diff --git a/login-oauth2-server/src/main/java/ink/wgink/login/oauth2/server/converter/UserAuthConverter.java b/login-oauth2-server/src/main/java/ink/wgink/login/oauth2/server/converter/UserAuthConverter.java
index 5ebfaab2..9acfae8f 100644
--- a/login-oauth2-server/src/main/java/ink/wgink/login/oauth2/server/converter/UserAuthConverter.java
+++ b/login-oauth2-server/src/main/java/ink/wgink/login/oauth2/server/converter/UserAuthConverter.java
@@ -59,7 +59,7 @@ public class UserAuthConverter implements UserAuthenticationConverter {
         if (!Objects.isNull(principal)) {
             Collection<GrantedAuthority> authorities = new ArrayList<>();
             // 包含用户信息，则直接抽取其中的用户信息
-            UserInfoBO userInfoBO = (UserInfoBO) map.get("user_info");
+            UserInfoBO userInfoBO = JSONObject.parseObject(map.get("user_info").toString(), UserInfoBO.class);
             principal = userInfoBO;
             LOG.debug("获取用户权限");
             return new UsernamePasswordAuthenticationToken(principal, "N/A", authorities);