diff --git a/controllers/admin.js b/controllers/admin.js
new file mode 100644
index 0000000..24cc7c9
--- /dev/null
+++ b/controllers/admin.js
@@ -0,0 +1,9 @@
+exports.toUsers = function(req, res) {
+  res.render('admin/users', {
+    title: '用户列表',
+    user: req.session.user,
+    env: req.session.env,
+    success: req.flash('success').toString(),
+    error: req.flash('error').toString()
+  });
+}
\ No newline at end of file
diff --git a/controllers/auth.js b/controllers/auth.js
index 776bcb0..6c9e6bd 100644
--- a/controllers/auth.js
+++ b/controllers/auth.js
@@ -12,4 +12,12 @@ exports.checkNotLogin = function(req, res, next) {
     res.redirect('back');
   }
   next();
+};
+
+exports.checkSupperAdmin = function(req, res, next) {
+  if(req.session.user.name !== 'applesstt') {
+    req.flash('error', '您不是管理员！');
+    res.redirect('back');
+  }
+  next();
 };
\ No newline at end of file
diff --git a/routes/index.js b/routes/index.js
index 70f76dc..72bd251 100644
--- a/routes/index.js
+++ b/routes/index.js
@@ -5,7 +5,8 @@ var auth = require('../controllers/auth.js'),
   article = require('../controllers/article.js'),
   mail = require('../controllers/mail.js'),
   user = require('../controllers/user.js'),
-  person = require('../controllers/person.js');
+  person = require('../controllers/person.js'),
+  admin = require('../controllers/admin.js');
 
 module.exports = function(app) {
 
@@ -53,6 +54,10 @@ module.exports = function(app) {
   app.all('/person*', auth.checkLogin);
   app.all('/person', person.toSet);
 
+  app.all('/admin*', auth.checkLogin);
+  app.all('/admin*', auth.checkSupperAdmin);
+  app.all('/admin', admin.toUsers);
+
   app.all('/logout', auth.checkLogin);
   app.get('/logout', login.logout);
 
diff --git a/views/admin/users.jade b/views/admin/users.jade
new file mode 100644
index 0000000..0d88dfc
--- /dev/null
+++ b/views/admin/users.jade
@@ -0,0 +1 @@
+extends ../layout/layout
\ No newline at end of file