diff --git a/component/jwt.go b/component/jwt.go
index ee0d8b5..2ec4315 100644
--- a/component/jwt.go
+++ b/component/jwt.go
@@ -7,6 +7,7 @@ import (
 	"gitee.ltd/lxh/logger/log"
 	"github.com/golang-jwt/jwt/v5"
 	"github.com/google/uuid"
+	"math/rand"
 	"strings"
 	"time"
 	"wireguard-ui/config"
@@ -15,9 +16,6 @@ import (
 	"wireguard-ui/utils"
 )
 
-// jwt密钥
-//const secret = "JQo7L1RYa8ArFWuj0wC9PyM3VzmDIfXZ2d5tsTOBhNgviE64bnKqGpSckxUlHey6"
-
 type JwtComponent struct {
 	ID string `json:"id"`
 	jwt.RegisteredClaims
@@ -103,6 +101,15 @@ func (JwtComponent) ParseToken(token, secret string) (*JwtComponent, error) {
 // @param secret
 // @return string
 func (JwtComponent) GenerateSecret(secret ...string) string {
+	// 添加10个元素,增加随机性
+	for i := 0; i <= 10; i++ {
+		secret = append(secret, uuid.NewString()
+	// 混淆一下明文secret的顺序
+	n := len(secret)
+	for i := n - 1; i > 0; i-- {
+		j := rand.Intn(i + 1)
+		secret[i], secret[j] = secret[j], secret[i]
+	}
 	secretStr := strings.Join(secret, ".")
 	return utils.Hash().MD5(utils.Hash().SHA256(utils.Hash().SHA512(secretStr)))
 }