diff --git a/app/Http/Controllers/UserController.php b/app/Http/Controllers/UserController.php
index 40f0660..5408525 100644
--- a/app/Http/Controllers/UserController.php
+++ b/app/Http/Controllers/UserController.php
@@ -2,13 +2,16 @@
 
 namespace App\Http\Controllers;
 
-use Illuminate\Http\Request;
-use App\Exceptions\BizException;
-use Illuminate\Support\Facades\Hash;
 use App\Http\Requestes\RestPasswordRequest;
 
 class UserController extends Controller
 {
+    public function info()
+    {
+        $user = auth('api')->user();
+        return $this->json(['info' => $user, 'permissions' => $user->permissionIds()]);
+    }
+
     public function resetPwd(RestPasswordRequest $request)
     {
         $input = $request->input();
diff --git a/routes/api.php b/routes/api.php
index 6864120..9f37da6 100644
--- a/routes/api.php
+++ b/routes/api.php
@@ -46,6 +46,7 @@ Route::group(['middleware' => 'auth:sanctum'], function () {
     });
 
     Route::prefix('users')->group(function () {
+        Route::get('info', [UserController::class, 'info']);
         Route::put('reset-password', [UserController::class, 'resetPwd']);
         Route::delete('logout', [UserController::class, 'logout']);
     });