diff --git a/kernel/api/system.go b/kernel/api/system.go
index 446197fae..04cdef53d 100644
--- a/kernel/api/system.go
+++ b/kernel/api/system.go
@@ -564,6 +564,9 @@ func setAccessAuthCode(c *gin.Context) {
 		aac = model.Conf.AccessAuthCode
 	}
 
+	aac = strings.TrimSpace(aac)
+	aac = util.RemoveInvalid(aac)
+
 	model.Conf.AccessAuthCode = aac
 	model.Conf.Save()
 
diff --git a/kernel/model/session.go b/kernel/model/session.go
index d0b4c546f..e2011d77c 100644
--- a/kernel/model/session.go
+++ b/kernel/model/session.go
@@ -96,6 +96,9 @@ func LoginAuth(c *gin.Context) {
 	}
 
 	authCode := arg["authCode"].(string)
+	authCode = strings.TrimSpace(authCode)
+	authCode = util.RemoveInvalid(authCode)
+
 	if Conf.AccessAuthCode != authCode {
 		ret.Code = -1
 		ret.Msg = Conf.Language(83)
@@ -437,7 +440,6 @@ func ControlConcurrency(c *gin.Context) {
 		strings.HasPrefix(reqPath, "/appearance/") ||
 		strings.HasPrefix(reqPath, "/export/") ||
 		strings.HasPrefix(reqPath, "/history/") ||
-
 		strings.HasPrefix(reqPath, "/api/query/") ||
 		strings.HasPrefix(reqPath, "/api/search/") ||
 		strings.HasPrefix(reqPath, "/api/network/") ||