diff --git a/src/modules/rdb/http/router.go b/src/modules/rdb/http/router.go
index e436a29555ee0e543c29f60839e74c8989d95be7..6cf4d245f056e3ea7ace44f7609e61548a972b26 100644
--- a/src/modules/rdb/http/router.go
+++ b/src/modules/rdb/http/router.go
@@ -136,6 +136,7 @@ func Config(r *gin.Engine) {
 		userLogin.GET("/node/:id/roles", rolesUnderNodeGets)
 		userLogin.POST("/node/:id/roles", rolesUnderNodePost)
 		userLogin.DELETE("/node/:id/roles", rolesUnderNodeDel)
+		userLogin.DELETE("/node/:id/roles/try", rolesUnderNodeDelTry)
 		userLogin.GET("/node/:id/resources", resourceUnderNodeGet)
 		userLogin.GET("/node/:id/resources/cate-count", renderNodeResourcesCountByCate)
 		userLogin.POST("/node/:id/resources/bind", resourceBindNode)
@@ -149,6 +150,7 @@ func Config(r *gin.Engine) {
 
 		userLogin.GET("/resources/search", resourceSearchGet)
 		userLogin.PUT("/resources/note", resourceNotePut)
+		userLogin.PUT("/resources/note/try", resourceNotePutTry)
 		userLogin.GET("/resources/bindings", resourceBindingsGet)
 		userLogin.GET("/resources/orphan", resourceOrphanGet)
 
diff --git a/src/modules/rdb/http/router_node_role.go b/src/modules/rdb/http/router_node_role.go
index 29505625bbc4353d0b67b68bea91f48e7fb07fc1..d7dd9eed4e497a58101708cb42e6e05f2b0f8fe2 100644
--- a/src/modules/rdb/http/router_node_role.go
+++ b/src/modules/rdb/http/router_node_role.go
@@ -114,3 +114,12 @@ func rolesUnderNodeDel(c *gin.Context) {
 
 	renderMessage(c, err)
 }
+
+func rolesUnderNodeDelTry(c *gin.Context) {
+	node := Node(urlParamInt64(c, "id"))
+
+	me := loginUser(c)
+	me.CheckPermByNode(node, "rdb_perm_grant")
+
+	renderMessage(c, nil)
+}
diff --git a/src/modules/rdb/http/router_resource.go b/src/modules/rdb/http/router_resource.go
index b0fa5afb4285cde032f620c4eb7fce12ce47743d..899f3447ec4e648601569e19e7f2e0cb0e73b603 100644
--- a/src/modules/rdb/http/router_resource.go
+++ b/src/modules/rdb/http/router_resource.go
@@ -131,6 +131,33 @@ func resourceHttpRegister(count int, items []v1ContainersRegisterItem) {
 	}
 }
 
+// 游离资源页面修改备注权限测试，超级管理员，或者是租户管理员有权限
+func resourceNotePutTry(c *gin.Context) {
+	path := queryStr(c, "tenant", "")
+	me := loginUser(c)
+
+	if me.IsRooter() {
+		renderMessage(c, nil)
+		return
+	}
+
+	if path == "" {
+		bomb("no privilege")
+	}
+
+	tenantNode, err := models.NodeGet("path=?", path)
+	if tenantNode == nil || err != nil {
+		bomb("no privilege")
+	}
+
+	exists, err := models.NodesAdminExists([]int64{tenantNode.Id}, me.Id)
+	if err != nil || !exists {
+		bomb("no privilege")
+	}
+
+	renderMessage(c, nil)
+}
+
 // 游离资源页面修改备注，超级管理员，或者是租户管理员
 func resourceNotePut(c *gin.Context) {
 	var f resourceNotePutForm