diff --git a/app/controllers/users_controller.rb b/app/controllers/users_controller.rb
index 20ed22f9e..1b4fcd499 100644
--- a/app/controllers/users_controller.rb
+++ b/app/controllers/users_controller.rb
@@ -2894,8 +2894,7 @@ class UsersController < ApplicationController
   # 导入资源
   def import_resources
     # 别人的资源库是没有权限去看的
-    @user = User.find_by_login(params[:id])
-    if User.current != @user
+    if User.current.id != params[:id].to_i
       render_403
       return
     end