 class="h6 fw-semibold mb-4">기본 정보</h2>
-                        <div class="row g-3">
-                            <div class="col-md-6">
-                                <label class="form-label">국문명</label>
-                                <input type="text" class="form-control" name="koreanName" placeholder="예) 해오라기"
-                                       th:value="${form.detail() != null ? form.detail().koreanName() : ''}">
-                            </div>
-                            <div class="col-md-6">
-                                <label class="form-label">영문명</label>
-                                <input type="text" class="form-control" name="englishName" placeholder="예) Striated Heron"
-                                       th:value="${form.detail() != null ? form.detail().englishName() : ''}">
-                            </div>
-                            <div class="col-md-6">
-                                <label class="form-label">학명</label>
-                                <input type="text" class="form-control" name="scientificName" placeholder="Butorides striata"
-                                       th:value="${form.detail() != null ? form.detail().scientificName() : ''}">
-                            </div>
-                            <div class="col-md-6">
-                                <label class="form-label">대표 이미지 URL</label>
-                                <input type="url" class="form-control" name="imageUrl" placeholder="https://"
-                                       th:value="${form.detail() != null ? form.detail().imageUrl() : ''}">
-                            </div>
-                            <div class="col-12">
-                                <label class="form-label">설명</label>
-                                <textarea class="form-control" name="description" rows="6" placeholder="도감 설명을 입력하세요">[[${form.detail() != null ? form.detail().description() : ''}]]</textarea>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <h2 class="h6 fw-semibold mb-3">태그 설정</h2>
-                        <div class="mb-3">
-                            <label class="form-label">태그</label>
-                            <input type="text" class="form-control" name="tags" placeholder="쉼표(,)로 구분"
-                                   th:value="${form.detail() != null ? #strings.arrayJoin(form.detail().tags(), ', ') : ''}">
-                            <div class="form-text">예시: 야행성, 대형, 빠른반응</div>
-                        </div>
-                        <div class="border rounded-4 p-3 bg-light">
-                            <div class="text-muted small mb-2">현재 태그 미리보기</div>
-                            <div class="d-flex flex-wrap gap-2">
-                                <span class="badge text-bg-light" th:each="tag : ${form.detail() != null ? form.detail().tags() : {}}" th:text="${tag}">태그</span>
-                                <span class="text-muted" th:if="${form.detail() == null || #lists.isEmpty(form.detail().tags())}">등록된 태그가 없습니다.</span>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-xl-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <h2 class="h6 fw-semibold mb-3">분류 정보</h2>
-                        <div class="mb-3">
-                            <label class="form-label">서식지</label>
-                            <select class="form-select" name="habitats" multiple size="4">
-                                <option th:each="option : ${form.habitatOptions()}" th:value="${option}"
-                                        th:selected="${form.detail() != null ? form.detail().habitats().contains(option) : false}"
-                                        th:text="${option}">하천</option>
-                            </select>
-                            <div class="form-text">여러 개 선택 가능합니다.</div>
-                        </div>
-                        <div class="mb-3">
-                            <label class="form-label">체류 형태</label>
-                            <select class="form-select" name="stayType">
-                                <option value="">선택하세요</option>
-                                <option th:each="option : ${form.stayOptions()}" th:value="${option}"
-                                        th:selected="${form.detail() != null ? option == form.detail().stayType() : false}"
-                                        th:text="${option}">철새</option>
-                            </select>
-                        </div>
-                        <div class="mb-3">
-                            <label class="form-label">희귀도</label>
-                            <div class="btn-group w-100" role="group">
-                                <th:block th:each="option, iterStat : ${form.rarityOptions()}">
-                                    <input type="radio" class="btn-check" name="rarity"
-                                           th:id="${'rarity-' + iterStat.index}" th:value="${option}"
-                                           th:checked="${form.detail() != null ? form.detail().rarity() == option : option == 'COMMON'}">
-                                    <label class="btn btn-outline-primary" th:for="${'rarity-' + iterStat.index}" th:text="${option}">COMMON</label>
-                                </th:block>
-                            </div>
-                        </div>
-                        <div class="small text-muted">
-                            마지막 저장: <strong th:text="${form.detail() != null ? #temporals.format(form.detail().updatedAt(), 'yyyy.MM.dd HH:mm') : '미저장'}">2024.06.01 12:00</strong>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body d-grid gap-2">
-                        <button type="button" class="btn btn-outline-secondary">미리보기</button>
-                        <button type="button" class="btn btn-primary" data-toast-target="toastDexSaved">변경사항 저장</button>
-                        <a th:href="@{/dex}" class="btn btn-link text-decoration-none">목록으로 돌아가기</a>
-                    </div>
-                </div>
-            </div>
-        </form>
-    <script>
-    function syncRarityButtons() {
-        document.querySelectorAll('.btn-check').forEach(function (radio) {
-            const label = document.querySelector('label[for="' + radio.id + '"]');
-            if (label) {
-                label.classList.toggle('active', radio.checked);
-            }
-        });
-    }
-    document.querySelectorAll('.btn-check').forEach(function (input) {
-        input.addEventListener('change', syncRarityButtons);
-    });
-    syncRarityButtons();
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/dex/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <form class="row g-3 align-items-end" method="get">
-                    <div class="col-md-4">
-                        <label for="query" class="form-label small text-uppercase text-muted">검색어</label>
-                        <input type="search" id="query" name="q" class="form-control" placeholder="이름 또는 학명"
-                               th:value="${query}">
-                    </div>
-                    <div class="col-md-2">
-                        <label for="rarity" class="form-label small text-uppercase text-muted">희귀도</label>
-                        <select id="rarity" name="rarity" class="form-select">
-                            <option th:each="option : ${rarityOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == rarityFilter || (rarityFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2">
-                        <label for="habitat" class="form-label small text-uppercase text-muted">서식지</label>
-                        <select id="habitat" name="habitat" class="form-select">
-                            <option th:each="option : ${habitatOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == habitatFilter || (habitatFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2">
-                        <label for="stayType" class="form-label small text-uppercase text-muted">체류 형태</label>
-                        <select id="stayType" name="stayType" class="form-select">
-                            <option th:each="option : ${stayOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == stayFilter || (stayFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2 d-flex gap-2">
-                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
-                        <a th:href="@{/dex}" class="btn btn-outline-secondary">초기화</a>
-                    </div>
-                </form>
-            </div>
-        </div>
-        <div class="d-flex justify-content-between align-items-center mb-3">
-            <p class="mb-0 text-muted">총 <strong th:text="${totalElements}">146</strong>건 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">8</span> 페이지</p>
-            <a th:href="@{/dex/new}" class="btn btn-primary"><i class="bi bi-plus-lg me-2"></i>도감 등록</a>
-        </div>
-        <div class="card card-elevated">
-            <div class="table-responsive table-shell">
-                <table class="table table-modern table-hover align-middle">
-                    <thead>
-                    <tr>
-                        <th scope="col">ID</th>
-                        <th scope="col">이름</th>
-                        <th scope="col">학명</th>
-                        <th scope="col">서식지/체류</th>
-                        <th scope="col">희귀도</th>
-                        <th scope="col">태그</th>
-                        <th scope="col" class="text-end">수정일</th>
-                        <th scope="col" class="text-end">액션</th>
-                    </tr>
-                    </thead>
-                    <tbody>
-                    <tr th:each="entry : ${entries}" data-entry-id="" th:data-entry-id="${entry.id()}" th:data-entry-name="${entry.koreanName()}">
-                        <td class="fw-semibold" th:text="${'#' + entry.id()}">#401</td>
-                        <td>
-                            <div class="fw-semibold" th:text="${entry.koreanName()}">해오라기</div>
-                            <div class="text-muted small" th:text="${entry.englishName()}">Striated Heron</div>
-                        </td>
-                        <td th:text="${entry.scientificName()}">Butorides striata</td>
-                        <td>
-                            <span class="badge text-bg-light" th:text="${entry.habitat()}">하천</span>
-                            <span class="badge text-bg-secondary ms-1" th:text="${entry.stayType()}">철새</span>
-                        </td>
-                        <td>
-                            <span class="badge" th:classappend="${entry.rarity()} == 'EPIC' ? ' text-bg-primary' : (${entry.rarity()} == 'RARE' ? ' text-bg-danger' : (${entry.rarity()} == 'UNCOMMON' ? ' text-bg-info' : ' text-bg-success'))"
-                                  th:text="${entry.rarity()}">RARE</span>
-                        </td>
-                        <td>
-                            <span class="badge text-bg-light me-1" th:each="tag : ${entry.tags()}" th:text="${tag}">태그</span>
-                        </td>
-                        <td class="text-end" th:text="${#temporals.format(entry.updatedAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 14:20</td>
-                        <td class="text-end">
-                            <div class="btn-group btn-group-sm">
-                                <a th:href="@{'/dex/' + ${entry.id()}}" class="btn btn-outline-secondary">상세</a>
-                                <a th:href="@{'/dex/' + ${entry.id()} + '/edit'}" class="btn btn-outline-primary">수정</a>
-                                <button type="button" class="btn btn-outline-danger" data-bs-toggle="modal" data-bs-target="#deleteDexModal"
-                                        th:attr="data-entry='#' + ${entry.id()} + ' ' + ${entry.koreanName()}">삭제</button>
-                            </div>
-                        </td>
-                    </tr>
-                    </tbody>
-                </table>
-            </div>
-            <div class="card-footer bg-white border-0 py-3">
-                <nav>
-                    <ul class="pagination justify-content-end mb-0">
-                        <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
-                            <a class="page-link" th:href="@{/dex(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">이전</a>
-                        </li>
-                        <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
-                            <a class="page-link" th:text="${pageNum}" th:href="@{/dex(page=${pageNum}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">1</a>
-                        </li>
-                        <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
-                            <a class="page-link" th:href="@{/dex(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, rarity=${rarityFilter}, habitat=${habitatFilter}, stayType=${stayFilter})}">다음</a>
-                        </li>
-                    </ul>
-                </nav>
-            </div>
-        </div>
-
-        <div class="modal fade" id="deleteDexModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog modal-dialog-centered">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">도감 삭제</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="Close"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p class="mb-0"><strong id="deleteDexTarget">선택한 도감</strong> 항목을 삭제하시겠습니까? 이 작업은 되돌릴 수 없습니다.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-danger" data-bs-dismiss="modal" data-toast-target="toastDexDeleted">삭제</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    <script>
-    const deleteDexModal = document.getElementById('deleteDexModal');
-    if (deleteDexModal) {
-        deleteDexModal.addEventListener('show.bs.modal', function (event) {
-            const button = event.relatedTarget;
-            const targetName = button ? button.getAttribute('data-entry') : '';
-            const label = deleteDexModal.querySelector('#deleteDexTarget');
-            if (label) {
-                label.textContent = targetName || '선택한 도감';
-            }
-        });
-    }
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/fragments/_breadcrumbs.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<body>
-<nav th:fragment="breadcrumbs(items)" aria-label="breadcrumb" class="mb-3">
-    <ol class="breadcrumb mb-0 small text-muted">
-        <li class="breadcrumb-item" th:each="breadcrumb : ${items}" th:classappend="${breadcrumb.active()} ? ' active fw-semibold text-primary'">
-            <a th:if="${!breadcrumb.active()}" th:href="${breadcrumb.href()}" th:text="${breadcrumb.label()}"></a>
-            <span th:if="${breadcrumb.active()}" th:text="${breadcrumb.label()}"></span>
-        </li>
-    </ol>
-</nav>
-</body>
-</html>
-
-
-// ===== resources/templates/fragments/_head.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<head th:fragment="head(pageTitle)">
-    <meta charset="UTF-8">
-    <meta name="viewport" content="width=device-width, initial-scale=1">
-    <title th:text="${pageTitle != null ? pageTitle + ' | 새록 어드민' : '새록 어드민'}">새록 어드민</title>
-    <link rel="preconnect" href="https://fonts.googleapis.com">
-    <link rel="preconnect" href="https://fonts.gstatic.com" crossorigin>
-    <link href="https://fonts.googleapis.com/css2?family=Pretendard:wght@400;500;600;700&display=swap" rel="stylesheet">
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/css/bootstrap.min.css" rel="stylesheet">
-    <link href="https://cdn.jsdelivr.net/npm/bootstrap-icons@1.11.3/font/bootstrap-icons.css" rel="stylesheet">
-    <link th:href="@{/css/admin-theme.css}" rel="stylesheet">
-</head>
-</html>
-
-
-// ===== resources/templates/fragments/_navbar.html =====
-<!-- ===== resources/templates/fragments/_navbar.html ===== -->
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<body>
-<nav th:fragment="navbar(pageTitle)" class="navbar navbar-expand-lg bg-white shadow-sm py-3 px-4 sticky-top">
-    <div class="d-flex align-items-center w-100">
-        <button class="btn btn-outline-secondary d-lg-none me-3" type="button" data-bs-toggle="offcanvas" data-bs-target="#sidebarOffcanvas" aria-controls="sidebarOffcanvas">
-            <i class="bi bi-list"></i>
-        </button>
-        <div class="flex-grow-1">
-            <h2 class="h5 mb-0 fw-semibold" th:text="${pageTitle}">페이지 제목</h2>
-        </div>
-        <div class="d-flex align-items-center gap-3">
-            <div class="dropdown">
-                <button class="btn p-0 border-0 bg-transparent d-flex align-items-center text-decoration-none dropdown-toggle dropdown-toggle-no-caret"
-                        type="button" data-bs-toggle="dropdown" aria-expanded="false">
-                    <img th:src="${currentAdminProfile.profileImageUrl()}" th:alt="${currentAdminProfile.nickname()}" src="https://images.unsplash.com/photo-1524504388940-b1c1722653e1" alt="관리자" class="rounded-circle" width="40" height="40">
-                    <!-- 모바일에서는 텍스트 숨김, 데스크탑 이상에서만 표출 -->
-                    <div class="ms-2 text-start d-none d-lg-block">
-                        <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
-                        <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
-                        <div class="text-muted small" th:if="${currentAdminProfile.hasRoleDisplayNames()}"
-                             th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</div>
-                    </div>
-                </button>
-                <ul class="dropdown-menu dropdown-menu-end shadow">
-                    <li class="dropdown-header">
-                        <div class="fw-semibold" th:text="${currentAdminProfile.nickname()}">운영자</div>
-                        <small class="text-muted" th:text="${currentAdminProfile.email()}">admin@saerok.app</small>
-                    </li>
-                    <li th:if="${currentAdminProfile.hasRoleDisplayNames()}">
-                        <span class="dropdown-item-text small text-muted d-flex align-items-start">
-                            <i class="bi bi-shield-check text-primary me-2 mt-1"></i>
-                            <span th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">읽기 전용 관리자</span>
-                        </span>
-                    </li>
-                    <li th:unless="${currentAdminProfile.hasRoleDisplayNames()}">
-                        <span class="dropdown-item-text small text-muted">권한 정보가 없습니다.</span>
-                    </li>
-                    <li><hr class="dropdown-divider"></li>
-                    <li>
-                        <form th:action="@{/logout}" method="post">
-                            <button type="submit" class="dropdown-item text-danger w-100">
-                                <i class="bi bi-box-arrow-right me-2"></i>로그아웃
-                            </button>
-                        </form>
-                    </li>
-                </ul>
-            </div>
-        </div>
-    </div>
-</nav>
-</body>
-</html>
-
-
-// ===== resources/templates/fragments/_scripts.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<body>
-<th:block th:fragment="scripts">
-    <script src="https://cdn.jsdelivr.net/npm/bootstrap@5.3.3/dist/js/bootstrap.bundle.min.js"></script>
-</th:block>
-</body>
-</html>
-
-
-// ===== resources/templates/fragments/_sidebar.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<body>
-<div th:fragment="sidebar(activeMenu)">
-    <div class="app-sidebar d-none d-lg-flex flex-column position-fixed">
-        <div class="app-sidebar__brand">
-            <img th:src="@{/images/saerok-admin-icon.png}" src="/images/saerok-admin-icon.png" alt="새록 어드민 로고" width="48" height="48" class="me-2">
-            <div class="d-flex align-items-center gap-2 flex-wrap">
-                <span class="app-sidebar__title mb-0">새록 어드민</span>
-                <span class="environment-badge"
-                      th:if="${environmentProfileBadge != null}"
-                      th:classappend="${environmentProfileBadge.cssClass}"
-                      th:text="${environmentProfileBadge.label}">운영</span>
-            </div>
-        </div>
-        <nav class="app-sidebar__nav">
-            <a th:href="@{/}" class="app-sidebar__link" th:classappend="${activeMenu}=='dashboard' ? ' is-active'">
-                <i class="bi bi-speedometer2"></i>
-                <span>대시보드</span>
-            </a>
-            <a th:href="@{/service-insight}" class="app-sidebar__link"
-               th:classappend="${activeMenu}=='serviceInsight' ? ' is-active'">
-                <i class="bi bi-graph-up-arrow"></i>
-                <span>서비스 인사이트</span>
-            </a>
-            <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
-                  data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
-                <i class="bi bi-journal-richtext"></i>
-                <span>도감 관리</span>
-            </span>
-            <a th:href="@{/reports}" class="app-sidebar__link" th:classappend="${activeMenu}=='reports' ? ' is-active'">
-                <i class="bi bi-flag"></i>
-                <span>신고 관리</span>
-            </a>
-            <a th:href="@{/ads}" class="app-sidebar__link" th:classappend="${activeMenu}=='ads' ? ' is-active'">
-                <i class="bi bi-badge-ad"></i>
-                <span>광고 관리</span>
-            </a>
-            <a th:href="@{/admin/roles}" class="app-sidebar__link"
-               th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
-                <i class="bi bi-shield-lock"></i>
-                <span>역할과 권한</span>
-            </a>
-            <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
-                  data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
-                <i class="bi bi-megaphone"></i>
-                <span>시스템 알림 발송</span>
-            </span>
-            <a th:href="@{/admin/audit-logs}" class="app-sidebar__link"
-               th:classappend="${activeMenu}=='adminAuditLogs' ? ' is-active'">
-                <i class="bi bi-clipboard-check"></i>
-                <span>관리자 활동 로그</span>
-            </a>
-        </nav>
-        <div class="app-sidebar__footer">
-            <div>버전 0.1.0</div>
-            <div>© 2025 Saerok</div>
-        </div>
-    </div>
-    <div class="offcanvas offcanvas-start" tabindex="-1" id="sidebarOffcanvas">
-        <div class="offcanvas-header">
-            <div class="d-flex align-items-center gap-2">
-                <img th:src="@{/images/saerok-admin-icon.png}" src="/images/saerok-admin-icon.png"
-                     alt="새록 어드민 로고" width="32" height="32" class="flex-shrink-0">
-                <h5 class="offcanvas-title mb-0">새록 어드민</h5>
-                <span class="environment-badge"
-                      th:if="${environmentProfileBadge != null}"
-                      th:classappend="${environmentProfileBadge.cssClass}"
-                      th:text="${environmentProfileBadge.label}">운영</span>
-            </div>
-            <button type="button" class="btn-close" data-bs-dismiss="offcanvas"></button>
-        </div>
-        <div class="offcanvas-body">
-            <nav class="app-sidebar__nav">
-                <a th:href="@{/}" class="app-sidebar__link" th:classappend="${activeMenu}=='dashboard' ? ' is-active fw-semibold'">
-                    <i class="bi bi-speedometer2"></i>
-                    <span>대시보드</span>
-                </a>
-                <a th:href="@{/service-insight}" class="app-sidebar__link"
-                   th:classappend="${activeMenu}=='serviceInsight' ? ' is-active fw-semibold'">
-                    <i class="bi bi-graph-up-arrow"></i>
-                    <span>서비스 인사이트</span>
-                </a>
-                <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
-                      data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
-                    <i class="bi bi-journal-richtext"></i>
-                    <span>도감 관리</span>
-                </span>
-                <a th:href="@{/reports}" class="app-sidebar__link" th:classappend="${activeMenu}=='reports' ? ' is-active fw-semibold'">
-                    <i class="bi bi-flag"></i>
-                    <span>신고 관리</span>
-                </a>
-                <a th:href="@{/ads}" class="app-sidebar__link" th:classappend="${activeMenu}=='ads' ? ' is-active fw-semibold'">
-                    <i class="bi bi-badge-ad"></i>
-                    <span>광고 관리</span>
-                </a>
-                <a th:href="@{/admin/roles}" class="app-sidebar__link"
-                   th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
-                    <i class="bi bi-shield-lock"></i>
-                    <span>역할과 권한</span>
-                </a>
-                <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
-                      data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
-                    <i class="bi bi-megaphone"></i>
-                    <span>시스템 알림 발송</span>
-                </span>
-                <a th:href="@{/admin/audit-logs}" class="app-sidebar__link"
-                   th:classappend="${activeMenu}=='adminAuditLogs' ? ' is-active fw-semibold'">
-                    <i class="bi bi-clipboard-check"></i>
-                    <span>관리자 활동 로그</span>
-                </a>
-            </nav>
-        </div>
-    </div>
-</div>
-</body>
-</html>
-
-
-
-
-// ===== resources/templates/fragments/_toast.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<body>
-<div th:fragment="toast(messages)" class="toast-container position-fixed bottom-0 end-0 p-4" style="z-index: 1080;">
-    <div th:each="toast : ${messages}" class="toast align-items-center border-0 shadow"
-         role="alert" th:id="${toast.id()}" th:data-bs-autohide="${toast.autohide()}"
-         th:attr="data-show-on-load=${false}" aria-live="assertive" aria-atomic="true">
-        <div class="d-flex" th:classappend="${toast.variant()} != null ? ' text-bg-' + ${toast.variant()} : ' text-bg-light'">
-            <div class="toast-body">
-                <div class="fw-semibold mb-1" th:text="${toast.title()}">완료</div>
-                <div th:text="${toast.body()}">처리가 완료되었습니다.</div>
-            </div>
-            <button type="button" class="btn-close me-2 m-auto" data-bs-dismiss="toast" aria-label="Close"></button>
-        </div>
-    </div>
-</div>
-<script>
-    (function () {
-        var initializeTooltips = function () {
-            if (!window.bootstrap || !window.bootstrap.Tooltip) {
-                return;
-            }
-            document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
-                var existingTooltip = window.bootstrap.Tooltip.getInstance(triggerEl);
-                if (existingTooltip) {
-                    existingTooltip.dispose();
-                }
-                new window.bootstrap.Tooltip(triggerEl, {
-                    trigger: 'hover focus',
-                    delay: { show: 0, hide: 100 },
-                    customClass: 'tooltip-bubble'
-                });
-            });
-        };
-
-        var initializeToasts = function () {
-            if (!window.bootstrap || !window.bootstrap.Toast) {
-                return;
-            }
-            document.querySelectorAll('.toast').forEach(function (toastEl) {
-                if (toastEl.dataset.showOnLoad === 'true') {
-                    new window.bootstrap.Toast(toastEl).show();
-                }
-            });
-            document.querySelectorAll('[data-toast-target]').forEach(function (trigger) {
-                trigger.addEventListener('click', function () {
-                    var targetId = trigger.getAttribute('data-toast-target');
-                    if (targetId) {
-                        var toastElement = document.getElementById(targetId);
-                        if (toastElement) {
-                            new window.bootstrap.Toast(toastElement).show();
-                        }
-                    }
-                });
-            });
-            document.querySelectorAll('[data-bs-dismiss="modal"][data-toast-target]').forEach(function (btn) {
-                btn.addEventListener('click', function () {
-                    var targetId = btn.getAttribute('data-toast-target');
-                    if (targetId) {
-                        setTimeout(function () {
-                            var toastElement = document.getElementById(targetId);
-                            if (toastElement) {
-                                new window.bootstrap.Toast(toastElement).show();
-                            }
-                        }, 300);
-                    }
-                });
-            });
-        };
-
-        var onReady = function () {
-            initializeTooltips();
-            document.addEventListener('saerok:refresh-tooltips', initializeTooltips);
-            initializeToasts();
-        };
-
-        if (document.readyState === 'loading') {
-            document.addEventListener('DOMContentLoaded', onReady);
-        } else {
-            onReady();
-        }
-    })();
-</script>
-</body>
-</html>
-
-
-// ===== resources/templates/layout/base.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<th:block th:fragment="layout(pageTitle, activeMenu, breadcrumbs, content)">
-    <head th:replace="~{fragments/_head :: head(${pageTitle})}"></head>
-    <body class="app-shell">
-    <div class="d-flex">
-        <div th:replace="~{fragments/_sidebar :: sidebar(${activeMenu})}"></div>
-        <div class="app-content">
-            <div th:replace="~{fragments/_navbar :: navbar(${pageTitle})}"></div>
-            <main class="app-main container-fluid">
-                <div th:if="${breadcrumbs}" th:replace="~{fragments/_breadcrumbs :: breadcrumbs(${breadcrumbs})}"></div>
-                <div th:replace="${content}"></div>
-            </main>
-        </div>
-    </div>
-    <th:block th:replace="~{fragments/_scripts :: scripts}"></th:block>
-    <div th:replace="~{fragments/_toast :: toast(${toastMessages})}"></div>
-    </body>
-</th:block>
-</html>
-
-
-// ===== resources/templates/notifications/compose.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="row g-4">
-            <div class="col-12 col-xl-8">
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <form class="row g-4">
-                            <div class="col-12">
-                                <label class="form-label fw-semibold">제목</label>
-                                <input type="text" class="form-control form-control-lg" placeholder="예) 새록 주간 소식 안내">
-                            </div>
-                            <div class="col-12">
-                                <label class="form-label fw-semibold">본문 내용</label>
-                                <textarea class="form-control" rows="8" placeholder="알림 본문을 입력하세요."></textarea>
-                                <div class="form-text">마크다운 문법을 지원합니다.</div>
-                            </div>
-                            <div class="col-12">
-                                <label class="form-label fw-semibold">타겟 대상</label>
-                                <div class="list-group">
-                                    <label class="list-group-item list-group-item-action d-flex justify-content-between align-items-start" th:each="option : ${targetOptions}">
-                                        <div class="me-3">
-                                            <div class="form-check">
-                                                <input class="form-check-input" type="radio" name="target" th:value="${option.value()}" th:checked="${option.value() == 'ALL'}">
-                                                <span class="ms-2 fw-semibold" th:text="${option.label()}">전체</span>
-                                            </div>
-                                            <small class="text-muted" th:text="${option.description()}">설명</small>
-                                        </div>
-                                        <span class="badge text-bg-light">예상 1,248명</span>
-                                    </label>
-                                </div>
-                            </div>
-                            <div class="col-12">
-                                <label class="form-label fw-semibold">예약 발송</label>
-                                <div class="row g-3 align-items-center">
-                                    <div class="col-md-4">
-                                        <div class="form-check form-switch">
-                                            <input class="form-check-input" type="checkbox" id="scheduleToggle">
-                                            <label class="form-check-label" for="scheduleToggle">예약 발송 사용</label>
-                                        </div>
-                                    </div>
-                                    <div class="col-md-4">
-                                        <input type="date" class="form-control" disabled id="scheduleDate">
-                                    </div>
-                                    <div class="col-md-4">
-                                        <input type="time" class="form-control" disabled id="scheduleTime">
-                                    </div>
-                                </div>
-                                <div class="form-text">예약 발송을 사용하지 않으면 즉시 발송됩니다.</div>
-                            </div>
-                        </form>
-                    </div>
-                    <div class="card-footer bg-white border-0 d-flex justify-content-between align-items-center">
-                        <div class="text-muted small">최근 발송: 2024.05.30 · 알림 1,026명 수신</div>
-                        <div class="d-flex gap-2">
-                            <button class="btn btn-outline-secondary" type="button" data-bs-toggle="modal" data-bs-target="#previewModal">미리보기</button>
-                            <button class="btn btn-primary" type="button" data-bs-toggle="modal" data-bs-target="#sendConfirmModal">발송</button>
-                        </div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-xl-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">발송 가이드</h3>
-                        <ul class="list-unstyled small text-muted mb-0">
-                            <li class="mb-2"><i class="bi bi-check2-circle text-success me-2"></i>하루 최대 3회 발송 권장</li>
-                            <li class="mb-2"><i class="bi bi-check2-circle text-success me-2"></i>예약 발송은 최대 30일 이내</li>
-                            <li><i class="bi bi-check2-circle text-success me-2"></i>민감 정보 포함 여부 재검토</li>
-                        </ul>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">최근 발송 로그</h3>
-                        <ul class="list-unstyled small text-muted mb-0">
-                            <li class="mb-2">2024.05.30 20:00 · 주간 업데이트 · 1,026명</li>
-                            <li class="mb-2">2024.05.28 09:00 · 시스템 점검 안내 · 982명</li>
-                            <li>2024.05.25 18:30 · 신규 기능 소개 · 1,201명</li>
-                        </ul>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div class="modal fade" id="previewModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog modal-lg">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">알림 미리보기</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <div class="border rounded-4 p-4 bg-light">
-                            <h4 class="fw-semibold">[미리보기] 새록 주간 소식 안내</h4>
-                            <p class="text-muted">안녕하세요, 새록 운영팀입니다.</p>
-                            <p>이번 주 업데이트와 주요 소식을 안내드립니다. 자세한 내용은 링크를 통해 확인하세요.</p>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">닫기</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastNotificationPreview">미리보기 확인</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="sendConfirmModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">알림 발송 확인</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p>선택된 타겟에게 알림을 발송하시겠습니까?</p>
-                        <p class="small text-muted mb-0">발송 후 취소가 불가능하니 메시지를 다시 한번 확인해주세요.</p>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastNotificationSent">발송</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    <script>
-    const scheduleToggle = document.getElementById('scheduleToggle');
-    const scheduleDate = document.getElementById('scheduleDate');
-    const scheduleTime = document.getElementById('scheduleTime');
-    if (scheduleToggle) {
-        scheduleToggle.addEventListener('change', () => {
-            const enabled = scheduleToggle.checked;
-            if (scheduleDate) scheduleDate.disabled = !enabled;
-            if (scheduleTime) scheduleTime.disabled = !enabled;
-        });
-    }
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/reports/delete-modal.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org">
-<th:block th:fragment="reportDeleteModal">
-    <div class="modal fade" id="reportDeleteReasonModal" tabindex="-1" aria-labelledby="reportDeleteReasonModalLabel"
-         aria-hidden="true">
-        <div class="modal-dialog">
-            <div class="modal-content">
-                <div class="modal-header">
-                    <h5 class="modal-title" id="reportDeleteReasonModalLabel">삭제 사유 입력</h5>
-                    <button type="button" class="btn-close" data-bs-dismiss="modal" aria-label="닫기"></button>
-                </div>
-                <div class="modal-body">
-                    <p class="mb-3"><span data-delete-target-name>신고 대상 콘텐츠</span>을(를) 삭제하려면 사유를 입력해주세요.</p>
-                    <div class="mb-3">
-                        <label class="form-label" for="reportDeleteReasonInput">삭제 사유</label>
-                        <textarea class="form-control" id="reportDeleteReasonInput" rows="3" placeholder="삭제 사유를 입력하세요."></textarea>
-                        <div class="invalid-feedback d-block d-none" data-delete-reason-error>삭제 사유를 입력해주세요.</div>
-                    </div>
-                </div>
-                <div class="modal-footer">
-                    <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                    <button type="button" class="btn btn-danger" data-delete-reason-confirm
-                            data-default-confirm-message="정말 삭제할까요?">삭제</button>
-                </div>
-            </div>
-        </div>
-    </div>
-    <script>
-        (function () {
-            if (window.__reportDeleteModalInitialized) {
-                return;
-            }
-            window.__reportDeleteModalInitialized = true;
-
-            document.addEventListener('DOMContentLoaded', function () {
-                var modalElement = document.getElementById('reportDeleteReasonModal');
-                var buttons = document.querySelectorAll('[data-report-delete-button]');
-                if (!modalElement || buttons.length === 0) {
-                    return;
-                }
-
-                var bootstrap = window.bootstrap;
-                if (!bootstrap || !bootstrap.Modal) {
-                    buttons.forEach(function (button) {
-                        button.addEventListener('click', function (event) {
-                            event.preventDefault();
-                            var form = button.closest('form');
-                            if (!form) {
-                                return;
-                            }
-                            var reason = window.prompt('삭제 사유를 입력해주세요.');
-                            if (!reason || reason.trim().length === 0) {
-                                window.alert('삭제 사유를 입력해주세요.');
-                                return;
-                            }
-                            var confirmMessage = button.getAttribute('data-report-delete-confirm-message')
-                                    || '정말 삭제할까요?';
-                            if (!window.confirm(confirmMessage)) {
-                                return;
-                            }
-                            var hiddenInput = form.querySelector('input[name="reason"]');
-                            if (!hiddenInput) {
-                                hiddenInput = document.createElement('input');
-                                hiddenInput.type = 'hidden';
-                                hiddenInput.name = 'reason';
-                                form.appendChild(hiddenInput);
-                            }
-                            hiddenInput.value = reason.trim();
-                            form.submit();
-                        });
-                    });
-                    return;
-                }
-
-                var modal = new bootstrap.Modal(modalElement);
-                var reasonInput = modalElement.querySelector('#reportDeleteReasonInput');
-                var errorMessage = modalElement.querySelector('[data-delete-reason-error]');
-                var confirmButton = modalElement.querySelector('[data-delete-reason-confirm]');
-                var targetNameElement = modalElement.querySelector('[data-delete-target-name]');
-                var currentForm = null;
-                var currentTrigger = null;
-
-                var openModal = function (trigger) {
-                    if (!trigger) {
-                        return;
-                    }
-                    if (reasonInput) {
-                        reasonInput.value = '';
-                    }
-                    if (errorMessage) {
-                        errorMessage.classList.add('d-none');
-                    }
-                    currentForm = trigger.closest('form');
-                    currentTrigger = trigger;
-                    if (!currentForm) {
-                        currentTrigger = null;
-                        return;
-                    }
-                    var targetName = trigger.getAttribute('data-report-delete-target-name');
-                    if (targetNameElement) {
-                        targetNameElement.textContent = targetName || '신고 대상 콘텐츠';
-                    }
-                    modal.show();
-                    window.setTimeout(function () {
-                        if (reasonInput) {
-                            reasonInput.focus();
-                        }
-                    }, 200);
-                };
-
-                buttons.forEach(function (button) {
-                    button.addEventListener('click', function (event) {
-                        event.preventDefault();
-                        openModal(button);
-                    });
-                });
-
-                modalElement.addEventListener('shown.bs.modal', function () {
-                    if (reasonInput) {
-                        reasonInput.focus();
-                    }
-                });
-
-                modalElement.addEventListener('hidden.bs.modal', function () {
-                    if (reasonInput) {
-                        reasonInput.value = '';
-                    }
-                    if (errorMessage) {
-                        errorMessage.classList.add('d-none');
-                    }
-                    currentForm = null;
-                    currentTrigger = null;
-                });
-
-                if (!confirmButton) {
-                    return;
-                }
-
-                confirmButton.addEventListener('click', function () {
-                    if (!currentForm) {
-                        return;
-                    }
-                    var reason = reasonInput && reasonInput.value ? reasonInput.value.trim() : '';
-                    if (!reason) {
-                        if (errorMessage) {
-                            errorMessage.classList.remove('d-none');
-                        }
-                        if (reasonInput) {
-                            reasonInput.focus();
-                        }
-                        return;
-                    }
-
-                    var hiddenInput = currentForm.querySelector('input[name="reason"]');
-                    if (!hiddenInput) {
-                        hiddenInput = document.createElement('input');
-                        hiddenInput.type = 'hidden';
-                        hiddenInput.name = 'reason';
-                        currentForm.appendChild(hiddenInput);
-                    }
-                    hiddenInput.value = reason;
-
-                    var confirmMessage = (currentTrigger && currentTrigger.getAttribute('data-report-delete-confirm-message'))
-                        || confirmButton.getAttribute('data-default-confirm-message')
-                        || '정말 삭제할까요?';
-                    if (!window.confirm(confirmMessage)) {
-                        return;
-                    }
-
-                    modal.hide();
-                    currentForm.submit();
-                });
-            });
-        })();
-    </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/reports/detail.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
-             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
-            <i class="bi" th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
-            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
-        </div>
-        <div class="row g-4">
-            <div class="col-12 col-lg-8">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body card-body-comfy">
-                        <div class="d-flex justify-content-between align-items-start flex-wrap gap-3">
-                            <div>
-                                <span class="badge rounded-pill"
-                                      th:classappend="' text-bg-' + ${detail.type().badgeVariant()}"
-                                      th:text="${detail.type().displayName()}">새록</span>
-                                <h2 class="h4 fw-semibold mt-3" th:text="${'신고 #' + detail.reportId()}">신고 #1</h2>
-                                <p class="text-muted-soft mb-0">
-                                    접수 시각
-                                    <span class="fw-semibold"
-                                          th:text="${detail.reportedAt() != null ? #temporals.format(detail.reportedAt(), 'yyyy.MM.dd HH:mm') : '정보 없음'}">2024.01.01 12:00</span>
-                                </p>
-                            </div>
-                            <div class="text-end small text-muted">
-                                <div>신고자 <strong th:text="${detail.reporter() != null ? detail.reporter().nickname() : '-'}">-</strong></div>
-                                <div>피신고자 <strong th:text="${detail.reportedUser() != null ? detail.reportedUser().nickname() : '-'}">-</strong></div>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-
-                <div th:if="${detail.reportedComment() != null}" class="card card-elevated mb-4">
-                    <div class="card-header card-header-tight">
-                        <h3 class="h6 mb-0 fw-semibold">신고된 댓글</h3>
-                    </div>
-                    <div class="card-body card-body-comfy">
-                        <div class="d-flex justify-content-between align-items-start">
-                            <div>
-                                <div class="fw-semibold" th:text="${detail.reportedComment().nickname()}">작성자</div>
-                                <div class="text-muted small" th:text="${'#' + detail.reportedComment().commentId()}">#0</div>
-                            </div>
-                            <div class="text-muted small" th:text="${detail.reportedComment().createdAt() != null ? #temporals.format(detail.reportedComment().createdAt(), 'yyyy.MM.dd HH:mm') : '-'}">2024.01.01 12:00</div>
-                        </div>
-                        <div class="surface-muted rounded-lg p-3 mt-3" th:text="${detail.reportedComment().content()}">댓글 내용</div>
-                    </div>
-                </div>
-
-                <div class="card card-elevated mb-4" th:if="${detail.collection() != null}">
-                    <div class="card-header card-header-tight">
-                        <h3 class="h6 mb-0 fw-semibold">새록 정보</h3>
-                    </div>
-                    <div class="card-body card-body-comfy">
-                        <div th:if="${detail.collection().imageUrl() != null}" class="mb-3">
-                            <button type="button" class="border-0 bg-transparent p-0 w-100"
-                                    data-collection-image-trigger>
-                                <img th:src="${detail.collection().imageUrl()}" alt="새록 이미지"
-                                     class="img-fluid collection-image-thumbnail">
-                            </button>
-                            <div class="text-end mt-2">
-                                <a class="small text-decoration-none" th:href="${detail.collection().imageUrl()}" target="_blank"
-                                   rel="noopener">원본 이미지 열기</a>
-                            </div>
-                        </div>
-                        <div class="collection-note-highlight mb-4">
-                            <div class="note-label mb-2">한 줄 평</div>
-                            <div class="collection-one-line-note text-break"
-                                 th:text="${#strings.isEmpty(detail.collection().note()) ? '등록된 한 줄 평이 없습니다.' : detail.collection().note()}">
-                                등록된 한 줄 평이 없습니다.
-                            </div>
-                        </div>
-                        <div class="row g-4 collection-detail-meta">
-                            <div class="col-12 col-lg-6">
-                                <dl class="row gy-2 mb-0">
-                                    <dt class="col-sm-4 text-muted small">새록 ID</dt>
-                                    <dd class="col-sm-8 fw-semibold" th:text="${'#' + detail.collection().collectionId()}">#0</dd>
-                                    <dt class="col-sm-4 text-muted small">관찰일</dt>
-                                    <dd class="col-sm-8" th:text="${detail.collection().discoveredDate() != null ? #temporals.format(detail.collection().discoveredDate(), 'yyyy.MM.dd') : '-'}">2024.01.01</dd>
-                                    <dt class="col-sm-4 text-muted small">공개 범위</dt>
-                                    <dd class="col-sm-8">
-                                        <span th:text="${detail.collection().accessLevelLabel()}">공개</span>
-                                        <span class="text-muted ms-1"
-                                              th:text="${detail.collection().accessLevel() != null ? '(' + detail.collection().accessLevel() + ')' : ''}">(PUBLIC)</span>
-                                    </dd>
-                                    <dt class="col-sm-4 text-muted small">좋아요/댓글</dt>
-                                    <dd class="col-sm-8"
-                                        th:text="|${detail.collection().likeCount() != null ? detail.collection().likeCount() : 0} / ${detail.collection().commentCount() != null ? detail.collection().commentCount() : 0}|">0 / 0</dd>
-                                </dl>
-                            </div>
-                            <div class="col-12 col-lg-6">
-                                <dl class="row gy-2 mb-0">
-                                    <dt class="col-sm-4 text-muted small">새 이름</dt>
-                                    <dd class="col-sm-8" th:text="${detail.collection().birdKoreanName() != null ? detail.collection().birdKoreanName() : '-'}">-</dd>
-                                    <dt class="col-sm-4 text-muted small">새 ID</dt>
-                                    <dd class="col-sm-8" th:text="${detail.collection().birdId() != null ? '#' + detail.collection().birdId() : '-'}">-</dd>
-                                    <dt class="col-sm-4 text-muted small">학명</dt>
-                                    <dd class="col-sm-8" th:text="${detail.collection().birdScientificName() != null ? detail.collection().birdScientificName() : '-'}">-</dd>
-                                    <dt class="col-sm-4 text-muted small">관찰 위치</dt>
-                                    <dd class="col-sm-8 text-break"
-                                        th:text="${detail.collection().locationAlias() != null ? detail.collection().locationAlias() : '-'}">서울숲</dd>
-                                    <dt class="col-sm-4 text-muted small">주소</dt>
-                                    <dd class="col-sm-8 text-break text-muted"
-                                        th:text="${detail.collection().address() != null ? detail.collection().address() : '-'}">주소</dd>
-                                    <dt class="col-sm-4 text-muted small">좌표</dt>
-                                    <dd class="col-sm-8 text-muted"
-                                        th:text="${detail.collection().latitude() != null && detail.collection().longitude() != null ? '(' + detail.collection().latitude() + ', ' + detail.collection().longitude() + ')' : '-'}">(0.0, 0.0)</dd>
-                                </dl>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-header card-header-tight">
-                        <h3 class="h6 mb-0 fw-semibold">댓글 목록</h3>
-                    </div>
-                    <div class="card-body p-0">
-                        <div th:if="${detail.comments().isEmpty()}" class="p-4 text-center text-muted">등록된 댓글이 없습니다.</div>
-                        <div th:each="comment : ${detail.comments()}"
-                             th:classappend="${detail.reportedComment() != null && detail.reportedComment().commentId() == comment.commentId()} ? ' bg-warning-subtle' : ''"
-                             class="border-bottom p-4">
-                            <div class="d-flex justify-content-between align-items-start gap-3">
-                                <div>
-                                    <div class="fw-semibold" th:text="${comment.nickname()}">작성자</div>
-                                    <div class="text-muted small" th:text="${'#' + comment.commentId()}">#0</div>
-                                </div>
-                                <div class="text-muted small text-end">
-                                    <div th:text="${comment.createdAt() != null ? #temporals.format(comment.createdAt(), 'yyyy.MM.dd HH:mm') : '-'}">2024.01.01 12:00</div>
-                                    <div th:text="${'좋아요 ' + comment.likeCount()}" class="text-muted">좋아요 0</div>
-                                </div>
-                            </div>
-                            <p class="mb-0 mt-2" th:text="${comment.content()}">댓글 내용</p>
-                        </div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-lg-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body card-body-comfy">
-                        <h3 class="h6 fw-semibold mb-3">처리 옵션</h3>
-                        <div class="d-flex flex-wrap flex-gap-sm">
-                            <a class="btn btn-outline-secondary d-inline-flex align-items-center gap-1"
-                               th:href="@{/reports}" data-bs-toggle="tooltip" data-bs-placement="top" title="목록 보기">
-                                <i class="bi bi-list"></i>
-                                <span>목록 보기</span>
-                            </a>
-                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
-                                  th:action="@{${detail.ignoreAction()}}" method="post" class="m-0">
-                                <input type="hidden" name="redirect" value="detail">
-                                <button type="submit"
-                                        class="btn btn-outline-primary d-inline-flex align-items-center gap-1"
-                                        th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
-                                        data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
-                                    <i class="bi bi-slash-circle"></i>
-                                    <span>신고 무시</span>
-                                </button>
-                            </form>
-                            <form th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}"
-                                  th:action="@{${detail.deleteAction()}}" method="post" class="m-0">
-                                <input type="hidden" name="redirect" value="detail">
-                                <input type="hidden" name="reason" value="">
-                                <button type="button"
-                                        class="btn btn-danger d-inline-flex align-items-center gap-1"
-                                        data-report-delete-button
-                                        th:data-report-delete-target-name="|신고 대상 ${detail.type().targetNoun()}|"
-                                        th:data-report-delete-confirm-message="|정말 신고 대상 ${detail.type().targetNoun()}을(를) 삭제할까요?|"
-                                        data-bs-toggle="tooltip" data-bs-placement="top" title="콘텐츠 삭제">
-                                    <i class="bi bi-trash"></i>
-                                    <span>콘텐츠 삭제</span>
-                                </button>
-                            </form>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated" th:if="${detail.collection() != null}">
-                    <div class="card-body card-body-comfy">
-                        <h3 class="h6 fw-semibold mb-3">새록 작성자</h3>
-                        <div class="d-flex align-items-center gap-3">
-                            <div class="profile-avatar flex-shrink-0"
-                                 th:style="${detail.collection().authorProfileImageUrl() != null} ? |--avatar-image: url('${detail.collection().authorProfileImageUrl()}')| : null">
-                                <i th:if="${detail.collection().authorProfileImageUrl() == null}" class="bi bi-person"></i>
-                            </div>
-                            <div>
-                                <div class="fw-semibold" th:text="${detail.collection().authorNickname() != null ? detail.collection().authorNickname() : '-'}">작성자</div>
-                                <div class="text-muted small" th:text="${detail.collection().authorId() != null ? '#' + detail.collection().authorId() : ''}"></div>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div th:if="${detail.collection() != null && detail.collection().imageUrl() != null}" id="collectionImageModal"
-             class="collection-image-modal d-none" role="dialog" aria-modal="true">
-            <div class="collection-image-backdrop" data-collection-image-close></div>
-            <div class="collection-image-dialog">
-                <button type="button" class="btn-close btn-close-white" data-collection-image-close aria-label="닫기"></button>
-                <img th:src="${detail.collection().imageUrl()}" alt="새록 전체 이미지" class="img-fluid">
-            </div>
-        </div>
-
-        <script th:if="${detail.collection() != null && detail.collection().imageUrl() != null}">
-            document.addEventListener('DOMContentLoaded', function () {
-                const trigger = document.querySelector('[data-collection-image-trigger]');
-                const modal = document.getElementById('collectionImageModal');
-                if (!trigger || !modal) {
-                    return;
-                }
-
-                const closeElements = modal.querySelectorAll('[data-collection-image-close]');
-
-                const showModal = () => {
-                    modal.classList.remove('d-none');
-                    document.body.classList.add('overflow-hidden');
-                };
-
-                const hideModal = () => {
-                    modal.classList.add('d-none');
-                    document.body.classList.remove('overflow-hidden');
-                };
-
-                trigger.addEventListener('click', showModal);
-                closeElements.forEach(element => element.addEventListener('click', hideModal));
-                modal.addEventListener('click', function (event) {
-                    if (event.target === modal) {
-                        hideModal();
-                    }
-                });
-                document.addEventListener('keydown', function (event) {
-                    if (event.key === 'Escape' && !modal.classList.contains('d-none')) {
-                        hideModal();
-                    }
-                });
-            });
-        </script>
-
-        <div th:replace="~{reports/delete-modal :: reportDeleteModal}"></div>
-</th:block>
-</html>
-
-
-// ===== resources/templates/reports/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <form class="d-flex flex-wrap align-items-center flex-gap-sm" method="get">
-                    <div class="d-flex flex-wrap align-items-center flex-gap-sm" role="group" aria-label="신고 유형 필터">
-                        <div>
-                            <input class="btn-check" type="checkbox" id="filter-collection" name="type" value="collection"
-                                   th:checked="${collectionFilterActive}">
-                            <label class="btn btn-outline-primary d-inline-flex align-items-center gap-2"
-                                   for="filter-collection">
-                                <span class="fw-semibold">새록</span>
-                                <span class="badge text-bg-light text-primary"
-                                      th:text="${collectionCount} + '건'">0건</span>
-                            </label>
-                        </div>
-                        <div>
-                            <input class="btn-check" type="checkbox" id="filter-comment" name="type" value="comment"
-                                   th:checked="${commentFilterActive}">
-                            <label class="btn btn-outline-primary d-inline-flex align-items-center gap-2"
-                                   for="filter-comment">
-                                <span class="fw-semibold">댓글</span>
-                                <span class="badge text-bg-light text-primary"
-                                      th:text="${commentCount} + '건'">0건</span>
-                            </label>
-                        </div>
-                    </div>
-                    <div class="ms-auto d-flex align-items-center flex-gap-sm">
-                        <span class="badge text-bg-primary-subtle text-primary"
-                              th:text="${#lists.isEmpty(selectedTypeParams)} ? '모두 보기' : |${selectedTypeParams.size()}개 유형 선택|">모두 보기</span>
-                        <button type="submit" class="btn btn-primary">필터 적용</button>
-                    </div>
-                </form>
-            </div>
-        </div>
-
-        <div th:if="${flashMessage}" class="alert alert-elevated d-flex align-items-center"
-             th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
-            <i class="bi" th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
-            <span th:text="${flashMessage}">처리가 완료되었습니다.</span>
-        </div>
-
-        <div th:if="${loadErrorMessage}" class="alert alert-danger alert-elevated d-flex align-items-center">
-            <i class="bi bi-exclamation-triangle-fill me-2"></i>
-            <span th:text="${loadErrorMessage}">신고 목록을 불러오지 못했습니다.</span>
-        </div>
-
-        <div class="card card-elevated">
-            <div class="card-header card-header-tight d-flex flex-wrap justify-content-between align-items-center flex-gap-sm">
-                <div>
-                    <h2 class="h6 mb-1 fw-semibold">신고 내역</h2>
-                    <p class="text-muted-soft small mb-0">
-                        총 <strong th:text="${totalCount}">0</strong>건 · 현재 보기 <strong th:text="${filteredCount}">0</strong>건
-                        (<span th:text="'새록 ' + ${collectionCount} + '건'">새록 0건</span>
-                        · <span th:text="'댓글 ' + ${commentCount} + '건'">댓글 0건</span>)
-                    </p>
-                </div>
-            </div>
-            <div class="list-group list-group-flush">
-                <div th:if="${reports.isEmpty()}" class="list-group-item py-5 text-center text-muted">
-                    표시할 신고 내역이 없습니다.
-                </div>
-                <article class="list-group-item p-0 report-card" th:each="report : ${reports}">
-                    <a class="report-card__link d-flex flex-column gap-4 text-decoration-none text-reset"
-                       th:href="@{${report.detailPath()}}"
-                       th:aria-label="|${report.type().displayName()} 신고 상세로 이동|">
-                            <header class="d-flex flex-column flex-md-row justify-content-between align-items-start gap-3">
-                                <div class="d-flex flex-column gap-2">
-                                    <div class="d-flex flex-wrap align-items-center gap-2">
-                                        <span class="badge rounded-pill"
-                                              th:classappend="' text-bg-' + ${report.type().badgeVariant()}"
-                                              th:text="${report.type().displayName()}">새록</span>
-                                    </div>
-                                    <div class="text-muted small d-flex flex-wrap gap-2">
-                                        <span>신고자 <strong class="text-body" th:text="${report.reporterNickname()}">신고자</strong></span>
-                                        <span class="text-muted" aria-hidden="true">·</span>
-                                        <span>피신고자 <strong class="text-body" th:text="${report.reportedUserNickname()}">피신고자</strong></span>
-                                    </div>
-                                </div>
-                                <div class="text-md-end">
-                                    <div class="text-muted small">접수일</div>
-                                    <div class="fw-semibold"
-                                         th:text="${report.reportedAt() != null ? #temporals.format(report.reportedAt(), 'yyyy.MM.dd HH:mm') : '-'}">
-                                        2024.01.01 12:00
-                                    </div>
-                                </div>
-                            </header>
-                            <div class="d-flex flex-column flex-md-row gap-3">
-                                <div class="flex-shrink-0" th:if="${report.type().isCollection()}">
-                                    <div th:if="${report.hasCollectionImage()}"
-                                         class="ratio ratio-1x1" style="width: 96px;">
-                                        <img th:src="${report.collectionImageUrl()}" alt="신고 대상 미리보기"
-                                             class="media-thumb w-100 h-100">
-                                    </div>
-                                    <div th:if="${!report.hasCollectionImage()}"
-                                         class="d-flex align-items-center justify-content-center bg-light border rounded"
-                                         style="width: 96px; height: 96px;">
-                                        <i class="bi bi-flag text-muted fs-4"></i>
-                                    </div>
-                                </div>
-                                <div class="flex-grow-1">
-                                    <div class="text-muted small mb-2"
-                                         th:text="${report.type().isCollection() ? '한 줄 평' : '댓글 내용'}">신고 내용 요약</div>
-                                    <div th:if="${report.hasContentPreview()}" class="text-break"
-                                         th:text="${report.contentPreview()}">내용 미리보기</div>
-                                    <div th:if="${!report.hasContentPreview()}" class="text-muted small"
-                                         th:text="${report.type().isCollection() ? '등록된 한 줄 평이 없습니다.' : '내용 미리보기가 없습니다.'}">
-                                        내용 미리보기가 없습니다.
-                                    </div>
-                                </div>
-                            </div>
-                    </a>
-                    <footer class="report-card__footer border-top d-flex flex-wrap gap-2 justify-content-end align-items-center"
-                            th:if="${currentAdminProfile.hasPermission('ADMIN_REPORT_WRITE')}">
-                        <form th:action="@{${report.ignoreAction()}}" method="post" class="m-0">
-                            <input type="hidden" name="redirect" value="list">
-                            <th:block th:each="typeParam : ${selectedTypeParams}">
-                                <input type="hidden" name="returnType" th:value="${typeParam}">
-                            </th:block>
-                            <button type="submit"
-                                    class="btn btn-sm btn-outline-primary d-inline-flex align-items-center gap-1"
-                                    th:onclick="|return confirm('해당 신고를 무시 처리할까요?');|"
-                                    data-bs-toggle="tooltip" data-bs-placement="top" title="신고 무시">
-                                <i class="bi bi-slash-circle"></i>
-                                <span>신고 무시</span>
-                            </button>
-                        </form>
-                        <form th:action="@{${report.deleteAction()}}" method="post" class="m-0">
-                            <input type="hidden" name="redirect" value="list">
-                            <th:block th:each="typeParam : ${selectedTypeParams}">
-                                <input type="hidden" name="returnType" th:value="${typeParam}">
-                            </th:block>
-                            <input type="hidden" name="reason" value="">
-                            <button type="button"
-                                    class="btn btn-sm btn-danger d-inline-flex align-items-center gap-1"
-                                    data-report-delete-button
-                                    th:data-report-delete-target-name="|신고 대상 ${report.type().targetNoun()}|"
-                                    th:data-report-delete-confirm-message="|정말 신고 대상 ${report.type().targetNoun()}을(를) 삭제할까요?|"
-                                    data-bs-toggle="tooltip" data-bs-placement="top" title="콘텐츠 삭제">
-                                <i class="bi bi-trash"></i>
-                                <span>콘텐츠 삭제</span>
-                            </button>
-                        </form>
-                    </footer>
-                </article>
-            </div>
-        </div>
-
-        <div th:replace="~{reports/delete-modal :: reportDeleteModal}"></div>
-
-        <script>
-            document.addEventListener('DOMContentLoaded', function () {
-                var initializeTooltips = function () {
-                    if (window.bootstrap && window.bootstrap.Tooltip) {
-                        document.querySelectorAll('[data-bs-toggle="tooltip"]').forEach(function (triggerEl) {
-                            new window.bootstrap.Tooltip(triggerEl, {
-                                trigger: 'hover focus',
-                                delay: { show: 0, hide: 100 },
-                                customClass: 'tooltip-bubble'
-                            });
-                        });
-                    }
-                };
-                if (window.bootstrap && window.bootstrap.Tooltip) {
-                    initializeTooltips();
-                } else {
-                    window.addEventListener('load', initializeTooltips, { once: true });
-                }
-            });
-        </script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/service-insight/index.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-
-    <!-- 페이지 전용 CSS -->
-    <link th:href="@{/css/service-insight.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-    <!-- 공통 타깃/타이틀 스타일 -->
-    <link th:href="@{/css/service-insight.target.css(v=${#dates.createNow().getTime()})}" rel="stylesheet">
-    <!-- 모바일 오버라이드 -->
-    <link th:href="@{/css/service-insight.mobile.css(v=${#dates.createNow().getTime()})}" rel="stylesheet" media="(max-width: 991.98px)">
-
-    <section class="service-insight">
-        <div class="service-insight__container">
-            <!-- 좌측: 데이터/그룹 패널 (모바일에서는 숨김) -->
-            <aside class="service-insight__metrics" aria-label="데이터 선택">
-                <div class="si-sidebar" id="si-sidebar">
-                    <div class="si-sidebar__header">
-                        <!-- 단일 표시 지점(PC용 앵커) -->
-                        <div id="si-target-title-desktop-anchor">
-                            <div id="si-target-title" class="si-targettitle" role="heading" aria-level="2">
-                                <span class="si-targettitle__prefix">플롯</span>
-                                <select id="si-target-select" class="form-select form-select-sm si-targettitle__select" aria-label="적용 대상 플롯(숫자 선택)">
-                                    <!-- 옵션은 JS에서 동기화 -->
-                                </select>
-                                <span class="si-targettitle__suffix">데이터 선택</span>
-                            </div>
-                        </div>
-                    </div>
-
-                    <!-- 데스크톱 앵커: 모바일에선 #si-data-panel 전체가 시트로 이동 -->
-                    <div id="si-groups-desktop-anchor">
-                        <div id="si-data-panel" class="si-data-panel">
-                            <!-- 그룹 목록 -->
-                            <div class="si-groups" id="si-groups"></div>
-                        </div>
-                    </div>
-                </div>
-            </aside>
-
-            <!-- 우측: 플롯 영역 -->
-            <div class="service-insight__chart">
-                <div class="si-plots" id="si-plots" data-size="roomy">
-                    <div class="si-plots__toolbar">
-                        <div class="si-range" role="region" aria-label="데이터 조회 기간">
-                            <div class="si-range__bar">
-                                <span class="si-range__label">기간</span>
-                                <div class="si-range__quick" role="group" aria-label="빠른 조회 기간">
-                                    <a th:each="option : ${rangeQuickOptions}"
-                                       th:href="@{/service-insight(range=${option.paramValue()})}"
-                                       th:text="${option.displayLabel()}"
-                                       th:class="'btn btn-sm si-range__btn ' + (${option.paramValue()} == ${selectedRange} ? 'btn-primary' : 'btn-outline-primary')"
-                                       th:data-range="${option.paramValue()}"
-                                       th:attr="aria-pressed=${option.paramValue()} == ${selectedRange}"
-                                       class="btn btn-sm si-range__btn btn-outline-primary"
-                                       aria-pressed="false">최근 1주</a>
-                                </div>
-                                <button type="button"
-                                        id="si-range-custom-toggle"
-                                        th:class="'btn btn-sm si-range__custom-toggle ' + (${customRangeActive} ? 'btn-primary' : 'btn-outline-secondary')"
-                                        th:attr="aria-expanded=${customRangeActive}"
-                                        class="btn btn-sm btn-outline-secondary si-range__custom-toggle"
-                                        aria-expanded="false"
-                                        aria-controls="si-range-custom">
-                                    <i class="bi bi-calendar-range me-1" aria-hidden="true"></i>직접 설정
-                                </button>
-                            </div>
-                            <form id="si-range-custom"
-                                  class="si-range__form"
-                                  th:class="'si-range__form' + (${customRangeActive} ? ' is-open' : '')"
-                                  method="get"
-                                  role="form"
-                                  aria-label="기간 직접 설정">
-                                <input type="hidden" name="range" value="custom">
-                                <div class="si-range__fields">
-                                    <label for="si-range-start" class="visually-hidden">시작 날짜</label>
-                                    <input id="si-range-start"
-                                           type="date"
-                                           class="form-control form-control-sm"
-                                           name="startDate"
-                                           placeholder="시작일"
-                                           th:value="${selectedStartDate}"
-                                           autocomplete="off">
-                                    <span class="si-range__dash" aria-hidden="true">~</span>
-                                    <label for="si-range-end" class="visually-hidden">종료 날짜</label>
-                                    <input id="si-range-end"
-                                           type="date"
-                                           class="form-control form-control-sm"
-                                           name="endDate"
-                                           placeholder="종료일"
-                                           th:value="${selectedEndDate}"
-                                           autocomplete="off">
-                                </div>
-                                <div class="si-range__actions">
-                                    <button type="submit"
-                                            th:class="'btn btn-sm si-range__apply ' + (${customRangeActive} ? 'btn-primary' : 'btn-outline-secondary')"
-                                            class="btn btn-sm btn-outline-secondary si-range__apply">
-                                        적용
-                                    </button>
-                                </div>
-                            </form>
-                        </div>
-                        <div class="si-actions">
-                            <button type="button" class="btn btn-ghost" id="si-add-plot">
-                                <i class="bi bi-layout-text-window-reverse me-1"></i>플롯 추가
-                            </button>
-                            <button type="button" class="btn btn-ghost" id="si-clear-all">
-                                <i class="bi bi-x-circle me-1"></i>모두 지우기
-                            </button>
-                        </div>
-                    </div>
-
-                    <!-- 드롭 가능한 플롯 카드 그리드 -->
-                    <div class="si-plot-grid" id="si-plot-grid"></div>
-                </div>
-            </div>
-        </div>
-    </section>
-
-    <!-- 📱 FAB: 모바일 전용(PC에서는 전역 CSS로 기본 숨김) -->
-    <button id="si-fab"
-            class="btn btn-primary rounded-circle shadow-soft"
-            type="button"
-            data-bs-toggle="offcanvas"
-            data-bs-target="#siDataPicker"
-            aria-controls="siDataPicker"
-            aria-label="데이터 선택 열기">
-        <i class="bi bi-sliders2"></i>
-    </button>
-
-    <!-- 📱 데이터 선택 바텀 시트(Offcanvas) -->
-    <div class="offcanvas offcanvas-bottom" tabindex="-1" id="siDataPicker" aria-labelledby="siDataPickerLabel">
-        <div class="offcanvas-header">
-            <!-- 단일 표시 지점(모바일용 앵커) -->
-            <div id="si-target-title-mobile-host"></div>
-            <button type="button" class="btn-close" data-bs-dismiss="offcanvas" aria-label="닫기"></button>
-        </div>
-        <div class="offcanvas-body">
-            <!-- 모바일 시 #si-data-panel 전체가 여기로 이동 -->
-            <div id="si-data-panel-mobile-host"></div>
-        </div>
-    </div>
-
-    <!-- 서버에서 내려주는 전체 페이로드 -->
-    <script type="application/json" id="serviceInsightData"
-            th:data-endpoint="@{/service-insight}"
-            th:utext="${chartDataJson}">{"metricOptions":[],"series":[],"componentLabels":{}}</script>
-
-    <!-- Chart.js & Adapter -->
-    <script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.7/dist/chart.umd.min.js"></script>
-    <script src="https://cdn.jsdelivr.net/npm/luxon@3.5.0/build/global/luxon.min.js"></script>
-    <script src="https://cdn.jsdelivr.net/npm/chartjs-adapter-luxon@1.3.1/dist/chartjs-adapter-luxon.umd.min.js"></script>
-
-    <!-- 본 스크립트 -->
-    <script th:src="@{/js/service-insight.js(v=${#dates.createNow().getTime()})}"></script>
-    <!-- 모바일 전용 보조 스크립트(패널/타이틀 이동) -->
-    <script th:src="@{/js/service-insight.mobile.js(v=${#dates.createNow().getTime()})}"></script>
-    <!-- 공통 타깃 제어 스크립트(PC/모바일) -->
-    <script th:src="@{/js/service-insight.target.js(v=${#dates.createNow().getTime()})}"></script>
-</th:block>
-</html>
-
-
-// ===== resources/templates/users/detail.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="row g-4">
-            <div class="col-12 col-xl-4">
-                <div class="card card-elevated mb-4">
-                    <div class="card-body text-center">
-                        <div class="d-inline-flex align-items-center justify-content-center bg-primary bg-opacity-10 text-primary rounded-circle" style="width:88px; height:88px;">
-                            <i class="bi bi-person-circle fs-1"></i>
-                        </div>
-                        <h2 class="h4 fw-semibold mt-3 mb-1" th:text="${detail.nickname()}">솔바람</h2>
-                        <p class="text-muted mb-3" th:text="${detail.email()}">sol@saerok.app</p>
-                        <div class="badge" th:classappend="${detail.status()} == '정상' ? ' text-bg-success' : (${detail.status()} == '휴면' ? ' text-bg-secondary' : ' text-bg-danger')"
-                             th:text="${detail.status()}">정상</div>
-                        <dl class="row text-start mt-4 mb-0 small">
-                            <dt class="col-5 text-muted">가입일</dt>
-                            <dd class="col-7" th:text="${#temporals.format(detail.joinedAt(), 'yyyy.MM.dd HH:mm')}">2024.01.02 10:00</dd>
-                            <dt class="col-5 text-muted">마지막 로그인</dt>
-                            <dd class="col-7" th:text="${#temporals.format(detail.lastLoginAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 21:00</dd>
-                            <dt class="col-5 text-muted">작성/신고</dt>
-                            <dd class="col-7">새록 <strong th:text="${detail.postCount()}">48</strong> · 신고 <strong th:text="${detail.reportCount()}">2</strong></dd>
-                            <dt class="col-5 text-muted">연락처</dt>
-                            <dd class="col-7" th:text="${detail.phone()}">010-1234-5678</dd>
-                        </dl>
-                        <div class="d-grid gap-2 mt-4">
-                            <button class="btn btn-primary" data-bs-toggle="modal" data-bs-target="#userStatusModal">상태 변경</button>
-                            <button class="btn btn-outline-success" data-bs-toggle="modal" data-bs-target="#userNotifyModal">알림 발송</button>
-                        </div>
-                    </div>
-                </div>
-                <div class="card card-elevated">
-                    <div class="card-body">
-                        <h3 class="h6 fw-semibold mb-3">활동 통계</h3>
-                        <div class="d-flex justify-content-between align-items-center mb-2">
-                            <span class="text-muted">최근 30일 작성</span>
-                            <span class="fw-semibold">12건</span>
-                        </div>
-                        <div class="d-flex justify-content-between align-items-center mb-2">
-                            <span class="text-muted">좋아요 받은 수</span>
-                            <span class="fw-semibold">86회</span>
-                        </div>
-                        <div class="d-flex justify-content-between align-items-center">
-                            <span class="text-muted">신고 접수</span>
-                            <span class="fw-semibold">2건</span>
-                        </div>
-                    </div>
-                </div>
-            </div>
-            <div class="col-12 col-xl-8">
-                <div class="card card-elevated">
-                    <div class="card-header bg-white border-0 d-flex justify-content-between align-items-center">
-                        <div>
-                            <h3 class="h6 mb-0 fw-semibold">최근 활동</h3>
-                            <p class="text-muted small mb-0">최근 일주일 내 주요 활동 내역</p>
-                        </div>
-                        <a href="#" class="btn btn-sm btn-outline-secondary">전체 보기</a>
-                    </div>
-                    <div class="card-body">
-                        <div class="list-group list-group-flush">
-                            <div class="list-group-item px-0 py-3" th:each="activity : ${detail.recentActivities()}">
-                                <div class="d-flex justify-content-between align-items-start">
-                                    <div>
-                                        <span class="badge text-bg-light me-2" th:text="${activity.type()}">새록</span>
-                                        <span class="fw-semibold" th:text="${activity.title()}">초여름 갈대밭 일지</span>
-                                        <span class="badge rounded-pill ms-2" th:classappend="${activity.status()} == '공개' ? ' text-bg-success' : (${activity.status()} == '검토중' ? ' text-bg-warning' : ' text-bg-secondary')"
-                                              th:text="${activity.status()}">공개</span>
-                                    </div>
-                                    <small class="text-muted" th:text="${#temporals.format(activity.createdAt(), 'yyyy.MM.dd HH:mm')}">2024.06.01 14:30</small>
-                                </div>
-                            </div>
-                        </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div class="modal fade" id="userStatusModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">사용자 상태 변경</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong th:text="${detail.nickname()}">솔바람</strong>님의 상태를 조정합니다.</p>
-                        <select class="form-select">
-                            <option>정상</option>
-                            <option>휴면</option>
-                            <option>차단</option>
-                        </select>
-                        <div class="mt-3">
-                            <label class="form-label">조치 메모</label>
-                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastUserAction">저장</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="userNotifyModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">사용자 알림 발송</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong th:text="${detail.nickname()}">솔바람</strong>님에게 보낼 메시지를 작성하세요.</p>
-                        <div class="mb-3">
-                            <label class="form-label">제목</label>
-                            <input type="text" class="form-control" placeholder="알림 제목">
-                        </div>
-                        <div class="mb-3">
-                            <label class="form-label">내용</label>
-                            <textarea class="form-control" rows="4" placeholder="알림 본문"></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastUserNotify">발송</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </th:block>
-</html>
-
-
-// ===== resources/templates/users/list.html =====
-<!DOCTYPE html>
-<html lang="ko" xmlns:th="http://www.thymeleaf.org"
-      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
-<th:block th:fragment="content">
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <form class="row g-3 align-items-end" method="get">
-                    <div class="col-md-4">
-                        <label class="form-label small text-uppercase text-muted" for="userQuery">검색어</label>
-                        <input type="search" class="form-control" id="userQuery" name="q" placeholder="닉네임 또는 이메일" th:value="${query}">
-                    </div>
-                    <div class="col-md-3">
-                        <label class="form-label small text-uppercase text-muted" for="userStatus">상태</label>
-                        <select class="form-select" id="userStatus" name="status">
-                            <option th:each="option : ${statusOptions}" th:value="${option == '전체' ? '' : option}"
-                                    th:selected="${option == statusFilter || (statusFilter == null && option == '전체')}"
-                                    th:text="${option}">전체</option>
-                        </select>
-                    </div>
-                    <div class="col-md-2 d-flex gap-2">
-                        <button type="submit" class="btn btn-primary flex-grow-1">검색</button>
-                        <a th:href="@{/users}" class="btn btn-outline-secondary">초기화</a>
-                    </div>
-                </form>
-            </div>
-        </div>
-        <div class="card card-elevated">
-            <div class="table-responsive table-shell">
-                <table class="table table-modern align-middle table-hover">
-                    <thead>
-                    <tr>
-                        <th>ID</th>
-                        <th>닉네임</th>
-                        <th>이메일</th>
-                        <th>가입일</th>
-                        <th>상태</th>
-                        <th>작성/신고</th>
-                        <th class="text-end">액션</th>
-                    </tr>
-                    </thead>
-                    <tbody>
-                    <tr th:each="user : ${users}" th:data-user="${user.nickname()}">
-                        <td class="fw-semibold" th:text="${'#' + user.id()}">#501</td>
-                        <td th:text="${user.nickname()}">솔바람</td>
-                        <td th:text="${user.email()}">sol@saerok.app</td>
-                        <td th:text="${#temporals.format(user.joinedAt(), 'yyyy.MM.dd')}">2024.01.02</td>
-                        <td>
-                            <span class="badge" th:classappend="${user.status()} == '정상' ? ' text-bg-success' : (${user.status()} == '휴면' ? ' text-bg-secondary' : ' text-bg-danger')"
-                                  th:text="${user.status()}">정상</span>
-                        </td>
-                        <td>
-                            <span class="badge text-bg-light">작성 <span th:text="${user.postCount()}">48</span></span>
-                            <span class="badge text-bg-light ms-1">신고 <span th:text="${user.reportCount()}">2</span></span>
-                        </td>
-                        <td class="text-end">
-                            <div class="btn-group btn-group-sm">
-                                <a th:href="@{'/users/' + ${user.id()}}" class="btn btn-outline-secondary">상세</a>
-                                <button class="btn btn-outline-primary" type="button" data-bs-toggle="modal" data-bs-target="#userStatusModal"
-                                        th:attr="data-user='사용자 ' + ${user.nickname()}">상태 변경</button>
-                                <button class="btn btn-outline-success" type="button" data-bs-toggle="modal" data-bs-target="#userNotifyModal"
-                                        th:attr="data-user='사용자 ' + ${user.nickname()}">알림 발송</button>
-                            </div>
-                        </td>
-                    </tr>
-                    </tbody>
-                </table>
-            </div>
-            <div class="card-footer bg-white border-0 py-3">
-                <div class="d-flex justify-content-between align-items-center">
-                    <span class="text-muted small">총 <strong th:text="${totalElements}">512</strong>명 · <strong th:text="${page}">1</strong>/<span th:text="${totalPages}">14</span> 페이지</span>
-                    <ul class="pagination pagination-sm mb-0">
-                        <li class="page-item" th:classappend="${page == 1} ? ' disabled'">
-                            <a class="page-link" th:href="@{/users(page=${page-1 < 1 ? 1 : page-1}, size=${size}, q=${query}, status=${statusFilter})}">이전</a>
-                        </li>
-                        <li class="page-item" th:each="pageNum : ${#numbers.sequence(1, totalPages)}" th:classappend="${pageNum} == ${page} ? ' active'">
-                            <a class="page-link" th:text="${pageNum}" th:href="@{/users(page=${pageNum}, size=${size}, q=${query}, status=${statusFilter})}">1</a>
-                        </li>
-                        <li class="page-item" th:classappend="${page == totalPages} ? ' disabled'">
-                            <a class="page-link" th:href="@{/users(page=${page+1 > totalPages ? totalPages : page+1}, size=${size}, q=${query}, status=${statusFilter})}">다음</a>
-                        </li>
-                    </ul>
-                </div>
-            </div>
-        </div>
-
-        <div class="modal fade" id="userStatusModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">사용자 상태 변경</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="userStatusTarget">사용자</strong>의 상태를 조정합니다.</p>
-                        <select class="form-select">
-                            <option value="정상">정상</option>
-                            <option value="휴면">휴면</option>
-                            <option value="차단">차단</option>
-                        </select>
-                        <div class="mt-3">
-                            <label class="form-label">조치 메모</label>
-                            <textarea class="form-control" rows="3" placeholder="사유를 입력하세요."></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-primary" data-bs-dismiss="modal" data-toast-target="toastUserAction">저장</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-        <div class="modal fade" id="userNotifyModal" tabindex="-1" aria-hidden="true">
-            <div class="modal-dialog">
-                <div class="modal-content">
-                    <div class="modal-header">
-                        <h5 class="modal-title">사용자 알림 발송</h5>
-                        <button type="button" class="btn-close" data-bs-dismiss="modal"></button>
-                    </div>
-                    <div class="modal-body">
-                        <p><strong id="userNotifyTarget">사용자</strong>에게 보낼 메시지를 작성하세요.</p>
-                        <div class="mb-3">
-                            <label class="form-label">제목</label>
-                            <input type="text" class="form-control" placeholder="알림 제목">
-                        </div>
-                        <div class="mb-3">
-                            <label class="form-label">내용</label>
-                            <textarea class="form-control" rows="4" placeholder="알림 본문"></textarea>
-                        </div>
-                    </div>
-                    <div class="modal-footer">
-                        <button type="button" class="btn btn-outline-secondary" data-bs-dismiss="modal">취소</button>
-                        <button type="button" class="btn btn-success" data-bs-dismiss="modal" data-toast-target="toastUserNotify">발송</button>
-                    </div>
-                </div>
-            </div>
-        </div>
-    <script>
-        const userStatusModal = document.getElementById('userStatusModal');
-        if (userStatusModal) {
-            userStatusModal.addEventListener('show.bs.modal', event => {
-                const button = event.relatedTarget;
-                const target = button ? button.getAttribute('data-user') : '사용자';
-                userStatusModal.querySelector('#userStatusTarget').textContent = target;
-            });
-        }
-        const userNotifyModal = document.getElementById('userNotifyModal');
-        if (userNotifyModal) {
-            userNotifyModal.addEventListener('show.bs.modal', event => {
-                const button = event.relatedTarget;
-                const target = button ? button.getAttribute('data-user') : '사용자';
-                userNotifyModal.querySelector('#userNotifyTarget').textContent = target;
-            });
-        }
-    </script>
-</th:block>
-</html>
-
diff --git a/src/main/java/apu/saerok_admin/web/RoleManagementController.java b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
index 6469d08..2c42d65 100644
--- a/src/main/java/apu/saerok_admin/web/RoleManagementController.java
+++ b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
@@ -67,14 +67,13 @@ public RoleManagementController(AdminRoleClient adminRoleClient) {
     @GetMapping
     public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                         @RequestParam(name = "tab", required = false) String tab,
-                        @RequestParam(name = "selectedUserId", required = false) Long selectedUserId,
                         @RequestParam(name = "selectedRoleCode", required = false) String selectedRoleCode,
                         Model model) {
-        model.addAttribute("pageTitle", "역할과 권한");
+        model.addAttribute("pageTitle", "운영 권한");
         model.addAttribute("activeMenu", "adminRoles");
         model.addAttribute("breadcrumbs", List.of(
                 Breadcrumb.of("대시보드", "/"),
-                Breadcrumb.active("역할과 권한")
+                Breadcrumb.active("운영 권한")
         ));
         model.addAttribute("toastMessages", List.of());
 
@@ -108,10 +107,10 @@ public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile c
             } catch (RestClientResponseException exception) {
                 log.warn("Failed to load role templates. status={}, body={}",
                         exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+                roleTemplatesLoadError = "ROLE 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
             } catch (RestClientException | IllegalStateException exception) {
                 log.warn("Failed to load role templates.", exception);
-                roleTemplatesLoadError = "역할 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+                roleTemplatesLoadError = "ROLE 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
             }
         }
 
@@ -142,19 +141,17 @@ public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile c
             } catch (RestClientResponseException exception) {
                 log.warn("Failed to load my roles. status={}, body={}",
                         exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+                myRolesLoadError = "내 권한 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
             } catch (RestClientException | IllegalStateException exception) {
                 log.warn("Failed to load my roles.", exception);
-                myRolesLoadError = "내 역할 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+                myRolesLoadError = "내 권한 정보를 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
             }
         } else {
-            myRolesLoadError = "내 역할을 조회할 권한이 없습니다.";
+            myRolesLoadError = "내 권한을 조회할 권한이 없습니다.";
         }
 
         List<TeamMemberView> teamMembers = List.of();
-        TeamMemberView selectedTeamMember = null;
         String teamMembersLoadError = null;
-        Long resolvedSelectedUserId = selectedUserId;
 
         if (canViewTeamRoles) {
             try {
@@ -169,39 +166,15 @@ public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile c
             } catch (RestClientResponseException exception) {
                 log.warn("Failed to load team members. status={}, body={}",
                         exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
-                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+                teamMembersLoadError = "팀원 권한 정보를 불러오지 못했습니다.";
             } catch (RestClientException | IllegalStateException exception) {
                 log.warn("Failed to load team members.", exception);
-                teamMembersLoadError = "팀원 역할 정보를 불러오지 못했습니다.";
+                teamMembersLoadError = "팀원 권한 정보를 불러오지 못했습니다.";
             }
         } else {
-            teamMembersLoadError = "팀원 역할을 조회할 권한이 없습니다.";
+            teamMembersLoadError = "팀원 권한을 조회할 권한이 없습니다.";
         }
 
-        if (!teamMembers.isEmpty()) {
-            Long currentSelection = resolvedSelectedUserId;
-            boolean hasSelectedMember = currentSelection != null && teamMembers.stream()
-                    .anyMatch(member -> Objects.equals(member.id(), currentSelection));
-            if (!hasSelectedMember) {
-                resolvedSelectedUserId = teamMembers.get(0).id();
-            }
-            Long candidateId = resolvedSelectedUserId;
-            selectedTeamMember = teamMembers.stream()
-                    .filter(member -> Objects.equals(member.id(), candidateId))
-                    .findFirst()
-                    .orElse(null);
-        } else {
-            resolvedSelectedUserId = null;
-        }
-
-        List<RoleDisplay> assignableRoles = roleTemplates.stream()
-                .map(RoleTemplateView::role)
-                .toList();
-
-        boolean teamRoleEditorAvailable = canManageRoles
-                && selectedTeamMember != null
-                && !assignableRoles.isEmpty();
-
         String normalizedTab = normalizeTab(tab, canViewTeamRoles, canManageRoles);
 
         model.addAttribute("tab", normalizedTab);
@@ -217,18 +190,7 @@ public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile c
         model.addAttribute("teamMembers", teamMembers);
         model.addAttribute("teamMemberCount", teamMembers.size());
         model.addAttribute("teamMembersLoadError", teamMembersLoadError);
-        model.addAttribute("selectedTeamMemberId", resolvedSelectedUserId);
-        Map<String, RoleTemplateView> mappingForTeam = roleTemplatesByCode;
-        List<RolePermissionGroupView> selectedTeamMemberRoleGroups = selectedTeamMember == null
-                ? List.of()
-                : selectedTeamMember.roles().stream()
-                        .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mappingForTeam)))
-                        .toList();
-
-        model.addAttribute("selectedTeamMember", selectedTeamMember);
-        model.addAttribute("selectedTeamMemberRoleGroups", selectedTeamMemberRoleGroups);
-        model.addAttribute("assignableRoles", assignableRoles);
-        model.addAttribute("teamRoleEditorAvailable", teamRoleEditorAvailable);
+        model.addAttribute("teamMemberRoleGroupsById", buildTeamMemberRoleGroups(teamMembers, roleTemplatesByCode));
 
         model.addAttribute("roleTemplates", roleTemplates);
         model.addAttribute("roleTemplateCount", roleTemplates.size());
@@ -240,6 +202,108 @@ public String index(@ModelAttribute("currentAdminProfile") CurrentAdminProfile c
         return "admin-role/index";
     }
 
+    @GetMapping("/team-members/{userId}/edit")
+    public String editTeamMember(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
+                                 @PathVariable Long userId,
+                                 Model model,
+                                 RedirectAttributes redirectAttributes) {
+        boolean canViewTeamRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_READ);
+        boolean canManageRoles = currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE);
+
+        if (!canViewTeamRoles) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 권한을 조회할 권한이 없습니다.");
+            return redirectToTeamTab();
+        }
+
+        List<RoleTemplateView> roleTemplates = List.of();
+        Map<String, RoleTemplateView> roleTemplatesByCode = Map.of();
+        String roleTemplatesLoadError = null;
+
+        try {
+            AdminRoleListResponse response = adminRoleClient.listRoles();
+            roleTemplates = Optional.ofNullable(response)
+                    .map(AdminRoleListResponse::roles)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(this::toRoleTemplateView)
+                    .sorted(roleTemplateComparator())
+                    .toList();
+            roleTemplatesByCode = roleTemplates.stream()
+                    .collect(Collectors.toMap(
+                            RoleTemplateView::code,
+                            template -> template,
+                            (left, right) -> left,
+                            LinkedHashMap::new
+                    ));
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load role templates for team member edit. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            roleTemplatesLoadError = "권한 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load role templates for team member edit.", exception);
+            roleTemplatesLoadError = "권한 템플릿을 불러오지 못했습니다. 잠시 후 다시 시도해 주세요.";
+        }
+
+        TeamMemberView targetMember = null;
+        String teamMemberLoadError = null;
+
+        try {
+            AdminRoleUserListResponse response = adminRoleClient.listAdminUsers();
+            targetMember = Optional.ofNullable(response)
+                    .map(AdminRoleUserListResponse::users)
+                    .orElseGet(List::of)
+                    .stream()
+                    .map(this::toTeamMemberView)
+                    .filter(member -> Objects.equals(member.id(), userId))
+                    .findFirst()
+                    .orElse(null);
+            if (targetMember == null) {
+                teamMemberLoadError = "선택한 팀원을 찾을 수 없습니다.";
+            }
+        } catch (RestClientResponseException exception) {
+            log.warn("Failed to load team member. status={}, body={}",
+                    exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
+            teamMemberLoadError = "팀원 정보를 불러오지 못했습니다.";
+        } catch (RestClientException | IllegalStateException exception) {
+            log.warn("Failed to load team member.", exception);
+            teamMemberLoadError = "팀원 정보를 불러오지 못했습니다.";
+        }
+
+        if (targetMember == null) {
+            redirectAttributes.addFlashAttribute("flashStatus", "error");
+            redirectAttributes.addFlashAttribute("flashMessage", teamMemberLoadError != null
+                    ? teamMemberLoadError
+                    : "선택한 팀원을 찾을 수 없습니다.");
+            return redirectToTeamTab();
+        }
+
+        List<RoleDisplay> assignableRoles = roleTemplates.stream()
+                .map(RoleTemplateView::role)
+                .toList();
+        boolean teamRoleEditorAvailable = canManageRoles && !assignableRoles.isEmpty();
+
+        List<RolePermissionGroupView> memberRoleGroups = buildRolePermissionGroups(targetMember, roleTemplatesByCode);
+
+        model.addAttribute("pageTitle", targetMember.nickname() + " 권한 수정");
+        model.addAttribute("activeMenu", "adminRoles");
+        model.addAttribute("breadcrumbs", List.of(
+                Breadcrumb.of("대시보드", "/"),
+                Breadcrumb.of("운영 권한", "/admin/roles?tab=" + TAB_TEAM),
+                Breadcrumb.active(targetMember.nickname() + " 권한 수정")
+        ));
+        model.addAttribute("toastMessages", List.of());
+
+        model.addAttribute("teamMember", targetMember);
+        model.addAttribute("teamMemberRoleGroups", memberRoleGroups);
+        model.addAttribute("assignableRoles", assignableRoles);
+        model.addAttribute("teamRoleEditorAvailable", teamRoleEditorAvailable);
+        model.addAttribute("roleTemplatesLoadError", roleTemplatesLoadError);
+        model.addAttribute("canManageRoles", canManageRoles);
+
+        return "admin-role/team-member-edit";
+    }
+
     @PostMapping("/team-members/{userId}/roles")
     public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") CurrentAdminProfile currentAdminProfile,
                                         @PathVariable Long userId,
@@ -247,8 +311,8 @@ public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") Curre
                                         RedirectAttributes redirectAttributes) {
         if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
-            return redirectToTeam(userId);
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 편집할 권한이 없습니다.");
+            return redirectToTeamMemberEditor(userId);
         }
 
         Set<String> desiredRoles = new LinkedHashSet<>(normalizeRoleCodes(roleCodes));
@@ -264,7 +328,7 @@ public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") Curre
             if (targetUser.isEmpty()) {
                 redirectAttributes.addFlashAttribute("flashStatus", "error");
                 redirectAttributes.addFlashAttribute("flashMessage", "선택한 팀원을 찾을 수 없습니다.");
-                return redirectToTeam(userId);
+                return redirectToTeamMemberEditor(userId);
             }
 
             Set<String> currentRoles = Optional.of(targetUser.get())
@@ -290,21 +354,21 @@ public String updateTeamMemberRoles(@ModelAttribute("currentAdminProfile") Curre
 
             String message = toGrant.isEmpty() && toRevoke.isEmpty()
                     ? "변경 사항이 없어 기존 구성을 유지했습니다."
-                    : "팀원 역할 구성을 업데이트했습니다.";
+                    : "팀원 권한 구성을 업데이트했습니다.";
             redirectAttributes.addFlashAttribute("flashStatus", "success");
             redirectAttributes.addFlashAttribute("flashMessage", message);
         } catch (RestClientResponseException exception) {
             log.warn("Failed to update team member roles. status={}, body={}",
                     exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 권한을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
         } catch (RestClientException | IllegalStateException exception) {
             log.warn("Failed to update team member roles.", exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "팀원 역할을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "팀원 권한을 수정하지 못했습니다. 잠시 후 다시 시도해 주세요.");
         }
 
-        return redirectToTeam(userId);
+        return redirectToTeamMemberEditor(userId);
     }
 
     @PostMapping("/new")
@@ -316,7 +380,7 @@ public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProf
                              RedirectAttributes redirectAttributes) {
         if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 생성할 권한이 없습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 생성할 권한이 없습니다.");
             return redirectToManage(null);
         }
 
@@ -327,7 +391,7 @@ public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProf
         if (!StringUtils.hasText(normalizedCode) || !StringUtils.hasText(normalizedDisplayName)
                 || !StringUtils.hasText(normalizedDescription)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 코드, 이름, 설명을 모두 입력해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한 코드, 이름, 설명을 모두 입력해 주세요.");
             return redirectToManage(normalizedCode);
         }
 
@@ -338,16 +402,16 @@ public String createRole(@ModelAttribute("currentAdminProfile") CurrentAdminProf
                 adminRoleClient.updateRolePermissions(normalizedCode, new UpdateRolePermissionsRequest(permissionKeys));
             }
             redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 권한을 생성했습니다.");
         } catch (RestClientResponseException exception) {
             log.warn("Failed to create role. status={}, body={}",
                     exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 입력값을 확인해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 권한을 생성하지 못했습니다. 입력값을 확인해 주세요.");
         } catch (RestClientException | IllegalStateException exception) {
             log.warn("Failed to create role.", exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "새 역할을 생성하지 못했습니다. 잠시 후 다시 시도해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "새 권한을 생성하지 못했습니다. 잠시 후 다시 시도해 주세요.");
         }
 
         return redirectToManage(normalizedCode);
@@ -360,7 +424,7 @@ public String updateRolePermissions(@ModelAttribute("currentAdminProfile") Curre
                                         RedirectAttributes redirectAttributes) {
         if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 편집할 권한이 없습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 편집할 권한이 없습니다.");
             return redirectToManage(roleCode);
         }
 
@@ -375,11 +439,11 @@ public String updateRolePermissions(@ModelAttribute("currentAdminProfile") Curre
             log.warn("Failed to update role permissions. status={}, body={}",
                     exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한 세부 사항을 업데이트하지 못했습니다.");
         } catch (RestClientException | IllegalStateException exception) {
             log.warn("Failed to update role permissions.", exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할 권한을 업데이트하지 못했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한 세부 사항을 업데이트하지 못했습니다.");
         }
 
         return redirectToManage(normalizedCode);
@@ -391,30 +455,30 @@ public String deleteRole(@ModelAttribute("currentAdminProfile") CurrentAdminProf
                              RedirectAttributes redirectAttributes) {
         if (!currentAdminProfile.hasPermission(PERMISSION_ADMIN_ROLE_WRITE)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제할 권한이 없습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 삭제할 권한이 없습니다.");
             return redirectToManage(roleCode);
         }
 
         String normalizedCode = normalizeRoleCode(roleCode);
         if (!StringUtils.hasText(normalizedCode)) {
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "삭제할 역할 코드를 확인해 주세요.");
+            redirectAttributes.addFlashAttribute("flashMessage", "삭제할 권한 코드를 확인해 주세요.");
             return redirectToManage(null);
         }
 
         try {
             adminRoleClient.deleteRole(normalizedCode);
             redirectAttributes.addFlashAttribute("flashStatus", "success");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 삭제했습니다.");
         } catch (RestClientResponseException exception) {
             log.warn("Failed to delete role. status={}, body={}",
                     exception.getStatusCode(), exception.getResponseBodyAsString(), exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 삭제하지 못했습니다.");
         } catch (RestClientException | IllegalStateException exception) {
             log.warn("Failed to delete role.", exception);
             redirectAttributes.addFlashAttribute("flashStatus", "error");
-            redirectAttributes.addFlashAttribute("flashMessage", "역할을 삭제하지 못했습니다.");
+            redirectAttributes.addFlashAttribute("flashMessage", "권한을 삭제하지 못했습니다.");
         }
 
         return redirectToManage(null);
@@ -574,15 +638,44 @@ private List<String> normalizePermissionKeys(List<String> rawKeys) {
         return List.copyOf(normalized);
     }
 
-    private String redirectToTeam(Long selectedUserId) {
+    private String redirectToTeamMemberEditor(Long userId) {
+        if (userId == null) {
+            return redirectToTeamTab();
+        }
+        return "redirect:/admin/roles/team-members/" + userId + "/edit";
+    }
+
+    private String redirectToTeamTab() {
         UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
                 .queryParam("tab", TAB_TEAM);
-        if (selectedUserId != null) {
-            builder.queryParam("selectedUserId", selectedUserId);
-        }
         return "redirect:" + builder.toUriString();
     }
 
+    private Map<Long, List<RolePermissionGroupView>> buildTeamMemberRoleGroups(List<TeamMemberView> members,
+                                                                               Map<String, RoleTemplateView> mapping) {
+        if (members.isEmpty()) {
+            return Map.of();
+        }
+        return members.stream()
+                .filter(member -> member.id() != null)
+                .collect(Collectors.toMap(
+                        TeamMemberView::id,
+                        member -> buildRolePermissionGroups(member, mapping),
+                        (left, right) -> left,
+                        LinkedHashMap::new
+                ));
+    }
+
+    private List<RolePermissionGroupView> buildRolePermissionGroups(TeamMemberView member,
+                                                                    Map<String, RoleTemplateView> mapping) {
+        if (member == null) {
+            return List.of();
+        }
+        return member.roles().stream()
+                .map(role -> new RolePermissionGroupView(role, resolvePermissions(role.code(), mapping)))
+                .toList();
+    }
+
     private String redirectToManage(String selectedRoleCode) {
         UriComponentsBuilder builder = UriComponentsBuilder.fromPath("/admin/roles")
                 .queryParam("tab", TAB_MANAGE);
diff --git a/src/main/resources/static/css/admin-theme.css b/src/main/resources/static/css/admin-theme.css
index 216d8a7..6b9b8aa 100644
--- a/src/main/resources/static/css/admin-theme.css
+++ b/src/main/resources/static/css/admin-theme.css
@@ -448,38 +448,77 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
 }
 
 /* ===== Role management ===== */
-.role-tab-nav {
-    display: flex;
-    flex-wrap: wrap;
-    gap: 0.75rem;
+.role-tabs {
+    border: 0;
+    background: rgba(226, 232, 240, 0.6);
+    padding: 0.4rem;
+    border-radius: 999px;
+    display: inline-flex;
+    gap: 0.25rem;
 }
-.role-tab {
-    flex: 1;
-    min-width: 200px;
-    text-decoration: none;
-    border: 1px solid var(--border-subtle);
-    border-radius: var(--radius-lg);
-    padding: 1rem 1.25rem;
-    color: inherit;
-    transition: all 0.2s ease;
-    background: #fff;
+
+.role-tabs .nav-link {
+    border: 0;
+    border-radius: 999px;
+    color: var(--text-muted);
+    font-weight: 500;
+    padding: 0.55rem 1.4rem;
+    transition: color 0.2s ease, background 0.2s ease, box-shadow 0.2s ease;
 }
-.role-tab.is-active {
-    border-color: var(--accent-primary);
-    box-shadow: 0 10px 30px rgba(15, 23, 42, 0.08);
+
+.role-tabs .nav-link:hover {
+    color: var(--text-primary);
 }
-.role-tab.is-disabled {
-    cursor: not-allowed;
+
+.role-tabs .nav-link.active {
+    background: linear-gradient(135deg, #6366f1, #22d3ee);
+    color: #ffffff;
+    box-shadow: 0 12px 30px rgba(14, 165, 233, 0.35);
+}
+
+.role-tabs .nav-link.disabled {
     opacity: 0.6;
-    background: var(--surface-muted);
+    cursor: not-allowed;
 }
-.role-pill-wrap,
+
+.role-token-grid,
 .role-chip-row {
     display: flex;
     flex-wrap: wrap;
     gap: 0.75rem;
 }
-.role-pill,
+
+.role-token-button,
+.role-token {
+    border: 1px solid var(--border-subtle);
+    border-radius: 999px;
+    padding: 0.45rem 1.1rem;
+    background: #fff;
+    font-size: 0.95rem;
+    font-weight: 600;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.35rem;
+    line-height: 1.2;
+    color: var(--text-primary);
+}
+
+.role-token-button {
+    cursor: pointer;
+    background: var(--surface-primary);
+    border-color: rgba(59, 130, 246, 0.24);
+    box-shadow: 0 6px 18px rgba(15, 23, 42, 0.08);
+    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+}
+
+.role-token-button:hover,
+.role-token-button:focus-visible {
+    border-color: var(--accent-primary);
+    box-shadow: 0 12px 30px rgba(59, 130, 246, 0.16);
+    transform: translateY(-1px);
+    outline: none;
+}
+
 .role-chip {
     border: 1px solid var(--border-subtle);
     border-radius: 999px;
@@ -491,6 +530,7 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     gap: 0.35rem;
     line-height: 1.2;
 }
+
 .role-chip--action {
     cursor: pointer;
     background: var(--surface-primary);
@@ -498,6 +538,7 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     box-shadow: 0 6px 18px rgba(15, 23, 42, 0.08);
     transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
 }
+
 .role-chip--action:hover,
 .role-chip--action:focus-visible {
     border-color: var(--accent-primary);
@@ -505,6 +546,7 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     transform: translateY(-1px);
     outline: none;
 }
+
 .role-chip__cta {
     font-size: 0.75rem;
     color: var(--accent-primary);
@@ -515,6 +557,7 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     align-items: center;
     gap: 0.15rem;
 }
+
 .role-permission-list {
     list-style: none;
     padding: 0;
@@ -523,48 +566,43 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     flex-direction: column;
     gap: 0.75rem;
 }
-.role-permission-trigger-grid {
-    display: grid;
-    gap: 1rem;
-    grid-template-columns: repeat(auto-fill, minmax(240px, 1fr));
-}
-.role-permission-trigger {
-    width: 100%;
+
+.role-team-table {
     border: 1px solid var(--border-subtle);
     border-radius: var(--radius-xl);
-    padding: 1.15rem 1.25rem;
-    background: var(--surface-primary);
-    display: flex;
-    flex-direction: column;
-    gap: 0.85rem;
-    text-align: left;
-    transition: transform 0.2s ease, box-shadow 0.2s ease, border-color 0.2s ease;
+    border-collapse: separate;
+    border-spacing: 0;
+    overflow: hidden;
+    background: #fff;
 }
-.role-permission-trigger:hover,
-.role-permission-trigger:focus-visible {
-    border-color: var(--accent-primary);
-    box-shadow: var(--shadow-soft);
-    transform: translateY(-2px);
-    outline: none;
+
+.role-team-table thead th {
+    font-size: 0.75rem;
+    text-transform: uppercase;
+    letter-spacing: 0.08em;
+    color: var(--text-muted);
+    background: var(--surface-muted);
+    border-bottom: 1px solid var(--border-subtle);
 }
-.role-permission-trigger__title {
-    font-size: 1.05rem;
-    font-weight: 600;
+
+.role-team-table th,
+.role-team-table td {
+    border-bottom: 1px solid var(--border-subtle);
+    vertical-align: middle;
 }
-.role-permission-trigger__meta {
-    display: flex;
-    justify-content: space-between;
-    align-items: center;
-    gap: 0.5rem;
-    font-size: 0.85rem;
+
+.role-team-table tbody tr:last-child td {
+    border-bottom: 0;
 }
-.role-permission-trigger__cta {
-    display: inline-flex;
-    align-items: center;
-    gap: 0.15rem;
-    font-weight: 600;
-    color: var(--accent-primary);
+
+.role-team-table tbody tr.table-active {
+    background: rgba(99, 102, 241, 0.08);
+}
+
+.role-permission-modal__dialog {
+    max-width: 460px;
 }
+
 .role-permission-modal {
     border-radius: var(--radius-xl);
     border: none;
@@ -581,27 +619,36 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
 .role-permission-modal__description {
     font-size: 0.95rem;
 }
-.permission-modal-list {
-    list-style: none;
-    margin: 0;
-    padding: 0;
+.permission-carousel {
     display: flex;
     flex-direction: column;
-    gap: 0.85rem;
+    gap: 0.75rem;
 }
-.permission-modal-item {
+
+.permission-carousel__viewport {
     border: 1px solid rgba(59, 130, 246, 0.25);
     border-radius: var(--radius-lg);
-    padding: 0.85rem 1rem;
-    background: linear-gradient(135deg, rgba(59, 130, 246, 0.08), rgba(15, 23, 42, 0.02));
+    padding: 1rem 1.25rem;
+    background: linear-gradient(135deg, rgba(59, 130, 246, 0.1), rgba(15, 23, 42, 0.03));
     box-shadow: inset 0 1px 0 rgba(255, 255, 255, 0.4);
+    min-height: 110px;
+    display: flex;
+    align-items: center;
+}
+
+.permission-carousel__slide {
+    width: 100%;
+    display: flex;
+    flex-direction: column;
+    gap: 0.35rem;
 }
-.permission-modal-description {
+
+.permission-carousel__label {
     font-weight: 600;
     font-size: 1rem;
-    margin-bottom: 0.35rem;
 }
-.permission-modal-key {
+
+.permission-carousel__key {
     display: inline-flex;
     align-items: center;
     gap: 0.25rem;
@@ -612,7 +659,48 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     color: var(--text-muted);
     background: rgba(15, 23, 42, 0.05);
     border-radius: 999px;
-    padding: 0.1rem 0.75rem;
+    padding: 0.15rem 0.85rem;
+    align-self: flex-start;
+}
+
+.permission-carousel__controls {
+    display: flex;
+    align-items: center;
+    justify-content: space-between;
+    gap: 0.75rem;
+}
+
+.permission-carousel__nav {
+    width: 40px;
+    height: 40px;
+    border-radius: 999px;
+    border: 1px solid var(--border-subtle);
+    background: #fff;
+    color: var(--text-primary);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    box-shadow: 0 8px 20px rgba(15, 23, 42, 0.08);
+    transition: transform 0.2s ease, box-shadow 0.2s ease;
+}
+
+.permission-carousel__nav:disabled {
+    opacity: 0.5;
+    box-shadow: none;
+}
+
+.permission-carousel__nav:not(:disabled):hover,
+.permission-carousel__nav:not(:disabled):focus-visible {
+    transform: translateY(-1px);
+    box-shadow: 0 12px 30px rgba(59, 130, 246, 0.2);
+    border-color: rgba(59, 130, 246, 0.3);
+}
+
+.permission-carousel__counter {
+    flex: 1;
+    text-align: center;
+    font-weight: 600;
+    color: var(--text-muted);
 }
 .permission-modal-empty {
     border: 1px dashed var(--border-subtle);
@@ -654,6 +742,36 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     flex: 1;
     min-width: 0;
 }
+.team-role-card-grid {
+    display: grid;
+    gap: 1.25rem;
+    grid-template-columns: repeat(auto-fill, minmax(280px, 1fr));
+}
+.team-role-card {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1.25rem;
+    background: var(--surface-primary);
+    box-shadow: var(--shadow-soft);
+    display: flex;
+    flex-direction: column;
+    gap: 0.75rem;
+}
+
+.team-role-card__avatar {
+    width: 52px;
+    height: 52px;
+    border-radius: 999px;
+    background: var(--surface-muted);
+    display: inline-flex;
+    align-items: center;
+    justify-content: center;
+    font-weight: 600;
+    font-size: 1.1rem;
+}
+.team-role-card__roles {
+    min-height: 88px;
+}
 .role-editor-panel summary {
     cursor: pointer;
     font-weight: 600;
@@ -688,3 +806,160 @@ a:hover, a:focus { color: var(--accent-primary-strong); }
     border-color: var(--accent-primary);
     background: rgba(59, 130, 246, 0.08);
 }
+
+.role-manage-region {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-xl);
+    padding: 1.5rem;
+    background: var(--surface-primary);
+    box-shadow: var(--shadow-soft);
+    display: flex;
+    flex-direction: column;
+    gap: 1.5rem;
+}
+
+.role-manage-toolbar {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    gap: 1rem;
+    flex-wrap: wrap;
+}
+
+.role-manage-eyebrow {
+    font-size: 0.75rem;
+    letter-spacing: 0.08em;
+    text-transform: uppercase;
+    font-weight: 700;
+    color: var(--accent-primary);
+}
+
+.role-manage-form {
+    border: 1px dashed var(--border-subtle);
+    border-radius: var(--radius-lg);
+    padding: 1.25rem;
+    background: var(--surface-muted);
+}
+
+.role-manage-columns {
+    display: grid;
+    grid-template-columns: minmax(0, 320px) minmax(0, 1fr);
+    gap: 1.25rem;
+}
+
+.role-manage-column {
+    border: 1px solid var(--border-subtle);
+    border-radius: var(--radius-lg);
+    background: #fff;
+    padding: 1rem 1.25rem;
+    min-height: 320px;
+}
+
+.role-manage-column__header {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    margin-bottom: 1rem;
+}
+
+.role-manage-list {
+    display: flex;
+    flex-direction: column;
+    gap: 0.4rem;
+}
+
+.role-manage-list-item {
+    border: 1px solid transparent;
+    border-radius: var(--radius-md);
+    padding: 0.65rem 0.75rem;
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    text-decoration: none;
+    color: inherit;
+    transition: border-color 0.2s ease, background 0.2s ease;
+}
+
+.role-manage-list-item:hover,
+.role-manage-list-item.is-active {
+    border-color: rgba(59, 130, 246, 0.35);
+    background: rgba(59, 130, 246, 0.08);
+}
+
+.role-manage-column--detail {
+    padding: 0;
+}
+
+.role-manage-empty {
+    height: 100%;
+    min-height: 320px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    color: var(--text-muted);
+    text-align: center;
+    padding: 1.5rem;
+}
+
+.role-manage-detail {
+    display: flex;
+    flex-direction: column;
+    gap: 1.25rem;
+    padding: 1.25rem;
+}
+
+.role-manage-detail__header {
+    display: flex;
+    justify-content: space-between;
+    gap: 1rem;
+    flex-wrap: wrap;
+}
+
+.role-manage-code {
+    font-family: 'JetBrains Mono', 'SFMono-Regular', Consolas, monospace;
+    font-size: 0.75rem;
+    letter-spacing: 0.08em;
+    background: rgba(15, 23, 42, 0.06);
+    border-radius: 999px;
+    padding: 0.2rem 0.85rem;
+    display: inline-flex;
+    align-items: center;
+    text-transform: uppercase;
+}
+
+.role-permission-chips {
+    display: flex;
+    flex-wrap: wrap;
+    gap: 0.5rem;
+}
+
+.role-permission-chip {
+    border: 1px solid var(--border-subtle);
+    border-radius: 999px;
+    padding: 0.4rem 0.85rem;
+    display: inline-flex;
+    align-items: center;
+    gap: 0.4rem;
+    background: var(--surface-muted);
+}
+
+.role-permission-chip__label {
+    font-weight: 600;
+}
+
+.role-permission-chip__key {
+    font-size: 0.75rem;
+    color: var(--text-muted);
+    text-transform: uppercase;
+    letter-spacing: 0.08em;
+}
+
+@media (max-width: 991.98px) {
+    .role-manage-columns {
+        grid-template-columns: 1fr;
+    }
+
+    .role-manage-column {
+        min-height: auto;
+    }
+}
diff --git a/src/main/resources/templates/admin-role/index.html b/src/main/resources/templates/admin-role/index.html
index 4f23d6c..8b45379 100644
--- a/src/main/resources/templates/admin-role/index.html
+++ b/src/main/resources/templates/admin-role/index.html
@@ -2,25 +2,6 @@
 <html lang="ko" xmlns:th="http://www.thymeleaf.org"
       th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
 <th:block th:fragment="content">
-    <div class="card card-elevated mb-4">
-        <div class="card-body card-body-comfy">
-            <div class="d-flex flex-wrap justify-content-between align-items-center gap-3">
-                <div>
-                    <h1 class="section-heading mb-2">역할과 권한</h1>
-                    <p class="text-muted mb-0">팀의 역할 구조를 한눈에 파악하고 필요한 권한을 빠르게 조정하세요.</p>
-                </div>
-                <div class="text-muted small text-end">
-                    <div class="fw-semibold">내 역할 요약</div>
-                    <div th:if="${currentAdminProfile.hasRoleDisplayNames()}"
-                         th:text="${#strings.listJoin(currentAdminProfile.roleDisplayNames(), ', ')}">
-                        확인 중...
-                    </div>
-                    <div th:unless="${currentAdminProfile.hasRoleDisplayNames()}">부여된 역할 정보를 불러오는 중입니다.</div>
-                </div>
-            </div>
-        </div>
-    </div>
-
     <div class="alert d-flex align-items-center mb-4"
          th:if="${flashMessage != null}"
          th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
@@ -29,115 +10,76 @@ <h1 class="section-heading mb-2">역할과 권한</h1>
         <span th:text="${flashMessage}">알림</span>
     </div>
 
-    <div class="card card-elevated mb-4">
-        <div class="card-body card-body-tight">
-            <div class="role-tab-nav">
-                <a th:href="@{/admin/roles(tab='my')}"
-                   class="role-tab"
-                   th:classappend="${tab} == 'my' ? ' is-active' : ''">
-                    <div class="fw-semibold">내 역할</div>
-                    <div class="text-muted small">나에게 부여된 역할과 권한</div>
-                </a>
-                <th:block th:if="${canViewTeamTab}">
-                    <a th:href="${selectedTeamMemberId != null} ? @{/admin/roles(tab='team', selectedUserId=${selectedTeamMemberId})} : @{/admin/roles(tab='team')}"
-                       class="role-tab"
-                       th:classappend="${tab} == 'team' ? ' is-active' : ''">
-                        <div class="fw-semibold">팀원 역할</div>
-                        <div class="text-muted small">팀원의 역할 현황과 권한</div>
-                    </a>
-                </th:block>
-                <th:block th:unless="${canViewTeamTab}">
-                    <span class="role-tab is-disabled" title="ADMIN_ROLE_READ 권한이 필요합니다.">
-                        <div class="fw-semibold">팀원 역할</div>
-                        <div class="text-muted small">권한이 없어 접근할 수 없습니다.</div>
-                    </span>
-                </th:block>
-                <th:block th:if="${canManageRoles}">
-                    <a th:href="${#strings.isEmpty(selectedRoleCode)} ? @{/admin/roles(tab='manage')} : @{/admin/roles(tab='manage', selectedRoleCode=${selectedRoleCode})}"
-                       class="role-tab"
-                       th:classappend="${tab} == 'manage' ? ' is-active' : ''">
-                        <div class="fw-semibold">역할 관리</div>
-                        <div class="text-muted small">역할 템플릿 편집 및 생성</div>
-                    </a>
-                </th:block>
-            </div>
-        </div>
+    <div class="mb-4">
+        <ul class="nav nav-tabs nav-tabs-line role-tabs">
+            <li class="nav-item">
+                <a class="nav-link"
+                   th:classappend="${tab} == 'my' ? ' active' : ''"
+                   th:href="@{/admin/roles(tab='my')}">내 권한</a>
+            </li>
+            <li class="nav-item" th:if="${canViewTeamTab}">
+                <a class="nav-link"
+                   th:classappend="${tab} == 'team' ? ' active' : ''"
+                   th:href="@{/admin/roles(tab='team')}">팀원들의 권한</a>
+            </li>
+            <li class="nav-item" th:unless="${canViewTeamTab}">
+                <span class="nav-link disabled" title="ADMIN_ROLE_READ 권한이 필요합니다.">팀원들의 권한</span>
+            </li>
+            <li class="nav-item" th:if="${canManageRoles}">
+                <a class="nav-link"
+                   th:classappend="${tab} == 'manage' ? ' active' : ''"
+                   th:href="${#strings.isEmpty(selectedRoleCode)} ? @{/admin/roles(tab='manage')} : @{/admin/roles(tab='manage', selectedRoleCode=${selectedRoleCode})}">권한 관리</a>
+            </li>
+        </ul>
     </div>
 
+
     <div th:if="${tab} == 'my'">
         <div class="card card-elevated mb-4">
             <div class="card-body card-body-comfy">
                 <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
                     <div>
-                        <h2 class="h5 mb-1">내가 가진 역할</h2>
-                        <div class="text-muted small">현재 세션에 부여된 역할과 설명입니다.</div>
+                        <h2 class="h5 mb-1">내 권한</h2>
+                        <div class="text-muted small">부여된 권한을 눌러 세부 정보를 확인하세요.</div>
                     </div>
-                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRoles)} + '개 역할'"></span>
+                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRoles)} + '개 권한'"></span>
                 </div>
                 <div class="alert alert-warning" th:if="${myRolesLoadError != null}" th:text="${myRolesLoadError}">로드 오류</div>
                 <div th:if="${myRolesLoadError == null}">
                     <div class="text-muted" th:if="${#lists.isEmpty(myRoles)}">
-                        아직 부여된 역할이 없습니다.
+                        아직 부여된 권한이 없습니다.
                     </div>
-                    <div class="role-pill-wrap" th:if="${!#lists.isEmpty(myRoles)}">
-                        <div class="role-pill" th:each="role : ${myRoles}">
-                            <div class="fw-semibold" th:text="${role.label()}">팀 멤버</div>
-                            <div class="text-muted small" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</div>
-                            <div class="text-muted small" th:unless="${role.hasDescription()}" th:text="${role.code()}">TEAM_MEMBER</div>
+                    <div th:if="${!#lists.isEmpty(myRoles)}">
+                        <div class="role-token-grid" th:if="${!#lists.isEmpty(myRolePermissionGroups)}">
+                            <th:block th:each="group, iterStat : ${myRolePermissionGroups}">
+                                <th:block th:with="templateId=${'permission-template-my-' + group.role().code() + '-' + iterStat.index}">
+                                    <button type="button"
+                                            class="role-token-button"
+                                            data-role-modal-trigger="true"
+                                            th:data-role-code="${group.role().code()}"
+                                            th:data-role-label="${group.role().label()}"
+                                            th:data-role-description="${group.role().description()}"
+                                            th:data-role-permission-template="${templateId}"
+                                            th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                                        <span class="fw-semibold" th:text="${group.role().label()}">권한 이름</span>
+                                    </button>
+                                    <template th:id="${templateId}">
+                                        <div data-permission-entry
+                                             th:each="permission : ${group.permissions()}"
+                                             th:data-permission-label="${permission.label()}"
+                                             th:data-permission-key="${permission.key()}">
+                                        </div>
+                                    </template>
+                                </th:block>
+                            </th:block>
+                        </div>
+                        <div class="role-token-grid" th:if="${#lists.isEmpty(myRolePermissionGroups)}">
+                            <span class="role-token" th:each="role : ${myRoles}" th:text="${role.label()}">팀 멤버</span>
+                        </div>
+                        <div class="alert alert-info mt-3"
+                             th:if="${#lists.isEmpty(myRolePermissionGroups)}">
+                            권한 템플릿을 불러오지 못해 권한 목록을 표시할 수 없습니다.
                         </div>
-                    </div>
-                </div>
-            </div>
-        </div>
-
-        <div class="card card-elevated mb-4">
-            <div class="card-body card-body-comfy">
-                <div class="d-flex align-items-center justify-content-between flex-wrap gap-3 mb-3">
-                    <div>
-                        <h2 class="h5 mb-1">역할별 권한</h2>
-                        <div class="text-muted small">역할 카드를 눌러 포함된 권한을 모달에서 확인하세요.</div>
-                    </div>
-                    <span class="badge bg-light text-dark" th:text="${#lists.size(myRolePermissionGroups)} + '개 역할'">0개 역할</span>
-                </div>
-                <div class="alert alert-info"
-                     th:if="${myRolesLoadError == null && #lists.isEmpty(myRolePermissionGroups)}">
-                    역할 템플릿을 불러오지 못해 권한 목록을 표시할 수 없습니다.
-                </div>
-                <div class="role-permission-trigger-grid" th:if="${!#lists.isEmpty(myRolePermissionGroups)}">
-                    <div class="role-permission-trigger-card" th:each="group : ${myRolePermissionGroups}">
-                        <button type="button"
-                                class="role-permission-trigger"
-                                data-role-modal-trigger="true"
-                                th:data-role-code="${group.role().code()}"
-                                th:data-role-label="${group.role().label()}"
-                                th:data-role-description="${group.role().description()}"
-                                th:data-role-permission-template="${'permission-template-my-' + group.role().code()}"
-                                th:attr="aria-label=|${group.role().label()} 권한 보기|">
-                            <div>
-                                <div class="role-permission-trigger__title" th:text="${group.role().label()}">팀 멤버</div>
-                                <div class="text-muted small" th:if="${group.role().hasDescription()}" th:text="${group.role().description()}">팀 공통 권한</div>
-                                <div class="text-muted small" th:unless="${group.role().hasDescription()}" th:text="${group.role().code()}">TEAM_MEMBER</div>
-                            </div>
-                            <div class="role-permission-trigger__meta">
-                                <span class="text-muted small" th:text="${group.permissions().size()} + '개 권한'"></span>
-                                <span class="role-permission-trigger__cta">
-                                    권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
-                                </span>
-                            </div>
-                        </button>
-                        <template th:id="${'permission-template-my-' + group.role().code()}">
-                            <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
-                                <li th:each="permission : ${group.permissions()}">
-                                    <div class="permission-modal-item">
-                                        <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
-                                        <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
-                                    </div>
-                                </li>
-                            </ul>
-                            <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
-                                이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
-                            </div>
-                        </template>
                     </div>
                 </div>
             </div>
@@ -146,139 +88,77 @@ <h2 class="h5 mb-1">역할별 권한</h2>
 
     <div th:if="${tab} == 'team'">
         <div class="alert alert-warning" th:if="${!canViewTeamTab}">
-            팀원 역할을 확인하려면 ADMIN_ROLE_READ 권한이 필요합니다.
+            팀원 권한을 확인하려면 ADMIN_ROLE_READ 권한이 필요합니다.
         </div>
-        <div class="row g-4" th:if="${canViewTeamTab}">
-            <div class="col-12 col-xl-5">
-                <div class="card card-elevated h-100">
-                    <div class="card-body card-body-comfy d-flex flex-column h-100">
-                        <div class="d-flex justify-content-between align-items-center flex-wrap gap-3 mb-3">
-                            <div>
-                                <h2 class="h5 mb-1">팀원 목록</h2>
-                                <div class="text-muted small" th:text="|${teamMemberCount}명 참여 중|">0명 참여 중</div>
-                            </div>
-                        </div>
-                        <div class="alert alert-warning" th:if="${teamMembersLoadError != null}" th:text="${teamMembersLoadError}">로드 오류</div>
-                        <div class="flex-grow-1" th:if="${teamMembersLoadError == null}">
-                            <div class="text-muted text-center py-5" th:if="${#lists.isEmpty(teamMembers)}">
-                                관리 대상 팀원이 없습니다.
-                            </div>
-                            <div class="team-member-grid" th:if="${!#lists.isEmpty(teamMembers)}">
-                                <a class="team-member-card"
-                                   th:each="member : ${teamMembers}"
-                                   th:href="@{/admin/roles(tab='team', selectedUserId=${member.id()})}"
-                                   th:classappend="${selectedTeamMemberId != null && selectedTeamMemberId == member.id()} ? ' is-active' : ''">
-                                    <div class="team-member-card__avatar">
-                                        <span th:text="${member.initials()}">팀</span>
-                                    </div>
-                                    <div class="team-member-card__body">
-                                        <div class="d-flex align-items-center gap-2">
-                                            <div class="fw-semibold text-truncate" th:text="${member.nickname()}">운영자</div>
-                                            <span class="badge bg-warning-subtle text-dark" th:if="${member.superAdmin()}">SUPER</span>
-                                        </div>
-                                        <div class="role-chip-row">
-                                            <span class="role-chip" th:each="role : ${member.roles()}" th:text="${role.label()}">팀 멤버</span>
-                                            <span class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">역할 없음</span>
-                                        </div>
-                                    </div>
-                                </a>
-                            </div>
+        <div th:if="${canViewTeamTab}">
+            <div class="card card-elevated mb-4">
+                <div class="card-body card-body-comfy">
+                    <div class="d-flex justify-content-between align-items-center flex-wrap gap-3 mb-3">
+                        <div>
+                            <h2 class="h5 mb-1">팀원들의 권한</h2>
+                            <div class="text-muted small" th:text="|${teamMemberCount}명|">0명</div>
                         </div>
                     </div>
-                </div>
-            </div>
-            <div class="col-12 col-xl-7">
-                <div class="card card-elevated h-100">
-                    <div class="card-body card-body-comfy h-100">
-                        <div th:if="${selectedTeamMember == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
-                            왼쪽에서 팀원을 선택하면 상세 역할과 권한을 확인할 수 있습니다.
+                    <div class="alert alert-warning" th:if="${teamMembersLoadError != null}" th:text="${teamMembersLoadError}">로드 오류</div>
+                    <div th:if="${teamMembersLoadError == null}">
+                        <div class="text-muted text-center py-5" th:if="${#lists.isEmpty(teamMembers)}">
+                            관리 대상 팀원이 없습니다.
                         </div>
-                        <div th:if="${selectedTeamMember != null}" class="d-flex flex-column gap-4 h-100">
-                            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3">
-                                <div>
-                                    <div class="d-flex align-items-center gap-2">
-                                        <h2 class="h4 mb-0" th:text="${selectedTeamMember.nickname()}">운영자</h2>
-                                        <span class="badge bg-warning-subtle text-dark" th:if="${selectedTeamMember.superAdmin()}">슈퍼 관리자</span>
-                                    </div>
-                                </div>
-                                    <div class="text-end">
-                                        <div class="text-muted small">보유 역할</div>
-                                        <div class="fw-semibold" th:text="${#lists.size(selectedTeamMemberRoleGroups)} + '개'"></div>
+                        <div th:if="${!#lists.isEmpty(teamMembers)}">
+                            <div class="team-role-card-grid">
+                                <article class="team-role-card" th:each="member : ${teamMembers}">
+                                    <div class="d-flex justify-content-between align-items-start gap-3">
+                                        <div>
+                                            <div class="d-flex align-items-center gap-2">
+                                                <div class="fw-semibold" th:text="${member.nickname()}">운영자</div>
+                                                <span class="badge bg-warning-subtle text-dark" th:if="${member.superAdmin()}">SUPER</span>
+                                            </div>
+                                            <div class="text-muted small" th:text="${#lists.size(member.roles())} + '개 권한'">0개 권한</div>
+                                        </div>
+                                        <div>
+                                            <a class="btn btn-outline-primary btn-sm"
+                                               th:if="${canManageRoles}"
+                                               th:href="@{|/admin/roles/team-members/${member.id()}/edit|}">권한 편집</a>
+                                        </div>
                                     </div>
-                            </div>
-                            <div>
-                                <div class="d-flex flex-wrap justify-content-between align-items-center gap-2 mb-2">
-                                    <div class="text-muted small">역할</div>
-                                    <div class="text-muted small">역할 태그를 눌러 권한을 확인하세요.</div>
-                                </div>
-                                <div class="role-chip-row" th:if="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
-                                    <th:block th:each="group, iterStat : ${selectedTeamMemberRoleGroups}">
-                                        <th:block th:with="templateId=${'permission-template-team-' + group.role().code() + '-' + iterStat.index}">
-                                            <button type="button"
-                                                    class="role-chip role-chip--action"
-                                                    data-role-modal-trigger="true"
-                                                    th:data-role-code="${group.role().code()}"
-                                                    th:data-role-label="${group.role().label()}"
-                                                    th:data-role-description="${group.role().description()}"
-                                                    th:data-role-permission-template="${templateId}"
-                                                    th:attr="aria-label=|${group.role().label()} 권한 보기|">
-                                                <span class="fw-semibold" th:text="${group.role().label()}">역할 이름</span>
-                                                <span class="role-chip__cta">
-        권한 보기 <i class="bi bi-arrow-right-short" aria-hidden="true"></i>
-    </span>
-                                            </button>
-                                            <template th:id="${templateId}">
-                                                <ul class="permission-modal-list" th:if="${group.hasPermissions()}">
-                                                    <li th:each="permission : ${group.permissions()}">
-                                                        <div class="permission-modal-item">
-                                                            <div class="permission-modal-description" th:text="${permission.label()}">권한 이름</div>
-                                                            <div class="permission-modal-key" th:text="${permission.key()}">ADMIN_REPORT_READ</div>
-                                                        </div>
-                                                    </li>
-                                                </ul>
-                                                <div class="permission-modal-empty" th:unless="${group.hasPermissions()}">
-                                                    이 역할에 대한 세부 권한 정보를 불러오지 못했습니다.
-                                                </div>
-                                            </template>
-
-                                        </th:block>
-                                    </th:block>
-                                </div>
-                                <div class="text-muted" th:unless="${!#lists.isEmpty(selectedTeamMemberRoleGroups)}">
-                                    부여된 역할이 없습니다.
-                                </div>
-                            </div>
-                            <div th:if="${teamRoleEditorAvailable}">
-                                <details class="role-editor-panel">
-                                    <summary>역할 편집</summary>
-                                    <div class="mt-3">
-                                        <form th:action="@{|/admin/roles/team-members/${selectedTeamMember.id()}/roles|}"
-                                              method="post" class="role-editor-form">
-                                            <div class="alert alert-light border"
-                                                 th:if="${#lists.isEmpty(assignableRoles)}">
-                                                편집 가능한 역할 템플릿이 없습니다.
+                                    <div class="team-role-card__roles mt-3">
+                                        <th:block th:with="groups=${teamMemberRoleGroupsById[member.id()]}">
+                                            <div class="role-token-grid" th:if="${groups != null && !#lists.isEmpty(groups)}">
+                                                <th:block th:each="group, iterStat : ${groups}">
+                                                    <th:block th:with="templateId=${'permission-template-team-' + member.id() + '-' + group.role().code() + '-' + iterStat.index}">
+                                                        <button type="button"
+                                                                class="role-token-button"
+                                                                data-role-modal-trigger="true"
+                                                                th:data-role-code="${group.role().code()}"
+                                                                th:data-role-label="${group.role().label()}"
+                                                                th:data-role-description="${group.role().description()}"
+                                                                th:data-role-permission-template="${templateId}"
+                                                                th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                                                            <span class="fw-semibold" th:text="${group.role().label()}">권한 이름</span>
+                                                        </button>
+                                                        <template th:id="${templateId}">
+                                                            <div data-permission-entry
+                                                                 th:each="permission : ${group.permissions()}"
+                                                                 th:data-permission-label="${permission.label()}"
+                                                                 th:data-permission-key="${permission.key()}">
+                                                            </div>
+                                                        </template>
+                                                    </th:block>
+                                                </th:block>
                                             </div>
-                                            <div class="permission-grid" th:if="${!#lists.isEmpty(assignableRoles)}">
-                                                <label class="form-check role-option" th:each="role : ${assignableRoles}">
-                                                    <input class="form-check-input" type="checkbox" name="roleCodes"
-                                                           th:value="${role.code()}" th:checked="${selectedTeamMember.hasRole(role.code())}">
-                                                    <div>
-                                                        <div class="fw-semibold" th:text="${role.label()}">역할 이름</div>
-                                                        <small class="text-muted" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</small>
-                                                        <small class="text-muted" th:unless="${role.hasDescription()}" th:text="${role.code()}">CODE</small>
-                                                    </div>
-                                                </label>
+                                            <div class="role-token-grid"
+                                                 th:if="${(groups == null || #lists.isEmpty(groups)) && !#lists.isEmpty(member.roles())}">
+                                                <span class="role-token" th:each="role : ${member.roles()}" th:text="${role.label()}">팀 멤버</span>
                                             </div>
-                                            <div class="d-flex justify-content-between align-items-center mt-3">
-                                                <div class="text-muted small">선택한 항목이 즉시 저장됩니다.</div>
-                                                <button type="submit" class="btn btn-primary btn-sm">변경 사항 저장</button>
+                                            <div class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">
+                                                부여된 권한이 없습니다.
                                             </div>
-                                        </form>
+                                        </th:block>
                                     </div>
-                                </details>
-                            </div>
-                            <div th:if="${!teamRoleEditorAvailable && canManageRoles}" class="alert alert-light border">
-                                역할 템플릿 정보를 불러오지 못해 편집 UI를 표시할 수 없습니다.
+                                    <div class="text-muted small" th:if="${#lists.isEmpty(member.roles())}">
+                                        권한이 없는 팀원입니다.
+                                    </div>
+                                </article>
                             </div>
                         </div>
                     </div>
@@ -286,262 +166,150 @@ <h2 class="h4 mb-0" th:text="${selectedTeamMember.nickname()}">운영자</h2>
             </div>
         </div>
     </div>
-
     <div th:if="${tab} == 'manage'">
         <div class="alert alert-warning" th:if="${!canManageRoles}">
-            역할 관리 기능은 ADMIN_ROLE_WRITE 권한을 가진 사용자만 사용할 수 있습니다.
+            권한 관리 기능은 ADMIN_ROLE_WRITE 권한을 가진 사용자만 사용할 수 있습니다.
         </div>
         <div th:if="${canManageRoles}">
-            <div class="card card-elevated mb-4">
-                <div class="card-body card-body-comfy">
-                    <div class="d-flex justify-content-between align-items-center flex-wrap gap-3">
-                        <div>
-                            <h2 class="h5 mb-1">새 역할 추가</h2>
-                            <div class="text-muted small">역할 코드, 표시 이름, 설명을 입력한 뒤 필요한 권한을 선택하세요.</div>
-                        </div>
+            <div class="role-manage-region">
+                <div class="role-manage-toolbar">
+                    <div>
+                        <div class="role-manage-eyebrow">Role Templates</div>
+                        <h2 class="h4 mb-1">권한 관리</h2>
+                        <p class="text-muted mb-0 small">권한 구조를 빠르게 파악하고 필요한 권한만 정돈된 화면에서 조정하세요.</p>
+                    </div>
+                    <div class="d-flex align-items-center gap-2">
+                        <span class="badge bg-light text-dark" th:text="|총 ${roleTemplateCount}개|">총 0개</span>
                         <button class="btn btn-outline-primary btn-sm" type="button" data-bs-toggle="collapse" data-bs-target="#newRoleForm">
-                            새 역할 폼 열기
+                            새 권한 추가
                         </button>
                     </div>
-                    <div id="newRoleForm" class="collapse mt-4" th:classappend="${roleTemplateCount == 0} ? ' show' : ''">
-                        <form action="/admin/roles/new" method="post" class="role-editor-form">
-                            <div class="row g-3">
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleCodeInput">역할 코드</label>
-                                    <input type="text" class="form-control" id="roleCodeInput" name="code" placeholder="예: CONTENT_REVIEWER" required>
-                                </div>
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleNameInput">표시 이름</label>
-                                    <input type="text" class="form-control" id="roleNameInput" name="displayName" placeholder="예: 콘텐츠 검토자" required>
-                                </div>
-                                <div class="col-md-4">
-                                    <label class="form-label" for="roleDescriptionInput">설명</label>
-                                    <input type="text" class="form-control" id="roleDescriptionInput" name="description" placeholder="역할 목적을 입력하세요" required>
-                                </div>
+                </div>
+                <div id="newRoleForm" class="role-manage-form collapse" th:classappend="${roleTemplateCount == 0} ? ' show' : ''">
+                    <form action="/admin/roles/new" method="post" class="role-editor-form">
+                        <div class="row g-3">
+                            <div class="col-12 col-md-4">
+                                <label class="form-label" for="roleCodeInput">권한 코드</label>
+                                <input type="text" class="form-control" id="roleCodeInput" name="code" placeholder="예: CONTENT_REVIEWER" required>
                             </div>
-                            <div class="mt-4">
-                                <div class="text-muted small mb-2">포함할 권한</div>
-                                <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
-                                    선택할 수 있는 권한 목록을 불러오지 못했습니다.
-                                </div>
-                                <div class="permission-grid" th:if="${!#lists.isEmpty(permissionOptions)}">
-                                    <label class="form-check permission-option" th:each="option : ${permissionOptions}">
-                                        <input class="form-check-input" type="checkbox" name="permissions" th:value="${option.key()}">
-                                        <div>
-                                            <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
-                                            <small class="text-muted" th:text="${option.key()}">KEY</small>
-                                        </div>
-                                    </label>
-                                </div>
+                            <div class="col-12 col-md-4">
+                                <label class="form-label" for="roleNameInput">표시 이름</label>
+                                <input type="text" class="form-control" id="roleNameInput" name="displayName" placeholder="예: 콘텐츠 검토자" required>
                             </div>
-                            <div class="d-flex justify-content-end mt-3">
-                                <button type="submit" class="btn btn-primary">새 역할 저장</button>
+                            <div class="col-12 col-md-4">
+                                <label class="form-label" for="roleDescriptionInput">설명</label>
+                                <input type="text" class="form-control" id="roleDescriptionInput" name="description" placeholder="권한 목적을 입력하세요" required>
                             </div>
-                        </form>
-                    </div>
-                </div>
-            </div>
-
-            <div class="row g-4">
-                <div class="col-12 col-xl-4">
-                    <div class="card card-elevated h-100">
-                        <div class="card-body card-body-comfy">
-                            <div class="d-flex justify-content-between align-items-center mb-3">
-                                <div>
-                                    <h2 class="h5 mb-1">역할 목록</h2>
-                                    <div class="text-muted small" th:text="|총 ${roleTemplateCount}개|">총 0개</div>
-                                </div>
+                        </div>
+                        <div class="mt-3">
+                            <div class="text-muted small mb-2">포함할 권한</div>
+                            <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                선택할 수 있는 권한 목록을 불러오지 못했습니다.
                             </div>
-                            <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
-                            <div class="role-template-list" th:if="${roleTemplatesLoadError == null}">
-                                <div class="text-muted" th:if="${#lists.isEmpty(roleTemplates)}">등록된 역할이 없습니다.</div>
-                                <a class="role-template-item"
-                                   th:each="role : ${roleTemplates}"
-                                   th:href="@{/admin/roles(tab='manage', selectedRoleCode=${role.code()})}"
-                                   th:classappend="${selectedRoleCode == role.code()} ? ' is-active' : ''">
-                                    <div class="fw-semibold" th:text="${role.displayName()}">역할 이름</div>
-                                    <div class="text-muted small" th:text="${role.code()}">ROLE_CODE</div>
-                                </a>
+                            <div class="permission-grid" th:if="${!#lists.isEmpty(permissionOptions)}">
+                                <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                    <input class="form-check-input" type="checkbox" name="permissions" th:value="${option.key()}">
+                                    <div>
+                                        <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                        <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                    </div>
+                                </label>
                             </div>
                         </div>
-                    </div>
+                        <div class="d-flex justify-content-end mt-3">
+                            <button type="submit" class="btn btn-primary btn-sm">저장</button>
+                        </div>
+                    </form>
                 </div>
-                <div class="col-12 col-xl-8">
-                    <div class="card card-elevated h-100">
-                        <div class="card-body card-body-comfy h-100">
-                            <div th:if="${selectedRoleTemplate == null}" class="h-100 d-flex align-items-center justify-content-center text-muted">
-                                왼쪽 목록에서 편집할 역할을 선택하세요.
+
+                <div class="role-manage-columns">
+                    <section class="role-manage-column role-manage-column--list">
+                        <div class="role-manage-column__header">
+                            <div>
+                                <div class="role-manage-eyebrow">등록된 권한</div>
+                                <p class="text-muted small mb-0">선택하여 상세 권한을 살펴보세요.</p>
                             </div>
-                            <div th:if="${selectedRoleTemplate != null}" class="d-flex flex-column gap-4 h-100">
-                                <div class="d-flex justify-content-between align-items-start gap-3 flex-wrap">
-                                    <div>
-                                        <h2 class="h4 mb-1" th:text="${selectedRoleTemplate.displayName()}">역할 이름</h2>
-                                        <div class="text-muted" th:text="${selectedRoleTemplate.description()}">역할 설명</div>
-                                        <div class="text-muted small" th:text="${selectedRoleTemplate.code()}">ROLE_CODE</div>
-                                    </div>
-                                    <span class="badge bg-secondary-subtle text-dark" th:if="${selectedRoleTemplate.builtin()}">시스템 내장</span>
-                                </div>
+                        </div>
+                        <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
+                        <div class="role-manage-list" th:if="${roleTemplatesLoadError == null}">
+                            <div class="text-muted small" th:if="${#lists.isEmpty(roleTemplates)}">등록된 권한이 없습니다.</div>
+                            <a class="role-manage-list-item"
+                               th:each="role : ${roleTemplates}"
+                               th:href="@{/admin/roles(tab='manage', selectedRoleCode=${role.code()})}"
+                               th:classappend="${selectedRoleCode == role.code()} ? ' is-active' : ''">
                                 <div>
-                                    <div class="text-muted small mb-2">권한 목록</div>
-                                    <ul class="role-permission-list" th:if="${selectedRoleTemplate.hasPermissions()}">
-                                        <li th:each="permission : ${selectedRoleTemplate.permissions()}">
-                                            <div class="fw-semibold" th:text="${permission.label()}">권한</div>
-                                            <div class="text-muted small" th:text="${permission.key()}">KEY</div>
-                                        </li>
-                                    </ul>
-                                    <div class="text-muted" th:unless="${selectedRoleTemplate.hasPermissions()}">아직 연결된 권한이 없습니다.</div>
+                                    <div class="fw-semibold" th:text="${role.displayName()}">권한 이름</div>
+                                    <div class="text-muted small" th:text="${role.code()}">ROLE_CODE</div>
                                 </div>
+                                <i class="bi bi-arrow-right-short"></i>
+                            </a>
+                        </div>
+                    </section>
+                    <section class="role-manage-column role-manage-column--detail">
+                        <div th:if="${selectedRoleTemplate == null}" class="role-manage-empty">
+                            왼쪽 목록에서 편집할 권한을 선택하세요.
+                        </div>
+                        <div th:if="${selectedRoleTemplate != null}" class="role-manage-detail">
+                            <header class="role-manage-detail__header">
                                 <div>
-                                    <h3 class="h6 mb-2">권한 편집</h3>
-                                    <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
-                                        선택 가능한 권한 목록이 없어 편집할 수 없습니다.
-                                    </div>
-                                    <form th:if="${!#lists.isEmpty(permissionOptions)}"
-                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/permissions|}"
-                                          method="post" class="role-editor-form">
-                                        <div class="permission-grid">
-                                            <label class="form-check permission-option" th:each="option : ${permissionOptions}">
-                                                <input class="form-check-input" type="checkbox" name="permissions"
-                                                       th:value="${option.key()}"
-                                                       th:checked="${selectedRoleTemplate.hasPermission(option.key())}">
-                                                <div>
-                                                    <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
-                                                    <small class="text-muted" th:text="${option.key()}">KEY</small>
-                                                </div>
-                                            </label>
-                                        </div>
-                                        <div class="d-flex justify-content-end mt-3">
-                                            <button type="submit" class="btn btn-primary btn-sm">권한 저장</button>
-                                        </div>
-                                    </form>
+                                    <div class="role-manage-eyebrow">선택한 권한</div>
+                                    <h3 class="h4 mb-1" th:text="${selectedRoleTemplate.displayName()}">권한 이름</h3>
+                                    <p class="text-muted mb-2" th:text="${selectedRoleTemplate.description()}">권한 설명</p>
+                                    <span class="role-manage-code" th:text="${selectedRoleTemplate.code()}">ROLE_CODE</span>
                                 </div>
-                                <div>
-                                    <form th:if="${!selectedRoleTemplate.builtin()}"
-                                          th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/delete|}"
-                                          method="post"
-                                          onsubmit="return confirm('정말 이 역할을 삭제하시겠습니까? 되돌릴 수 없습니다.');">
-                                        <button type="submit" class="btn btn-outline-danger btn-sm">역할 삭제</button>
-                                    </form>
-                                    <div class="alert alert-light border" th:if="${selectedRoleTemplate.builtin()}">
-                                        시스템 내장 역할은 삭제할 수 없습니다.
+                                <span class="badge bg-secondary-subtle text-dark align-self-start" th:if="${selectedRoleTemplate.builtin()}">시스템 내장</span>
+                            </header>
+                            <section>
+                                <div class="role-manage-eyebrow mb-2">권한</div>
+                                <div class="role-permission-chips" th:if="${selectedRoleTemplate.hasPermissions()}">
+                                    <span class="role-permission-chip" th:each="permission : ${selectedRoleTemplate.permissions()}">
+                                        <span class="role-permission-chip__label" th:text="${permission.label()}">권한</span>
+                                        <span class="role-permission-chip__key" th:text="${permission.key()}">KEY</span>
+                                    </span>
+                                </div>
+                                <div class="text-muted small" th:unless="${selectedRoleTemplate.hasPermissions()}">아직 연결된 권한이 없습니다.</div>
+                            </section>
+                            <section>
+                                <div class="role-manage-eyebrow mb-2">권한 편집</div>
+                                <div class="alert alert-light border" th:if="${#lists.isEmpty(permissionOptions)}">
+                                    선택 가능한 권한 목록이 없어 편집할 수 없습니다.
+                                </div>
+                                <form th:if="${!#lists.isEmpty(permissionOptions)}"
+                                      th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/permissions|}"
+                                      method="post" class="role-editor-form">
+                                    <div class="permission-grid">
+                                        <label class="form-check permission-option" th:each="option : ${permissionOptions}">
+                                            <input class="form-check-input" type="checkbox" name="permissions"
+                                                   th:value="${option.key()}"
+                                                   th:checked="${selectedRoleTemplate.hasPermission(option.key())}">
+                                            <div>
+                                                <div class="fw-semibold" th:text="${option.label()}">권한 이름</div>
+                                                <small class="text-muted" th:text="${option.key()}">KEY</small>
+                                            </div>
+                                        </label>
+                                    </div>
+                                    <div class="d-flex justify-content-end mt-3">
+                                        <button type="submit" class="btn btn-primary btn-sm">권한 저장</button>
                                     </div>
+                                </form>
+                            </section>
+                            <section>
+                                <form th:if="${!selectedRoleTemplate.builtin()}"
+                                      th:action="@{|/admin/roles/${selectedRoleTemplate.code()}/delete|}"
+                                      method="post"
+                                      onsubmit="return confirm('정말 이 권한을 삭제하시겠습니까? 되돌릴 수 없습니다.');">
+                                    <button type="submit" class="btn btn-outline-danger btn-sm">권한 삭제</button>
+                                </form>
+                                <div class="alert alert-light border" th:if="${selectedRoleTemplate.builtin()}">
+                                    시스템 내장 권한은 삭제할 수 없습니다.
                                 </div>
-                            </div>
+                            </section>
                         </div>
-                    </div>
+                    </section>
                 </div>
             </div>
         </div>
     </div>
-    <div class="modal fade" id="rolePermissionModal" tabindex="-1" aria-hidden="true">
-        <div class="modal-dialog modal-lg modal-dialog-centered modal-dialog-scrollable">
-            <div class="modal-content role-permission-modal">
-                <div class="modal-header">
-                    <div>
-                        <div class="role-permission-modal__eyebrow">역할 권한</div>
-                        <h5 class="modal-title" data-role-modal-title>역할 이름</h5>
-                        <p class="role-permission-modal__description mb-0 text-muted" data-role-modal-description>역할 설명</p>
-                    </div>
-                    <button type="button" class="btn-close" data-bs-dismiss="modal" data-role-modal-dismiss aria-label="닫기"></button>
-                </div>
-                <div class="modal-body">
-                    <div data-role-modal-permissions>
-                        <div class="permission-modal-empty">권한 정보를 불러오는 중입니다.</div>
-                    </div>
-                </div>
-            </div>
-        </div>
-    </div>
-
-    <script>
-        (function () {
-            const modalElement = document.getElementById('rolePermissionModal');
-            if (!modalElement) {
-                return;
-            }
-
-            const titleElement = modalElement.querySelector('[data-role-modal-title]');
-            const descriptionElement = modalElement.querySelector('[data-role-modal-description]');
-            const permissionsContainer = modalElement.querySelector('[data-role-modal-permissions]');
-            const bodyElement = document.body;
-            let storedOverflow = '';
-
-            function openModal() {
-                if (window.bootstrap && window.bootstrap.Modal) {
-                    window.bootstrap.Modal.getOrCreateInstance(modalElement).show();
-                    return;
-                }
-
-                storedOverflow = bodyElement.style.overflow;
-                modalElement.classList.add('show');
-                modalElement.style.display = 'block';
-                modalElement.removeAttribute('aria-hidden');
-                modalElement.setAttribute('aria-modal', 'true');
-                bodyElement.classList.add('modal-open');
-                bodyElement.style.overflow = 'hidden';
-            }
-
-            function closeModal() {
-                if (window.bootstrap && window.bootstrap.Modal) {
-                    const instance = window.bootstrap.Modal.getInstance(modalElement);
-                    if (instance) {
-                        instance.hide();
-                    }
-                    return;
-                }
-
-                modalElement.classList.remove('show');
-                modalElement.style.display = 'none';
-                modalElement.setAttribute('aria-hidden', 'true');
-                modalElement.removeAttribute('aria-modal');
-                bodyElement.classList.remove('modal-open');
-                bodyElement.style.overflow = storedOverflow || '';
-            }
-
-            modalElement.addEventListener('click', function (event) {
-                if (event.target.closest('[data-role-modal-dismiss]')) {
-                    event.preventDefault();
-                    closeModal();
-                    return;
-                }
-
-                if (!window.bootstrap && event.target === modalElement) {
-                    closeModal();
-                }
-            });
-
-            document.addEventListener('click', function (event) {
-                const trigger = event.target.closest('[data-role-modal-trigger]');
-                if (!trigger) {
-                    return;
-                }
-                event.preventDefault();
-
-                const templateId = trigger.getAttribute('data-role-permission-template');
-                const template = templateId ? document.getElementById(templateId) : null;
-
-                permissionsContainer.innerHTML = '';
-                if (template && template.content) {
-                    permissionsContainer.appendChild(template.content.cloneNode(true));
-                } else {
-                    const fallback = document.createElement('div');
-                    fallback.className = 'permission-modal-empty';
-                    fallback.textContent = '권한 정보를 불러오지 못했습니다.';
-                    permissionsContainer.appendChild(fallback);
-                }
-
-                const roleLabel = trigger.getAttribute('data-role-label') || '역할 권한';
-                const roleDescription = trigger.getAttribute('data-role-description') || '';
-                const roleCode = trigger.getAttribute('data-role-code') || '';
-
-                titleElement.textContent = roleLabel;
-                const subtitle = roleDescription.trim() || roleCode;
-                descriptionElement.textContent = subtitle || '';
-                descriptionElement.hidden = !subtitle;
-
-                openModal();
-            });
-        })();
-    </script>
+    <th:block th:replace="~{fragments/role-permission-modal :: role-permission-modal}"></th:block>
 </th:block>
 </html>
diff --git a/src/main/resources/templates/admin-role/team-member-edit.html b/src/main/resources/templates/admin-role/team-member-edit.html
new file mode 100644
index 0000000..c6e2584
--- /dev/null
+++ b/src/main/resources/templates/admin-role/team-member-edit.html
@@ -0,0 +1,121 @@
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org"
+      th:replace="~{layout/base :: layout(${pageTitle}, ${activeMenu}, ${breadcrumbs}, ~{::content})}">
+<th:block th:fragment="content">
+    <div class="role-page-header d-flex flex-wrap justify-content-between align-items-center gap-3 mb-4">
+        <div>
+            <h1 class="h3 mb-1 fw-semibold" th:text="${teamMember.nickname()} + ' 권한 편집'">권한 편집</h1>
+        </div>
+        <div class="text-end text-muted small">
+            <div class="fw-semibold">현재 이메일</div>
+            <div th:text="${teamMember.email()}">email@example.com</div>
+        </div>
+    </div>
+
+    <div class="alert d-flex align-items-center mb-4"
+         th:if="${flashMessage != null}"
+         th:classappend="${flashStatus} == 'success' ? ' alert-success' : ' alert-danger'">
+        <i class="bi"
+           th:classappend="${flashStatus} == 'success' ? ' bi-check-circle-fill me-2' : ' bi-exclamation-triangle-fill me-2'"></i>
+        <span th:text="${flashMessage}">알림</span>
+    </div>
+
+    <div class="mb-4">
+        <a class="btn btn-link px-0" th:href="@{/admin/roles(tab='team')}">
+            <i class="bi bi-arrow-left-short"></i> 팀원들의 권한 목록으로 돌아가기
+        </a>
+    </div>
+
+    <div class="card card-elevated mb-4">
+        <div class="card-body card-body-comfy">
+            <div class="d-flex flex-wrap justify-content-between align-items-start gap-3 mb-4">
+                <div class="d-flex align-items-start gap-3">
+                    <div class="team-role-card__avatar">
+                        <span th:text="${teamMember.initials()}">팀</span>
+                    </div>
+                    <div>
+                        <div class="d-flex align-items-center gap-2">
+                            <h2 class="h4 mb-0" th:text="${teamMember.nickname()}">운영자</h2>
+                            <span class="badge bg-warning-subtle text-dark" th:if="${teamMember.superAdmin()}">SUPER</span>
+                        </div>
+                        <div class="text-muted" th:text="${teamMember.email()}">email@example.com</div>
+                    </div>
+                </div>
+                <div class="text-end">
+                    <div class="text-muted small">보유 권한</div>
+                    <div class="fw-semibold" th:text="${#lists.size(teamMember.roles())} + '개'"></div>
+                </div>
+            </div>
+            <div>
+                <div class="role-token-grid" th:if="${!#lists.isEmpty(teamMemberRoleGroups)}">
+                    <th:block th:each="group, iterStat : ${teamMemberRoleGroups}">
+                        <th:block th:with="templateId=${'permission-template-edit-' + teamMember.id() + '-' + group.role().code() + '-' + iterStat.index}">
+                            <button type="button"
+                                    class="role-token-button"
+                                    data-role-modal-trigger="true"
+                                    th:data-role-code="${group.role().code()}"
+                                    th:data-role-label="${group.role().label()}"
+                                    th:data-role-description="${group.role().description()}"
+                                    th:data-role-permission-template="${templateId}"
+                                    th:attr="aria-label=|${group.role().label()} 권한 보기|">
+                                <span class="fw-semibold" th:text="${group.role().label()}">권한 이름</span>
+                            </button>
+                            <template th:id="${templateId}">
+                                <div data-permission-entry
+                                     th:each="permission : ${group.permissions()}"
+                                     th:data-permission-label="${permission.label()}"
+                                     th:data-permission-key="${permission.key()}">
+                                </div>
+                            </template>
+                        </th:block>
+                    </th:block>
+                </div>
+                <div class="role-token-grid" th:if="${#lists.isEmpty(teamMemberRoleGroups) && !#lists.isEmpty(teamMember.roles())}">
+                    <span class="role-token" th:each="role : ${teamMember.roles()}" th:text="${role.label()}">팀 멤버</span>
+                </div>
+                <div class="text-muted" th:if="${#lists.isEmpty(teamMember.roles())}">
+                    부여된 권한이 없습니다.
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <div class="card card-elevated">
+        <div class="card-body card-body-comfy">
+            <div class="d-flex flex-wrap justify-content-between align-items-center gap-3 mb-3">
+                <div>
+                    <h2 class="h5 mb-1">권한 편집</h2>
+                    <div class="text-muted small">체크박스를 선택해 권한을 부여하거나 해제하세요.</div>
+                </div>
+                <span class="badge bg-light text-dark" th:text="${teamMember.nickname()} + '님의 설정'">팀원 설정</span>
+            </div>
+            <div class="alert alert-warning" th:if="${roleTemplatesLoadError != null}" th:text="${roleTemplatesLoadError}">로드 오류</div>
+            <div th:if="${teamRoleEditorAvailable}">
+                <form th:action="@{|/admin/roles/team-members/${teamMember.id()}/roles|}" method="post" class="role-editor-form">
+                    <div class="permission-grid" th:if="${!#lists.isEmpty(assignableRoles)}">
+                        <label class="form-check role-option" th:each="role : ${assignableRoles}">
+                            <input class="form-check-input" type="checkbox" name="roleCodes"
+                                   th:value="${role.code()}" th:checked="${teamMember.hasRole(role.code())}">
+                            <div>
+                                <div class="fw-semibold" th:text="${role.label()}">권한 이름</div>
+                                <small class="text-muted" th:if="${role.hasDescription()}" th:text="${role.description()}">설명</small>
+                                <small class="text-muted" th:unless="${role.hasDescription()}" th:text="${role.code()}">CODE</small>
+                            </div>
+                        </label>
+                    </div>
+                    <div class="d-flex justify-content-between align-items-center mt-3">
+                        <div class="text-muted small">체크 변경 즉시 저장 버튼을 눌러 반영합니다.</div>
+                        <button type="submit" class="btn btn-primary btn-sm">변경 사항 저장</button>
+                    </div>
+                </form>
+            </div>
+            <div class="alert alert-light border" th:if="${!teamRoleEditorAvailable}">
+                <div th:if="${!canManageRoles}">권한 편집 권한이 없어 구성을 변경할 수 없습니다.</div>
+                <div th:if="${canManageRoles && #lists.isEmpty(assignableRoles)}">편집 가능한 권한 템플릿이 없습니다.</div>
+            </div>
+        </div>
+    </div>
+
+    <th:block th:replace="~{fragments/role-permission-modal :: role-permission-modal}"></th:block>
+</th:block>
+</html>
diff --git a/src/main/resources/templates/fragments/_sidebar.html b/src/main/resources/templates/fragments/_sidebar.html
index 7d89edf..d65cefc 100644
--- a/src/main/resources/templates/fragments/_sidebar.html
+++ b/src/main/resources/templates/fragments/_sidebar.html
@@ -39,7 +39,7 @@
             <a th:href="@{/admin/roles}" class="app-sidebar__link"
                th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
                 <i class="bi bi-shield-lock"></i>
-                <span>역할과 권한</span>
+                <span>운영 권한</span>
             </a>
             <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                   data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
@@ -97,7 +97,7 @@ <h5 class="offcanvas-title mb-0">새록 어드민</h5>
                 <a th:href="@{/admin/roles}" class="app-sidebar__link"
                    th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
                     <i class="bi bi-shield-lock"></i>
-                    <span>역할과 권한</span>
+                    <span>운영 권한</span>
                 </a>
                 <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                       data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
diff --git a/src/main/resources/templates/fragments/role-permission-modal.html b/src/main/resources/templates/fragments/role-permission-modal.html
new file mode 100644
index 0000000..8b77c79
--- /dev/null
+++ b/src/main/resources/templates/fragments/role-permission-modal.html
@@ -0,0 +1,244 @@
+<!DOCTYPE html>
+<html lang="ko" xmlns:th="http://www.thymeleaf.org">
+<th:block th:fragment="role-permission-modal">
+    <div class="modal fade" id="rolePermissionModal" tabindex="-1" aria-hidden="true">
+        <div class="modal-dialog role-permission-modal__dialog modal-dialog-centered">
+            <div class="modal-content role-permission-modal">
+                <div class="modal-header">
+                    <div>
+                        <div class="role-permission-modal__eyebrow">권한</div>
+                        <h5 class="modal-title" data-role-modal-title>권한 이름</h5>
+                        <p class="role-permission-modal__description mb-0 text-muted" data-role-modal-description>권한 설명</p>
+                    </div>
+                    <button type="button" class="btn-close" data-bs-dismiss="modal" data-role-modal-dismiss aria-label="닫기"></button>
+                </div>
+                <div class="modal-body">
+                    <div data-role-modal-permissions>
+                        <div class="permission-modal-empty">권한 정보를 불러오는 중입니다.</div>
+                    </div>
+                </div>
+            </div>
+        </div>
+    </div>
+
+    <script>
+        (function () {
+            const modalElement = document.getElementById('rolePermissionModal');
+            if (!modalElement) {
+                return;
+            }
+
+            const titleElement = modalElement.querySelector('[data-role-modal-title]');
+            const descriptionElement = modalElement.querySelector('[data-role-modal-description]');
+            const permissionsContainer = modalElement.querySelector('[data-role-modal-permissions]');
+            const bodyElement = document.body;
+            let storedOverflow = '';
+
+            function renderPermissionContent(entries) {
+                permissionsContainer.innerHTML = '';
+
+                if (!entries.length) {
+                    const fallback = document.createElement('div');
+                    fallback.className = 'permission-modal-empty';
+                    fallback.textContent = '이 권한의 세부 사항을 불러오지 못했습니다.';
+                    permissionsContainer.appendChild(fallback);
+                    return;
+                }
+
+                let index = 0;
+                const carousel = document.createElement('div');
+                carousel.className = 'permission-carousel';
+
+                const viewport = document.createElement('div');
+                viewport.className = 'permission-carousel__viewport';
+
+                const slide = document.createElement('div');
+                slide.className = 'permission-carousel__slide';
+
+                const labelEl = document.createElement('div');
+                labelEl.className = 'permission-carousel__label';
+
+                const keyEl = document.createElement('div');
+                keyEl.className = 'permission-carousel__key';
+
+                slide.appendChild(labelEl);
+                slide.appendChild(keyEl);
+                viewport.appendChild(slide);
+
+                const controls = document.createElement('div');
+                controls.className = 'permission-carousel__controls';
+
+                const prevButton = document.createElement('button');
+                prevButton.type = 'button';
+                prevButton.className = 'permission-carousel__nav';
+                prevButton.setAttribute('aria-label', '이전 권한');
+                prevButton.innerHTML = '<i class="bi bi-chevron-left"></i>';
+
+                const counter = document.createElement('div');
+                counter.className = 'permission-carousel__counter';
+
+                const nextButton = document.createElement('button');
+                nextButton.type = 'button';
+                nextButton.className = 'permission-carousel__nav';
+                nextButton.setAttribute('aria-label', '다음 권한');
+                nextButton.innerHTML = '<i class="bi bi-chevron-right"></i>';
+
+                controls.appendChild(prevButton);
+                controls.appendChild(counter);
+                controls.appendChild(nextButton);
+
+                carousel.appendChild(viewport);
+                carousel.appendChild(controls);
+                permissionsContainer.appendChild(carousel);
+
+                function updateSlide() {
+                    const current = entries[index] || { label: '', key: '' };
+                    labelEl.textContent = current.label || '권한 정보';
+                    keyEl.textContent = current.key || '-';
+                    counter.textContent = (index + 1) + ' / ' + entries.length;
+                    prevButton.disabled = index === 0;
+                    nextButton.disabled = index === entries.length - 1;
+                }
+
+                prevButton.addEventListener('click', function () {
+                    if (index === 0) {
+                        return;
+                    }
+                    index -= 1;
+                    updateSlide();
+                });
+
+                nextButton.addEventListener('click', function () {
+                    if (index >= entries.length - 1) {
+                        return;
+                    }
+                    index += 1;
+                    updateSlide();
+                });
+
+                function attachSwipeHandlers(target) {
+                    let touchStartX = 0;
+                    let swiping = false;
+                    const swipeThreshold = 40;
+
+                    target.addEventListener('touchstart', function (event) {
+                        if (!event.touches || !event.touches.length) {
+                            return;
+                        }
+                        touchStartX = event.touches[0].clientX;
+                        swiping = true;
+                    }, { passive: true });
+
+                    target.addEventListener('touchmove', function (event) {
+                        if (!swiping || !event.touches || !event.touches.length) {
+                            return;
+                        }
+
+                        const deltaX = event.touches[0].clientX - touchStartX;
+                        if (Math.abs(deltaX) < swipeThreshold) {
+                            return;
+                        }
+
+                        swiping = false;
+                        if (deltaX < 0) {
+                            nextButton.click();
+                        } else {
+                            prevButton.click();
+                        }
+                    }, { passive: true });
+
+                    target.addEventListener('touchend', function () {
+                        swiping = false;
+                    });
+
+                    target.addEventListener('touchcancel', function () {
+                        swiping = false;
+                    });
+                }
+
+                attachSwipeHandlers(viewport);
+
+                updateSlide();
+            }
+
+            function openModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    window.bootstrap.Modal.getOrCreateInstance(modalElement).show();
+                    return;
+                }
+
+                storedOverflow = bodyElement.style.overflow;
+                modalElement.classList.add('show');
+                modalElement.style.display = 'block';
+                modalElement.removeAttribute('aria-hidden');
+                modalElement.setAttribute('aria-modal', 'true');
+                bodyElement.classList.add('modal-open');
+                bodyElement.style.overflow = 'hidden';
+            }
+
+            function closeModal() {
+                if (window.bootstrap && window.bootstrap.Modal) {
+                    const instance = window.bootstrap.Modal.getInstance(modalElement);
+                    if (instance) {
+                        instance.hide();
+                    }
+                    return;
+                }
+
+                modalElement.classList.remove('show');
+                modalElement.style.display = 'none';
+                modalElement.setAttribute('aria-hidden', 'true');
+                modalElement.removeAttribute('aria-modal');
+                bodyElement.classList.remove('modal-open');
+                bodyElement.style.overflow = storedOverflow || '';
+            }
+
+            modalElement.addEventListener('click', function (event) {
+                if (event.target.closest('[data-role-modal-dismiss]')) {
+                    event.preventDefault();
+                    closeModal();
+                    return;
+                }
+
+                if (!window.bootstrap && event.target === modalElement) {
+                    closeModal();
+                }
+            });
+
+            document.addEventListener('click', function (event) {
+                const trigger = event.target.closest('[data-role-modal-trigger]');
+                if (!trigger) {
+                    return;
+                }
+                event.preventDefault();
+
+                const templateId = trigger.getAttribute('data-role-permission-template');
+                const template = templateId ? document.getElementById(templateId) : null;
+                const entries = [];
+
+                if (template && template.content) {
+                    template.content.querySelectorAll('[data-permission-entry]').forEach(function (node) {
+                        entries.push({
+                            label: node.getAttribute('data-permission-label') || '',
+                            key: node.getAttribute('data-permission-key') || ''
+                        });
+                    });
+                }
+
+                renderPermissionContent(entries);
+
+                const roleLabel = trigger.getAttribute('data-role-label') || '권한 세부 사항';
+                const roleDescription = trigger.getAttribute('data-role-description') || '';
+                const roleCode = trigger.getAttribute('data-role-code') || '';
+
+                titleElement.textContent = roleLabel;
+                const subtitle = roleDescription.trim() || roleCode;
+                descriptionElement.textContent = subtitle || '';
+                descriptionElement.hidden = !subtitle;
+
+                openModal();
+            });
+        })();
+    </script>
+</th:block>
+</html>

From df2984780f6e1ec44c12165c8a440d06d9bda065 Mon Sep 17 00:00:00 2001
From: soonduck-dreams <nederileni99heits@gmail.com>
Date: Mon, 17 Nov 2025 22:46:08 +0900
Subject: [PATCH 5/6] =?UTF-8?q?chore:=20=EB=B9=8C=ED=8A=B8=EC=9D=B8=20?=
 =?UTF-8?q?=ED=8D=BC=EB=AF=B8=EC=85=98=20=EC=B9=B4=ED=83=88=EB=A1=9C?=
 =?UTF-8?q?=EA=B7=B8=20=EC=B6=94=EA=B0=80=20=EB=B0=8F=20=EC=A4=91=EB=B3=B5?=
 =?UTF-8?q?=20=EC=B2=98=EB=A6=AC=20=EB=A1=9C=EC=A7=81=20=EA=B0=9C=EC=84=A0?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../web/RoleManagementController.java         |  9 +++---
 .../web/view/role/PermissionCatalog.java      | 32 +++++++++++++++++++
 2 files changed, 37 insertions(+), 4 deletions(-)
 create mode 100644 src/main/java/apu/saerok_admin/web/view/role/PermissionCatalog.java

diff --git a/src/main/java/apu/saerok_admin/web/RoleManagementController.java b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
index 2c42d65..c0e1b59 100644
--- a/src/main/java/apu/saerok_admin/web/RoleManagementController.java
+++ b/src/main/java/apu/saerok_admin/web/RoleManagementController.java
@@ -13,6 +13,7 @@
 import apu.saerok_admin.infra.role.dto.UpdateRolePermissionsRequest;
 import apu.saerok_admin.web.view.Breadcrumb;
 import apu.saerok_admin.web.view.CurrentAdminProfile;
+import apu.saerok_admin.web.view.role.PermissionCatalog;
 import apu.saerok_admin.web.view.role.PermissionOptionView;
 import apu.saerok_admin.web.view.role.PermissionView;
 import apu.saerok_admin.web.view.role.RoleDisplay;
@@ -566,15 +567,15 @@ private TeamMemberView toTeamMemberView(AdminUserRoleResponse response) {
     }
 
     private List<PermissionOptionView> buildPermissionOptions(List<RoleTemplateView> templates) {
-        if (templates.isEmpty()) {
-            return List.of();
-        }
         Map<String, PermissionOptionView> deduplicated = new LinkedHashMap<>();
         for (RoleTemplateView template : templates) {
             for (PermissionView permission : template.permissions()) {
-                deduplicated.putIfAbsent(permission.key(), new PermissionOptionView(permission.key(), permission.description()));
+                deduplicated.put(permission.key(), new PermissionOptionView(permission.key(), permission.description()));
             }
         }
+        for (PermissionOptionView builtin : PermissionCatalog.builtinPermissions()) {
+            deduplicated.putIfAbsent(builtin.key(), builtin);
+        }
         Comparator<PermissionOptionView> comparator = Comparator
                 .comparing(PermissionOptionView::label, String.CASE_INSENSITIVE_ORDER)
                 .thenComparing(PermissionOptionView::key, String.CASE_INSENSITIVE_ORDER);
diff --git a/src/main/java/apu/saerok_admin/web/view/role/PermissionCatalog.java b/src/main/java/apu/saerok_admin/web/view/role/PermissionCatalog.java
new file mode 100644
index 0000000..bb35e36
--- /dev/null
+++ b/src/main/java/apu/saerok_admin/web/view/role/PermissionCatalog.java
@@ -0,0 +1,32 @@
+package apu.saerok_admin.web.view.role;
+
+import java.util.List;
+
+public final class PermissionCatalog {
+
+    private static final List<PermissionOptionView> BUILTIN_PERMISSIONS = List.of(
+            option("ADMIN_LOGIN", "어드민에 로그인"),
+            option("ADMIN_REPORT_READ", "신고된 콘텐츠 내용 조회"),
+            option("ADMIN_REPORT_WRITE", "신고된 콘텐츠에 대한 모든 조치"),
+            option("ADMIN_AUDIT_READ", "관리자 활동 로그 조회"),
+            option("ADMIN_STAT_READ", "서비스 통계 조회"),
+            option("ADMIN_STAT_WRITE", "서비스 통계 수동 집계"),
+            option("ADMIN_AD_READ", "광고, 광고 위치, 광고 스케줄 조회"),
+            option("ADMIN_AD_WRITE", "광고, 광고 위치, 광고 스케줄 생성/수정/삭제 (단, 광고 위치 삭제는 불가)"),
+            option("ADMIN_SLOT_DELETE", "광고 위치 삭제"),
+            option("ADMIN_ROLE_MY_READ", "로그인한 관리자의 역할/권한 조회"),
+            option("ADMIN_ROLE_READ", "모든 관리자(TEAM_MEMBER 기준)의 역할과 권한 조회"),
+            option("ADMIN_ROLE_WRITE", "역할 생성/삭제, 권한 편집 및 사용자 역할 부여/회수")
+    );
+
+    private PermissionCatalog() {
+    }
+
+    public static List<PermissionOptionView> builtinPermissions() {
+        return BUILTIN_PERMISSIONS;
+    }
+
+    private static PermissionOptionView option(String key, String description) {
+        return new PermissionOptionView(key, description);
+    }
+}

From e1803c5ad5bbd94656c6dc2edd34f25d39a7c0ac Mon Sep 17 00:00:00 2001
From: Junhee Han <115782193+soonduck-dreams@users.noreply.github.com>
Date: Mon, 17 Nov 2025 22:51:50 +0900
Subject: [PATCH 6/6] Move role management link to bottom of sidebar (#59)

---
 .../templates/fragments/_sidebar.html         | 20 +++++++++----------
 1 file changed, 10 insertions(+), 10 deletions(-)

diff --git a/src/main/resources/templates/fragments/_sidebar.html b/src/main/resources/templates/fragments/_sidebar.html
index d65cefc..1649ec3 100644
--- a/src/main/resources/templates/fragments/_sidebar.html
+++ b/src/main/resources/templates/fragments/_sidebar.html
@@ -36,11 +36,6 @@
                 <i class="bi bi-badge-ad"></i>
                 <span>광고 관리</span>
             </a>
-            <a th:href="@{/admin/roles}" class="app-sidebar__link"
-               th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
-                <i class="bi bi-shield-lock"></i>
-                <span>운영 권한</span>
-            </a>
             <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                   data-bs-toggle="tooltip" data-bs-placement="right" data-bs-title="추후 제공 예정인 기능">
                 <i class="bi bi-megaphone"></i>
@@ -51,6 +46,11 @@
                 <i class="bi bi-clipboard-check"></i>
                 <span>관리자 활동 로그</span>
             </a>
+            <a th:href="@{/admin/roles}" class="app-sidebar__link"
+               th:classappend="${activeMenu}=='adminRoles' ? ' is-active'">
+                <i class="bi bi-shield-lock"></i>
+                <span>운영 권한</span>
+            </a>
         </nav>
         <div class="app-sidebar__footer">
             <div>버전 0.1.0</div>
@@ -94,11 +94,6 @@ <h5 class="offcanvas-title mb-0">새록 어드민</h5>
                     <i class="bi bi-badge-ad"></i>
                     <span>광고 관리</span>
                 </a>
-                <a th:href="@{/admin/roles}" class="app-sidebar__link"
-                   th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
-                    <i class="bi bi-shield-lock"></i>
-                    <span>운영 권한</span>
-                </a>
                 <span class="app-sidebar__link is-disabled upcoming-feature" role="button" tabindex="-1" aria-disabled="true"
                       data-bs-toggle="tooltip" data-bs-placement="bottom" data-bs-title="추후 제공 예정인 기능">
                     <i class="bi bi-megaphone"></i>
@@ -109,6 +104,11 @@ <h5 class="offcanvas-title mb-0">새록 어드민</h5>
                     <i class="bi bi-clipboard-check"></i>
                     <span>관리자 활동 로그</span>
                 </a>
+                <a th:href="@{/admin/roles}" class="app-sidebar__link"
+                   th:classappend="${activeMenu}=='adminRoles' ? ' is-active fw-semibold'">
+                    <i class="bi bi-shield-lock"></i>
+                    <span>운영 권한</span>
+                </a>
             </nav>
         </div>
     </div>