fix

app/Http/Controllers/API/CustomFieldController.php

@@ -31,7 +31,7 @@ class CustomFieldController extends Controller
     {
         if (Auth::user()->super_admin) {
             $namingRule = NamingRule::query()->where("id", $request->group)->first();
-            if (!in_array($request->group, config("custom-field.groups")) && !$namingRule) {
+            if (!in_array(strtolower($request->group), config("custom-field.groups")) && !$namingRule) {
                 return $this->forbidden("Operation without permission");
             }
         } else {