diff --git a/app/Http/Controllers/Finance/JournalEntryController.php b/app/Http/Controllers/Finance/JournalEntryController.php
index c8cb9d2c..3da24b19 100644
--- a/app/Http/Controllers/Finance/JournalEntryController.php
+++ b/app/Http/Controllers/Finance/JournalEntryController.php
@@ -333,10 +333,18 @@ public function update(Request $request, int $id): JsonResponse
}
/**
- * 전표 삭제 (soft delete)
+ * 전표 삭제 (soft delete) — 관리자 이상만 가능
*/
public function destroy(int $id): JsonResponse
{
+ $user = auth()->user();
+ if (! $user || ! $user->isAdmin()) {
+ return response()->json([
+ 'success' => false,
+ 'message' => '전표 삭제는 관리자만 가능합니다.',
+ ], 403);
+ }
+
$tenantId = session('selected_tenant_id', 1);
$entry = JournalEntry::forTenant($tenantId)->findOrFail($id);
$entry->delete();
diff --git a/resources/views/finance/journal-entries.blade.php b/resources/views/finance/journal-entries.blade.php
index 353f8d02..6812b5ab 100644
--- a/resources/views/finance/journal-entries.blade.php
+++ b/resources/views/finance/journal-entries.blade.php
@@ -16,6 +16,9 @@
@push('scripts')
@include('partials.react-cdn')
+
@verbatim