diff --git a/README.md b/README.md
index db43ba6e..596def13 100644
--- a/README.md
+++ b/README.md
@@ -105,6 +105,7 @@ _✨ 通过标准的 OpenAI API 格式访问所有的大模型，开箱即用 
 21. 支持 Cloudflare Turnstile 用户校验。
 22. 支持用户管理，支持**多种用户登录注册方式**：
     + 邮箱登录注册（支持注册邮箱白名单）以及通过邮箱进行密码重置。
+    + 支持使用飞书进行授权登录。
     + [GitHub 开放授权](https://github.com/settings/applications/new)。
     + 微信公众号授权（需要额外部署 [WeChat Server](https://github.com/songquanpeng/wechat-server)）。
 23. 支持主题切换，设置环境变量 `THEME` 即可，默认为 `default`，欢迎 PR 更多主题，具体参考[此处](./web/README.md)。
diff --git a/common/config/config.go b/common/config/config.go
index 3524183a..9fd7cba0 100644
--- a/common/config/config.go
+++ b/common/config/config.go
@@ -66,6 +66,9 @@ var SMTPToken = ""
 var GitHubClientId = ""
 var GitHubClientSecret = ""
 
+var LarkClientId = ""
+var LarkClientSecret = ""
+
 var WeChatServerAddress = ""
 var WeChatServerToken = ""
 var WeChatAccountQRCodeImageURL = ""
diff --git a/controller/github.go b/controller/auth/github.go
similarity index 98%
rename from controller/github.go
rename to controller/auth/github.go
index 7d7fa106..cf073133 100644
--- a/controller/github.go
+++ b/controller/auth/github.go
@@ -1,4 +1,4 @@
-package controller
+package auth
 
 import (
 	"bytes"
@@ -11,6 +11,7 @@ import (
 	"github.com/songquanpeng/one-api/common/config"
 	"github.com/songquanpeng/one-api/common/helper"
 	"github.com/songquanpeng/one-api/common/logger"
+	"github.com/songquanpeng/one-api/controller"
 	"github.com/songquanpeng/one-api/model"
 	"net/http"
 	"strconv"
@@ -159,7 +160,7 @@ func GitHubOAuth(c *gin.Context) {
 		})
 		return
 	}
-	setupLogin(&user, c)
+	controller.SetupLogin(&user, c)
 }
 
 func GitHubBind(c *gin.Context) {
diff --git a/controller/auth/lark.go b/controller/auth/lark.go
new file mode 100644
index 00000000..21446d46
--- /dev/null
+++ b/controller/auth/lark.go
@@ -0,0 +1,201 @@
+package auth
+
+import (
+	"bytes"
+	"encoding/json"
+	"errors"
+	"fmt"
+	"github.com/gin-contrib/sessions"
+	"github.com/gin-gonic/gin"
+	"github.com/songquanpeng/one-api/common"
+	"github.com/songquanpeng/one-api/common/config"
+	"github.com/songquanpeng/one-api/common/logger"
+	"github.com/songquanpeng/one-api/controller"
+	"github.com/songquanpeng/one-api/model"
+	"net/http"
+	"strconv"
+	"time"
+)
+
+type LarkOAuthResponse struct {
+	AccessToken string `json:"access_token"`
+}
+
+type LarkUser struct {
+	Name   string `json:"name"`
+	OpenID string `json:"open_id"`
+}
+
+func getLarkUserInfoByCode(code string) (*LarkUser, error) {
+	if code == "" {
+		return nil, errors.New("无效的参数")
+	}
+	values := map[string]string{
+		"client_id":     config.LarkClientId,
+		"client_secret": config.LarkClientSecret,
+		"code":          code,
+		"grant_type":    "authorization_code",
+		"redirect_uri":  fmt.Sprintf("%s/oauth/lark", config.ServerAddress),
+	}
+	jsonData, err := json.Marshal(values)
+	if err != nil {
+		return nil, err
+	}
+	req, err := http.NewRequest("POST", "https://passport.feishu.cn/suite/passport/oauth/token", bytes.NewBuffer(jsonData))
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Set("Content-Type", "application/json")
+	req.Header.Set("Accept", "application/json")
+	client := http.Client{
+		Timeout: 5 * time.Second,
+	}
+	res, err := client.Do(req)
+	if err != nil {
+		logger.SysLog(err.Error())
+		return nil, errors.New("无法连接至飞书服务器，请稍后重试！")
+	}
+	defer res.Body.Close()
+	var oAuthResponse LarkOAuthResponse
+	err = json.NewDecoder(res.Body).Decode(&oAuthResponse)
+	if err != nil {
+		return nil, err
+	}
+	req, err = http.NewRequest("GET", "https://passport.feishu.cn/suite/passport/oauth/userinfo", nil)
+	if err != nil {
+		return nil, err
+	}
+	req.Header.Set("Authorization", fmt.Sprintf("Bearer %s", oAuthResponse.AccessToken))
+	res2, err := client.Do(req)
+	if err != nil {
+		logger.SysLog(err.Error())
+		return nil, errors.New("无法连接至飞书服务器，请稍后重试！")
+	}
+	var larkUser LarkUser
+	err = json.NewDecoder(res2.Body).Decode(&larkUser)
+	if err != nil {
+		return nil, err
+	}
+	return &larkUser, nil
+}
+
+func LarkOAuth(c *gin.Context) {
+	session := sessions.Default(c)
+	state := c.Query("state")
+	if state == "" || session.Get("oauth_state") == nil || state != session.Get("oauth_state").(string) {
+		c.JSON(http.StatusForbidden, gin.H{
+			"success": false,
+			"message": "state is empty or not same",
+		})
+		return
+	}
+	username := session.Get("username")
+	if username != nil {
+		LarkBind(c)
+		return
+	}
+	code := c.Query("code")
+	larkUser, err := getLarkUserInfoByCode(code)
+	if err != nil {
+		c.JSON(http.StatusOK, gin.H{
+			"success": false,
+			"message": err.Error(),
+		})
+		return
+	}
+	user := model.User{
+		LarkId: larkUser.OpenID,
+	}
+	if model.IsLarkIdAlreadyTaken(user.LarkId) {
+		err := user.FillUserByLarkId()
+		if err != nil {
+			c.JSON(http.StatusOK, gin.H{
+				"success": false,
+				"message": err.Error(),
+			})
+			return
+		}
+	} else {
+		if config.RegisterEnabled {
+			user.Username = "lark_" + strconv.Itoa(model.GetMaxUserId()+1)
+			if larkUser.Name != "" {
+				user.DisplayName = larkUser.Name
+			} else {
+				user.DisplayName = "Lark User"
+			}
+			user.Role = common.RoleCommonUser
+			user.Status = common.UserStatusEnabled
+
+			if err := user.Insert(0); err != nil {
+				c.JSON(http.StatusOK, gin.H{
+					"success": false,
+					"message": err.Error(),
+				})
+				return
+			}
+		} else {
+			c.JSON(http.StatusOK, gin.H{
+				"success": false,
+				"message": "管理员关闭了新用户注册",
+			})
+			return
+		}
+	}
+
+	if user.Status != common.UserStatusEnabled {
+		c.JSON(http.StatusOK, gin.H{
+			"message": "用户已被封禁",
+			"success": false,
+		})
+		return
+	}
+	controller.SetupLogin(&user, c)
+}
+
+func LarkBind(c *gin.Context) {
+	code := c.Query("code")
+	larkUser, err := getLarkUserInfoByCode(code)
+	if err != nil {
+		c.JSON(http.StatusOK, gin.H{
+			"success": false,
+			"message": err.Error(),
+		})
+		return
+	}
+	user := model.User{
+		LarkId: larkUser.OpenID,
+	}
+	if model.IsLarkIdAlreadyTaken(user.LarkId) {
+		c.JSON(http.StatusOK, gin.H{
+			"success": false,
+			"message": "该飞书账户已被绑定",
+		})
+		return
+	}
+	session := sessions.Default(c)
+	id := session.Get("id")
+	// id := c.GetInt("id")  // critical bug!
+	user.Id = id.(int)
+	err = user.FillUserById()
+	if err != nil {
+		c.JSON(http.StatusOK, gin.H{
+			"success": false,
+			"message": err.Error(),
+		})
+		return
+	}
+	user.LarkId = larkUser.OpenID
+	err = user.Update(false)
+	if err != nil {
+		c.JSON(http.StatusOK, gin.H{
+			"success": false,
+			"message": err.Error(),
+		})
+		return
+	}
+	c.JSON(http.StatusOK, gin.H{
+		"success": true,
+		"message": "bind",
+	})
+	return
+}
diff --git a/controller/wechat.go b/controller/auth/wechat.go
similarity index 97%
rename from controller/wechat.go
rename to controller/auth/wechat.go
index 74be5604..80552c9a 100644
--- a/controller/wechat.go
+++ b/controller/auth/wechat.go
@@ -1,4 +1,4 @@
-package controller
+package auth
 
 import (
 	"encoding/json"
@@ -7,6 +7,7 @@ import (
 	"github.com/gin-gonic/gin"
 	"github.com/songquanpeng/one-api/common"
 	"github.com/songquanpeng/one-api/common/config"
+	"github.com/songquanpeng/one-api/controller"
 	"github.com/songquanpeng/one-api/model"
 	"net/http"
 	"strconv"
@@ -109,7 +110,7 @@ func WeChatAuth(c *gin.Context) {
 		})
 		return
 	}
-	setupLogin(&user, c)
+	controller.SetupLogin(&user, c)
 }
 
 func WeChatBind(c *gin.Context) {
diff --git a/controller/misc.go b/controller/misc.go
index f27fdb12..2928b8fb 100644
--- a/controller/misc.go
+++ b/controller/misc.go
@@ -23,6 +23,7 @@ func GetStatus(c *gin.Context) {
 			"email_verification":  config.EmailVerificationEnabled,
 			"github_oauth":        config.GitHubOAuthEnabled,
 			"github_client_id":    config.GitHubClientId,
+			"lark_client_id":      config.LarkClientId,
 			"system_name":         config.SystemName,
 			"logo":                config.Logo,
 			"footer_html":         config.Footer,
diff --git a/controller/user.go b/controller/user.go
index 61055878..e87a03a2 100644
--- a/controller/user.go
+++ b/controller/user.go
@@ -58,11 +58,11 @@ func Login(c *gin.Context) {
 		})
 		return
 	}
-	setupLogin(&user, c)
+	SetupLogin(&user, c)
 }
 
 // setup session & cookies and then return user info
-func setupLogin(user *model.User, c *gin.Context) {
+func SetupLogin(user *model.User, c *gin.Context) {
 	session := sessions.Default(c)
 	session.Set("id", user.Id)
 	session.Set("username", user.Username)
diff --git a/model/option.go b/model/option.go
index 1d1c28b4..cee9bd3b 100644
--- a/model/option.go
+++ b/model/option.go
@@ -172,6 +172,10 @@ func updateOptionMap(key string, value string) (err error) {
 		config.GitHubClientId = value
 	case "GitHubClientSecret":
 		config.GitHubClientSecret = value
+	case "LarkClientId":
+		config.LarkClientId = value
+	case "LarkClientSecret":
+		config.LarkClientSecret = value
 	case "Footer":
 		config.Footer = value
 	case "SystemName":
diff --git a/model/user.go b/model/user.go
index 5e729b5e..42d8f7b1 100644
--- a/model/user.go
+++ b/model/user.go
@@ -24,6 +24,7 @@ type User struct {
 	Email            string `json:"email" gorm:"index" validate:"max=50"`
 	GitHubId         string `json:"github_id" gorm:"column:github_id;index"`
 	WeChatId         string `json:"wechat_id" gorm:"column:wechat_id;index"`
+	LarkId           string `json:"lark_id" gorm:"column:lark_id;index"`
 	VerificationCode string `json:"verification_code" gorm:"-:all"`                                    // this field is only for Email verification, don't save it to database!
 	AccessToken      string `json:"access_token" gorm:"type:char(32);column:access_token;uniqueIndex"` // this token is for system management
 	Quota            int64  `json:"quota" gorm:"bigint;default:0"`
@@ -41,21 +42,21 @@ func GetMaxUserId() int {
 }
 
 func GetAllUsers(startIdx int, num int, order string) (users []*User, err error) {
-    query := DB.Limit(num).Offset(startIdx).Omit("password").Where("status != ?", common.UserStatusDeleted)
-    
-    switch order {
-    case "quota":
-        query = query.Order("quota desc")
-    case "used_quota":
-        query = query.Order("used_quota desc")
-    case "request_count":
-        query = query.Order("request_count desc")
-    default:
-        query = query.Order("id desc")
-    }
-    
-    err = query.Find(&users).Error
-    return users, err
+	query := DB.Limit(num).Offset(startIdx).Omit("password").Where("status != ?", common.UserStatusDeleted)
+
+	switch order {
+	case "quota":
+		query = query.Order("quota desc")
+	case "used_quota":
+		query = query.Order("used_quota desc")
+	case "request_count":
+		query = query.Order("request_count desc")
+	default:
+		query = query.Order("id desc")
+	}
+
+	err = query.Find(&users).Error
+	return users, err
 }
 
 func SearchUsers(keyword string) (users []*User, err error) {
@@ -206,6 +207,14 @@ func (user *User) FillUserByGitHubId() error {
 	return nil
 }
 
+func (user *User) FillUserByLarkId() error {
+	if user.LarkId == "" {
+		return errors.New("lark id 为空！")
+	}
+	DB.Where(User{LarkId: user.LarkId}).First(user)
+	return nil
+}
+
 func (user *User) FillUserByWeChatId() error {
 	if user.WeChatId == "" {
 		return errors.New("WeChat id 为空！")
@@ -234,6 +243,10 @@ func IsGitHubIdAlreadyTaken(githubId string) bool {
 	return DB.Where("github_id = ?", githubId).Find(&User{}).RowsAffected == 1
 }
 
+func IsLarkIdAlreadyTaken(githubId string) bool {
+	return DB.Where("lark_id = ?", githubId).Find(&User{}).RowsAffected == 1
+}
+
 func IsUsernameAlreadyTaken(username string) bool {
 	return DB.Where("username = ?", username).Find(&User{}).RowsAffected == 1
 }
diff --git a/router/api-router.go b/router/api-router.go
index 1558640f..a36232b3 100644
--- a/router/api-router.go
+++ b/router/api-router.go
@@ -2,6 +2,7 @@ package router
 
 import (
 	"github.com/songquanpeng/one-api/controller"
+	"github.com/songquanpeng/one-api/controller/auth"
 	"github.com/songquanpeng/one-api/middleware"
 
 	"github.com/gin-contrib/gzip"
@@ -21,10 +22,11 @@ func SetApiRouter(router *gin.Engine) {
 		apiRouter.GET("/verification", middleware.CriticalRateLimit(), middleware.TurnstileCheck(), controller.SendEmailVerification)
 		apiRouter.GET("/reset_password", middleware.CriticalRateLimit(), middleware.TurnstileCheck(), controller.SendPasswordResetEmail)
 		apiRouter.POST("/user/reset", middleware.CriticalRateLimit(), controller.ResetPassword)
-		apiRouter.GET("/oauth/github", middleware.CriticalRateLimit(), controller.GitHubOAuth)
-		apiRouter.GET("/oauth/state", middleware.CriticalRateLimit(), controller.GenerateOAuthCode)
-		apiRouter.GET("/oauth/wechat", middleware.CriticalRateLimit(), controller.WeChatAuth)
-		apiRouter.GET("/oauth/wechat/bind", middleware.CriticalRateLimit(), middleware.UserAuth(), controller.WeChatBind)
+		apiRouter.GET("/oauth/github", middleware.CriticalRateLimit(), auth.GitHubOAuth)
+		apiRouter.GET("/oauth/lark", middleware.CriticalRateLimit(), auth.LarkOAuth)
+		apiRouter.GET("/oauth/state", middleware.CriticalRateLimit(), auth.GenerateOAuthCode)
+		apiRouter.GET("/oauth/wechat", middleware.CriticalRateLimit(), auth.WeChatAuth)
+		apiRouter.GET("/oauth/wechat/bind", middleware.CriticalRateLimit(), middleware.UserAuth(), auth.WeChatBind)
 		apiRouter.GET("/oauth/email/bind", middleware.CriticalRateLimit(), middleware.UserAuth(), controller.EmailBind)
 		apiRouter.POST("/topup", middleware.AdminAuth(), controller.AdminTopUp)
 
diff --git a/web/default/src/App.js b/web/default/src/App.js
index 13c884dc..4ece4eeb 100644
--- a/web/default/src/App.js
+++ b/web/default/src/App.js
@@ -24,6 +24,7 @@ import EditRedemption from './pages/Redemption/EditRedemption';
 import TopUp from './pages/TopUp';
 import Log from './pages/Log';
 import Chat from './pages/Chat';
+import LarkOAuth from './components/LarkOAuth';
 
 const Home = lazy(() => import('./pages/Home'));
 const About = lazy(() => import('./pages/About'));
@@ -239,6 +240,14 @@ function App() {
           </Suspense>
         }
       />
+      <Route
+        path='/oauth/lark'
+        element={
+          <Suspense fallback={<Loading></Loading>}>
+            <LarkOAuth />
+          </Suspense>
+        }
+      />
       <Route
         path='/setting'
         element={
diff --git a/web/default/src/components/LarkOAuth.js b/web/default/src/components/LarkOAuth.js
new file mode 100644
index 00000000..bc2fb682
--- /dev/null
+++ b/web/default/src/components/LarkOAuth.js
@@ -0,0 +1,58 @@
+import React, { useContext, useEffect, useState } from 'react';
+import { Dimmer, Loader, Segment } from 'semantic-ui-react';
+import { useNavigate, useSearchParams } from 'react-router-dom';
+import { API, showError, showSuccess } from '../helpers';
+import { UserContext } from '../context/User';
+
+const LarkOAuth = () => {
+  const [searchParams, setSearchParams] = useSearchParams();
+
+  const [userState, userDispatch] = useContext(UserContext);
+  const [prompt, setPrompt] = useState('处理中...');
+  const [processing, setProcessing] = useState(true);
+
+  let navigate = useNavigate();
+
+  const sendCode = async (code, state, count) => {
+    const res = await API.get(`/api/oauth/lark?code=${code}&state=${state}`);
+    const { success, message, data } = res.data;
+    if (success) {
+      if (message === 'bind') {
+        showSuccess('绑定成功！');
+        navigate('/setting');
+      } else {
+        userDispatch({ type: 'login', payload: data });
+        localStorage.setItem('user', JSON.stringify(data));
+        showSuccess('登录成功！');
+        navigate('/');
+      }
+    } else {
+      showError(message);
+      if (count === 0) {
+        setPrompt(`操作失败，重定向至登录界面中...`);
+        navigate('/setting'); // in case this is failed to bind lark
+        return;
+      }
+      count++;
+      setPrompt(`出现错误，第 ${count} 次重试中...`);
+      await new Promise((resolve) => setTimeout(resolve, count * 2000));
+      await sendCode(code, state, count);
+    }
+  };
+
+  useEffect(() => {
+    let code = searchParams.get('code');
+    let state = searchParams.get('state');
+    sendCode(code, state, 0).then();
+  }, []);
+
+  return (
+    <Segment style={{ minHeight: '300px' }}>
+      <Dimmer active inverted>
+        <Loader size='large'>{prompt}</Loader>
+      </Dimmer>
+    </Segment>
+  );
+};
+
+export default LarkOAuth;
diff --git a/web/default/src/components/LoginForm.js b/web/default/src/components/LoginForm.js
index b48f64c4..01408f56 100644
--- a/web/default/src/components/LoginForm.js
+++ b/web/default/src/components/LoginForm.js
@@ -3,7 +3,8 @@ import { Button, Divider, Form, Grid, Header, Image, Message, Modal, Segment } f
 import { Link, useNavigate, useSearchParams } from 'react-router-dom';
 import { UserContext } from '../context/User';
 import { API, getLogo, showError, showSuccess, showWarning } from '../helpers';
-import { onGitHubOAuthClicked } from './utils';
+import { onGitHubOAuthClicked, onLarkOAuthClicked } from './utils';
+import larkIcon from '../images/lark.svg';
 
 const LoginForm = () => {
   const [inputs, setInputs] = useState({
@@ -124,7 +125,7 @@ const LoginForm = () => {
             点击注册
           </Link>
         </Message>
-        {status.github_oauth || status.wechat_login ? (
+        {status.github_oauth || status.wechat_login || status.lark_client_id ? (
           <>
             <Divider horizontal>Or</Divider>
             {status.github_oauth ? (
@@ -137,6 +138,18 @@ const LoginForm = () => {
             ) : (
               <></>
             )}
+            {status.lark_client_id ? (
+              <Button
+                // circular
+                color=''
+                onClick={() => onLarkOAuthClicked(status.lark_client_id)}
+                style={{ padding: 0, width: 36, height: 36 }}
+              >
+                <img src={larkIcon} width={36} height={36} />
+              </Button>
+            ) : (
+              <></>
+            )}
             {status.wechat_login ? (
               <Button
                 circular
diff --git a/web/default/src/components/PersonalSetting.js b/web/default/src/components/PersonalSetting.js
index 6baf1f35..0c968462 100644
--- a/web/default/src/components/PersonalSetting.js
+++ b/web/default/src/components/PersonalSetting.js
@@ -4,7 +4,7 @@ import { Link, useNavigate } from 'react-router-dom';
 import { API, copy, showError, showInfo, showNotice, showSuccess } from '../helpers';
 import Turnstile from 'react-turnstile';
 import { UserContext } from '../context/User';
-import { onGitHubOAuthClicked } from './utils';
+import { onGitHubOAuthClicked, onLarkOAuthClicked } from './utils';
 
 const PersonalSetting = () => {
   const [userState, userDispatch] = useContext(UserContext);
@@ -247,6 +247,11 @@ const PersonalSetting = () => {
           <Button onClick={()=>{onGitHubOAuthClicked(status.github_client_id)}}>绑定 GitHub 账号</Button>
         )
       }
+      {
+        status.lark_client_id && (
+          <Button onClick={()=>{onLarkOAuthClicked(status.lark_client_id)}}>绑定飞书账号</Button>
+        )
+      }
       <Button
         onClick={() => {
           setShowEmailBindModal(true);
diff --git a/web/default/src/components/SystemSetting.js b/web/default/src/components/SystemSetting.js
index 09b98665..7eeae92e 100644
--- a/web/default/src/components/SystemSetting.js
+++ b/web/default/src/components/SystemSetting.js
@@ -10,6 +10,8 @@ const SystemSetting = () => {
     GitHubOAuthEnabled: '',
     GitHubClientId: '',
     GitHubClientSecret: '',
+    LarkClientId: '',
+    LarkClientSecret: '',
     Notice: '',
     SMTPServer: '',
     SMTPPort: '',
@@ -109,6 +111,8 @@ const SystemSetting = () => {
       name === 'ServerAddress' ||
       name === 'GitHubClientId' ||
       name === 'GitHubClientSecret' ||
+      name === 'LarkClientId' ||
+      name === 'LarkClientSecret' ||
       name === 'WeChatServerAddress' ||
       name === 'WeChatServerToken' ||
       name === 'WeChatAccountQRCodeImageURL' ||
@@ -212,6 +216,18 @@ const SystemSetting = () => {
     }
   };
 
+   const submitLarkOAuth = async () => {
+    if (originInputs['LarkClientId'] !== inputs.LarkClientId) {
+      await updateOption('LarkClientId', inputs.LarkClientId);
+    }
+    if (
+      originInputs['LarkClientSecret'] !== inputs.LarkClientSecret &&
+      inputs.LarkClientSecret !== ''
+    ) {
+      await updateOption('LarkClientSecret', inputs.LarkClientSecret);
+    }
+  };
+
   const submitTurnstile = async () => {
     if (originInputs['TurnstileSiteKey'] !== inputs.TurnstileSiteKey) {
       await updateOption('TurnstileSiteKey', inputs.TurnstileSiteKey);
@@ -469,6 +485,44 @@ const SystemSetting = () => {
             保存 GitHub OAuth 设置
           </Form.Button>
           <Divider />
+          <Header as='h3'>
+            配置飞书授权登录
+            <Header.Subheader>
+              用以支持通过飞书进行登录注册，
+              <a href='https://open.feishu.cn/app' target='_blank'>
+                点击此处
+              </a>
+              管理你的飞书应用
+            </Header.Subheader>
+          </Header>
+          <Message>
+            主页链接填 <code>{inputs.ServerAddress}</code>
+            ，重定向 URL 填{' '}
+            <code>{`${inputs.ServerAddress}/oauth/lark`}</code>
+          </Message>
+          <Form.Group widths={3}>
+            <Form.Input
+              label='App ID'
+              name='LarkClientId'
+              onChange={handleInputChange}
+              autoComplete='new-password'
+              value={inputs.LarkClientId}
+              placeholder='输入 App ID'
+            />
+            <Form.Input
+              label='App Secret'
+              name='LarkClientSecret'
+              onChange={handleInputChange}
+              type='password'
+              autoComplete='new-password'
+              value={inputs.LarkClientSecret}
+              placeholder='敏感信息不会发送到前端显示'
+            />
+          </Form.Group>
+          <Form.Button onClick={submitLarkOAuth}>
+            保存飞书 OAuth 设置
+          </Form.Button>
+          <Divider />
           <Header as='h3'>
             配置 WeChat Server
             <Header.Subheader>
diff --git a/web/default/src/components/utils.js b/web/default/src/components/utils.js
index 5363ba5e..b711e274 100644
--- a/web/default/src/components/utils.js
+++ b/web/default/src/components/utils.js
@@ -17,4 +17,13 @@ export async function onGitHubOAuthClicked(github_client_id) {
   window.open(
     `https://github.com/login/oauth/authorize?client_id=${github_client_id}&state=${state}&scope=user:email`
   );
+}
+
+export async function onLarkOAuthClicked(lark_client_id) {
+  const state = await getOAuthState();
+  if (!state) return;
+  let redirect_uri = `${window.location.origin}/oauth/lark`;
+  window.open(
+    `https://open.feishu.cn/open-apis/authen/v1/index?redirect_uri=${redirect_uri}&app_id=${lark_client_id}&state=${state}`
+  );
 }
\ No newline at end of file
diff --git a/web/default/src/images/lark.svg b/web/default/src/images/lark.svg
new file mode 100644
index 00000000..239e1bef
--- /dev/null
+++ b/web/default/src/images/lark.svg
@@ -0,0 +1 @@
+<svg width="48" height="48" viewBox="0 0 48 48" fill="none" xmlns="http://www.w3.org/2000/svg"><rect width="48" height="48" fill="white"/><path d="M25.9958 24.7255L26.084 24.6373C26.1481 24.5812 26.2042 24.5171 26.2603 24.461L26.3805 24.3407L26.7492 23.9801L27.2543 23.4831L27.6871 23.0583L28.0878 22.6575L28.5127 22.2407L28.8974 21.8559L29.4345 21.3189C29.5387 21.2227 29.6429 21.1185 29.7471 21.0223C29.9394 20.846 30.1479 20.6696 30.3482 20.5013C30.5406 20.349 30.733 20.2047 30.9334 20.0604C31.214 19.86 31.4945 19.6757 31.791 19.4993C32.0876 19.323 32.3842 19.1707 32.6808 19.0264C32.9693 18.8901 33.2579 18.7619 33.5545 18.6497C33.7228 18.5856 33.8912 18.5214 34.0514 18.4653L34.3079 18.3852C33.5625 15.4434 32.1918 12.6941 30.2921 10.3215C29.9234 9.86464 29.3703 9.6001 28.7852 9.6001H13.2671C13.1067 9.6001 12.9785 9.72832 12.9785 9.88864C12.9785 9.98482 13.0186 10.065 13.0987 10.1211C18.397 14.0247 22.7816 19.0104 25.9637 24.7575L25.9958 24.7255Z" fill="#00CEB1"/><path d="M19.8406 38.3843C27.5836 38.3843 34.7175 34.1921 38.4768 27.427C38.605 27.1946 38.7253 26.9621 38.8455 26.7296C38.6611 27.0743 38.4607 27.411 38.2363 27.7396C38.1562 27.8518 38.076 27.9641 37.9959 28.0682C37.8916 28.2045 37.7794 28.3328 37.6752 28.461C37.5871 28.5652 37.4989 28.6614 37.4027 28.7576C37.2184 28.95 37.018 29.1343 36.8176 29.3106C36.7054 29.4068 36.5931 29.503 36.4729 29.5912C36.3366 29.6954 36.1924 29.7996 36.0561 29.8958C35.9679 29.9599 35.8717 30.016 35.7835 30.0722C35.6954 30.1283 35.5912 30.1923 35.487 30.2405C35.2866 30.3527 35.0782 30.4569 34.8698 30.5531C34.6854 30.6332 34.5011 30.7134 34.3167 30.7775C34.1163 30.8496 33.9079 30.9218 33.6995 30.9779C33.3869 31.0661 33.0663 31.1302 32.7376 31.1863C32.5052 31.2264 32.2728 31.2504 32.0323 31.2665C31.7838 31.2825 31.5353 31.2905 31.2788 31.2825C30.9982 31.2745 30.7177 31.2584 30.4372 31.2264C30.2287 31.2023 30.0204 31.1703 29.812 31.1382C29.6276 31.1061 29.4513 31.0661 29.2669 31.026C29.1707 31.0019 29.0745 30.9779 28.9783 30.9539C28.7138 30.8817 28.4413 30.8096 28.1768 30.7294L27.784 30.6092C27.5836 30.5531 27.3913 30.4889 27.1909 30.4328C27.0306 30.3848 26.8702 30.3287 26.7099 30.2805C26.5576 30.2324 26.4054 30.1844 26.253 30.1283L25.9404 30.024L25.5637 29.8878L25.2992 29.7916C25.1229 29.7275 24.9465 29.6633 24.7702 29.5992L24.4656 29.487L24.0568 29.3267C23.9125 29.2706 23.7682 29.2145 23.6239 29.1584L23.3434 29.0462L22.9987 28.9019L22.7342 28.7897L22.4617 28.6694L22.2212 28.5652L22.0048 28.469L21.7884 28.3728L21.5639 28.2686L21.2754 28.1324L20.9788 27.9881L20.6582 27.8358L20.3856 27.6995C15.6324 25.3189 11.3361 22.1127 7.69699 18.2251C7.58473 18.1049 7.40041 18.1049 7.28815 18.2091C7.23205 18.2652 7.20001 18.3373 7.20001 18.4175L7.20805 32.1161V33.2303C7.20805 33.8795 7.52863 34.4807 8.06569 34.8414C11.5525 37.1579 15.6484 38.3923 19.8406 38.3843Z" fill="#3370FF"/><path d="M37.8772 27.4253L37.8691 27.4414L37.8772 27.4253L37.9493 27.2891C37.9252 27.3372 37.9012 27.3773 37.8772 27.4253Z" fill="#133C92"/><path d="M38.2137 26.8012L38.2297 26.7611L38.2377 26.7451L38.2137 26.8012Z" fill="#133C92"/><path d="M43.3814 19.0825C40.6802 17.76 37.5781 17.4714 34.6845 18.289C34.5642 18.321 34.444 18.3611 34.3238 18.3932L34.0673 18.4733C33.899 18.5295 33.7307 18.5935 33.5703 18.6577C33.2738 18.7699 32.9852 18.8982 32.6966 19.0344C32.392 19.1787 32.0955 19.339 31.8069 19.5073C31.5183 19.6756 31.2297 19.86 30.9492 20.0685C30.7488 20.2127 30.5565 20.357 30.3641 20.5093C30.1557 20.6776 29.9553 20.8459 29.7629 21.0303C29.6587 21.1265 29.5545 21.2227 29.4503 21.3269L28.9133 21.8639L28.5285 22.2487L28.1117 22.6655L27.7109 23.0662L27.2781 23.4911L26.7731 23.9881L26.4044 24.3487L26.2842 24.469C26.228 24.5251 26.1639 24.5892 26.1078 24.6453L26.0196 24.7335L25.8834 24.8617L25.7231 25.006C24.3925 26.2324 22.9016 27.2824 21.3065 28.1321L21.5951 28.2684L21.8195 28.3726L22.0439 28.4688L22.2603 28.5649L22.5008 28.6692L22.7733 28.7894L23.0378 28.9016L23.3825 29.0459L23.6631 29.1581C23.8073 29.2142 23.9516 29.2703 24.0959 29.3264L24.5047 29.4867L24.8093 29.599C24.9857 29.6631 25.162 29.7272 25.3383 29.7913L25.6028 29.8875L25.9796 30.0157L26.2922 30.12C26.4444 30.1761 26.5968 30.2242 26.7491 30.2722C26.9094 30.3283 27.0697 30.3765 27.23 30.4246C27.4224 30.4887 27.6228 30.5448 27.8231 30.6009L28.2159 30.7212C28.4804 30.8013 28.745 30.8734 29.0175 30.9456C29.1137 30.9696 29.2098 30.9937 29.306 31.0177C29.4904 31.0578 29.6667 31.0978 29.8511 31.1299C30.0595 31.17 30.2679 31.1941 30.4763 31.2181C30.7568 31.2502 31.0374 31.2662 31.3179 31.2742C31.5744 31.2742 31.8229 31.2742 32.0714 31.2582C32.3119 31.2421 32.5443 31.2181 32.7768 31.178C33.0974 31.1299 33.418 31.0578 33.7226 30.9776C33.931 30.9215 34.1394 30.8574 34.3398 30.7773C34.5242 30.7131 34.7085 30.633 34.8929 30.5528C35.1013 30.4566 35.3097 30.3524 35.5101 30.2402C35.6063 30.1841 35.7105 30.128 35.8067 30.0719C35.9028 30.0157 35.991 29.9596 36.0792 29.8955C36.2235 29.7993 36.3597 29.6952 36.496 29.5909C36.6162 29.5027 36.7284 29.4066 36.8407 29.3104C37.041 29.134 37.2414 28.9497 37.4258 28.7573C37.522 28.6611 37.6102 28.5649 37.6983 28.4607C37.8105 28.3325 37.9148 28.2042 38.019 28.068C38.0991 27.9638 38.1793 27.8515 38.2595 27.7393C38.4839 27.4187 38.6843 27.0901 38.8686 26.7374L39.077 26.3206L40.9527 22.5773V22.5853C41.5218 21.2868 42.3554 20.0925 43.3814 19.0825Z" fill="#133C92"/><path d="M37.9012 27.4346L37.8932 27.4506L37.9012 27.4346L37.9733 27.2983L37.9012 27.4346Z" fill="#133C92"/><path d="M38.2295 26.809L38.2455 26.7689L38.2536 26.7529C38.2536 26.7769 38.2375 26.793 38.2295 26.809Z" fill="#133C92"/></svg>
\ No newline at end of file