diff --git a/backend/apps/datasource/api/datasource.py b/backend/apps/datasource/api/datasource.py
index e05306f4..5b4f7608 100644
--- a/backend/apps/datasource/api/datasource.py
+++ b/backend/apps/datasource/api/datasource.py
@@ -36,9 +36,8 @@
 
 
 @router.get("/ws/{oid}", include_in_schema=False)
+@require_permissions(permission=SqlbotPermission(role=['ws_admin']))
 async def query_by_oid(session: SessionDep, user: CurrentUser, oid: int) -> List[CoreDatasource]:
-    if not user.isAdmin:
-        raise Exception("no permission to execute")
     return get_datasource_list(session=session, user=user, oid=oid)
 
 
diff --git a/frontend/src/views/system/parameter/xpack/PlatformParam.vue b/frontend/src/views/system/parameter/xpack/PlatformParam.vue
index dbf983df..8590157d 100644
--- a/frontend/src/views/system/parameter/xpack/PlatformParam.vue
+++ b/frontend/src/views/system/parameter/xpack/PlatformParam.vue
@@ -73,7 +73,7 @@
       </div>
       <div class="value">
         <el-radio-group v-model="formData['login.default_login']">
-          <el-radio v-for="item in loginTypeOptions" :key="item.value" :label="item.value">{{
+          <el-radio v-for="item in loginTypeOptions" :key="item.value" :value="item.value">{{
             item.label
           }}</el-radio>
         </el-radio-group>