diff --git a/dsSso/Controller/ControllerOauth2/ControllerOauth2.go b/dsSso/Controller/ControllerOauth2/ControllerOauth2.go
index dc522ff9..8225bcb9 100644
--- a/dsSso/Controller/ControllerOauth2/ControllerOauth2.go
+++ b/dsSso/Controller/ControllerOauth2/ControllerOauth2.go
@@ -376,7 +376,13 @@ func authorizeGet(context *gin.Context) {
 	var redirectUri = context.Query("redirect_uri")
 	//回调的页面地址
 	var oauthCallback = context.Query("oauth_callback")
-
+	//oauth_callback的base64检查
+	_, err := base64.StdEncoding.DecodeString(oauthCallback)
+	if err != nil {
+		msg := "传入的oauth_callback不不是经过标准码的base64字符串！"
+		context.JSON(http.StatusOK, map[string]interface{}{"success": false, "msg": msg})
+		return
+	}
 	//检查这个client_id是不是经过授权？
 	client, err := RedisStorage.OAuth2RedisStorage.GetClient(paraClientId)
 	if err != nil || client == nil {