diff --git a/src/main/java/neatlogic/module/process/api/processtask/UpdateProcessTaskFormApi.java b/src/main/java/neatlogic/module/process/api/processtask/UpdateProcessTaskFormApi.java
index 7cf4ab0b14ee6cf0c8fac78e5ae14c3f0b916fdd..7a06886f64c19194d94a9177aeaa6c08c0c15e0e 100644
--- a/src/main/java/neatlogic/module/process/api/processtask/UpdateProcessTaskFormApi.java
+++ b/src/main/java/neatlogic/module/process/api/processtask/UpdateProcessTaskFormApi.java
@@ -19,15 +19,17 @@ package neatlogic.module.process.api.processtask;
 
 import com.alibaba.fastjson.JSONObject;
 import neatlogic.framework.asynchronization.threadlocal.UserContext;
-import neatlogic.framework.auth.core.AuthAction;
+import neatlogic.framework.auth.core.AuthActionChecker;
 import neatlogic.framework.common.constvalue.ApiParamType;
 import neatlogic.framework.fulltextindex.core.FullTextIndexHandlerFactory;
 import neatlogic.framework.fulltextindex.core.IFullTextIndexHandler;
 import neatlogic.framework.process.auth.PROCESSTASK_MODIFY;
 import neatlogic.framework.process.constvalue.ProcessTaskAuditType;
+import neatlogic.framework.process.constvalue.ProcessTaskOperationType;
 import neatlogic.framework.process.constvalue.ProcessTaskStepDataType;
 import neatlogic.framework.process.dto.*;
 import neatlogic.framework.process.fulltextindex.ProcessFullTextIndexType;
+import neatlogic.framework.process.operationauth.core.ProcessAuthManager;
 import neatlogic.framework.restful.annotation.Description;
 import neatlogic.framework.restful.annotation.Input;
 import neatlogic.framework.restful.annotation.OperationType;
@@ -51,7 +53,7 @@ import java.util.Objects;
 @Service
 @Transactional
 @OperationType(type = OperationTypeEnum.UPDATE)
-@AuthAction(action = PROCESSTASK_MODIFY.class)
+//@AuthAction(action = PROCESSTASK_MODIFY.class)
 public class UpdateProcessTaskFormApi extends PrivateApiComponentBase {
 
     @Resource
@@ -93,6 +95,12 @@ public class UpdateProcessTaskFormApi extends PrivateApiComponentBase {
         ProcessTaskVo processTaskVo = processTaskService.checkProcessTaskParamsIsLegal(processTaskId);
         // 锁定当前流程
         processTaskMapper.getProcessTaskLockById(processTaskId);
+        String userUuid = UserContext.get().getUserUuid();
+        if (!AuthActionChecker.checkByUserUuid(userUuid, PROCESSTASK_MODIFY.class.getSimpleName())) {
+            new ProcessAuthManager.TaskOperationChecker(processTaskId, ProcessTaskOperationType.PROCESSTASK_UPDATE)
+                    .build()
+                    .checkAndNoPermissionThrowException();
+        }
         ProcessTaskStepVo processTaskStepVo = new ProcessTaskStepVo();
         processTaskStepVo.setProcessTaskId(processTaskId);
         processTaskStepVo.setIsAutoGenerateId(false);