diff --git a/server/api/ChatApi.ts b/server/api/ChatApi.ts
index a55824b..28feaf6 100644
--- a/server/api/ChatApi.ts
+++ b/server/api/ChatApi.ts
@@ -43,6 +43,10 @@ export default class ChatApi extends BaseApi {
 
             // 私聊
             if (chat!.bean.type == 'private') {
+                if (!UserChatLinker.checkUserIsLinkedToChat(token.author, chat!.bean.id)) return {
+                    code: 403,
+                    msg: "用户无权访问此对话",
+                }
                 const mine = User.findById(token.author) as User
 
                 return {