diff --git a/pkg/db/user.go b/pkg/db/user.go
index 358b288..29e46a7 100644
--- a/pkg/db/user.go
+++ b/pkg/db/user.go
@@ -29,6 +29,18 @@ func (u *User) BeforeCreate(tx *gorm.DB) error {
 	return nil
 }
 
+// BeforeUpdate hook to hash password before updating
+func (u *User) BeforeUpdate(tx *gorm.DB) error {
+	if tx.Statement.Changed("Password") {
+		hashedPassword, err := bcrypt.GenerateFromPassword([]byte(u.Password), bcrypt.DefaultCost)
+		if err != nil {
+			return err
+		}
+		u.Password = string(hashedPassword)
+	}
+	return nil
+}
+
 // CheckPassword verifies if the provided password matches the hash
 func (u *User) CheckPassword(password string) bool {
 	err := bcrypt.CompareHashAndPassword([]byte(u.Password), []byte(password))
diff --git a/server.go b/server.go
index 2132110..9a9ac6e 100644
--- a/server.go
+++ b/server.go
@@ -62,6 +62,11 @@ type (
 		StreamAlias   map[config.Regexp]string `desc:"流别名"`
 		PullProxy     []*PullProxy
 		EnableLogin   bool `default:"false" desc:"启用登录机制"` //启用登录机制
+		Users         []struct {
+			Username string `desc:"用户名"`
+			Password string `desc:"密码"`
+			Role     string `default:"user" desc:"角色,可选值:admin,user"`
+		} `desc:"用户列表,仅在启用登录机制时生效"`
 	}
 	WaitStream struct {
 		StreamPath string
@@ -271,7 +276,36 @@ func (s *Server) Start() (err error) {
 				s.Error("failed to auto-migrate User model", "error", err)
 				return
 			}
-			// Create default admin user if not exists
+			// Create users from configuration if EnableLogin is true
+			if s.ServerConfig.EnableLogin {
+				for _, userConfig := range s.ServerConfig.Users {
+					var user db.User
+					// Check if user exists
+					if err = s.DB.Where("username = ?", userConfig.Username).First(&user).Error; err != nil {
+						// Create user if not exists
+						user = db.User{
+							Username: userConfig.Username,
+							Password: userConfig.Password,
+							Role:     userConfig.Role,
+						}
+						if err = s.DB.Create(&user).Error; err != nil {
+							s.Error("failed to create user", "error", err, "username", userConfig.Username)
+							continue
+						}
+						s.Info("created user from config", "username", userConfig.Username)
+					} else {
+						// Update existing user with config values
+						user.Password = userConfig.Password
+						user.Role = userConfig.Role
+						if err = s.DB.Save(&user).Error; err != nil {
+							s.Error("failed to update user", "error", err, "username", userConfig.Username)
+							continue
+						}
+						s.Info("updated user from config", "username", userConfig.Username)
+					}
+				}
+			}
+			// Create default admin user if no users exist
 			var count int64
 			s.DB.Model(&db.User{}).Count(&count)
 			if count == 0 {