From be2b090ddc8a5a0029e745a3fb367a714b1e43a7 Mon Sep 17 00:00:00 2001
From: root <root@devAI.cassel>
Date: Sun, 8 Feb 2026 13:03:52 -0500
Subject: [PATCH] feat: login unificado BI-CCC com deteccao automatica de role

- Adiciona coluna 'role' na tabela agentes (agente|admin)
- Migra admins existentes para tabela agentes com role='admin'
- Unifica login em /login com redirect baseado em role
- Sessao unificada req.session.user com {id, email, nome, role, agente_id}
- Middleware requireRole() para proteger rotas por role
- Admin panel com selector de role ao criar/editar usuarios
- Atualiza branding para "BI - CCC" com logo CambioReal
- Redirects: /admin/login -> /login, /admin/logout -> /logout

Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>
---
 public/login.html     |   34 +-
 public/logo-small.png |  Bin 0 -> 4914 bytes
 server.js             |  240 ++++++-
 src/admin-auth.js     |   37 ++
 src/admin-home.js     |  433 +++++++++++++
 src/admin-panel.js    |  536 ++++++++++++++++
 src/auth.js           |   66 +-
 src/dashboard.js      | 1427 +++++++++++++++++++++++++++++++++++++++--
 src/db-local.js       |   33 +
 9 files changed, 2710 insertions(+), 96 deletions(-)
 create mode 100644 public/logo-small.png
 create mode 100644 src/admin-auth.js
 create mode 100644 src/admin-home.js
 create mode 100644 src/admin-panel.js

diff --git a/public/login.html b/public/login.html
index 1a5e3d9..9cbfa0f 100644
--- a/public/login.html
+++ b/public/login.html
@@ -3,7 +3,7 @@
 <head>
 <meta charset="UTF-8">
 <meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>BI Agentes — Login</title>
+<title>BI - CCC | CambioReal</title>
 <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap" rel="stylesheet">
 <style>
   :root {
@@ -45,24 +45,31 @@
     margin-bottom: 32px;
   }
   .login-header .logo {
-    width: 56px; height: 56px;
-    background: linear-gradient(135deg, var(--primary) 0%, var(--primary-dark) 100%);
-    border-radius: 14px;
-    display: flex; align-items: center; justify-content: center;
+    width: 80px; height: 80px;
     margin: 0 auto 16px;
-    font-size: 28px;
-    color: white;
+  }
+  .login-header .logo img {
+    width: 100%; height: 100%;
+    object-fit: contain;
   }
   .login-header h1 {
-    font-size: 22px;
+    font-size: 24px;
     font-weight: 800;
     color: var(--text);
     letter-spacing: -0.5px;
   }
+  .login-header .subtitle {
+    font-size: 12px;
+    color: var(--primary);
+    margin-top: 4px;
+    font-weight: 600;
+    text-transform: uppercase;
+    letter-spacing: 1px;
+  }
   .login-header p {
     font-size: 13px;
     color: var(--text-secondary);
-    margin-top: 6px;
+    margin-top: 8px;
   }
   .form-group {
     margin-bottom: 20px;
@@ -134,15 +141,16 @@
   <div class="login-container">
     <div class="login-card">
       <div class="login-header">
-        <div class="logo">&#x2194;</div>
-        <h1>BI Agentes</h1>
-        <p>CambioReal &mdash; Dashboard de Transacoes</p>
+        <div class="logo"><img src="/public/logo-small.png" alt="CambioReal"></div>
+        <h1>BI - CCC</h1>
+        <div class="subtitle">Central Command Center</div>
+        <p>Acesso unificado para agentes e admins</p>
       </div>
       <div class="error-msg" id="errorMsg"></div>
       <form id="loginForm" method="POST" action="/login">
         <div class="form-group">
           <label>E-mail</label>
-          <input type="email" name="email" id="email" required placeholder="agente@email.com" autocomplete="email">
+          <input type="email" name="email" id="email" required placeholder="seu@email.com" autocomplete="email">
         </div>
         <div class="form-group">
           <label>Senha</label>
diff --git a/public/logo-small.png b/public/logo-small.png
new file mode 100644
index 0000000000000000000000000000000000000000..79f6b47e52436c134841599abdda62bbf39d0973
GIT binary patch
literal 4914
zcmX|_XE+=D_r|Tp3b9J<4y)9v*n~7n?NLSTRibKDt)R74DzsXoMo8@1t(vjdV>Z-C
ztrCr`h+XU7=YRdK=f!<K_c_=7;``=%UYrCIBON9N9tH{u3MSnLT4sM)`&WW=fWOs<
zb4BnkDE-ZJ?om{Z@U8uAf}dFFx)~Z$i2wC;6f~4P6j%O@{1t?f_dl;qDMms4|8pt|
zig*tSn*U{t{_<aY=il-lsq-lRm;O7;qxvshn@9bh|MwvjG)7^>zo7Sh@YtV%Lh9DP
zq6{w72&AB3d#I}gH4moT%BKJDsOMwEMnD^YhUPwWRBVB&;W~0j$SnnK3mC?-^C!NK
ziA>;KXOVZCFzA#O>Sfmvl}g~@uh()XCdR$*7LK{o&EgA1=~Ky4QAw3t7aEv6{~h+T
zrM_u96h}MPZfaC?>ECJ@P_{lvo^p6K(Xt(oeh<aRokA{QLDa|jK424fNik6oq3{2+
zj0flQb>@4*GU{#UJd0w?3YRB;4|+4<ws^#@hRVnawIJf^l0V$rE0!U4Wx`68`x&jO
zC52wy$cTLBV5GDXXJVb}9z;9GLl6Puz40qC1wJ+<wiXP9{+dgL(WBX4TGQ@5go_|O
z?H|*pO2^?}xYV2au<sG(5^Slb-5ah8%~UX@mJMRo48F0Z^1wz0*?j4A_w-sCc9n>O
ze`1d`>SSi8!_QVt%-o$NIi~6VL^LhMOnG=<e;wkfFEqB_sw_bprT(z#>91qH0V~**
zZv7n7*4rNlUV3_zy=*?M-ZbCDkwPMwsE{*F5O-VT&mT+=z9`_9@G@}-xNvi56w7fH
zwn_G5c|2Wrtek0NIIMce-x=DB?|=8<Toj+-6UF7EAKQ1U=u2yNg^FDApC|K4<NWY_
zscR<iu)q*L9j3G2#mZdo(aP4quPHHgEAR2<BxNP!zKBo#vzXKf9l>gaTEpI#BS=6f
zf(}+wiM~-jIJ3s;t5a6R<YbCjltex4_It!EGA~`_E5BG)&2|B__jz;otx>qxHo>?V
z-?1eYN{v%&(}88D^eHOhx%mJsyykhPCHe<V3}H#g_xk%@?0qlAHmz1W2FT2q1N?J1
zL`GGv*&s{JqP%nO;#TOiL~LiG>$z;kiedKG@2(X&WI-jAp5N8M;+;5G4|sE<GI;yp
zXd>&^uTr(@hV#1*>qfFzueJ%U7AD1F95Xiz?n}qJFWSg3)!pys$T%n;@OXy(B1L3f
zI7h%m1N3|H2ZyUIqmj=%C2=&MjvN_w@Mir(Vi?zHwLmNw)pMt&nVEknHYCT?IxJL7
zQX&l^QL9oCxM=tqpqi0+B;t3%Xx`16Vz+b9?75E2EqElE2zJ?nWaH_5Wj7f{88_59
z)H865FKJ$Rk$I?_sEi`7_}+TP<mconP|~D;>b>pSXBgD67$e$Y-oQ55t{}|p8rBl8
zS>EZ@V)1lLtpqIpHD)qLg+U~hp%elUPaW40wRHu|n^q3WqE2oe^Q|Tvu%R(-k&N0T
z8@Fo>!k0W3(^`f0fT>7<=bky96LzL*)@K6q6hRs}eJs9gEf?Z<VrLw)Qtqx0L-xu1
z6Swq+Yr3AS*i}AX3gI~t_QGtYePEa>B^3#V@az(wpr=XgOFbu!c5(~%GC*JNCdZs&
z+;$6lvVkaj=@H+tdPbvZy%PB(NI}TtBhVY@)sR=OR<9I!noE$CpnsM-_Hd+U4xnY$
z5<87<&mP2`jV_dzxKGppqP!%PU$+_r;i$PiDVd-DIq~3e{Xs*P^2o?Pw>VVTvCy{U
zW6MSUJgXJ0W61bAs-V{HXLpI{%HZxyD>y~KmEaKIZd>ycLK~86^z6M^?+c&h2fiG8
z6W%Y-`5(7h1sSU>AB}NNBm5!WRp3yExkJE_h9G;XtNaletx}fM&@w$1FNfNZ%ex^J
z^$n)(BGPDwM9#;Kt1nOxxB{u`P1Q&59WxDGVY)p4)e?!+4xxuXi0_Qd>oZgQ)<L~+
z^RAc1PAg`?wG{~J1Xfodh`(BB=Rq*dROQ~sJ7PGh`^rg-emBl|??hsO#7;;n`ymxm
zch4?uwRD`PqYH6#**KOe$scGSRlp=#Ny*tq%JABgAqb8)16;z_;R;GVQXGXes?nrF
zz>1r(Z%t<L4b@iB1wShW-mAc-5Kd4`m2)<=I=e(nOYm*Q)>o?zo8>&S4wBlVd9oLc
zR@$G&T};UPZ_hyCKjZ~m!W#Q1W5Q1Be>|57`Xof6-7(<VIO|hFq8WKU4~$=v&)$NP
z)EQU0jISfv_rB$&2h%4-!8CoAgbt`_1E_-2&RNd*Gm0~_pK%Rq;aPr1Afl!_i`!ok
zq?zyyUiP$>kpOOzPXa+&bVKh!fN=>h&VRu{6SU<Fr{4JPD-c!H)w0mQlh9O}ijB-#
zA%GX)w+>I0eDB1=Kw?Oh5WdYlyF3A#_Et0<ZA5sb=%6l+Uy5>xsc=Z(GhDaCz?0sv
zSoXO+=ZrUj*(+RFZhJj+=?CGX>#~JhP`!PQpt2FYaB7gp0ly7N59YTMIMToRsU*y@
zS^Gf8in0h5L0=8BrIEXiknY36^KxTj9cLKZbBJ_Gbl~dIJSTM^LKD@~lpIItOF2uu
z>PbDSsyce;CA>-L;v^JCzfYcmWhYq>k>~oN5-kIX8*0Q{>Wvf1GrswlXeTwolmyiH
zhz^`Wuo#kN=N6DA<CiS>l9wHGt77e-HFI3wtrSF<!hmP0L$qA!j4Q6y4(mfb7|cv7
z=`=c^4AyrjG)u!&s1|GK5w;ahZ;z0nMS<MVj~wjAA03>RIutD)V8~v}r)|i_m$61Z
z0KfWq<BBS5{9v#P)_vBNJN4&k#3OA>62SXd;7&BrwX~eyi7GL!qnZMV9Xnv2itsA)
z?IH6d4%pL7?s6!NBA42(7*U;S(0~uEPmI}GnI#ywC&PIg99w}$UH1qXVG%=nWU6#_
zz0D2v?yWLy2(T3(+R0NQy8eshfu?lWwZv$wl>=XyPQ_&ed}!nK%td(Kg-BOv9x%!u
z8eMnp6BTY+FCF3ktU26?4abfRi~48SB!T`bMnXC)%kqVLysNm|&}nmueW80F|6~Qc
z_s8=^f8{okrm~^st_`#0%~S2WZ-o!M=S`EHoPbX_&NsOZD(=J&P}!dh+YRq7*O?%O
z$#xvH#Y#}Wl(872m#aC#NCAsz|IfsNChGkd#N8aN7MLk|(U}{Luj=A^J#aI#u6Si4
z??8b^S3N;hTXvgXswfgr@eXdw=;VSmRYH?|MaS3Ipkv(^IL1SYnMzUb%ZKf|Rx6P*
zEZBw!yI+2|KK7q-ZfvbI_3aXQY81sqHJdI%k;}i%HKO|#o~$yh_n!nxrD=}l(fV(x
zO(dZT3<hM$IVPFm+E$8%w`+%1ECY3jrAIw6r-V<PFtjmBLT0>J=J3=S_B}^2c5H7s
zhczWS3wBI%qVv#O>4=PS7WvVL+Xn=UY+M!BP?ak`pJ&3jSNQ!Z<OTRqFq<jpfE}4!
z9j-AT7(~lTWTZCqvKyR5vW!oi@s9k@y&7NCtc0YMik4JXs$~{iZ&x=7tFYzhpo~H&
zIg4x7L8qrS_&h&_HQBOv(B{`h5eTv>TUGSqSOcyHrhMN;8R<j0h}!bD2DjA})<|}m
zQb^WnIj!ixN+ecRam>=XaxSmskN4{C&f1MdiS0Uv-R7pzp%IppQ)j~2>-^8ijT4+D
zdhmynk=i{2hK=L77sq$``oa!xYTcDH%3sqd1-;Syrk>)%5^qR+?QbWhKJl)tpD>1t
zp`Q4n<YD&?!x7l5LWND)|0JPFYQ2he3cPQ@$>8&pRW+HX6dPG??85t!<Dh5}%(fBC
z3RXFoqsFS~|5DhoVl7;4G4zLqiMX*@8=G1;;>|aYbewJ`#^tns{$2F@m!E-_s^}xY
zmZV}_O66tz66|h{>E@8-Lb!ETQ-S4bO-iEWHbdcIq+>?(>I7FtDZ6@Qw<0gELQc*<
zx2Ljh{nMX{uRENrUO)4MX{gR|f6U_g+{Q!79+~}+z6J}17|<A-X;7-CzArP)1;Cta
z*tvW@VEy`PolE>yBd-SWw^-p6D$v2kw?Z-#%i0l1vB@y-K=kW3Dv4$@X$t!f;kB<X
zwb1?;RtMl|q;sxYRNvd41#hy`YV9*e{O-sQwdhG2H<y?+l);RCL+Tl`x(r_LM*irv
z{por1&am@d=|<<FcThUVrx~kpxeT<Epb~FUhuUf)F8<zoP3fa6$5N{wm#mURTO|jY
z_l(vw1*WxV)l<}IZ#jwq<AhBl){RFqI16h22=aXA519;)Iqkxnd<_U=g3y)ifmetn
zYTkLY7YyZOY*I#5Vl;fnzK!zz;!(ALc4r#zz9{T-xPFNN<}NPAB`D-ieqo(^C2063
z*?M~@>z$v~{R>OU(i;yOUfk9XxeZY^Tu}e|GZeIx_6?D%J^Xx`cVIGk_c}t}JqYFb
zkSu;ht=^6~w9_2F(VI^<%G7-*Ki#6~Vj&Pm@+e=*pKN~d3nwpoY9-P9ZU+=XycGk9
z@YZuPYw!610@rO|#1O(Q6`$$Anc68McIeXImt0tA*5=0(x`v;Ou7FiIwjmD!8u{o|
z>XIDT+{Mzs#S!!k`=Jp|iF%xX1~;#F7hipLozD@mbuF{E=I3U{c{zB-XZqe67l#oO
zA{@>?!8Q;|%waqdrPul3v6)<MHKdZ>ilcopX%?-}AF78b$E=yUW!2Fy9`4TuDlPUe
zbbAyi{@p_YisHl1#mSUb0MlN!8XQ{l$rfWz0+B44zU47mp)PgjbYEEJMf?la6;<Jy
zUNY?SNVFYPdZlZ|2l|6~wy-xivP3c2CMQ+Ubmyj{_`{mk?@lU&ZHFkY(xChKXG-v6
z{r0;_{@0as4!xiPY_)Iv5w{6w#=YRxlyP}@=rGLD$G&OT=&{Y%#L0A}Yji0%o-AWf
z*9aeRdt0}BiZTB>u`oR4`qlO5Pd~7(HckQ6B=`5PRJHe1a~egq(bg9fvY-NKiQ>bw
z0$gZ71vWSG+=&Vpo$g4HQ3t|JnC(Xtj~>(E+p{-e3lzSpLC@tgNB;T3k;#xAi5OMA
zpvq?C>I?1ovmM8a30!~hRBW&R<CS%_ff_9^;b*(&!mKUzy7?N&WkJ*T&sTY_O5!nR
z#NM6~9}tO9rYi3ukGQ0FXRR{;vY82JvBw$R`tPSvGjGK1^blPO`^{^incU`+67y62
zz5=9ud-0=NGCZ~%8_*hlCYZ1~1F|>t#;Vf=00NXk%FFNy#PsJ$A<ysh_J5M7F#v9G
z4zRy@!kH4trSz`3OQ%DYK-=>1yovvJbepDnLNDu{b;2y=<kC&<D=@O>!Di<rV3tPu
zo+&b1j=#-Zc%z}|N>Uu5QefQfNY<BjwEA0If@7l{MkmR|dC4d@w21wJ`2*L&_nrGn
zeEWs-E_43vAvg->ELox3snahN<iT*H|Hz}yp=ZDJ-ybschc?3JJWL@n_E&9$izeze
zpO(ffr<XAV{&uG9*_XLw688d`PzJgyEBPV(ua*!#=#97Qbb9AOrDIk)E-v_p1?+}B
z^v^|2%)KiJX!a&*9P`2W;-m-f!1u>*U#i4?$pdXNH%H7r?6S&sxs)HVZp?{^Z$EUN
zs~KXrS>FjJ@bZ=U7eOxQmZzjxW_+Q2OEjZRpbtlHU$SxVe~f#2j?}*N45kW<atbNo
zuAo9q#qI-?jCvYRuBy>@LG3c?uA!-OMhsqu@7d3oUI2?>H5$@01VE?YFmte+kesg-
zHPLe6Y#3ANBJvZMbQJfcE0Z-9?;`a?DU(23rZ;_jV~ifxbpf-n%9@<xLx@-n!N;}_
zAuAmYd!s({o{A`J>$I+}egL@(X<nk#5vWC7;chEb?-ROgGeSn{)wJ;-a8pe-nto$0
zKfpIG@mU4bqKQbU<(aBg@KAEVR9cPgCyq|%HYCY;_RpOv@Tc!MXJw{u2wq)2ouQ!e
zq(+OUgC8BLK<nLy{O|o{(h({`%Bk4O%`(!}nOcGS=gK;!Pfx$^>QvQeaf%FI4$RP4
z7rzUBWsLZOI0(Sh3&`;G=h~p?`jbPd)D$js)7G-Tq~q6BbTF=R|9EZ=*%WyEAU^nQ
z&#G6vW3L*hHoS4MI@z8Ezdmi3qoVRsaPHmX;5h>#_ZjL&Tk?f0q~3l1S6W4dc`l!!
z>fQ)_8%7F6nz>hh;Jr54Zt-371t~y$JlL~T>JTCJ?bnrAMex*+$(OK}=kK1n9EyKL
z9v$%!B>x^aKJgG<Lw%a~+W-!H=oXHpme)v&Js+k|K-I~-8ut*$TXQK}*38P)i)4LM
z)w#vVam}qY$1m#;h>-dbuwr{@FlBGIRcB{VC3k)%)`uhf=DF~z&VZf)6ZE4q^#`Gt
z-w)~mby0viBy<LJ;bbUh{IVtZl|oc8E_!FWOWBfLXz!#=(0GTSk{hJ$*(^v^-&r1D
eIch?ENjq;!Xu#FJ9{Kn7q<h~;tMZ;>)c*mU+gcF-

literal 0
HcmV?d00001

diff --git a/server.js b/server.js
index 32eee11..a39f822 100644
--- a/server.js
+++ b/server.js
@@ -1,5 +1,6 @@
 /**
- * BI Agentes — CambioReal
+ * BI - CCC (Central Command Center) — CambioReal
+ * Login Unificado: todos os usuarios acessam via /login
  *
  * Uso:  node server.js
  * Abre: http://localhost:3080
@@ -9,12 +10,13 @@ require('dotenv').config();
 const express = require('express');
 const session = require('express-session');
 const path = require('path');
-const { authenticate, requireAuth } = require('./src/auth');
-const { fetchTransacoes, serialize } = require('./src/queries');
+const { authenticate, requireAuth, requireRole, createAgente, createUser } = require('./src/auth');
+const { fetchTransacoes, fetchAllTransacoes, serialize, fetchDailyStats } = require('./src/queries');
 const { buildHTML } = require('./src/dashboard');
-
-// Initialize SQLite (creates tables on first run)
-require('./src/db-local');
+const { buildAdminHTML } = require('./src/admin-panel');
+const { buildAdminHomeHTML } = require('./src/admin-home');
+const bcrypt = require('bcrypt');
+const db = require('./src/db-local');
 
 const app = express();
 const PORT = process.env.PORT || 3080;
@@ -32,45 +34,76 @@ app.use(session({
 // Static files
 app.use('/public', express.static(path.join(__dirname, 'public')));
 
-// --- Routes ---
+// --- Unified Login Routes ---
+
+// Root -> login page (or redirect if logged in)
+app.get('/', (req, res) => {
+  if (req.session?.user) {
+    return res.redirect(req.session.user.role === 'admin' ? '/admin' : '/dashboard');
+  }
+  res.redirect('/login');
+});
 
 // Login page
 app.get('/login', (req, res) => {
-  if (req.session && req.session.agente) return res.redirect('/dashboard');
+  if (req.session?.user) {
+    return res.redirect(req.session.user.role === 'admin' ? '/admin' : '/dashboard');
+  }
   res.sendFile(path.join(__dirname, 'public', 'login.html'));
 });
 
-// Login POST
+// Unified Login POST - detects role and redirects accordingly
 app.post('/login', async (req, res) => {
   const { email, senha } = req.body;
   try {
-    const agente = await authenticate(email, senha);
-    if (!agente) return res.redirect('/login?error=1');
-    req.session.agente = {
-      id: agente.id,
-      email: agente.email,
-      agente_id: agente.agente_id,
-      nome: agente.nome,
+    const user = await authenticate(email, senha);
+    if (!user) return res.redirect('/login?error=1');
+
+    // Unified session
+    req.session.user = {
+      id: user.id,
+      email: user.email,
+      nome: user.nome,
+      role: user.role || 'agente',
+      agente_id: user.agente_id
     };
-    res.redirect('/dashboard');
+
+    // Redirect based on role
+    if (user.role === 'admin') {
+      res.redirect('/admin');
+    } else {
+      res.redirect('/dashboard');
+    }
   } catch (err) {
     console.error('Login error:', err);
     res.redirect('/login?error=1');
   }
 });
 
-// Logout
+// Unified Logout
 app.get('/logout', (req, res) => {
   req.session.destroy(() => res.redirect('/login'));
 });
 
-// Dashboard (protected)
-app.get('/dashboard', requireAuth, async (req, res) => {
+// Legacy admin login - redirect to unified login
+app.get('/admin/login', (req, res) => {
+  res.redirect('/login');
+});
+
+// Legacy admin logout - redirect to unified logout
+app.get('/admin/logout', (req, res) => {
+  res.redirect('/logout');
+});
+
+// --- Agent Routes ---
+
+// Dashboard (agente only)
+app.get('/dashboard', requireRole('agente'), async (req, res) => {
   try {
-    const agente = req.session.agente;
-    const { rowsBrlUsd, rowsUsdBrl } = await fetchTransacoes(agente.agente_id);
+    const user = req.session.user;
+    const { rowsBrlUsd, rowsUsdBrl } = await fetchTransacoes(user.agente_id);
     const data = serialize(rowsBrlUsd, rowsUsdBrl);
-    const html = buildHTML(data, agente);
+    const html = buildHTML(data, user);
     res.send(html);
   } catch (err) {
     console.error('Dashboard error:', err);
@@ -78,10 +111,165 @@ app.get('/dashboard', requireAuth, async (req, res) => {
   }
 });
 
-// Root redirect
-app.get('/', (req, res) => res.redirect('/dashboard'));
+// --- Admin Routes ---
+
+// Admin home (admin only) - Fast daily overview
+app.get('/admin', requireRole('admin'), async (req, res) => {
+  try {
+    const stats = await fetchDailyStats();
+    const html = buildAdminHomeHTML(stats, req.session.user);
+    res.send(html);
+  } catch (err) {
+    console.error('Admin home error:', err);
+    res.status(500).send('Erro ao carregar home admin: ' + err.message);
+  }
+});
+
+// Admin agents management (admin only)
+app.get('/admin/agentes', requireRole('admin'), (req, res) => {
+  try {
+    const agentes = db.prepare('SELECT * FROM agentes ORDER BY id DESC').all();
+    const html = buildAdminHTML(agentes, req.session.user);
+    res.send(html);
+  } catch (err) {
+    console.error('Admin panel error:', err);
+    res.status(500).send('Erro ao carregar painel admin: ' + err.message);
+  }
+});
+
+// Admin Dashboard - view ALL clients data (admin only)
+app.get('/admin/dashboard', requireRole('admin'), async (req, res) => {
+  try {
+    const user = req.session.user;
+    const dias = parseInt(req.query.dias) || 90;
+    const html = buildHTML([], { nome: `Admin - Ultimos ${dias} dias`, email: user.email }, false, dias, true);
+    res.send(html);
+  } catch (err) {
+    console.error('Admin dashboard error:', err);
+    res.status(500).send('Erro ao carregar dashboard admin: ' + err.message);
+  }
+});
+
+// API endpoint for admin dashboard data (admin only)
+app.get('/admin/api/data', requireRole('admin'), async (req, res) => {
+  try {
+    const dias = parseInt(req.query.dias) || 90;
+    const { rowsBrlUsd, rowsUsdBrl } = await fetchAllTransacoes(dias);
+    const data = serialize(rowsBrlUsd, rowsUsdBrl);
+    res.json({ success: true, data, count: data.length });
+  } catch (err) {
+    console.error('Admin API error:', err);
+    res.status(500).json({ success: false, error: err.message });
+  }
+});
+
+// Admin emulate agent - view dashboard as specific agent (admin only)
+app.get('/admin/emular/:agente_id', requireRole('admin'), async (req, res) => {
+  try {
+    const agenteId = parseInt(req.params.agente_id);
+    const agente = db.prepare('SELECT * FROM agentes WHERE agente_id = ?').get(agenteId);
+
+    if (!agente) {
+      return res.status(404).send('Agente nao encontrado');
+    }
+
+    const { rowsBrlUsd, rowsUsdBrl } = await fetchTransacoes(agenteId);
+    const data = serialize(rowsBrlUsd, rowsUsdBrl);
+    const html = buildHTML(data, {
+      nome: agente.nome + ' (Emulando)',
+      agente_id: agenteId,
+      email: agente.email
+    }, true, null, false, true); // isEmulating = true
+    res.send(html);
+  } catch (err) {
+    console.error('Admin emulate error:', err);
+    res.status(500).send('Erro ao emular agente: ' + err.message);
+  }
+});
+
+// Create user (admin only)
+app.post('/admin/agentes', requireRole('admin'), async (req, res) => {
+  const { nome, email, agente_id, senha, role } = req.body;
+  try {
+    if (!nome || !email || !senha) {
+      return res.status(400).json({ error: 'Nome, email e senha sao obrigatorios' });
+    }
+
+    const userRole = role || 'agente';
+    const agenteId = userRole === 'admin' ? 0 : (agente_id || 0);
+
+    if (userRole === 'agente' && !agente_id) {
+      return res.status(400).json({ error: 'Agente ID e obrigatorio para agentes' });
+    }
+
+    const result = await createUser(email, senha, nome, userRole, agenteId);
+    res.json({ success: true, id: result.lastInsertRowid });
+  } catch (err) {
+    console.error('Create user error:', err);
+    if (err.message && err.message.includes('UNIQUE')) {
+      return res.status(400).json({ error: 'E-mail ja cadastrado' });
+    }
+    res.status(500).json({ error: 'Erro ao criar usuario' });
+  }
+});
+
+// Update user (admin only)
+app.put('/admin/agentes/:id', requireRole('admin'), async (req, res) => {
+  const { id } = req.params;
+  const { nome, email, agente_id, ativo, senha, role } = req.body;
+  try {
+    const agent = db.prepare('SELECT * FROM agentes WHERE id = ?').get(id);
+    if (!agent) {
+      return res.status(404).json({ error: 'Usuario nao encontrado' });
+    }
+
+    if (senha) {
+      const hash = await bcrypt.hash(senha, 10);
+      db.prepare('UPDATE agentes SET senha_hash = ? WHERE id = ?').run(hash, id);
+    }
+
+    if (nome !== undefined) {
+      db.prepare('UPDATE agentes SET nome = ? WHERE id = ?').run(nome, id);
+    }
+    if (email !== undefined) {
+      db.prepare('UPDATE agentes SET email = ? WHERE id = ?').run(email, id);
+    }
+    if (agente_id !== undefined) {
+      db.prepare('UPDATE agentes SET agente_id = ? WHERE id = ?').run(agente_id, id);
+    }
+    if (ativo !== undefined) {
+      db.prepare('UPDATE agentes SET ativo = ? WHERE id = ?').run(ativo, id);
+    }
+    if (role !== undefined) {
+      db.prepare('UPDATE agentes SET role = ? WHERE id = ?').run(role, id);
+    }
+
+    res.json({ success: true });
+  } catch (err) {
+    console.error('Update user error:', err);
+    if (err.message && err.message.includes('UNIQUE')) {
+      return res.status(400).json({ error: 'E-mail ja cadastrado' });
+    }
+    res.status(500).json({ error: 'Erro ao atualizar usuario' });
+  }
+});
+
+// Delete/deactivate user (admin only)
+app.delete('/admin/agentes/:id', requireRole('admin'), (req, res) => {
+  const { id } = req.params;
+  try {
+    const result = db.prepare('UPDATE agentes SET ativo = 0 WHERE id = ?').run(id);
+    if (result.changes === 0) {
+      return res.status(404).json({ error: 'Usuario nao encontrado' });
+    }
+    res.json({ success: true });
+  } catch (err) {
+    console.error('Delete user error:', err);
+    res.status(500).json({ error: 'Erro ao desativar usuario' });
+  }
+});
 
 // Start
 app.listen(PORT, () => {
-  console.log(`BI Agentes rodando: http://localhost:${PORT}`);
+  console.log(`BI - CCC rodando: http://localhost:${PORT}`);
 });
diff --git a/src/admin-auth.js b/src/admin-auth.js
new file mode 100644
index 0000000..eb1008d
--- /dev/null
+++ b/src/admin-auth.js
@@ -0,0 +1,37 @@
+/**
+ * Admin Authentication - login/logout with bcrypt + express-session
+ */
+const bcrypt = require('bcrypt');
+const db = require('./db-local');
+
+const SALT_ROUNDS = 10;
+
+async function createAdmin(email, senha, nome) {
+  const hash = await bcrypt.hash(senha, SALT_ROUNDS);
+  return db.prepare(
+    'INSERT INTO admins (email, senha_hash, nome) VALUES (?, ?, ?)'
+  ).run(email, hash, nome);
+}
+
+async function authenticateAdmin(email, senha) {
+  const row = db.prepare(
+    'SELECT * FROM admins WHERE email = ?'
+  ).get(email);
+  if (!row) return null;
+  const match = await bcrypt.compare(senha, row.senha_hash);
+  return match ? row : null;
+}
+
+function requireAdmin(req, res, next) {
+  if (req.session && req.session.admin) return next();
+  res.redirect('/admin/login');
+}
+
+async function updateAdminPassword(id, novaSenha) {
+  const hash = await bcrypt.hash(novaSenha, SALT_ROUNDS);
+  return db.prepare(
+    'UPDATE admins SET senha_hash = ? WHERE id = ?'
+  ).run(hash, id);
+}
+
+module.exports = { createAdmin, authenticateAdmin, requireAdmin, updateAdminPassword };
diff --git a/src/admin-home.js b/src/admin-home.js
new file mode 100644
index 0000000..3d9a39c
--- /dev/null
+++ b/src/admin-home.js
@@ -0,0 +1,433 @@
+/**
+ * Admin Home Dashboard - Fast daily overview
+ * 3 flows: BRL→USD, USD→BRL, USD→USD (balance)
+ */
+
+function buildAdminHomeHTML(stats, admin) {
+  const now = new Date().toLocaleString('pt-BR');
+  const hoje = new Date().toLocaleDateString('pt-BR', { weekday: 'long', day: 'numeric', month: 'long' });
+
+  const formatBRL = (v) => v.toLocaleString('pt-BR', { style: 'currency', currency: 'BRL' });
+  const formatUSD = (v) => v.toLocaleString('pt-BR', { style: 'currency', currency: 'USD' });
+
+  // Calculate variations
+  const calcVar = (hoje, ontem) => ontem > 0
+    ? ((hoje - ontem) / ontem * 100).toFixed(1)
+    : (hoje > 0 ? 100 : 0);
+
+  const brlUsdVar = calcVar(stats.brlUsd.hoje.qtd, stats.brlUsd.ontem.qtd);
+  const usdBrlVar = calcVar(stats.usdBrl.hoje.qtd, stats.usdBrl.ontem.qtd);
+  const usdUsdVar = calcVar(stats.usdUsd.hoje.qtd, stats.usdUsd.ontem.qtd);
+
+  const totalHoje = stats.brlUsd.hoje.qtd + stats.usdBrl.hoje.qtd + stats.usdUsd.hoje.qtd;
+  const totalOntem = stats.brlUsd.ontem.qtd + stats.usdBrl.ontem.qtd + stats.usdUsd.ontem.qtd;
+  const totalVar = calcVar(totalHoje, totalOntem);
+
+  return `<!DOCTYPE html>
+<html lang="pt-BR">
+<head>
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+<title>BI - CCC - Home</title>
+<link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap" rel="stylesheet">
+<script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.1/dist/chart.umd.min.js"></script>
+<style>
+  :root {
+    --primary: #6C3FA0;
+    --bg: #F0F2F5;
+    --card: #FFFFFF;
+    --text: #1A1D23;
+    --text-secondary: #5F6368;
+    --text-muted: #9AA0A6;
+    --border: #E8EAED;
+    --green: #1E8E3E;
+    --green-bg: #E6F4EA;
+    --blue: #1A73E8;
+    --blue-bg: #E8F0FE;
+    --orange: #E8710A;
+    --orange-bg: #FEF3E8;
+    --purple: #7B1FA2;
+    --purple-bg: #F3E5F5;
+    --red: #D93025;
+    --admin-accent: #2E7D32;
+  }
+  * { margin: 0; padding: 0; box-sizing: border-box; }
+  body {
+    font-family: 'Inter', -apple-system, sans-serif;
+    background: var(--bg); color: var(--text); line-height: 1.5;
+  }
+  .header {
+    background: linear-gradient(135deg, var(--admin-accent) 0%, #1B5E20 100%);
+    color: white; padding: 24px 40px;
+    display: flex; justify-content: space-between; align-items: center;
+    box-shadow: 0 2px 8px rgba(27,94,32,0.3);
+  }
+  .header h1 { font-size: 24px; font-weight: 800; }
+  .header .subtitle { font-size: 13px; opacity: 0.8; margin-top: 4px; }
+  .header-right { display: flex; align-items: center; gap: 12px; }
+  .badge {
+    background: rgba(255,255,255,0.15); padding: 8px 16px;
+    border-radius: 24px; font-size: 12px; font-weight: 600;
+  }
+  .btn {
+    padding: 8px 16px; border-radius: 8px; font-size: 12px; font-weight: 600;
+    cursor: pointer; text-decoration: none; font-family: inherit;
+    transition: all 0.15s; border: 1px solid rgba(255,255,255,0.3);
+    background: rgba(255,255,255,0.15); color: white;
+  }
+  .btn:hover { background: rgba(255,255,255,0.25); }
+  .btn-blue { background: #1A73E8; border-color: #1A73E8; }
+  .btn-blue:hover { background: #1557B0; }
+
+  .container { padding: 28px 40px; max-width: 1600px; margin: 0 auto; }
+
+  .date-banner {
+    background: var(--card); border-radius: 12px; padding: 16px 24px;
+    margin-bottom: 24px; border: 1px solid var(--border);
+    display: flex; justify-content: space-between; align-items: center;
+  }
+  .date-banner h2 { font-size: 18px; font-weight: 700; text-transform: capitalize; }
+  .date-banner .time { font-size: 13px; color: var(--text-secondary); }
+
+  .kpi-grid {
+    display: grid; grid-template-columns: repeat(4, 1fr); gap: 20px;
+    margin-bottom: 28px;
+  }
+  .kpi-card {
+    background: var(--card); border-radius: 16px; padding: 24px;
+    border: 1px solid var(--border); box-shadow: 0 2px 8px rgba(0,0,0,0.04);
+  }
+  .kpi-card.highlight { border-left: 4px solid var(--admin-accent); }
+  .kpi-card.brl-usd { border-left: 4px solid var(--blue); }
+  .kpi-card.usd-brl { border-left: 4px solid var(--green); }
+  .kpi-card.usd-usd { border-left: 4px solid var(--purple); }
+  .kpi-header { display: flex; justify-content: space-between; align-items: flex-start; margin-bottom: 12px; }
+  .kpi-label { font-size: 12px; font-weight: 600; color: var(--text-secondary); text-transform: uppercase; letter-spacing: 0.3px; }
+  .kpi-badge {
+    font-size: 11px; font-weight: 700; padding: 4px 10px; border-radius: 12px;
+  }
+  .kpi-badge.up { background: var(--green-bg); color: var(--green); }
+  .kpi-badge.down { background: #FDE7E7; color: var(--red); }
+  .kpi-badge.neutral { background: var(--blue-bg); color: var(--blue); }
+  .kpi-value { font-size: 36px; font-weight: 800; color: var(--text); margin-bottom: 4px; }
+  .kpi-sub { font-size: 13px; color: var(--text-muted); }
+
+  .charts-grid {
+    display: grid; grid-template-columns: repeat(2, 1fr); gap: 24px;
+    margin-bottom: 28px;
+  }
+  .chart-card {
+    background: var(--card); border-radius: 16px; padding: 24px;
+    border: 1px solid var(--border); box-shadow: 0 2px 8px rgba(0,0,0,0.04);
+  }
+  .chart-card h3 { font-size: 14px; font-weight: 700; margin-bottom: 20px; color: var(--text); }
+  .chart-wrap { height: 280px; position: relative; }
+
+  .detail-grid {
+    display: grid; grid-template-columns: repeat(3, 1fr); gap: 24px;
+  }
+  .detail-card {
+    background: var(--card); border-radius: 16px; padding: 24px;
+    border: 1px solid var(--border);
+  }
+  .detail-card h3 {
+    font-size: 14px; font-weight: 700; margin-bottom: 16px;
+    display: flex; align-items: center; gap: 8px;
+  }
+  .detail-card h3 .icon {
+    width: 28px; height: 28px; border-radius: 8px;
+    display: flex; align-items: center; justify-content: center;
+    font-size: 14px;
+  }
+  .detail-card h3 .icon.out { background: var(--blue-bg); }
+  .detail-card h3 .icon.in { background: var(--green-bg); }
+  .detail-card h3 .icon.balance { background: var(--purple-bg); }
+  .detail-row {
+    display: flex; justify-content: space-between; padding: 10px 0;
+    border-bottom: 1px solid #F3F4F6; font-size: 13px;
+  }
+  .detail-row:last-child { border-bottom: none; }
+  .detail-label { color: var(--text-secondary); }
+  .detail-value { font-weight: 600; color: var(--text); }
+  .detail-value.green { color: var(--green); }
+  .detail-value.red { color: var(--red); }
+
+  .nav-links {
+    display: flex; gap: 12px; margin-top: 28px;
+  }
+  .nav-card {
+    flex: 1; background: var(--card); border-radius: 12px; padding: 20px;
+    border: 1px solid var(--border); text-decoration: none; color: var(--text);
+    transition: all 0.15s; display: flex; align-items: center; gap: 16px;
+  }
+  .nav-card:hover { border-color: var(--admin-accent); box-shadow: 0 4px 12px rgba(46,125,50,0.1); }
+  .nav-card .icon {
+    width: 48px; height: 48px; border-radius: 12px; background: var(--green-bg);
+    display: flex; align-items: center; justify-content: center; font-size: 24px;
+  }
+  .nav-card h4 { font-size: 14px; font-weight: 700; margin-bottom: 4px; }
+  .nav-card p { font-size: 12px; color: var(--text-secondary); }
+
+  .footer { text-align: center; padding: 24px; font-size: 12px; color: var(--text-muted); }
+
+  @media (max-width: 1200px) {
+    .kpi-grid { grid-template-columns: repeat(2, 1fr); }
+    .detail-grid { grid-template-columns: 1fr; }
+  }
+  @media (max-width: 768px) {
+    .container { padding: 20px; }
+    .header { padding: 20px; flex-direction: column; gap: 12px; }
+    .kpi-grid, .charts-grid { grid-template-columns: 1fr; }
+    .nav-links { flex-direction: column; }
+  }
+</style>
+</head>
+<body>
+
+<div class="header">
+  <div>
+    <h1>BI - CCC</h1>
+    <div class="subtitle">CambioReal Central Command</div>
+  </div>
+  <div class="header-right">
+    <div class="badge">Admin: ${admin.nome}</div>
+    <a href="/admin/agentes" class="btn">Gerenciar Agentes</a>
+    <a href="/admin/dashboard" class="btn btn-blue">Dashboard Completo</a>
+    <a href="/logout" class="btn">Sair</a>
+  </div>
+</div>
+
+<div class="container">
+  <div class="date-banner">
+    <h2>${hoje}</h2>
+    <div class="time">Atualizado: ${now}</div>
+  </div>
+
+  <div class="kpi-grid">
+    <div class="kpi-card highlight">
+      <div class="kpi-header">
+        <div class="kpi-label">Total de Ordens Hoje</div>
+        <div class="kpi-badge ${Number(totalVar) >= 0 ? 'up' : 'down'}">${Number(totalVar) >= 0 ? '+' : ''}${totalVar}%</div>
+      </div>
+      <div class="kpi-value">${totalHoje}</div>
+      <div class="kpi-sub">Ontem: ${totalOntem} ordens</div>
+    </div>
+    <div class="kpi-card brl-usd">
+      <div class="kpi-header">
+        <div class="kpi-label">BRL &rarr; USD</div>
+        <div class="kpi-badge ${Number(brlUsdVar) >= 0 ? 'up' : 'down'}">${Number(brlUsdVar) >= 0 ? '+' : ''}${brlUsdVar}%</div>
+      </div>
+      <div class="kpi-value">${stats.brlUsd.hoje.qtd}</div>
+      <div class="kpi-sub">Ontem: ${stats.brlUsd.ontem.qtd}</div>
+    </div>
+    <div class="kpi-card usd-brl">
+      <div class="kpi-header">
+        <div class="kpi-label">USD &rarr; BRL</div>
+        <div class="kpi-badge ${Number(usdBrlVar) >= 0 ? 'up' : 'down'}">${Number(usdBrlVar) >= 0 ? '+' : ''}${usdBrlVar}%</div>
+      </div>
+      <div class="kpi-value">${stats.usdBrl.hoje.qtd}</div>
+      <div class="kpi-sub">Ontem: ${stats.usdBrl.ontem.qtd}</div>
+    </div>
+    <div class="kpi-card usd-usd">
+      <div class="kpi-header">
+        <div class="kpi-label">USD &rarr; USD (Balance)</div>
+        <div class="kpi-badge ${Number(usdUsdVar) >= 0 ? 'up' : 'down'}">${Number(usdUsdVar) >= 0 ? '+' : ''}${usdUsdVar}%</div>
+      </div>
+      <div class="kpi-value">${stats.usdUsd.hoje.qtd}</div>
+      <div class="kpi-sub">Ontem: ${stats.usdUsd.ontem.qtd}</div>
+    </div>
+  </div>
+
+  <div class="charts-grid">
+    <div class="chart-card">
+      <h3>Quantidade de Ordens por Fluxo</h3>
+      <div class="chart-wrap"><canvas id="chartQtd"></canvas></div>
+    </div>
+    <div class="chart-card">
+      <h3>Volume USD por Fluxo</h3>
+      <div class="chart-wrap"><canvas id="chartVol"></canvas></div>
+    </div>
+  </div>
+
+  <div class="detail-grid">
+    <div class="detail-card">
+      <h3><span class="icon out">&#8594;</span> BRL &rarr; USD (Remessas)</h3>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Hoje</span>
+        <span class="detail-value">${stats.brlUsd.hoje.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Ontem</span>
+        <span class="detail-value">${stats.brlUsd.ontem.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume BRL Hoje</span>
+        <span class="detail-value">${formatBRL(stats.brlUsd.hoje.total_brl)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume USD Hoje</span>
+        <span class="detail-value">${formatUSD(stats.brlUsd.hoje.total_usd)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Variacao</span>
+        <span class="detail-value ${Number(brlUsdVar) >= 0 ? 'green' : 'red'}">${Number(brlUsdVar) >= 0 ? '+' : ''}${brlUsdVar}%</span>
+      </div>
+    </div>
+    <div class="detail-card">
+      <h3><span class="icon in">&#8592;</span> USD &rarr; BRL (Recebimentos)</h3>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Hoje</span>
+        <span class="detail-value">${stats.usdBrl.hoje.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Ontem</span>
+        <span class="detail-value">${stats.usdBrl.ontem.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume BRL Hoje</span>
+        <span class="detail-value">${formatBRL(stats.usdBrl.hoje.total_brl)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume USD Hoje</span>
+        <span class="detail-value">${formatUSD(stats.usdBrl.hoje.total_usd)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Variacao</span>
+        <span class="detail-value ${Number(usdBrlVar) >= 0 ? 'green' : 'red'}">${Number(usdBrlVar) >= 0 ? '+' : ''}${usdBrlVar}%</span>
+      </div>
+    </div>
+    <div class="detail-card">
+      <h3><span class="icon balance">&#8596;</span> USD &rarr; USD (Balance)</h3>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Hoje</span>
+        <span class="detail-value">${stats.usdUsd.hoje.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Ordens Ontem</span>
+        <span class="detail-value">${stats.usdUsd.ontem.qtd}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume USD Hoje</span>
+        <span class="detail-value">${formatUSD(stats.usdUsd.hoje.total_usd)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Volume USD Ontem</span>
+        <span class="detail-value">${formatUSD(stats.usdUsd.ontem.total_usd)}</span>
+      </div>
+      <div class="detail-row">
+        <span class="detail-label">Variacao</span>
+        <span class="detail-value ${Number(usdUsdVar) >= 0 ? 'green' : 'red'}">${Number(usdUsdVar) >= 0 ? '+' : ''}${usdUsdVar}%</span>
+      </div>
+    </div>
+  </div>
+
+  <div class="nav-links">
+    <a href="/admin/dashboard" class="nav-card">
+      <div class="icon">&#128200;</div>
+      <div>
+        <h4>Dashboard Completo</h4>
+        <p>Analise detalhada com graficos e filtros</p>
+      </div>
+    </a>
+    <a href="/admin/agentes" class="nav-card">
+      <div class="icon">&#128101;</div>
+      <div>
+        <h4>Gerenciar Agentes</h4>
+        <p>Cadastro, edicao e emulacao de agentes</p>
+      </div>
+    </a>
+  </div>
+</div>
+
+<div class="footer">BI - CCC - CambioReal Central Command</div>
+
+<script>
+const stats = ${JSON.stringify(stats)};
+
+// Chart: Quantidade
+new Chart(document.getElementById('chartQtd'), {
+  type: 'bar',
+  data: {
+    labels: ['BRL → USD', 'USD → BRL', 'USD → USD'],
+    datasets: [
+      {
+        label: 'Hoje',
+        data: [stats.brlUsd.hoje.qtd, stats.usdBrl.hoje.qtd, stats.usdUsd.hoje.qtd],
+        backgroundColor: ['#1A73E8', '#2E7D32', '#7B1FA2'],
+        borderRadius: 6,
+        barPercentage: 0.7
+      },
+      {
+        label: 'Ontem',
+        data: [stats.brlUsd.ontem.qtd, stats.usdBrl.ontem.qtd, stats.usdUsd.ontem.qtd],
+        backgroundColor: ['#90CAF9', '#A5D6A7', '#CE93D8'],
+        borderRadius: 6,
+        barPercentage: 0.7
+      }
+    ]
+  },
+  options: {
+    responsive: true,
+    maintainAspectRatio: false,
+    plugins: {
+      legend: { position: 'top', labels: { font: { size: 12, weight: 600 }, usePointStyle: true } }
+    },
+    scales: {
+      y: { beginAtZero: true, grid: { color: '#F3F4F6' }, ticks: { font: { size: 11 } } },
+      x: { grid: { display: false }, ticks: { font: { size: 11, weight: 600 } } }
+    }
+  }
+});
+
+// Chart: Volume USD
+new Chart(document.getElementById('chartVol'), {
+  type: 'bar',
+  data: {
+    labels: ['BRL → USD', 'USD → BRL', 'USD → USD'],
+    datasets: [
+      {
+        label: 'Hoje (USD)',
+        data: [stats.brlUsd.hoje.total_usd, stats.usdBrl.hoje.total_usd, stats.usdUsd.hoje.total_usd],
+        backgroundColor: ['#1A73E8', '#2E7D32', '#7B1FA2'],
+        borderRadius: 6,
+        barPercentage: 0.7
+      },
+      {
+        label: 'Ontem (USD)',
+        data: [stats.brlUsd.ontem.total_usd, stats.usdBrl.ontem.total_usd, stats.usdUsd.ontem.total_usd],
+        backgroundColor: ['#90CAF9', '#A5D6A7', '#CE93D8'],
+        borderRadius: 6,
+        barPercentage: 0.7
+      }
+    ]
+  },
+  options: {
+    responsive: true,
+    maintainAspectRatio: false,
+    plugins: {
+      legend: { position: 'top', labels: { font: { size: 12, weight: 600 }, usePointStyle: true } },
+      tooltip: {
+        callbacks: {
+          label: (ctx) => ctx.dataset.label + ': $' + ctx.raw.toLocaleString('en-US', { minimumFractionDigits: 2 })
+        }
+      }
+    },
+    scales: {
+      y: {
+        beginAtZero: true,
+        grid: { color: '#F3F4F6' },
+        ticks: {
+          font: { size: 11 },
+          callback: (v) => '$' + (v >= 1000 ? (v/1000).toFixed(0) + 'k' : v)
+        }
+      },
+      x: { grid: { display: false }, ticks: { font: { size: 11, weight: 600 } } }
+    }
+  }
+});
+</script>
+</body>
+</html>`;
+}
+
+module.exports = { buildAdminHomeHTML };
diff --git a/src/admin-panel.js b/src/admin-panel.js
new file mode 100644
index 0000000..ff2a8bb
--- /dev/null
+++ b/src/admin-panel.js
@@ -0,0 +1,536 @@
+/**
+ * Admin Panel - HTML builder for agent management
+ */
+
+function buildAdminHTML(agentes, admin) {
+  const now = new Date().toLocaleString('pt-BR');
+  return `<!DOCTYPE html>
+<html lang="pt-BR">
+<head>
+<meta charset="UTF-8">
+<meta name="viewport" content="width=device-width, initial-scale=1.0">
+<title>BI - CCC - CambioReal Central Command</title>
+<link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap" rel="stylesheet">
+<style>
+  :root {
+    --primary: #6C3FA0;
+    --primary-light: #8B5FBF;
+    --primary-dark: #4A2570;
+    --primary-bg: #F3EEFA;
+    --bg: #F0F2F5;
+    --card: #FFFFFF;
+    --text: #1A1D23;
+    --text-secondary: #5F6368;
+    --text-muted: #9AA0A6;
+    --border: #E8EAED;
+    --green: #1E8E3E;
+    --green-bg: #E6F4EA;
+    --blue: #1A73E8;
+    --blue-bg: #E8F0FE;
+    --orange: #E8710A;
+    --orange-bg: #FEF3E8;
+    --red: #D93025;
+    --red-bg: #FDE7E7;
+    --admin-accent: #2E7D32;
+    --admin-bg: #E8F5E9;
+  }
+  * { margin: 0; padding: 0; box-sizing: border-box; }
+  body {
+    font-family: 'Inter', -apple-system, BlinkMacSystemFont, 'Segoe UI', sans-serif;
+    background: var(--bg); color: var(--text); line-height: 1.5;
+    -webkit-font-smoothing: antialiased;
+  }
+  .header {
+    background: linear-gradient(135deg, var(--admin-accent) 0%, #1B5E20 100%);
+    color: white; padding: 24px 40px;
+    display: flex; justify-content: space-between; align-items: center;
+    box-shadow: 0 2px 8px rgba(27,94,32,0.3);
+  }
+  .header h1 { font-size: 24px; font-weight: 800; letter-spacing: -0.5px; }
+  .header .subtitle { font-size: 13px; opacity: 0.8; margin-top: 4px; font-weight: 400; }
+  .header-right { display: flex; align-items: center; gap: 16px; }
+  .header .badge {
+    background: rgba(255,255,255,0.15); backdrop-filter: blur(10px);
+    padding: 8px 16px; border-radius: 24px; font-size: 12px; font-weight: 600;
+    border: 1px solid rgba(255,255,255,0.2);
+  }
+  .btn-logout {
+    background: rgba(255,255,255,0.15); color: white; border: 1px solid rgba(255,255,255,0.3);
+    padding: 8px 16px; border-radius: 8px; font-size: 12px; font-weight: 600;
+    cursor: pointer; text-decoration: none; font-family: inherit; transition: all 0.15s;
+  }
+  .btn-logout:hover { background: rgba(255,255,255,0.25); }
+
+  .container { padding: 28px 40px; max-width: 1200px; margin: 0 auto; }
+
+  .toolbar {
+    display: flex; justify-content: space-between; align-items: center;
+    margin-bottom: 20px;
+  }
+  .toolbar h2 { font-size: 18px; font-weight: 700; color: var(--text); }
+  .btn-create {
+    background: var(--admin-accent); color: white; border: none;
+    padding: 10px 20px; border-radius: 8px; font-size: 13px; font-weight: 600;
+    font-family: inherit; cursor: pointer; transition: all 0.15s;
+    box-shadow: 0 2px 6px rgba(46,125,50,0.3);
+  }
+  .btn-create:hover { background: #25732a; transform: translateY(-1px); }
+
+  .table-card {
+    background: var(--card); border-radius: 12px; border: 1px solid var(--border);
+    box-shadow: 0 1px 3px rgba(0,0,0,0.06); overflow: hidden;
+  }
+  .table-wrap { overflow-x: auto; }
+  table { width: 100%; border-collapse: collapse; font-size: 13px; }
+  thead th {
+    background: #FAFBFC; padding: 12px 16px; text-align: left;
+    font-weight: 600; color: var(--text-secondary); font-size: 11px;
+    text-transform: uppercase; letter-spacing: 0.4px;
+    border-bottom: 2px solid var(--border); white-space: nowrap;
+  }
+  tbody td {
+    padding: 12px 16px; border-bottom: 1px solid #F3F4F6;
+    white-space: nowrap; vertical-align: middle;
+  }
+  tbody tr:hover { background: #F8F9FA; }
+  tbody tr:nth-child(even) { background: #FAFBFC; }
+  tbody tr:nth-child(even):hover { background: #F8F9FA; }
+
+  .status-badge {
+    display: inline-block; padding: 4px 10px; border-radius: 12px;
+    font-size: 11px; font-weight: 600; text-transform: uppercase;
+  }
+  .status-badge.active { background: var(--green-bg); color: var(--green); }
+  .status-badge.inactive { background: var(--red-bg); color: var(--red); }
+  .status-badge.admin { background: var(--admin-bg); color: var(--admin-accent); }
+  .status-badge.agent { background: var(--blue-bg); color: var(--blue); }
+
+  .actions { display: flex; gap: 6px; }
+  .btn-action {
+    padding: 6px 12px; border-radius: 6px; font-size: 11px; font-weight: 600;
+    font-family: inherit; cursor: pointer; transition: all 0.15s; border: none;
+  }
+  .btn-emular { background: var(--green-bg); color: var(--green); text-decoration: none; }
+  .btn-emular:hover { background: #C8E6C9; }
+  .btn-edit { background: var(--blue-bg); color: var(--blue); }
+  .btn-edit:hover { background: #D2E3FC; }
+  .btn-toggle { background: var(--orange-bg); color: var(--orange); }
+  .btn-toggle:hover { background: #FDE7D8; }
+  .btn-password { background: var(--primary-bg); color: var(--primary); }
+  .btn-password:hover { background: #E8DCFA; }
+  .btn-delete { background: var(--red-bg); color: var(--red); }
+  .btn-delete:hover { background: #FBD5D5; }
+
+  /* Modal */
+  .modal-overlay {
+    display: none; position: fixed; top: 0; left: 0; right: 0; bottom: 0;
+    background: rgba(0,0,0,0.5); z-index: 1000;
+    align-items: center; justify-content: center;
+  }
+  .modal-overlay.active { display: flex; }
+  .modal {
+    background: var(--card); border-radius: 16px; width: 100%; max-width: 480px;
+    max-height: 90vh; overflow-y: auto; box-shadow: 0 20px 60px rgba(0,0,0,0.2);
+  }
+  .modal-header {
+    padding: 20px 24px; border-bottom: 1px solid var(--border);
+    display: flex; justify-content: space-between; align-items: center;
+  }
+  .modal-header h3 { font-size: 16px; font-weight: 700; color: var(--text); }
+  .modal-close {
+    background: none; border: none; font-size: 24px; color: var(--text-muted);
+    cursor: pointer; line-height: 1;
+  }
+  .modal-close:hover { color: var(--text); }
+  .modal-body { padding: 24px; }
+  .form-group { margin-bottom: 18px; }
+  .form-group label {
+    display: block; font-size: 12px; font-weight: 600;
+    color: var(--text-secondary); text-transform: uppercase;
+    letter-spacing: 0.3px; margin-bottom: 6px;
+  }
+  .form-group input {
+    width: 100%; padding: 10px 14px; border: 1.5px solid var(--border);
+    border-radius: 8px; font-size: 14px; font-family: inherit;
+    color: var(--text); transition: all 0.15s; background: white;
+  }
+  .form-group input:focus {
+    outline: none; border-color: var(--admin-accent);
+    box-shadow: 0 0 0 3px rgba(46,125,50,0.12);
+  }
+  .form-group input:disabled {
+    background: #F5F5F5; color: var(--text-muted);
+  }
+  .form-group select {
+    width: 100%; padding: 10px 14px; border: 1.5px solid var(--border);
+    border-radius: 8px; font-size: 14px; font-family: inherit;
+    color: var(--text); transition: all 0.15s; background: white;
+    cursor: pointer;
+  }
+  .form-group select:focus {
+    outline: none; border-color: var(--admin-accent);
+    box-shadow: 0 0 0 3px rgba(46,125,50,0.12);
+  }
+  .modal-footer {
+    padding: 16px 24px; border-top: 1px solid var(--border);
+    display: flex; justify-content: flex-end; gap: 10px;
+  }
+  .btn-cancel {
+    padding: 10px 20px; border-radius: 8px; font-size: 13px; font-weight: 600;
+    font-family: inherit; cursor: pointer; transition: all 0.15s;
+    background: white; border: 1.5px solid var(--border); color: var(--text);
+  }
+  .btn-cancel:hover { background: #F5F5F5; }
+  .btn-submit {
+    padding: 10px 20px; border-radius: 8px; font-size: 13px; font-weight: 600;
+    font-family: inherit; cursor: pointer; transition: all 0.15s;
+    background: var(--admin-accent); border: none; color: white;
+    box-shadow: 0 2px 6px rgba(46,125,50,0.3);
+  }
+  .btn-submit:hover { background: #25732a; }
+
+  .alert {
+    padding: 12px 16px; border-radius: 8px; font-size: 13px; font-weight: 500;
+    margin-bottom: 20px; display: none;
+  }
+  .alert.success { background: var(--green-bg); color: var(--green); }
+  .alert.error { background: var(--red-bg); color: var(--red); }
+  .alert.show { display: block; }
+
+  .footer { text-align: center; padding: 20px; font-size: 12px; color: var(--text-muted); }
+
+  @media (max-width: 768px) {
+    .container { padding: 20px; }
+    .header { padding: 20px; flex-direction: column; gap: 12px; }
+    .header-right { width: 100%; justify-content: space-between; }
+    .toolbar { flex-direction: column; gap: 12px; align-items: flex-start; }
+  }
+</style>
+</head>
+<body>
+
+<div class="header">
+  <div>
+    <h1>BI - CCC</h1>
+    <div class="subtitle">CambioReal Central Command</div>
+  </div>
+  <div class="header-right">
+    <div class="badge">Admin: ${admin.nome}</div>
+    <a href="/admin/dashboard" class="btn-logout" style="background:#1A73E8;margin-right:8px;">Dashboard Geral</a>
+    <a href="/logout" class="btn-logout">Sair</a>
+  </div>
+</div>
+
+<div class="container">
+  <div id="alertBox" class="alert"></div>
+
+  <div class="toolbar">
+    <h2>Usuarios Cadastrados (${agentes.length})</h2>
+    <button class="btn-create" onclick="openCreateModal()">+ Novo Usuario</button>
+  </div>
+
+  <div class="table-card">
+    <div class="table-wrap">
+      <table>
+        <thead>
+          <tr>
+            <th>ID</th>
+            <th>Nome</th>
+            <th>E-mail</th>
+            <th>Role</th>
+            <th>Agente ID</th>
+            <th>Status</th>
+            <th>Criado em</th>
+            <th>Acoes</th>
+          </tr>
+        </thead>
+        <tbody id="agentesTable">
+          ${agentes.map(a => `
+          <tr data-id="${a.id}">
+            <td>${a.id}</td>
+            <td>${a.nome}</td>
+            <td>${a.email}</td>
+            <td><span class="status-badge ${a.role === 'admin' ? 'admin' : 'agent'}">${a.role === 'admin' ? 'Admin' : 'Agente'}</span></td>
+            <td>${a.role === 'admin' ? '-' : a.agente_id}</td>
+            <td><span class="status-badge ${a.ativo ? 'active' : 'inactive'}">${a.ativo ? 'Ativo' : 'Inativo'}</span></td>
+            <td>${a.created_at ? new Date(a.created_at).toLocaleDateString('pt-BR') : '-'}</td>
+            <td class="actions">
+              ${a.role === 'agente' ? `<a href="/admin/emular/${a.agente_id}" class="btn-action btn-emular" title="Ver como este agente">Emular</a>` : ''}
+              <button class="btn-action btn-edit" onclick="openEditModal(${a.id}, '${a.nome.replace(/'/g, "\\'")}', '${a.email.replace(/'/g, "\\'")}', ${a.agente_id}, '${a.role || 'agente'}', event)">Editar</button>
+              <button class="btn-action btn-toggle" onclick="toggleAgente(${a.id}, ${a.ativo})">${a.ativo ? 'Desativar' : 'Ativar'}</button>
+              <button class="btn-action btn-password" onclick="openPasswordModal(${a.id}, '${a.nome.replace(/'/g, "\\'")}')">Senha</button>
+            </td>
+          </tr>
+          `).join('')}
+        </tbody>
+      </table>
+    </div>
+  </div>
+</div>
+
+<div class="footer">BI - CCC - CambioReal Central Command - ${now}</div>
+
+<!-- Create/Edit Modal -->
+<div class="modal-overlay" id="agentModal">
+  <div class="modal">
+    <div class="modal-header">
+      <h3 id="modalTitle">Novo Agente</h3>
+      <button class="modal-close" onclick="closeModal('agentModal')">&times;</button>
+    </div>
+    <form id="agentForm" onsubmit="submitAgentForm(event)">
+      <div class="modal-body">
+        <input type="hidden" id="agentId" name="id">
+        <div class="form-group">
+          <label>Nome</label>
+          <input type="text" id="agentNome" name="nome" required placeholder="Nome do usuario">
+        </div>
+        <div class="form-group">
+          <label>E-mail</label>
+          <input type="email" id="agentEmail" name="email" required placeholder="usuario@email.com">
+        </div>
+        <div class="form-group">
+          <label>Tipo de Usuario</label>
+          <select id="agentRole" name="role" onchange="toggleAgenteIdField()">
+            <option value="agente">Agente</option>
+            <option value="admin">Administrador</option>
+          </select>
+        </div>
+        <div class="form-group" id="agenteIdGroup">
+          <label>Agente ID (Sistema)</label>
+          <input type="number" id="agentAgenteId" name="agente_id" placeholder="ID numerico do agente">
+        </div>
+        <div class="form-group" id="senhaGroup">
+          <label>Senha</label>
+          <input type="password" id="agentSenha" name="senha" placeholder="Senha de acesso" minlength="6">
+        </div>
+      </div>
+      <div class="modal-footer">
+        <button type="button" class="btn-cancel" onclick="closeModal('agentModal')">Cancelar</button>
+        <button type="submit" class="btn-submit" id="submitBtn">Criar Agente</button>
+      </div>
+    </form>
+  </div>
+</div>
+
+<!-- Password Reset Modal -->
+<div class="modal-overlay" id="passwordModal">
+  <div class="modal">
+    <div class="modal-header">
+      <h3 id="passwordModalTitle">Redefinir Senha</h3>
+      <button class="modal-close" onclick="closeModal('passwordModal')">&times;</button>
+    </div>
+    <form id="passwordForm" onsubmit="submitPasswordForm(event)">
+      <div class="modal-body">
+        <input type="hidden" id="passwordAgentId">
+        <div class="form-group">
+          <label>Nova Senha</label>
+          <input type="password" id="newPassword" required placeholder="Nova senha" minlength="6">
+        </div>
+        <div class="form-group">
+          <label>Confirmar Senha</label>
+          <input type="password" id="confirmPassword" required placeholder="Confirme a senha" minlength="6">
+        </div>
+      </div>
+      <div class="modal-footer">
+        <button type="button" class="btn-cancel" onclick="closeModal('passwordModal')">Cancelar</button>
+        <button type="submit" class="btn-submit">Redefinir Senha</button>
+      </div>
+    </form>
+  </div>
+</div>
+
+<script>
+let isEditing = false;
+
+function showAlert(message, type) {
+  const alert = document.getElementById('alertBox');
+  alert.textContent = message;
+  alert.className = 'alert ' + type + ' show';
+  setTimeout(() => { alert.className = 'alert'; }, 4000);
+}
+
+function toggleAgenteIdField() {
+  const role = document.getElementById('agentRole').value;
+  const agenteIdGroup = document.getElementById('agenteIdGroup');
+  const agenteIdInput = document.getElementById('agentAgenteId');
+  if (role === 'admin') {
+    agenteIdGroup.style.display = 'none';
+    agenteIdInput.required = false;
+    agenteIdInput.value = '';
+  } else {
+    agenteIdGroup.style.display = 'block';
+    agenteIdInput.required = !isEditing;
+  }
+}
+
+function openCreateModal(event) {
+  if (event) event.stopPropagation();
+  isEditing = false;
+  document.getElementById('modalTitle').textContent = 'Novo Usuario';
+  document.getElementById('submitBtn').textContent = 'Criar Usuario';
+  document.getElementById('agentForm').reset();
+  document.getElementById('agentId').value = '';
+  document.getElementById('agentRole').value = 'agente';
+  document.getElementById('senhaGroup').style.display = 'block';
+  document.getElementById('agentSenha').required = true;
+  toggleAgenteIdField();
+  setTimeout(() => {
+    document.getElementById('agentModal').classList.add('active');
+    document.getElementById('agentNome').focus();
+  }, 10);
+}
+
+function openEditModal(id, nome, email, agenteId, role, event) {
+  if (event) event.stopPropagation();
+  isEditing = true;
+  document.getElementById('modalTitle').textContent = 'Editar Usuario';
+  document.getElementById('submitBtn').textContent = 'Salvar Alteracoes';
+  document.getElementById('agentId').value = id;
+  document.getElementById('agentNome').value = nome;
+  document.getElementById('agentEmail').value = email;
+  document.getElementById('agentAgenteId').value = agenteId;
+  document.getElementById('agentRole').value = role || 'agente';
+  document.getElementById('senhaGroup').style.display = 'none';
+  document.getElementById('agentSenha').required = false;
+  toggleAgenteIdField();
+  setTimeout(() => {
+    document.getElementById('agentModal').classList.add('active');
+    document.getElementById('agentNome').focus();
+  }, 10);
+}
+
+function openPasswordModal(id, nome) {
+  document.getElementById('passwordModalTitle').textContent = 'Redefinir Senha: ' + nome;
+  document.getElementById('passwordAgentId').value = id;
+  document.getElementById('passwordForm').reset();
+  document.getElementById('passwordModal').classList.add('active');
+  document.getElementById('newPassword').focus();
+}
+
+function closeModal(id) {
+  document.getElementById(id).classList.remove('active');
+}
+
+async function submitAgentForm(e) {
+  e.preventDefault();
+  const id = document.getElementById('agentId').value;
+  const role = document.getElementById('agentRole').value;
+  const data = {
+    nome: document.getElementById('agentNome').value,
+    email: document.getElementById('agentEmail').value,
+    role: role,
+  };
+
+  if (role === 'agente') {
+    const agenteId = document.getElementById('agentAgenteId').value;
+    if (!isEditing && !agenteId) {
+      showAlert('Agente ID e obrigatorio para agentes', 'error');
+      return;
+    }
+    data.agente_id = parseInt(agenteId) || 0;
+  }
+
+  if (!isEditing) {
+    data.senha = document.getElementById('agentSenha').value;
+  }
+
+  try {
+    const url = isEditing ? '/admin/agentes/' + id : '/admin/agentes';
+    const method = isEditing ? 'PUT' : 'POST';
+    const res = await fetch(url, {
+      method,
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify(data)
+    });
+    const result = await res.json();
+    if (res.ok) {
+      showAlert(isEditing ? 'Usuario atualizado com sucesso!' : 'Usuario criado com sucesso!', 'success');
+      closeModal('agentModal');
+      setTimeout(() => location.reload(), 1000);
+    } else {
+      showAlert(result.error || 'Erro ao salvar usuario', 'error');
+    }
+  } catch (err) {
+    showAlert('Erro de conexao', 'error');
+  }
+}
+
+async function submitPasswordForm(e) {
+  e.preventDefault();
+  const id = document.getElementById('passwordAgentId').value;
+  const newPassword = document.getElementById('newPassword').value;
+  const confirmPassword = document.getElementById('confirmPassword').value;
+
+  if (newPassword !== confirmPassword) {
+    showAlert('As senhas nao coincidem', 'error');
+    return;
+  }
+
+  try {
+    const res = await fetch('/admin/agentes/' + id, {
+      method: 'PUT',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({ senha: newPassword })
+    });
+    const result = await res.json();
+    if (res.ok) {
+      showAlert('Senha redefinida com sucesso!', 'success');
+      closeModal('passwordModal');
+    } else {
+      showAlert(result.error || 'Erro ao redefinir senha', 'error');
+    }
+  } catch (err) {
+    showAlert('Erro de conexao', 'error');
+  }
+}
+
+async function toggleAgente(id, currentStatus) {
+  const action = currentStatus ? 'desativar' : 'ativar';
+  if (!confirm('Deseja ' + action + ' este agente?')) return;
+
+  try {
+    const res = await fetch('/admin/agentes/' + id, {
+      method: 'PUT',
+      headers: { 'Content-Type': 'application/json' },
+      body: JSON.stringify({ ativo: currentStatus ? 0 : 1 })
+    });
+    const result = await res.json();
+    if (res.ok) {
+      showAlert('Agente ' + (currentStatus ? 'desativado' : 'ativado') + ' com sucesso!', 'success');
+      setTimeout(() => location.reload(), 1000);
+    } else {
+      showAlert(result.error || 'Erro ao alterar status', 'error');
+    }
+  } catch (err) {
+    showAlert('Erro de conexao', 'error');
+  }
+}
+
+// Close modal on overlay click (not on modal content)
+document.querySelectorAll('.modal-overlay').forEach(overlay => {
+  overlay.addEventListener('click', (e) => {
+    if (e.target === overlay) {
+      overlay.classList.remove('active');
+    }
+  });
+});
+
+// Prevent clicks inside modal from closing it
+document.querySelectorAll('.modal').forEach(modal => {
+  modal.addEventListener('click', (e) => {
+    e.stopPropagation();
+  });
+});
+
+// Close modal on Escape key
+document.addEventListener('keydown', (e) => {
+  if (e.key === 'Escape') {
+    document.querySelectorAll('.modal-overlay.active').forEach(m => m.classList.remove('active'));
+  }
+});
+</script>
+</body>
+</html>`;
+}
+
+module.exports = { buildAdminHTML };
diff --git a/src/auth.js b/src/auth.js
index b70380e..949c91e 100644
--- a/src/auth.js
+++ b/src/auth.js
@@ -1,18 +1,33 @@
 /**
- * Autenticação — login/logout com bcrypt + express-session
+ * Autenticacao Unificada — login/logout com bcrypt + express-session
+ * Suporta roles: 'agente' | 'admin'
  */
 const bcrypt = require('bcrypt');
 const db = require('./db-local');
 
 const SALT_ROUNDS = 10;
 
-async function createAgente(email, senha, agenteId, nome) {
+/**
+ * Cria um novo usuario (agente ou admin)
+ */
+async function createUser(email, senha, nome, role = 'agente', agenteId = 0) {
   const hash = await bcrypt.hash(senha, SALT_ROUNDS);
   return db.prepare(
-    'INSERT INTO agentes (email, senha_hash, agente_id, nome) VALUES (?, ?, ?, ?)'
-  ).run(email, hash, agenteId, nome);
+    'INSERT INTO agentes (email, senha_hash, agente_id, nome, role) VALUES (?, ?, ?, ?, ?)'
+  ).run(email, hash, agenteId, nome, role);
 }
 
+/**
+ * Cria agente (retrocompatibilidade)
+ */
+async function createAgente(email, senha, agenteId, nome) {
+  return createUser(email, senha, nome, 'agente', agenteId);
+}
+
+/**
+ * Autentica usuario por email/senha
+ * Retorna usuario com role ou null se invalido
+ */
 async function authenticate(email, senha) {
   const row = db.prepare(
     'SELECT * FROM agentes WHERE email = ? AND ativo = 1'
@@ -22,9 +37,48 @@ async function authenticate(email, senha) {
   return match ? row : null;
 }
 
+/**
+ * Middleware que verifica autenticacao e roles
+ * Uso: requireRole() - qualquer usuario logado
+ *      requireRole('admin') - apenas admins
+ *      requireRole('agente', 'admin') - ambos
+ */
+function requireRole(...roles) {
+  return (req, res, next) => {
+    if (!req.session?.user) {
+      return res.redirect('/login');
+    }
+    if (roles.length && !roles.includes(req.session.user.role)) {
+      return res.status(403).send('Acesso negado');
+    }
+    next();
+  };
+}
+
+/**
+ * Middleware simples - apenas verifica se esta logado
+ * Retrocompatibilidade com requireAuth
+ */
 function requireAuth(req, res, next) {
-  if (req.session && req.session.agente) return next();
+  if (req.session && req.session.user) return next();
   res.redirect('/login');
 }
 
-module.exports = { createAgente, authenticate, requireAuth };
+/**
+ * Atualiza senha de usuario
+ */
+async function updatePassword(id, novaSenha) {
+  const hash = await bcrypt.hash(novaSenha, SALT_ROUNDS);
+  return db.prepare(
+    'UPDATE agentes SET senha_hash = ? WHERE id = ?'
+  ).run(hash, id);
+}
+
+module.exports = {
+  createUser,
+  createAgente,
+  authenticate,
+  requireAuth,
+  requireRole,
+  updatePassword
+};
diff --git a/src/dashboard.js b/src/dashboard.js
index 503c9bd..ec2f3ed 100644
--- a/src/dashboard.js
+++ b/src/dashboard.js
@@ -2,14 +2,15 @@
  * Gera HTML do dashboard — parametrizado por agente
  */
 
-function buildHTML(data, agente) {
+function buildHTML(data, agente, isAgentDashboard = true, diasPeriodo = null, asyncLoad = false, isEmulating = false) {
   const now = new Date().toLocaleString('pt-BR');
+  const isAdminDash = diasPeriodo !== null;
   return `<!DOCTYPE html>
 <html lang="pt-BR">
 <head>
 <meta charset="UTF-8">
 <meta name="viewport" content="width=device-width, initial-scale=1.0">
-<title>BI — ${agente.nome}</title>
+<title>BI - CCC — ${agente.nome}</title>
 <script src="https://cdn.jsdelivr.net/npm/chart.js@4.4.7/dist/chart.umd.min.js"><\/script>
 <link href="https://fonts.googleapis.com/css2?family=Inter:wght@400;500;600;700;800&display=swap" rel="stylesheet">
 <style>
@@ -86,6 +87,13 @@ function buildHTML(data, agente) {
     cursor: pointer; transition: all 0.15s; box-shadow: 0 1px 3px rgba(108,63,160,0.3);
   }
   .btn-apply:hover { background: var(--primary-light); transform: translateY(-1px); }
+  .btn-export {
+    background: var(--green); color: white; border: none; padding: 9px 20px;
+    border-radius: 8px; font-size: 13px; font-weight: 600; font-family: inherit;
+    cursor: pointer; transition: all 0.15s; box-shadow: 0 1px 3px rgba(30,142,62,0.3);
+    margin-left: 8px;
+  }
+  .btn-export:hover { background: #25a244; transform: translateY(-1px); }
 
   .container { padding: 28px 40px; max-width: 1480px; margin: 0 auto; }
 
@@ -108,11 +116,55 @@ function buildHTML(data, agente) {
   .kpi-card .kpi-label { font-size: 11px; font-weight: 600; color: var(--text-muted); text-transform: uppercase; letter-spacing: 0.5px; margin-bottom: 4px; }
   .kpi-card .kpi-value { font-size: 20px; font-weight: 800; color: var(--text); line-height: 1.2; letter-spacing: -0.3px; word-break: break-word; font-variant-numeric: tabular-nums; }
   .kpi-card .kpi-sub { font-size: 11px; color: var(--text-muted); margin-top: 3px; font-weight: 400; }
+  .kpi-card .kpi-change { font-size: 11px; margin-top: 4px; font-weight: 600; display: inline-block; padding: 2px 6px; border-radius: 4px; }
+  .kpi-card .kpi-change.up { background: var(--green-bg); color: var(--green); }
+  .kpi-card .kpi-change.down { background: #FEE2E2; color: #DC2626; }
+  .kpi-card .kpi-change.neutral { background: #F3F4F6; color: var(--text-muted); }
 
-  .charts-grid { display: grid; grid-template-columns: 1fr 1fr; gap: 16px; margin-bottom: 28px; }
-  .chart-card { background: var(--card); border-radius: 12px; padding: 22px; border: 1px solid var(--border); box-shadow: 0 1px 3px rgba(0,0,0,0.06); }
-  .chart-card h3 { font-size: 14px; font-weight: 700; margin-bottom: 16px; color: var(--text); }
-  .chart-card canvas { width: 100% !important; }
+  .charts-grid {
+    display: grid;
+    grid-template-columns: repeat(2, 1fr);
+    gap: 20px;
+    margin-bottom: 28px;
+  }
+  .chart-card {
+    background: var(--card);
+    border-radius: 16px;
+    padding: 24px;
+    border: 1px solid var(--border);
+    box-shadow: 0 2px 8px rgba(0,0,0,0.04), 0 1px 2px rgba(0,0,0,0.06);
+    display: flex;
+    flex-direction: column;
+    min-height: 380px;
+  }
+  .chart-card h3 {
+    font-size: 14px;
+    font-weight: 700;
+    margin-bottom: 20px;
+    color: var(--text);
+    padding-bottom: 12px;
+    border-bottom: 1px solid var(--border);
+    display: flex;
+    align-items: center;
+    gap: 8px;
+  }
+  .chart-card h3::before {
+    content: '';
+    width: 4px;
+    height: 16px;
+    background: var(--primary);
+    border-radius: 2px;
+  }
+  .chart-card .chart-container {
+    flex: 1;
+    position: relative;
+    min-height: 280px;
+  }
+  .chart-card canvas {
+    width: 100% !important;
+    height: 100% !important;
+    max-height: 320px;
+  }
 
   .table-card { background: var(--card); border-radius: 12px; border: 1px solid var(--border); box-shadow: 0 1px 3px rgba(0,0,0,0.06); overflow: hidden; margin-bottom: 28px; }
   .table-card h3 { font-size: 15px; font-weight: 700; padding: 18px 22px; border-bottom: 1px solid var(--border); }
@@ -127,19 +179,270 @@ function buildHTML(data, agente) {
 
   .footer { text-align: center; padding: 20px; font-size: 12px; color: var(--text-muted); }
 
-  @media (max-width: 1100px) { .kpi-grid { grid-template-columns: repeat(2, 1fr); } }
-  @media (max-width: 900px) { .charts-grid { grid-template-columns: 1fr; } .kpi-grid { grid-template-columns: repeat(2, 1fr); } .container { padding: 20px; } .filters { padding: 12px 20px; } .header { padding: 20px; } }
-  @media (max-width: 600px) { .kpi-grid { grid-template-columns: 1fr; } }
+  /* Portfolio Analysis Styles */
+  .section-title {
+    font-size: 18px; font-weight: 700; color: var(--text); margin: 32px 0 16px 0;
+    padding-bottom: 8px; border-bottom: 2px solid var(--primary);
+  }
+  .portfolio-kpi-grid { display: grid; grid-template-columns: repeat(4, 1fr); gap: 16px; margin-bottom: 28px; }
+  .client-table-card { background: var(--card); border-radius: 12px; border: 1px solid var(--border); box-shadow: 0 1px 3px rgba(0,0,0,0.06); overflow: hidden; margin-bottom: 28px; }
+  .client-table-card h3 { font-size: 15px; font-weight: 700; padding: 18px 22px; border-bottom: 1px solid var(--border); display: flex; justify-content: space-between; align-items: center; }
+  .client-table-card .table-info { font-size: 12px; font-weight: 400; color: var(--text-muted); }
+  .client-table thead th { cursor: pointer; user-select: none; transition: background 0.15s; }
+  .client-table thead th:hover { background: var(--primary-bg); }
+  .client-table thead th.sorted-asc::after { content: ' \\25B2'; font-size: 10px; color: var(--primary); }
+  .client-table thead th.sorted-desc::after { content: ' \\25BC'; font-size: 10px; color: var(--primary); }
+  .recency-green { background: var(--green-bg) !important; color: var(--green); font-weight: 600; }
+  .recency-yellow { background: var(--orange-bg) !important; color: var(--orange); font-weight: 600; }
+  .recency-red { background: #FEE2E2 !important; color: #DC2626; font-weight: 600; }
+
+  /* Spread Liquido Styles */
+  .spread-high { background: var(--green-bg) !important; color: var(--green); font-weight: 600; }
+  .spread-medium { background: var(--orange-bg) !important; color: var(--orange); font-weight: 600; }
+  .spread-low { background: #FEE2E2 !important; color: #DC2626; font-weight: 600; }
+
+  /* Netting Chart Styles */
+  .netting-section { margin-top: 32px; }
+  .netting-kpi-grid { display: grid; grid-template-columns: repeat(4, 1fr); gap: 16px; margin-bottom: 20px; }
+  .netting-kpi { background: var(--card); border-radius: 12px; padding: 18px 22px; border: 1px solid var(--border); text-align: center; }
+  .netting-kpi .label { font-size: 11px; font-weight: 600; color: var(--text-muted); text-transform: uppercase; margin-bottom: 6px; }
+  .netting-kpi .value { font-size: 22px; font-weight: 800; }
+  .netting-kpi .value.positive { color: var(--green); }
+  .netting-kpi .value.negative { color: #DC2626; }
+  .netting-kpi .value.neutral { color: var(--blue); }
+  .netting-kpi .sub { font-size: 11px; color: var(--text-muted); margin-top: 4px; }
+
+  /* Alerts Section */
+  .alerts-section {
+    background: var(--card);
+    border-radius: 12px;
+    border: 1px solid var(--border);
+    box-shadow: 0 1px 3px rgba(0,0,0,0.06);
+    margin-bottom: 28px;
+    overflow: hidden;
+  }
+  .alerts-header {
+    display: flex;
+    justify-content: space-between;
+    align-items: center;
+    padding: 16px 22px;
+    border-bottom: 1px solid var(--border);
+    background: #FAFBFC;
+  }
+  .alerts-header h3 {
+    font-size: 15px;
+    font-weight: 700;
+    color: var(--text);
+    display: flex;
+    align-items: center;
+    gap: 10px;
+  }
+  .alerts-header .alert-count {
+    background: var(--primary);
+    color: white;
+    font-size: 11px;
+    font-weight: 600;
+    padding: 2px 8px;
+    border-radius: 12px;
+    min-width: 22px;
+    text-align: center;
+  }
+  .alerts-header .alert-count.zero {
+    background: var(--green);
+  }
+  .alerts-toggle {
+    background: none;
+    border: 1px solid var(--border);
+    padding: 6px 14px;
+    border-radius: 6px;
+    font-size: 12px;
+    font-weight: 600;
+    color: var(--text-secondary);
+    cursor: pointer;
+    font-family: inherit;
+    transition: all 0.15s;
+    display: flex;
+    align-items: center;
+    gap: 6px;
+  }
+  .alerts-toggle:hover {
+    background: var(--bg);
+    border-color: var(--primary);
+    color: var(--primary);
+  }
+  .alerts-body {
+    padding: 20px 22px;
+    transition: max-height 0.3s ease, padding 0.3s ease, opacity 0.3s ease;
+    overflow: hidden;
+  }
+  .alerts-body.collapsed {
+    max-height: 0 !important;
+    padding: 0 22px;
+    opacity: 0;
+  }
+  .alerts-grid {
+    display: grid;
+    grid-template-columns: repeat(auto-fill, minmax(300px, 1fr));
+    gap: 14px;
+  }
+  .alert-card {
+    border-radius: 10px;
+    padding: 14px 16px;
+    display: flex;
+    gap: 12px;
+    align-items: flex-start;
+  }
+  .alert-card.critical {
+    background: #FEE2E2;
+    border: 1px solid #FECACA;
+  }
+  .alert-card.warning {
+    background: #FEF3C7;
+    border: 1px solid #FDE68A;
+  }
+  .alert-card.info {
+    background: var(--blue-bg);
+    border: 1px solid #BFDBFE;
+  }
+  .alert-icon {
+    width: 36px;
+    height: 36px;
+    border-radius: 8px;
+    display: flex;
+    align-items: center;
+    justify-content: center;
+    font-size: 16px;
+    flex-shrink: 0;
+  }
+  .alert-card.critical .alert-icon {
+    background: #DC2626;
+    color: white;
+  }
+  .alert-card.warning .alert-icon {
+    background: #F59E0B;
+    color: white;
+  }
+  .alert-card.info .alert-icon {
+    background: var(--blue);
+    color: white;
+  }
+  .alert-content {
+    flex: 1;
+    min-width: 0;
+  }
+  .alert-title {
+    font-size: 13px;
+    font-weight: 700;
+    margin-bottom: 4px;
+  }
+  .alert-card.critical .alert-title { color: #DC2626; }
+  .alert-card.warning .alert-title { color: #B45309; }
+  .alert-card.info .alert-title { color: var(--blue); }
+  .alert-desc {
+    font-size: 12px;
+    color: var(--text-secondary);
+    line-height: 1.4;
+  }
+  .no-alerts {
+    text-align: center;
+    padding: 30px;
+    color: var(--text-muted);
+    font-size: 13px;
+  }
+  .no-alerts .check-icon {
+    font-size: 32px;
+    margin-bottom: 8px;
+    color: var(--green);
+  }
+
+  /* Additional Charts Grid */
+  .charts-grid-3 {
+    display: grid;
+    grid-template-columns: repeat(3, 1fr);
+    gap: 20px;
+    margin-bottom: 28px;
+  }
+  .chart-card.full-width {
+    grid-column: span 2;
+  }
+  .chart-card.half-width {
+    grid-column: span 1;
+  }
+
+  /* Section Headers */
+  .section-header {
+    display: flex;
+    align-items: center;
+    gap: 12px;
+    margin: 36px 0 20px 0;
+    padding-bottom: 12px;
+    border-bottom: 2px solid var(--primary);
+  }
+  .section-header h2 {
+    font-size: 18px;
+    font-weight: 800;
+    color: var(--text);
+    margin: 0;
+  }
+  .section-header .section-badge {
+    background: var(--primary-bg);
+    color: var(--primary);
+    font-size: 11px;
+    font-weight: 600;
+    padding: 4px 10px;
+    border-radius: 12px;
+  }
+
+  /* Responsive */
+  @media (max-width: 1400px) {
+    .charts-grid-3 { grid-template-columns: repeat(2, 1fr); }
+    .chart-card.full-width { grid-column: span 2; }
+  }
+  @media (max-width: 1100px) {
+    .kpi-grid { grid-template-columns: repeat(2, 1fr); }
+    .portfolio-kpi-grid { grid-template-columns: repeat(2, 1fr); }
+    .netting-kpi-grid { grid-template-columns: repeat(2, 1fr); }
+  }
+  @media (max-width: 900px) {
+    .charts-grid { grid-template-columns: 1fr; }
+    .charts-grid-3 { grid-template-columns: 1fr; }
+    .chart-card.full-width { grid-column: span 1; }
+    .chart-card { min-height: 320px; }
+    .container { padding: 20px; }
+    .filters { padding: 12px 20px; flex-wrap: wrap; }
+    .header { padding: 20px; flex-direction: column; gap: 12px; }
+  }
+  @media (max-width: 600px) {
+    .kpi-grid { grid-template-columns: 1fr; }
+    .portfolio-kpi-grid { grid-template-columns: 1fr; }
+    .netting-kpi-grid { grid-template-columns: 1fr; }
+  }
 </style>
 </head>
 <body>
 
+${isEmulating ? `
+<div style="background:linear-gradient(90deg,#FF6B35,#F7931E);color:white;padding:12px 24px;text-align:center;font-size:13px;font-weight:600;display:flex;justify-content:center;align-items:center;gap:16px;">
+  <span>Modo Emulacao - Visualizando como: ${agente.nome}</span>
+  <a href="/admin" style="background:rgba(255,255,255,0.2);color:white;padding:6px 16px;border-radius:6px;text-decoration:none;font-size:12px;border:1px solid rgba(255,255,255,0.3);">Voltar ao BI - CCC</a>
+</div>
+` : ''}
 <div class="header">
   <div>
-    <h1>${agente.nome} &mdash; Agente ${agente.agente_id}</h1>
-    <div class="subtitle">Dashboard de Transacoes BRL &harr; USD</div>
+    <h1>${agente.nome}${agente.agente_id ? ` &mdash; Agente ${agente.agente_id}` : ''}</h1>
+    <div class="subtitle">Dashboard de Transacoes BRL &harr; USD ${isAdminDash ? `(${data.length.toLocaleString('pt-BR')} registros)` : ''}</div>
   </div>
   <div class="header-right">
+    ${isAdminDash ? `
+    <select onchange="window.location.href='/admin/dashboard?dias='+this.value" style="padding:8px 12px;border-radius:8px;border:1px solid rgba(255,255,255,0.3);background:rgba(255,255,255,0.1);color:white;font-size:13px;cursor:pointer;">
+      <option value="30" ${diasPeriodo === 30 ? 'selected' : ''}>30 dias</option>
+      <option value="60" ${diasPeriodo === 60 ? 'selected' : ''}>60 dias</option>
+      <option value="90" ${diasPeriodo === 90 ? 'selected' : ''}>90 dias</option>
+      <option value="180" ${diasPeriodo === 180 ? 'selected' : ''}>180 dias</option>
+      <option value="365" ${diasPeriodo === 365 ? 'selected' : ''}>1 ano</option>
+    </select>
+    <a href="/admin" class="btn-logout" style="background:rgba(255,255,255,0.15);">Voltar</a>
+    ` : ''}
     <div class="badge"><span class="live-dot"></span>Ao vivo &mdash; ${now}</div>
     <a href="/logout" class="btn-logout">Sair</a>
   </div>
@@ -169,37 +472,179 @@ function buildHTML(data, agente) {
     <select id="filterCliente"><option value="">Todos</option></select>
   </div>
   <button class="btn-apply" onclick="applyFilters()">Aplicar</button>
+  <button class="btn-export" onclick="exportCSV()">&#x2B07; Exportar CSV</button>
 </div>
 
 <div class="container">
   <div class="kpi-grid" id="kpiGrid"></div>
-  <div class="charts-grid">
-    <div class="chart-card"><h3>Volume BRL / USD por Periodo</h3><canvas id="chartVolume"></canvas></div>
-    <div class="chart-card"><h3>Volume por Cliente (Top 10)</h3><canvas id="chartClientes"></canvas></div>
-    <div class="chart-card"><h3>Taxa Cobrada vs PTAX</h3><canvas id="chartTaxas"></canvas></div>
+
+  <!-- Alerts Section -->
+  <div class="alerts-section" id="alertsSection">
+    <div class="alerts-header">
+      <h3>Alertas Inteligentes <span class="alert-count" id="alertCount">0</span></h3>
+      <button class="alerts-toggle" id="alertsToggle" onclick="toggleAlerts()">
+        <span id="alertsToggleIcon">&#x25BC;</span>
+        <span id="alertsToggleText">Recolher</span>
+      </button>
+    </div>
+    <div class="alerts-body" id="alertsBody">
+      <div class="alerts-grid" id="alertsGrid"></div>
+    </div>
   </div>
+
+  <!-- Volume Charts Section -->
+  <div class="section-header">
+    <h2>Volume e Taxas</h2>
+    <span class="section-badge">Principais</span>
+  </div>
+  <div class="charts-grid">
+    <div class="chart-card">
+      <h3>Volume BRL / USD por Periodo</h3>
+      <div class="chart-container"><canvas id="chartVolume"></canvas></div>
+    </div>
+    <div class="chart-card">
+      <h3>Volume por Cliente (Top 10)</h3>
+      <div class="chart-container"><canvas id="chartClientes"></canvas></div>
+    </div>
+  </div>
+  <div class="charts-grid">
+    <div class="chart-card">
+      <h3>Taxa Cobrada vs PTAX</h3>
+      <div class="chart-container"><canvas id="chartTaxas"></canvas></div>
+    </div>
+    <div class="chart-card">
+      <h3>Evolucao de Clientes Ativos</h3>
+      <div class="chart-container"><canvas id="chartClientesAtivos"></canvas></div>
+    </div>
+  </div>
+
+  <!-- Portfolio Analysis Charts -->
+  <div class="section-header">
+    <h2>Analise de Carteira</h2>
+    <span class="section-badge">Portfolio</span>
+  </div>
+  <div class="charts-grid">
+    <div class="chart-card">
+      <h3>Distribuicao de Clientes por Volume</h3>
+      <div class="chart-container"><canvas id="chartDistribuicao"></canvas></div>
+    </div>
+    <div class="chart-card">
+      <h3>Curva de Pareto (80/20)</h3>
+      <div class="chart-container"><canvas id="chartPareto"></canvas></div>
+    </div>
+  </div>
+
+  <!-- Netting / Balance In-Out Section -->
+  <div class="section-header">
+    <h2>Balance In/Out - Eficiencia IOF</h2>
+    <span class="section-badge">Netting</span>
+  </div>
+  <div class="netting-kpi-grid" id="nettingKpis"></div>
+  <div class="charts-grid">
+    <div class="chart-card">
+      <h3>Fluxo: Entrada vs Saida (USD)</h3>
+      <div class="chart-container"><canvas id="chartNetting"></canvas></div>
+    </div>
+    <div class="chart-card">
+      <h3>Eficiencia de Netting por Periodo</h3>
+      <div class="chart-container"><canvas id="chartEficiencia"></canvas></div>
+    </div>
+  </div>
+
   <div class="table-card">
     <h3 id="tableTitle">Transacoes</h3>
     <div class="table-wrap">
       <table><thead id="tableHead"></thead><tbody id="tableBody"></tbody></table>
     </div>
   </div>
+
+  <!-- Portfolio Analysis Section -->
+  <h2 class="section-title">Analise de Carteira</h2>
+  <div class="portfolio-kpi-grid" id="portfolioKpiGrid"></div>
+  <div class="client-table-card">
+    <h3>Metricas por Cliente <span class="table-info" id="clientTableInfo"></span></h3>
+    <div class="table-wrap">
+      <table class="client-table"><thead id="clientTableHead"></thead><tbody id="clientTableBody"></tbody></table>
+    </div>
+  </div>
 </div>
 
-<div class="footer">CambioReal &mdash; ${agente.nome} BI Dashboard &mdash; Dados ao vivo</div>
+<div class="footer">BI - CCC &mdash; CambioReal Central Command &mdash; ${agente.nome}</div>
 
 <script>
-const RAW_DATA = ${JSON.stringify(data)};
+let RAW_DATA = ${asyncLoad ? '[]' : JSON.stringify(data)};
+const ASYNC_LOAD = ${asyncLoad};
+const DIAS_PERIODO = ${diasPeriodo || 90};
 
 let filtered = [];
 let charts = {};
 
+// Portfolio Analysis Variables (must be declared before init)
+let clientMetrics = [];
+let clientSortColumn = 'volumeTotal';
+let clientSortDirection = 'desc';
+
 const fmtBRL = v => v.toLocaleString('pt-BR', { style: 'currency', currency: 'BRL' });
 const fmtUSD = v => v.toLocaleString('pt-BR', { style: 'currency', currency: 'USD' });
 const fmtNum = (v, d=2) => v.toLocaleString('pt-BR', { minimumFractionDigits: d, maximumFractionDigits: d });
 const fmtPct = v => fmtNum(v, 2) + '%';
 
+// Loading overlay
+function showLoading(msg) {
+  let overlay = document.getElementById('loadingOverlay');
+  if (!overlay) {
+    overlay = document.createElement('div');
+    overlay.id = 'loadingOverlay';
+    overlay.style.cssText = 'position:fixed;top:0;left:0;right:0;bottom:0;background:rgba(0,0,0,0.7);display:flex;align-items:center;justify-content:center;z-index:9999;flex-direction:column;gap:16px;';
+    overlay.innerHTML = '<div style="width:50px;height:50px;border:4px solid #fff;border-top-color:#6C3FA0;border-radius:50%;animation:spin 1s linear infinite;"></div><div style="color:#fff;font-size:16px;" id="loadingText">Carregando...</div><style>@keyframes spin{to{transform:rotate(360deg)}}</style>';
+    document.body.appendChild(overlay);
+  }
+  document.getElementById('loadingText').textContent = msg || 'Carregando...';
+  overlay.style.display = 'flex';
+}
+function hideLoading() {
+  const overlay = document.getElementById('loadingOverlay');
+  if (overlay) overlay.style.display = 'none';
+}
+
+// Async data loading
+async function loadDataAsync() {
+  showLoading('Carregando dados (' + DIAS_PERIODO + ' dias)...');
+  try {
+    const resp = await fetch('/admin/api/data?dias=' + DIAS_PERIODO);
+    const json = await resp.json();
+    if (json.success) {
+      RAW_DATA = json.data;
+      document.querySelector('.subtitle').textContent = 'Dashboard de Transacoes BRL ↔ USD (' + json.count.toLocaleString('pt-BR') + ' registros)';
+      initDashboard();
+    } else {
+      alert('Erro ao carregar dados: ' + json.error);
+    }
+  } catch (err) {
+    alert('Erro de conexao: ' + err.message);
+  }
+  hideLoading();
+}
+
+function initDashboard() {
+  const clientes = [...new Set(RAW_DATA.map(r => r.cliente))].sort();
+  const sel = document.getElementById('filterCliente');
+  sel.innerHTML = '<option value="">Todos</option>';
+  clientes.forEach(c => { const o = document.createElement('option'); o.value = c; o.textContent = c; sel.appendChild(o); });
+
+  const dates = RAW_DATA.map(r => r.data_operacao ? r.data_operacao.slice(0, 10) : null).filter(Boolean).sort();
+  if (dates.length) {
+    document.getElementById('filterStart').value = dates[0];
+    document.getElementById('filterEnd').value = dates[dates.length - 1];
+  }
+  applyFilters();
+}
+
 (function init() {
+  if (ASYNC_LOAD) {
+    loadDataAsync();
+    return;
+  }
   const clientes = [...new Set(RAW_DATA.map(r => r.cliente))].sort();
   const sel = document.getElementById('filterCliente');
   clientes.forEach(c => { const o = document.createElement('option'); o.value = c; o.textContent = c; sel.appendChild(o); });
@@ -231,26 +676,80 @@ function applyFilters() {
   renderKPIs();
   try { renderCharts(gran); } catch(e) { console.error('Chart error:', e); }
   renderTable();
+  renderAlerts();
+  renderPortfolioAnalysis();
+  try { renderPortfolioCharts(gran); } catch(e) { console.error('Portfolio chart error:', e); }
+  try { renderNettingAnalysis(gran); } catch(e) { console.error('Netting chart error:', e); }
+}
+
+function calcPreviousPeriod(start, end) {
+  if (!start || !end) return { start: null, end: null };
+  const s = new Date(start);
+  const e = new Date(end);
+  const diffDays = Math.ceil((e - s) / (1000 * 60 * 60 * 24)) + 1;
+  const prevEnd = new Date(s);
+  prevEnd.setDate(prevEnd.getDate() - 1);
+  const prevStart = new Date(prevEnd);
+  prevStart.setDate(prevStart.getDate() - diffDays + 1);
+  return {
+    start: prevStart.toISOString().slice(0, 10),
+    end: prevEnd.toISOString().slice(0, 10)
+  };
+}
+
+function calcKPIsForData(data) {
+  const n = data.length;
+  const totalBRL = data.reduce((s, r) => s + r.valor_reais, 0);
+  const totalUSD = data.reduce((s, r) => s + r.valor_dolar, 0);
+  const taxaMedia = n && totalUSD ? data.reduce((s, r) => s + r.taxa_cobrada * r.valor_dolar, 0) / totalUSD : 0;
+  const spreadMedio = n ? data.reduce((s, r) => s + r.spread_pct, 0) / n : 0;
+  const iofTotal = data.reduce((s, r) => s + r.iof_valor_rs, 0);
+  const ticketMedio = n ? totalUSD / n : 0;
+  const clientes = new Set(data.map(r => r.cliente)).size;
+  return { n, totalBRL, totalUSD, taxaMedia, spreadMedio, iofTotal, ticketMedio, clientes };
+}
+
+function fmtChange(current, previous, invert = false) {
+  if (!previous || previous === 0) return '';
+  const pct = ((current - previous) / previous) * 100;
+  if (Math.abs(pct) < 0.5) return '<span class="kpi-change neutral">~0%</span>';
+  const isUp = invert ? pct < 0 : pct > 0;
+  const cls = isUp ? 'up' : 'down';
+  const arrow = pct > 0 ? '&#x25B2;' : '&#x25BC;';
+  return '<span class="kpi-change ' + cls + '">' + arrow + ' ' + Math.abs(pct).toFixed(1) + '%</span>';
 }
 
 function renderKPIs() {
-  const n = filtered.length;
-  const totalBRL = filtered.reduce((s, r) => s + r.valor_reais, 0);
-  const totalUSD = filtered.reduce((s, r) => s + r.valor_dolar, 0);
-  const taxaMedia = n && totalUSD ? filtered.reduce((s, r) => s + r.taxa_cobrada * r.valor_dolar, 0) / totalUSD : 0;
-  const spreadMedio = n ? filtered.reduce((s, r) => s + r.spread_pct, 0) / n : 0;
-  const iofTotal = filtered.reduce((s, r) => s + r.iof_valor_rs, 0);
-  const ticketMedio = n ? totalUSD / n : 0;
+  const start = document.getElementById('filterStart').value;
+  const end = document.getElementById('filterEnd').value;
+  const cliente = document.getElementById('filterCliente').value;
+  const fluxo = document.getElementById('filterFluxo').value;
+
+  const curr = calcKPIsForData(filtered);
+
+  const prev = calcPreviousPeriod(start, end);
+  let prevData = [];
+  if (prev.start && prev.end) {
+    prevData = RAW_DATA.filter(r => {
+      const dateOnly = r.data_operacao ? r.data_operacao.slice(0, 10) : null;
+      if (!dateOnly || dateOnly < prev.start || dateOnly > prev.end) return false;
+      if (cliente && r.cliente !== cliente) return false;
+      if (fluxo && r.fluxo !== fluxo) return false;
+      return true;
+    });
+  }
+  const prevKPIs = calcKPIsForData(prevData);
+  const hasPrev = prevData.length > 0;
 
   document.getElementById('kpiGrid').innerHTML = \`
-    <div class="kpi-card"><div class="kpi-icon purple">&#x2194;</div><div class="kpi-info"><div class="kpi-label">Transacoes</div><div class="kpi-value">\${n}</div><div class="kpi-sub">operacoes</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon green">R$</div><div class="kpi-info"><div class="kpi-label">Volume BRL</div><div class="kpi-value">\${fmtBRL(totalBRL)}</div><div class="kpi-sub">total movimentado</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon blue">US$</div><div class="kpi-info"><div class="kpi-label">Volume USD</div><div class="kpi-value">\${fmtUSD(totalUSD)}</div><div class="kpi-sub">total movimentado</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon orange">&#x2195;</div><div class="kpi-info"><div class="kpi-label">Taxa Media</div><div class="kpi-value">\${fmtNum(taxaMedia, 4)}</div><div class="kpi-sub">ponderada BRL/USD</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon purple">%</div><div class="kpi-info"><div class="kpi-label">Spread Medio</div><div class="kpi-value">\${fmtPct(spreadMedio)}</div><div class="kpi-sub">sobre taxa cobrada</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon green">&#x00A7;</div><div class="kpi-info"><div class="kpi-label">IOF Total</div><div class="kpi-value">\${fmtBRL(iofTotal)}</div><div class="kpi-sub">recolhido no periodo</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon blue">&#x00D8;</div><div class="kpi-info"><div class="kpi-label">Ticket Medio</div><div class="kpi-value">\${fmtUSD(ticketMedio)}</div><div class="kpi-sub">por operacao</div></div></div>
-    <div class="kpi-card"><div class="kpi-icon orange">&#x263A;</div><div class="kpi-info"><div class="kpi-label">Clientes Ativos</div><div class="kpi-value">\${new Set(filtered.map(r => r.cliente)).size}</div><div class="kpi-sub">no periodo</div></div></div>
+    <div class="kpi-card"><div class="kpi-icon purple">&#x2194;</div><div class="kpi-info"><div class="kpi-label">Transacoes</div><div class="kpi-value">\${curr.n}</div><div class="kpi-sub">operacoes</div>\${hasPrev ? fmtChange(curr.n, prevKPIs.n) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon green">R$</div><div class="kpi-info"><div class="kpi-label">Volume BRL</div><div class="kpi-value">\${fmtBRL(curr.totalBRL)}</div><div class="kpi-sub">total movimentado</div>\${hasPrev ? fmtChange(curr.totalBRL, prevKPIs.totalBRL) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon blue">US$</div><div class="kpi-info"><div class="kpi-label">Volume USD</div><div class="kpi-value">\${fmtUSD(curr.totalUSD)}</div><div class="kpi-sub">total movimentado</div>\${hasPrev ? fmtChange(curr.totalUSD, prevKPIs.totalUSD) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon orange">&#x2195;</div><div class="kpi-info"><div class="kpi-label">Taxa Media</div><div class="kpi-value">\${fmtNum(curr.taxaMedia, 4)}</div><div class="kpi-sub">ponderada BRL/USD</div>\${hasPrev ? fmtChange(curr.taxaMedia, prevKPIs.taxaMedia) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon purple">%</div><div class="kpi-info"><div class="kpi-label">Spread Medio</div><div class="kpi-value">\${fmtPct(curr.spreadMedio)}</div><div class="kpi-sub">sobre taxa cobrada</div>\${hasPrev ? fmtChange(curr.spreadMedio, prevKPIs.spreadMedio) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon green">&#x00A7;</div><div class="kpi-info"><div class="kpi-label">IOF Total</div><div class="kpi-value">\${fmtBRL(curr.iofTotal)}</div><div class="kpi-sub">recolhido no periodo</div>\${hasPrev ? fmtChange(curr.iofTotal, prevKPIs.iofTotal) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon blue">&#x00D8;</div><div class="kpi-info"><div class="kpi-label">Ticket Medio</div><div class="kpi-value">\${fmtUSD(curr.ticketMedio)}</div><div class="kpi-sub">por operacao</div>\${hasPrev ? fmtChange(curr.ticketMedio, prevKPIs.ticketMedio) : ''}</div></div>
+    <div class="kpi-card"><div class="kpi-icon orange">&#x263A;</div><div class="kpi-info"><div class="kpi-label">Clientes Ativos</div><div class="kpi-value">\${curr.clientes}</div><div class="kpi-sub">no periodo</div>\${hasPrev ? fmtChange(curr.clientes, prevKPIs.clientes) : ''}</div></div>
   \`;
 }
 
@@ -286,21 +785,30 @@ function renderCharts(gran) {
   const periods = groupByPeriod(gran);
   const labels = periods.map(p => p.label);
 
+  const chartDefaults = {
+    responsive: true,
+    maintainAspectRatio: false,
+    plugins: {
+      legend: { position: 'top', labels: { font: { size: 11, family: 'Inter' }, padding: 16, usePointStyle: true, pointStyle: 'circle' } },
+      tooltip: { backgroundColor: 'rgba(0,0,0,0.8)', titleFont: { size: 12 }, bodyFont: { size: 11 }, padding: 12, cornerRadius: 8 }
+    }
+  };
+
   charts.volume = new Chart(document.getElementById('chartVolume'), {
     type: 'bar',
     data: {
       labels,
       datasets: [
-        { label: 'Volume BRL', data: periods.map(p => p.totalBRL), backgroundColor: 'rgba(30,142,62,0.65)', borderRadius: 4, yAxisID: 'yBRL' },
-        { label: 'Volume USD', data: periods.map(p => p.totalUSD), backgroundColor: 'rgba(26,115,232,0.7)', borderRadius: 4, yAxisID: 'yUSD' }
+        { label: 'Volume BRL', data: periods.map(p => p.totalBRL), backgroundColor: 'rgba(30,142,62,0.75)', borderRadius: 6, yAxisID: 'yBRL' },
+        { label: 'Volume USD', data: periods.map(p => p.totalUSD), backgroundColor: 'rgba(26,115,232,0.75)', borderRadius: 6, yAxisID: 'yUSD' }
       ]
     },
     options: {
-      responsive: true,
-      plugins: { legend: { position: 'top', labels: { font: { size: 11 } } } },
+      ...chartDefaults,
       scales: {
-        yBRL: { type: 'linear', position: 'left', ticks: { callback: v => 'R$ ' + (v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } }, title: { display: true, text: 'BRL', font: { size: 11 } }, grid: { display: true } },
-        yUSD: { type: 'linear', position: 'right', ticks: { callback: v => '$ ' + (v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } }, title: { display: true, text: 'USD', font: { size: 11 } }, grid: { display: false } }
+        x: { grid: { display: false }, ticks: { font: { size: 10 } } },
+        yBRL: { type: 'linear', position: 'left', ticks: { callback: v => 'R$ ' + (v >= 1000000 ? (v/1000000).toFixed(1) + 'M' : v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } }, title: { display: true, text: 'BRL', font: { size: 11 } }, grid: { color: 'rgba(0,0,0,0.06)' } },
+        yUSD: { type: 'linear', position: 'right', ticks: { callback: v => '$ ' + (v >= 1000000 ? (v/1000000).toFixed(1) + 'M' : v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } }, title: { display: true, text: 'USD', font: { size: 11 } }, grid: { display: false } }
       }
     }
   });
@@ -312,10 +820,18 @@ function renderCharts(gran) {
   charts.clientes = new Chart(document.getElementById('chartClientes'), {
     type: 'bar',
     data: {
-      labels: topClientes.map(c => c[0].length > 20 ? c[0].slice(0,20) + '...' : c[0]),
-      datasets: [{ label: 'Volume USD', data: topClientes.map(c => c[1]), backgroundColor: colors, borderRadius: 4 }]
+      labels: topClientes.map(c => c[0].length > 18 ? c[0].slice(0,18) + '...' : c[0]),
+      datasets: [{ label: 'Volume USD', data: topClientes.map(c => c[1]), backgroundColor: colors, borderRadius: 6, borderSkipped: false }]
     },
-    options: { indexAxis: 'y', responsive: true, plugins: { legend: { display: false } }, scales: { x: { ticks: { callback: v => '$ ' + (v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)) } } } }
+    options: {
+      ...chartDefaults,
+      indexAxis: 'y',
+      plugins: { ...chartDefaults.plugins, legend: { display: false } },
+      scales: {
+        x: { grid: { color: 'rgba(0,0,0,0.06)' }, ticks: { callback: v => '$ ' + (v >= 1000000 ? (v/1000000).toFixed(1) + 'M' : v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } } },
+        y: { grid: { display: false }, ticks: { font: { size: 11 } } }
+      }
+    }
   });
 
   charts.taxas = new Chart(document.getElementById('chartTaxas'), {
@@ -323,11 +839,17 @@ function renderCharts(gran) {
     data: {
       labels,
       datasets: [
-        { label: 'Taxa Cobrada', data: periods.map(p => p.taxaMedia), borderColor: '#6C3FA0', backgroundColor: 'rgba(108,63,160,0.1)', fill: true, tension: 0.3, pointRadius: 3 },
-        { label: 'PTAX', data: periods.map(p => p.ptaxMedia), borderColor: '#2980B9', backgroundColor: 'rgba(41,128,185,0.1)', fill: true, tension: 0.3, pointRadius: 3 }
+        { label: 'Taxa Cobrada', data: periods.map(p => p.taxaMedia), borderColor: '#6C3FA0', backgroundColor: 'rgba(108,63,160,0.08)', fill: true, tension: 0.4, pointRadius: 4, pointBackgroundColor: '#6C3FA0', borderWidth: 2 },
+        { label: 'PTAX', data: periods.map(p => p.ptaxMedia), borderColor: '#2980B9', backgroundColor: 'rgba(41,128,185,0.08)', fill: true, tension: 0.4, pointRadius: 4, pointBackgroundColor: '#2980B9', borderWidth: 2 }
       ]
     },
-    options: { responsive: true, scales: { y: { ticks: { callback: v => v.toFixed(4) } } } }
+    options: {
+      ...chartDefaults,
+      scales: {
+        x: { grid: { display: false }, ticks: { font: { size: 10 } } },
+        y: { grid: { color: 'rgba(0,0,0,0.06)' }, ticks: { callback: v => v.toFixed(4), font: { size: 10 } } }
+      }
+    }
   });
 }
 
@@ -338,6 +860,55 @@ function fmtDate(d) {
   return parts[1] ? ymd + ' ' + parts[1] : ymd;
 }
 
+function exportCSV() {
+  if (!filtered.length) { alert('Nenhuma transacao para exportar.'); return; }
+
+  const headers = ['Fluxo','Data/Hora','Cliente','Valor BRL','Valor USD','IOF %','IOF R$','PTAX','Taxa Cobrada','Spread','Spread %','Spread Liq %','Status'];
+  const rows = filtered.map(r => {
+    const spreadLiq = Math.max(0, r.spread_pct - 0.20);
+    return [
+      r.fluxo,
+      r.data_operacao || '',
+      '"' + (r.cliente || '').replace(/"/g, '""') + '"',
+      r.valor_reais.toFixed(2),
+      r.valor_dolar.toFixed(2),
+      r.iof_pct.toFixed(2),
+      r.iof_valor_rs.toFixed(2),
+      r.taxa_ptax.toFixed(4),
+      r.taxa_cobrada.toFixed(4),
+      r.spread_bruto.toFixed(4),
+      r.spread_pct.toFixed(2),
+      spreadLiq.toFixed(2),
+      r.status || ''
+    ].join(';');
+  });
+
+  const bom = '\\uFEFF';
+  const csv = bom + headers.join(';') + '\\n' + rows.join('\\n');
+  const blob = new Blob([csv], { type: 'text/csv;charset=utf-8;' });
+  const url = URL.createObjectURL(blob);
+  const a = document.createElement('a');
+  a.href = url;
+  const today = new Date().toISOString().slice(0,10);
+  a.download = 'transacoes_' + today + '.csv';
+  document.body.appendChild(a);
+  a.click();
+  document.body.removeChild(a);
+  URL.revokeObjectURL(url);
+}
+
+function calcSpreadLiquido(spreadPct) {
+  // Spread Líquido = Spread Cobrado - 0.20% (custo operacional)
+  const CUSTO_OPERACIONAL = 0.20;
+  return Math.max(0, spreadPct - CUSTO_OPERACIONAL);
+}
+
+function getSpreadLiqClass(spreadLiq) {
+  if (spreadLiq >= 0.5) return 'spread-high';
+  if (spreadLiq >= 0.2) return 'spread-medium';
+  return 'spread-low';
+}
+
 function renderTable() {
   const brlUsd = filtered.filter(r => r.fluxo === 'BRL \\u2192 USD');
   const usdBrl = filtered.filter(r => r.fluxo === 'USD \\u2192 BRL');
@@ -346,31 +917,785 @@ function renderTable() {
 
   let html = '';
   if (brlUsd.length) {
-    html += '<tr><td colspan="11" style="background:var(--primary-bg);font-weight:700;padding:10px 16px;color:var(--primary);font-size:13px;">BRL \\u2192 USD (' + brlUsd.length + ')</td></tr>';
-    html += brlUsd.map(r => \`<tr>
+    html += '<tr><td colspan="12" style="background:var(--primary-bg);font-weight:700;padding:10px 16px;color:var(--primary);font-size:13px;">BRL \\u2192 USD (' + brlUsd.length + ')</td></tr>';
+    html += brlUsd.map(r => {
+      const spreadLiq = calcSpreadLiquido(r.spread_pct);
+      return \`<tr>
       <td>\${fmtDate(r.data_operacao)}</td><td>\${r.cliente}</td>
       <td class="num">\${fmtBRL(r.valor_reais)}</td><td class="num">\${fmtUSD(r.valor_dolar)}</td>
       <td class="num">\${fmtPct(r.iof_pct)}</td><td class="num">\${fmtBRL(r.iof_valor_rs)}</td>
       <td class="num">\${fmtNum(r.taxa_ptax, 4)}</td><td class="num">\${fmtNum(r.taxa_cobrada, 4)}</td>
       <td class="num">\${fmtNum(r.spread_bruto, 4)}</td><td class="num">\${fmtPct(r.spread_pct)}</td>
+      <td class="num \${getSpreadLiqClass(spreadLiq)}">\${fmtPct(spreadLiq)}</td>
       <td>\${r.status || '-'}</td>
-    </tr>\`).join('');
+    </tr>\`;
+    }).join('');
   }
   if (usdBrl.length) {
-    html += '<tr><td colspan="11" style="background:var(--blue-bg);font-weight:700;padding:10px 16px;color:var(--blue);font-size:13px;">USD \\u2192 BRL (' + usdBrl.length + ')</td></tr>';
-    html += usdBrl.map(r => \`<tr>
+    html += '<tr><td colspan="12" style="background:var(--blue-bg);font-weight:700;padding:10px 16px;color:var(--blue);font-size:13px;">USD \\u2192 BRL (' + usdBrl.length + ')</td></tr>';
+    html += usdBrl.map(r => {
+      const spreadLiq = calcSpreadLiquido(r.spread_pct);
+      return \`<tr>
       <td>\${fmtDate(r.data_operacao)}</td><td>\${r.cliente}</td>
       <td class="num">\${fmtBRL(r.valor_reais)}</td><td class="num">\${fmtUSD(r.valor_dolar)}</td>
       <td class="num">\${fmtPct(r.iof_pct)}</td><td class="num">\${fmtBRL(r.iof_valor_rs)}</td>
       <td class="num">\${fmtNum(r.taxa_ptax, 4)}</td><td class="num">\${fmtNum(r.taxa_cobrada, 4)}</td>
       <td class="num">\${fmtNum(r.spread_bruto, 4)}</td><td class="num">\${fmtPct(r.spread_pct)}</td>
+      <td class="num \${getSpreadLiqClass(spreadLiq)}">\${fmtPct(spreadLiq)}</td>
       <td>\${r.status || '-'}</td>
-    </tr>\`).join('');
+    </tr>\`;
+    }).join('');
   }
 
-  document.getElementById('tableHead').innerHTML = '<tr><th>Data/Hora</th><th>Cliente</th><th>Valor BRL</th><th>Valor USD</th><th>IOF %</th><th>IOF R$</th><th>PTAX</th><th>Taxa Cobrada</th><th>Spread</th><th>Spread %</th><th>Status</th></tr>';
+  document.getElementById('tableHead').innerHTML = '<tr><th>Data/Hora</th><th>Cliente</th><th>Valor BRL</th><th>Valor USD</th><th>IOF %</th><th>IOF R$</th><th>PTAX</th><th>Taxa Cobrada</th><th>Spread</th><th>Spread %</th><th>Spread Liq %</th><th>Status</th></tr>';
   document.getElementById('tableBody').innerHTML = html;
 }
+
+// Portfolio Analysis Functions
+
+function calcClientMetrics() {
+  const today = new Date();
+  const clientMap = {};
+
+  // Calculate metrics for each client using ALL historical data (RAW_DATA)
+  RAW_DATA.forEach(r => {
+    if (!clientMap[r.cliente]) {
+      clientMap[r.cliente] = {
+        cliente: r.cliente,
+        transactions: [],
+        volumeTotal: 0,
+        totalOperacoes: 0
+      };
+    }
+    clientMap[r.cliente].transactions.push(r);
+    clientMap[r.cliente].volumeTotal += r.valor_dolar;
+    clientMap[r.cliente].totalOperacoes += 1;
+  });
+
+  // Calculate derived metrics
+  return Object.values(clientMap).map(c => {
+    const dates = c.transactions
+      .map(t => t.data_operacao ? new Date(t.data_operacao.replace(' ', 'T')) : null)
+      .filter(d => d && !isNaN(d.getTime()))
+      .sort((a, b) => b - a);
+
+    const lastDate = dates[0];
+    const firstDate = dates[dates.length - 1];
+
+    // Recency: days since last transaction
+    const recencia = lastDate ? Math.floor((today - lastDate) / (1000 * 60 * 60 * 24)) : 999;
+
+    // Frequency: average transactions per month
+    let frequencia = 0;
+    if (firstDate && lastDate && c.totalOperacoes > 0) {
+      const monthsDiff = Math.max(1, (lastDate - firstDate) / (1000 * 60 * 60 * 24 * 30));
+      frequencia = c.totalOperacoes / monthsDiff;
+    }
+
+    // LTV: Total USD volume historically
+    const ltv = c.volumeTotal;
+
+    // Ticket Medio: Average USD per transaction
+    const ticketMedio = c.totalOperacoes > 0 ? c.volumeTotal / c.totalOperacoes : 0;
+
+    return {
+      cliente: c.cliente,
+      ltv,
+      recencia,
+      frequencia,
+      ticketMedio,
+      totalOperacoes: c.totalOperacoes,
+      volumeTotal: c.volumeTotal,
+      lastDate
+    };
+  });
+}
+
+function calcPortfolioKPIs(metrics) {
+  metrics = metrics || [];
+  const start = document.getElementById('filterStart').value;
+  const end = document.getElementById('filterEnd').value;
+
+  // Get current period clients
+  const currentClients = new Set(filtered.map(r => r.cliente));
+
+  // Calculate previous period
+  const prev = calcPreviousPeriod(start, end);
+  let prevClients = new Set();
+  if (prev.start && prev.end) {
+    const prevData = RAW_DATA.filter(r => {
+      const dateOnly = r.data_operacao ? r.data_operacao.slice(0, 10) : null;
+      return dateOnly && dateOnly >= prev.start && dateOnly <= prev.end;
+    });
+    prevClients = new Set(prevData.map(r => r.cliente));
+  }
+
+  // Top 10 concentration: % of volume from top 10 clients
+  const clientVolumes = {};
+  filtered.forEach(r => {
+    clientVolumes[r.cliente] = (clientVolumes[r.cliente] || 0) + r.valor_dolar;
+  });
+  const sortedClients = Object.entries(clientVolumes).sort((a, b) => b[1] - a[1]);
+  const totalVolume = sortedClients.reduce((sum, c) => sum + c[1], 0);
+  const top10Volume = sortedClients.slice(0, 10).reduce((sum, c) => sum + c[1], 0);
+  const concentracaoTop10 = totalVolume > 0 ? (top10Volume / totalVolume) * 100 : 0;
+
+  // Retention rate: % of clients who operated in both current and previous period
+  const retainedClients = [...currentClients].filter(c => prevClients.has(c));
+  const taxaRetencao = prevClients.size > 0 ? (retainedClients.length / prevClients.size) * 100 : 0;
+
+  // New clients: Clients with first transaction in current period
+  const allClientsBeforeCurrent = new Set();
+  if (start) {
+    RAW_DATA.filter(r => {
+      const dateOnly = r.data_operacao ? r.data_operacao.slice(0, 10) : null;
+      return dateOnly && dateOnly < start;
+    }).forEach(r => allClientsBeforeCurrent.add(r.cliente));
+  }
+  const novosClientes = [...currentClients].filter(c => !allClientsBeforeCurrent.has(c)).length;
+
+  // Clients at risk: Clients with recency > 30 days who were previously active
+  const clientsEmRisco = metrics.filter(c => {
+    return c.recencia > 30 && c.totalOperacoes >= 2;
+  }).length;
+
+  return { concentracaoTop10, taxaRetencao, novosClientes, clientsEmRisco };
+}
+
+function renderPortfolioKPIs(metrics) {
+  const kpis = calcPortfolioKPIs(metrics);
+
+  document.getElementById('portfolioKpiGrid').innerHTML = \`
+    <div class="kpi-card"><div class="kpi-icon purple">&#x1F4CA;</div><div class="kpi-info"><div class="kpi-label">Concentracao Top 10</div><div class="kpi-value">\${fmtPct(kpis.concentracaoTop10)}</div><div class="kpi-sub">do volume total</div></div></div>
+    <div class="kpi-card"><div class="kpi-icon green">&#x21BB;</div><div class="kpi-info"><div class="kpi-label">Taxa Retencao</div><div class="kpi-value">\${fmtPct(kpis.taxaRetencao)}</div><div class="kpi-sub">vs periodo anterior</div></div></div>
+    <div class="kpi-card"><div class="kpi-icon blue">&#x2795;</div><div class="kpi-info"><div class="kpi-label">Novos Clientes</div><div class="kpi-value">\${kpis.novosClientes}</div><div class="kpi-sub">primeira operacao no periodo</div></div></div>
+    <div class="kpi-card"><div class="kpi-icon orange">&#x26A0;</div><div class="kpi-info"><div class="kpi-label">Clientes em Risco</div><div class="kpi-value">\${kpis.clientsEmRisco}</div><div class="kpi-sub">recencia > 30 dias</div></div></div>
+  \`;
+}
+
+function getRecencyClass(recencia) {
+  if (recencia < 15) return 'recency-green';
+  if (recencia <= 30) return 'recency-yellow';
+  return 'recency-red';
+}
+
+function sortClientMetrics(column) {
+  if (clientSortColumn === column) {
+    clientSortDirection = clientSortDirection === 'asc' ? 'desc' : 'asc';
+  } else {
+    clientSortColumn = column;
+    clientSortDirection = 'desc';
+  }
+
+  clientMetrics.sort((a, b) => {
+    let valA = a[column];
+    let valB = b[column];
+
+    if (column === 'cliente') {
+      valA = valA.toLowerCase();
+      valB = valB.toLowerCase();
+      return clientSortDirection === 'asc' ? valA.localeCompare(valB) : valB.localeCompare(valA);
+    }
+
+    return clientSortDirection === 'asc' ? valA - valB : valB - valA;
+  });
+
+  renderClientTable();
+}
+
+function renderClientTable() {
+  const headers = [
+    { key: 'cliente', label: 'Cliente' },
+    { key: 'ltv', label: 'LTV (USD)' },
+    { key: 'recencia', label: 'Recencia (dias)' },
+    { key: 'frequencia', label: 'Frequencia (op/mes)' },
+    { key: 'ticketMedio', label: 'Ticket Medio (USD)' },
+    { key: 'totalOperacoes', label: 'Total Operacoes' },
+    { key: 'volumeTotal', label: 'Volume Total (USD)' }
+  ];
+
+  const headerHtml = headers.map(h => {
+    const sortClass = clientSortColumn === h.key ? (clientSortDirection === 'asc' ? 'sorted-asc' : 'sorted-desc') : '';
+    return \`<th class="\${sortClass}" onclick="sortClientMetrics('\${h.key}')">\${h.label}</th>\`;
+  }).join('');
+
+  document.getElementById('clientTableHead').innerHTML = '<tr>' + headerHtml + '</tr>';
+  document.getElementById('clientTableInfo').textContent = '(' + clientMetrics.length + ' clientes)';
+
+  const bodyHtml = clientMetrics.map(c => \`
+    <tr>
+      <td>\${c.cliente}</td>
+      <td class="num">\${fmtUSD(c.ltv)}</td>
+      <td class="num \${getRecencyClass(c.recencia)}">\${c.recencia}</td>
+      <td class="num">\${fmtNum(c.frequencia, 2)}</td>
+      <td class="num">\${fmtUSD(c.ticketMedio)}</td>
+      <td class="num">\${c.totalOperacoes}</td>
+      <td class="num">\${fmtUSD(c.volumeTotal)}</td>
+    </tr>
+  \`).join('');
+
+  document.getElementById('clientTableBody').innerHTML = bodyHtml;
+}
+
+function renderPortfolioAnalysis() {
+  clientMetrics = calcClientMetrics();
+  clientMetrics.sort((a, b) => b[clientSortColumn] - a[clientSortColumn]);
+  renderPortfolioKPIs(clientMetrics);
+  renderClientTable();
+}
+
+// ============================================
+// ALERTS SECTION
+// ============================================
+
+let alertsCollapsed = false;
+
+function toggleAlerts() {
+  alertsCollapsed = !alertsCollapsed;
+  const body = document.getElementById('alertsBody');
+  const icon = document.getElementById('alertsToggleIcon');
+  const text = document.getElementById('alertsToggleText');
+
+  if (alertsCollapsed) {
+    body.classList.add('collapsed');
+    icon.innerHTML = '&#x25B6;';
+    text.textContent = 'Expandir';
+  } else {
+    body.classList.remove('collapsed');
+    icon.innerHTML = '&#x25BC;';
+    text.textContent = 'Recolher';
+  }
+}
+
+function detectAlerts() {
+  const alerts = [];
+  const today = new Date();
+  const endDate = document.getElementById('filterEnd').value;
+  const referenceDate = endDate ? new Date(endDate) : today;
+
+  // Calculate client metrics for alerts (using all data)
+  const clientData = {};
+  RAW_DATA.forEach(r => {
+    if (!clientData[r.cliente]) {
+      clientData[r.cliente] = {
+        cliente: r.cliente,
+        operations: [],
+        volumeTotal: 0
+      };
+    }
+    clientData[r.cliente].operations.push(r);
+    clientData[r.cliente].volumeTotal += r.valor_dolar;
+  });
+
+  // Calculate last operation date for each client
+  Object.values(clientData).forEach(c => {
+    const dates = c.operations
+      .map(op => op.data_operacao ? new Date(op.data_operacao.replace(' ', 'T')) : null)
+      .filter(d => d && !isNaN(d.getTime()))
+      .sort((a, b) => b - a);
+    c.lastDate = dates[0];
+    c.daysSinceLast = c.lastDate ? Math.floor((referenceDate - c.lastDate) / (1000 * 60 * 60 * 24)) : 999;
+    c.operationCount = c.operations.length;
+  });
+
+  /// 1. Cliente Esfriando: Clients who haven't operated in >30 days but had >2 operations
+  const clientesEsfriando = Object.values(clientData).filter(c =>
+    c.daysSinceLast > 30 && c.operationCount > 2
+  );
+  clientesEsfriando.forEach(c => {
+    alerts.push({
+      type: 'warning',
+      icon: '&#x2744;',
+      title: 'Cliente Esfriando',
+      desc: c.cliente + ' - ' + c.daysSinceLast + ' dias sem operar (' + c.operationCount + ' operacoes historicas)'
+    });
+  });
+
+  /// 2. Queda de Volume: If total volume dropped >20% vs previous period
+  const start = document.getElementById('filterStart').value;
+  const end = document.getElementById('filterEnd').value;
+  const prev = calcPreviousPeriod(start, end);
+
+  if (prev.start && prev.end) {
+    const currVolume = filtered.reduce((sum, r) => sum + r.valor_dolar, 0);
+    const prevData = RAW_DATA.filter(r => {
+      const dateOnly = r.data_operacao ? r.data_operacao.slice(0, 10) : null;
+      return dateOnly && dateOnly >= prev.start && dateOnly <= prev.end;
+    });
+    const prevVolume = prevData.reduce((sum, r) => sum + r.valor_dolar, 0);
+
+    if (prevVolume > 0) {
+      const dropPct = ((prevVolume - currVolume) / prevVolume) * 100;
+      if (dropPct > 20) {
+        alerts.push({
+          type: 'critical',
+          icon: '&#x2193;',
+          title: 'Queda de Volume',
+          desc: 'Volume caiu ' + fmtNum(dropPct, 1) + '% vs periodo anterior (' + fmtUSD(prevVolume) + ' -> ' + fmtUSD(currVolume) + ')'
+        });
+      }
+    }
+  }
+
+  // 3. VIP Inativo: Top 5 clients by LTV who haven't operated in >15 days
+  const top5ByLTV = Object.values(clientData)
+    .sort((a, b) => b.volumeTotal - a.volumeTotal)
+    .slice(0, 5);
+
+  top5ByLTV.filter(c => c.daysSinceLast > 15).forEach(c => {
+    alerts.push({
+      type: 'critical',
+      icon: '&#x2605;',
+      title: 'VIP Inativo',
+      desc: c.cliente + ' (LTV: ' + fmtUSD(c.volumeTotal) + ') - ' + c.daysSinceLast + ' dias sem operar'
+    });
+  });
+
+  // 4. Spread Baixo: Operations with spread % below (average - 1 std deviation)
+  if (filtered.length > 0) {
+    const spreads = filtered.map(r => r.spread_pct);
+    const avgSpread = spreads.reduce((a, b) => a + b, 0) / spreads.length;
+    const variance = spreads.reduce((sum, s) => sum + Math.pow(s - avgSpread, 2), 0) / spreads.length;
+    const stdDev = Math.sqrt(variance);
+    const threshold = avgSpread - stdDev;
+
+    const lowSpreadOps = filtered.filter(r => r.spread_pct < threshold);
+    if (lowSpreadOps.length > 0) {
+      const clientsLowSpread = [...new Set(lowSpreadOps.map(r => r.cliente))];
+      alerts.push({
+        type: 'info',
+        icon: '&#x25BC;',
+        title: 'Spread Baixo Detectado',
+        desc: lowSpreadOps.length + ' operacoes abaixo de ' + fmtPct(threshold) + ' (media: ' + fmtPct(avgSpread) + '). Clientes: ' + clientsLowSpread.slice(0, 3).join(', ') + (clientsLowSpread.length > 3 ? '...' : '')
+      });
+    }
+  }
+
+  return alerts;
+}
+
+function renderAlerts() {
+  const alerts = detectAlerts();
+  const grid = document.getElementById('alertsGrid');
+  const countBadge = document.getElementById('alertCount');
+
+  countBadge.textContent = alerts.length;
+  countBadge.className = 'alert-count' + (alerts.length === 0 ? ' zero' : '');
+
+  if (alerts.length === 0) {
+    grid.innerHTML = '<div class="no-alerts"><div class="check-icon">&#x2713;</div>Nenhum alerta no momento</div>';
+    return;
+  }
+
+  grid.innerHTML = alerts.map(a => \`
+    <div class="alert-card \${a.type}">
+      <div class="alert-icon">\${a.icon}</div>
+      <div class="alert-content">
+        <div class="alert-title">\${a.title}</div>
+        <div class="alert-desc">\${a.desc}</div>
+      </div>
+    </div>
+  \`).join('');
+}
+
+// ============================================
+// PORTFOLIO ANALYSIS CHARTS
+// ============================================
+
+function renderPortfolioCharts(gran) {
+  // Destroy existing portfolio charts
+  if (charts.distribuicao) charts.distribuicao.destroy();
+  if (charts.pareto) charts.pareto.destroy();
+  if (charts.clientesAtivos) charts.clientesAtivos.destroy();
+
+  // 1. Client Distribution by Volume (Doughnut Chart)
+  const volumeRanges = {
+    '<$1k': 0,
+    '$1k-5k': 0,
+    '$5k-20k': 0,
+    '$20k-50k': 0,
+    '>$50k': 0
+  };
+
+  const clientVolumes = {};
+  filtered.forEach(r => {
+    clientVolumes[r.cliente] = (clientVolumes[r.cliente] || 0) + r.valor_dolar;
+  });
+
+  Object.values(clientVolumes).forEach(vol => {
+    if (vol < 1000) volumeRanges['<$1k']++;
+    else if (vol < 5000) volumeRanges['$1k-5k']++;
+    else if (vol < 20000) volumeRanges['$5k-20k']++;
+    else if (vol < 50000) volumeRanges['$20k-50k']++;
+    else volumeRanges['>$50k']++;
+  });
+
+  const distLabels = Object.keys(volumeRanges);
+  const distData = Object.values(volumeRanges);
+  const distColors = ['#E74C3C', '#E67E22', '#F1C40F', '#2ECC71', '#3498DB'];
+
+  charts.distribuicao = new Chart(document.getElementById('chartDistribuicao'), {
+    type: 'doughnut',
+    data: {
+      labels: distLabels,
+      datasets: [{
+        data: distData,
+        backgroundColor: distColors,
+        borderWidth: 3,
+        borderColor: '#fff',
+        hoverBorderWidth: 4,
+        hoverOffset: 8
+      }]
+    },
+    options: {
+      responsive: true,
+      maintainAspectRatio: false,
+      cutout: '55%',
+      plugins: {
+        legend: {
+          position: 'right',
+          labels: { font: { size: 11, family: 'Inter' }, boxWidth: 14, padding: 12, usePointStyle: true }
+        },
+        tooltip: {
+          backgroundColor: 'rgba(0,0,0,0.8)',
+          padding: 12,
+          cornerRadius: 8,
+          callbacks: {
+            label: function(ctx) {
+              const total = ctx.dataset.data.reduce((a, b) => a + b, 0);
+              const pct = total > 0 ? ((ctx.parsed / total) * 100).toFixed(1) : 0;
+              return ctx.label + ': ' + ctx.parsed + ' clientes (' + pct + '%)';
+            }
+          }
+        }
+      }
+    }
+  });
+
+  // 2. Pareto Chart (80/20)
+  const sortedClients = Object.entries(clientVolumes).sort((a, b) => b[1] - a[1]);
+  const totalVolume = sortedClients.reduce((sum, c) => sum + c[1], 0);
+
+  let cumulative = 0;
+  let pareto80Index = -1;
+  const paretoData = sortedClients.map((c, i) => {
+    cumulative += c[1];
+    const cumPct = totalVolume > 0 ? (cumulative / totalVolume) * 100 : 0;
+    if (pareto80Index === -1 && cumPct >= 80) {
+      pareto80Index = i;
+    }
+    return {
+      cliente: c[0].length > 15 ? c[0].slice(0, 15) + '...' : c[0],
+      volume: c[1],
+      cumPct
+    };
+  }).slice(0, 20); // Limit to top 20 for readability
+
+  const paretoLabels = paretoData.map(p => p.cliente);
+  const paretoVolumes = paretoData.map(p => p.volume);
+  const paretoCumPct = paretoData.map(p => p.cumPct);
+
+  // Calculate background colors to highlight 80% threshold
+  const paretoBarColors = paretoData.map((p, i) => {
+    if (pareto80Index !== -1 && i <= pareto80Index) {
+      return 'rgba(108, 63, 160, 0.8)';
+    }
+    return 'rgba(108, 63, 160, 0.4)';
+  });
+
+  charts.pareto = new Chart(document.getElementById('chartPareto'), {
+    type: 'bar',
+    data: {
+      labels: paretoLabels,
+      datasets: [
+        {
+          type: 'bar',
+          label: 'Volume USD',
+          data: paretoVolumes,
+          backgroundColor: paretoBarColors,
+          borderRadius: 6,
+          yAxisID: 'yVolume'
+        },
+        {
+          type: 'line',
+          label: '% Acumulado',
+          data: paretoCumPct,
+          borderColor: '#E67E22',
+          backgroundColor: 'transparent',
+          borderWidth: 3,
+          tension: 0.4,
+          pointRadius: 4,
+          pointBackgroundColor: '#E67E22',
+          yAxisID: 'yPct'
+        }
+      ]
+    },
+    options: {
+      responsive: true,
+      maintainAspectRatio: false,
+      plugins: {
+        legend: { position: 'top', labels: { font: { size: 11, family: 'Inter' }, padding: 16, usePointStyle: true } },
+        tooltip: {
+          backgroundColor: 'rgba(0,0,0,0.8)',
+          padding: 12,
+          cornerRadius: 8,
+          callbacks: {
+            label: function(ctx) {
+              if (ctx.datasetIndex === 0) {
+                return 'Volume: ' + fmtUSD(ctx.parsed.y);
+              }
+              return '% Acumulado: ' + ctx.parsed.y.toFixed(1) + '%';
+            }
+          }
+        }
+      },
+      scales: {
+        x: {
+          grid: { display: false },
+          ticks: { font: { size: 9 }, maxRotation: 45, minRotation: 45 }
+        },
+        yVolume: {
+          type: 'linear',
+          position: 'left',
+          grid: { color: 'rgba(0,0,0,0.06)' },
+          ticks: {
+            callback: v => '$ ' + (v >= 1000000 ? (v/1000000).toFixed(1) + 'M' : v >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)),
+            font: { size: 10 }
+          },
+          title: { display: true, text: 'Volume USD', font: { size: 11 } }
+        },
+        yPct: {
+          type: 'linear',
+          position: 'right',
+          min: 0,
+          max: 100,
+          ticks: {
+            callback: v => v + '%',
+            font: { size: 10 }
+          },
+          title: { display: true, text: '% Acumulado', font: { size: 11 } },
+          grid: { display: false }
+        }
+      }
+    }
+  });
+
+  // 3. Active Clients Evolution (Line Chart)
+  const periodMap = {};
+  filtered.forEach(r => {
+    if (!r.data_operacao) return;
+    const dateOnly = r.data_operacao.slice(0, 10);
+    let key;
+    if (gran === 'dia') key = dateOnly;
+    else if (gran === 'mes') key = dateOnly.slice(0, 7);
+    else key = dateOnly.slice(0, 4);
+
+    if (!periodMap[key]) periodMap[key] = new Set();
+    periodMap[key].add(r.cliente);
+  });
+
+  const periodKeys = Object.keys(periodMap).sort();
+  const activeClientsLabels = periodKeys.map(k =>
+    gran === 'dia' ? k.split('-').reverse().join('/') :
+    gran === 'mes' ? k.split('-').reverse().join('/') : k
+  );
+  const activeClientsData = periodKeys.map(k => periodMap[k].size);
+
+  charts.clientesAtivos = new Chart(document.getElementById('chartClientesAtivos'), {
+    type: 'line',
+    data: {
+      labels: activeClientsLabels,
+      datasets: [{
+        label: 'Clientes Ativos',
+        data: activeClientsData,
+        borderColor: '#1E8E3E',
+        backgroundColor: 'rgba(30, 142, 62, 0.1)',
+        fill: true,
+        tension: 0.4,
+        pointRadius: 5,
+        pointBackgroundColor: '#1E8E3E',
+        borderWidth: 3
+      }]
+    },
+    options: {
+      responsive: true,
+      maintainAspectRatio: false,
+      plugins: {
+        legend: { display: false },
+        tooltip: { backgroundColor: 'rgba(0,0,0,0.8)', padding: 12, cornerRadius: 8 }
+      },
+      scales: {
+        y: {
+          beginAtZero: true,
+          grid: { color: 'rgba(0,0,0,0.06)' },
+          ticks: {
+            stepSize: 1,
+            font: { size: 10 }
+          },
+          title: { display: true, text: 'Qtd Clientes', font: { size: 11 } }
+        },
+        x: {
+          grid: { display: false },
+          ticks: { font: { size: 10 } }
+        }
+      }
+    }
+  });
+}
+
+// Netting Analysis - Balance In/Out for IOF Efficiency
+function renderNettingAnalysis(gran) {
+  const brlUsd = filtered.filter(r => r.fluxo === 'BRL \\u2192 USD');
+  const usdBrl = filtered.filter(r => r.fluxo === 'USD \\u2192 BRL');
+
+  // Calculate totals
+  const totalOut = brlUsd.reduce((s, r) => s + r.valor_dolar, 0); // Money going OUT (to USA)
+  const totalIn = usdBrl.reduce((s, r) => s + r.valor_dolar, 0);  // Money coming IN (from USA)
+  const netBalance = totalIn - totalOut;
+  const nettingEfficiency = totalOut > 0 ? Math.min(100, (totalIn / totalOut) * 100) : 0;
+
+  // Render KPIs
+  document.getElementById('nettingKpis').innerHTML = \`
+    <div class="netting-kpi">
+      <div class="label">Saida (BRL\\u2192USD)</div>
+      <div class="value negative">\${fmtUSD(totalOut)}</div>
+      <div class="sub">\${brlUsd.length} operacoes</div>
+    </div>
+    <div class="netting-kpi">
+      <div class="label">Entrada (USD\\u2192BRL)</div>
+      <div class="value positive">\${fmtUSD(totalIn)}</div>
+      <div class="sub">\${usdBrl.length} operacoes</div>
+    </div>
+    <div class="netting-kpi">
+      <div class="label">Posicao Liquida (Net)</div>
+      <div class="value \${netBalance >= 0 ? 'positive' : 'negative'}">\${netBalance >= 0 ? '+' : ''}\${fmtUSD(netBalance)}</div>
+      <div class="sub">\${netBalance >= 0 ? 'Posicao comprada' : 'Posicao vendida'}</div>
+    </div>
+    <div class="netting-kpi">
+      <div class="label">Eficiencia Netting</div>
+      <div class="value \${nettingEfficiency >= 80 ? 'positive' : nettingEfficiency >= 50 ? 'neutral' : 'negative'}">\${fmtNum(nettingEfficiency, 1)}%</div>
+      <div class="sub">\${nettingEfficiency >= 100 ? 'IOF 100% compensado' : netBalance >= 0 ? 'Saldo positivo' : 'Saldo negativo'}</div>
+    </div>
+  \`;
+
+  // Group by period for charts
+  const periodMap = {};
+  filtered.forEach(r => {
+    if (!r.data_operacao) return;
+    const dateOnly = r.data_operacao.slice(0, 10);
+    let key;
+    if (gran === 'dia') key = dateOnly;
+    else if (gran === 'mes') key = dateOnly.slice(0, 7);
+    else key = dateOnly.slice(0, 4);
+
+    if (!periodMap[key]) periodMap[key] = { inflow: 0, outflow: 0 };
+    if (r.fluxo === 'BRL \\u2192 USD') {
+      periodMap[key].outflow += r.valor_dolar;
+    } else {
+      periodMap[key].inflow += r.valor_dolar;
+    }
+  });
+
+  const periods = Object.keys(periodMap).sort();
+  const labels = periods.map(k => gran === 'dia' ? k.split('-').reverse().join('/') : gran === 'mes' ? k.split('-').reverse().join('/') : k);
+  const inflowData = periods.map(k => periodMap[k].inflow);
+  const outflowData = periods.map(k => periodMap[k].outflow);
+  const netData = periods.map(k => periodMap[k].inflow - periodMap[k].outflow);
+  const efficiencyData = periods.map(k => {
+    const out = periodMap[k].outflow;
+    const eff = out > 0 ? Math.min(100, (periodMap[k].inflow / out) * 100) : 0;
+    return eff;
+  });
+
+  // Destroy existing charts
+  if (charts.netting) charts.netting.destroy();
+  if (charts.eficiencia) charts.eficiencia.destroy();
+
+  // Netting Flow Chart
+  charts.netting = new Chart(document.getElementById('chartNetting'), {
+    type: 'bar',
+    data: {
+      labels,
+      datasets: [
+        { label: 'Entrada (USD\\u2192BRL)', data: inflowData, backgroundColor: 'rgba(30,142,62,0.75)', borderRadius: 6 },
+        { label: 'Saida (BRL\\u2192USD)', data: outflowData.map(v => -v), backgroundColor: 'rgba(220,38,38,0.75)', borderRadius: 6 },
+        { label: 'Posicao Net', data: netData, type: 'line', borderColor: '#1A73E8', backgroundColor: 'rgba(26,115,232,0.1)', borderWidth: 3, pointRadius: 5, pointBackgroundColor: netData.map(v => v >= 0 ? '#1E8E3E' : '#DC2626'), fill: false, tension: 0.4 }
+      ]
+    },
+    options: {
+      responsive: true,
+      maintainAspectRatio: false,
+      plugins: {
+        legend: { position: 'top', labels: { font: { size: 11, family: 'Inter' }, padding: 16, usePointStyle: true } },
+        tooltip: {
+          backgroundColor: 'rgba(0,0,0,0.8)',
+          padding: 12,
+          cornerRadius: 8,
+          callbacks: {
+            label: ctx => {
+              if (ctx.dataset.label === 'Posicao Net') {
+                return ctx.dataset.label + ': ' + (ctx.raw >= 0 ? '+' : '') + fmtUSD(ctx.raw);
+              }
+              return ctx.dataset.label + ': ' + fmtUSD(Math.abs(ctx.raw));
+            }
+          }
+        }
+      },
+      scales: {
+        x: { grid: { display: false }, ticks: { font: { size: 10 } } },
+        y: {
+          grid: { color: 'rgba(0,0,0,0.06)' },
+          ticks: { callback: v => (v >= 0 ? '+' : '') + (Math.abs(v) >= 1000000 ? (v/1000000).toFixed(1) + 'M' : Math.abs(v) >= 1000 ? (v/1000).toFixed(0) + 'k' : v.toFixed(0)), font: { size: 10 } },
+          title: { display: true, text: 'USD', font: { size: 11 } }
+        }
+      }
+    }
+  });
+
+  // Efficiency Chart
+  charts.eficiencia = new Chart(document.getElementById('chartEficiencia'), {
+    type: 'line',
+    data: {
+      labels,
+      datasets: [{
+        label: 'Eficiencia Netting %',
+        data: efficiencyData,
+        borderColor: '#6C3FA0',
+        backgroundColor: 'rgba(108,63,160,0.1)',
+        fill: true,
+        tension: 0.4,
+        pointRadius: 5,
+        pointBackgroundColor: '#6C3FA0',
+        borderWidth: 3
+      }, {
+        label: 'Meta 100%',
+        data: periods.map(() => 100),
+        borderColor: '#1E8E3E',
+        borderDash: [6, 4],
+        borderWidth: 2,
+        pointRadius: 0,
+        fill: false
+      }]
+    },
+    options: {
+      responsive: true,
+      maintainAspectRatio: false,
+      plugins: {
+        legend: { position: 'top', labels: { font: { size: 11, family: 'Inter' }, padding: 16, usePointStyle: true } },
+        tooltip: { backgroundColor: 'rgba(0,0,0,0.8)', padding: 12, cornerRadius: 8 }
+      },
+      scales: {
+        x: { grid: { display: false }, ticks: { font: { size: 10 } } },
+        y: {
+          min: 0, max: 120,
+          grid: { color: 'rgba(0,0,0,0.06)' },
+          ticks: { callback: v => v + '%', font: { size: 10 } },
+          title: { display: true, text: 'Eficiencia', font: { size: 11 } }
+        }
+      }
+    }
+  });
+}
 <\/script>
 </body>
 </html>`;
diff --git a/src/db-local.js b/src/db-local.js
index 0266dc7..cee49a3 100644
--- a/src/db-local.js
+++ b/src/db-local.js
@@ -1,5 +1,6 @@
 /**
  * SQLite local — controle de agentes (auth + config)
+ * Login unificado: todos os usuarios na tabela agentes com coluna 'role'
  */
 const Database = require('better-sqlite3');
 const path = require('path');
@@ -18,9 +19,41 @@ db.exec(`
     senha_hash TEXT NOT NULL,
     agente_id INTEGER NOT NULL,
     nome TEXT NOT NULL,
+    role TEXT DEFAULT 'agente',
     ativo INTEGER DEFAULT 1,
     created_at TEXT DEFAULT (datetime('now'))
   )
 `);
 
+// Add role column if it doesn't exist (migration for existing databases)
+try {
+  db.exec(`ALTER TABLE agentes ADD COLUMN role TEXT DEFAULT 'agente'`);
+} catch (e) {
+  // Column already exists, ignore
+}
+
+// Legacy table - keep for reference but no longer used
+db.exec(`
+  CREATE TABLE IF NOT EXISTS admins (
+    id INTEGER PRIMARY KEY AUTOINCREMENT,
+    email TEXT UNIQUE NOT NULL,
+    senha_hash TEXT NOT NULL,
+    nome TEXT NOT NULL,
+    created_at TEXT DEFAULT (datetime('now'))
+  )
+`);
+
+// Migrate existing admins to agentes table with role='admin'
+const admins = db.prepare('SELECT * FROM admins').all();
+for (const admin of admins) {
+  try {
+    db.prepare(`
+      INSERT OR IGNORE INTO agentes (email, senha_hash, nome, role, agente_id, ativo)
+      VALUES (?, ?, ?, 'admin', 0, 1)
+    `).run(admin.email, admin.senha_hash, admin.nome);
+  } catch (e) {
+    // Email already exists in agentes, skip
+  }
+}
+
 module.exports = db;