diff --git a/packages/ui/certd-server/src/controller/user/open/open-key-controller.ts b/packages/ui/certd-server/src/controller/user/open/open-key-controller.ts
index 9cf0597c..8233ae57 100644
--- a/packages/ui/certd-server/src/controller/user/open/open-key-controller.ts
+++ b/packages/ui/certd-server/src/controller/user/open/open-key-controller.ts
@@ -63,7 +63,7 @@ export class OpenKeyController extends CrudController<OpenKeyService> {
   }
 
   @Post('/getApiToken', { summary: Constants.per.authOnly })
-  async getApiToken(@Query('id') id: number) {
+  async getApiToken(@Body('id') id: number) {
     await this.service.checkUserId(id, this.getUserId());
     const token = await this.service.getApiToken(id);
     return this.ok(token);
diff --git a/packages/ui/certd-server/src/modules/open/service/open-key-service.ts b/packages/ui/certd-server/src/modules/open/service/open-key-service.ts
index 8b5d78c3..dd80a262 100644
--- a/packages/ui/certd-server/src/modules/open/service/open-key-service.ts
+++ b/packages/ui/certd-server/src/modules/open/service/open-key-service.ts
@@ -47,6 +47,9 @@ export class OpenKeyService extends BaseService<OpenKeyEntity> {
   }
 
   async getByKeyId(keyId: string) {
+    if (!keyId) {
+      throw new Error('keyId不能为空');
+    }
     return this.repository.findOne({ where: { keyId } });
   }
 
@@ -91,6 +94,9 @@ export class OpenKeyService extends BaseService<OpenKeyEntity> {
   }
 
   async getApiToken(id: number) {
+    if (!id) {
+      throw new Error('id不能为空');
+    }
     const entity = await this.repository.findOne({ where: { id } });
     if (!entity) {
       throw new Error('id不存在');