@byted-apaas/server-sdk-node 1.0.14 → 1.0.16

package/README.md

@@ -1,7 +1,27 @@
 ## aPaaS @byted-apaas/server-sdk-node 版本说明：
 
 -------
-### 版本：1.0.13｜兼容升级
+### 版本：1.0.15｜兼容升级
+新功能：数据操作接口支持指定鉴权身份
+- 不指定: 访问数据模型时, 权限 1.0 应用默认使用系统身份鉴权, 权限 2.0 应用默认使用用户身份鉴权
+- useUserAuth(): 访问数据模型时, 使用用户身份鉴权
+- useSystemAuth(): 访问数据模型时, 使用系统身份鉴权
+```js
+// 示例
+await context.db.object("obj").findOne();
+await context.db.object("obj").useUserAuth().findOne();
+await context.db.object("obj").useSystemAuth().findOne();
+
+await context.db.newTransaction().object("obj").commit();
+await context.db.newTransaction().useUserAuth().object("obj").commit();
+await context.db.newTransaction().useSystemAuth().object("obj").commit();
+
+await context.db.oql("SELECT _id FROM obj").execute();
+await context.db.oql("SELECT _id FROM obj").useUserAuth().execute();
+await context.db.oql("SELECT _id FROM obj").useSystemAuth().execute();
+```
+
+### 版本：1.0.14｜兼容升级
 新功能：支持流式查询 findStream
 ```js
 await context.db.object("_user").findStream(async (records) => {

package/context/db/impl/IObject.d.ts

@@ -86,6 +86,14 @@ export interface _IKSyncEndpoint<T> {
      * @paramExample [{_id: 1001, _name: "John", gender: "male"}, {_id: 1002, _name: "Alis", gender: "female"}]
      */
     batchUpdate(recordMapList: _Cond<T>[]): Promise<void>;
+    /**
+     * 用户级鉴权
+     */
+    useUserAuth(): this;
+    /**
+     * 系统级鉴权
+     */
+    useSystemAuth(): this;
 }
 export interface _IKAsyncEndpoint<T> {
     /**
@@ -118,6 +126,14 @@ export interface _IKAsyncEndpoint<T> {
     batchUpdateAsync(recordMapList: _Cond<T>[]): Promise<{
         taskID: number;
     }>;
+    /**
+     * 用户级鉴权
+     */
+    useUserAuth(): this;
+    /**
+     * 系统级鉴权
+     */
+    useSystemAuth(): this;
 }
 export interface _IKQuery<T> {
     /**
@@ -233,6 +249,16 @@ export interface _IKQuery<T> {
      * 设置查询条件
      */
     where(): Omit<_IKQuery<T>, 'findAll'>;
+    /**
+     * 模糊查询：与 where 之间是与关系
+     * @param keyword 模糊查询的关键字，必填且不可以为空串
+     * @param fieldAPINames 『可搜索字段』的字段列表，不可为空
+     * @example
+     * ```
+     * context.db.object("_user").fuzzySearch("张三", ["_name"]).find()
+     * ```
+     */
+    fuzzySearch(keyword: string, fieldAPINames: string[]): Omit<_IKQuery<T>, 'findAll'>;
     /**
      * 指定分页查询的数量
      * @param limit 分页查询的数量
@@ -261,4 +287,12 @@ export interface _IKQuery<T> {
      * ```
      */
     count(): Promise<number>;
+    /**
+     * 用户级鉴权
+     */
+    useUserAuth(): this;
+    /**
+     * 系统级鉴权
+     */
+    useSystemAuth(): this;
 }

package/context/db/impl/object.d.ts

@@ -23,6 +23,7 @@ export declare class _KApplicationObject<T> {
 declare class _KObjectSync<T> implements _IKSyncEndpoint<T> {
     apiName: string;
     appCtx: AppCtx;
+    authType: string;
     create(recordMap: _Cond<T>): Promise<{
         _id: number;
     }>;
@@ -34,9 +35,12 @@ declare class _KObjectSync<T> implements _IKSyncEndpoint<T> {
     batchDelete(recordIdList: number[]): Promise<void>;
     batchDelete(recordList: _Cond<T>[]): Promise<void>;
     batchUpdate(recordMapList: _Cond<T>[]): Promise<void>;
+    useUserAuth(): this;
+    useSystemAuth(): this;
 }
 declare class _KObjectAsync<T> implements _IKAsyncEndpoint<T> {
     apiName: string;
+    authType: string;
     batchCreateAsync(recordMapList: _Cond<T>[]): Promise<{
         taskID: number;
     }>;
@@ -49,10 +53,13 @@ declare class _KObjectAsync<T> implements _IKAsyncEndpoint<T> {
     batchUpdateAsync(recordMapList: _Cond<T>[]): Promise<{
         taskID: number;
     }>;
+    useUserAuth(): this;
+    useSystemAuth(): this;
 }
 declare class _KObjectQuery<T> implements _IKQuery<T> {
     apiName: string;
     appCtx: AppCtx;
+    authType: string;
     find(): Promise<_Record<T>[]>;
     findOne(): Promise<_Record<T>>;
     findAll(): Promise<_Record<T>[]>;
@@ -65,15 +72,19 @@ declare class _KObjectQuery<T> implements _IKQuery<T> {
     select<K extends keyof T>(...fieldApiNames: K[]): _KQuery<T>;
     where(conditionMap: _WhereCond<T>): _KQuery<T>;
     where(): _KQuery<T>;
+    fuzzySearch(keyword: string, fieldAPINames: string[]): _KQuery<T>;
     limit(limit: number): _KQuery<T>;
     offset(offset: number): _KQuery<T>;
     count(): Promise<number>;
+    useSystemAuth(): this;
+    useUserAuth(): this;
 }
 /**
  * _KQuery is kunlun query implement, implements ORM operations.
  */
 declare class _KQuery<T> implements _IKQuery<T> {
-    constructor(objectApiName: string, appCtx?: AppCtx);
+    private authType;
+    constructor(objectApiName: string, appCtx?: AppCtx, authType?: string);
     find(): Promise<_Record<T>[]>;
     findOne(): Promise<_Record<T>>;
     /**
@@ -92,9 +103,12 @@ declare class _KQuery<T> implements _IKQuery<T> {
     select<K extends keyof T>(...fieldApiNames: K[]): this;
     where(conditionMap: _WhereCond<T>): this;
     where(): this;
+    fuzzySearch(keyword: string, fieldAPINames: string[]): this;
     limit(limit: number): this;
     offset(offset: number): this;
     count(): Promise<number>;
     private findPreCheck;
+    useSystemAuth(): this;
+    useUserAuth(): this;
 }
 export {};

package/context/db/impl/object.js

@@ -12,6 +12,7 @@ const propertiesStore_1 = require("./propertiesStore");
 const common_1 = require("../../../application/impl/common");
 const logicV2_1 = require("../../../kunlun/operator/impl/logicV2");
 const operator_1 = require("../../../kunlun/operator/impl/operator");
+const constants_1 = require("@byted-apaas/server-common-node/constants/constants");
 const queryPropertiesStore = new propertiesStore_1.default();
 // _KObject will be Mixin with [_KObjectSync, _KObjectAsync, _KObjectQuery]
 class _KObject {
@@ -52,7 +53,7 @@ class _KObjectSync {
                 return await Request.GetInstance().openSDKCreateRecordBySync(this.apiName, recordMap);
             });
         }
-        return await Request.GetInstance().createRecordBySync(this.apiName, recordMap);
+        return await Request.GetInstance().createRecordBySync(this.apiName, recordMap, this.authType);
     }
     ;
     async delete(recordOrRecordID) {
@@ -79,7 +80,7 @@ class _KObjectSync {
                     return await Request.GetInstance().openSDKDeleteRecordBySync(this.apiName, recordID);
                 });
             }
-            return await Request.GetInstance().deleteRecordBySync(this.apiName, recordID);
+            return await Request.GetInstance().deleteRecordBySync(this.apiName, recordID, this.authType);
         }
         throw new server_common_node_1.exceptions.InvalidParamError("record must be number or object");
     }
@@ -115,7 +116,7 @@ class _KObjectSync {
                 return await Request.GetInstance().openSDKUpdateRecordBySync(this.apiName, recordID, record);
             });
         }
-        return await Request.GetInstance().updateRecordBySync(this.apiName, recordID, record);
+        return await Request.GetInstance().updateRecordBySync(this.apiName, recordID, record, this.authType);
     }
     ;
     // batch sync
@@ -135,7 +136,7 @@ class _KObjectSync {
         let data = (this.appCtx && this.appCtx.mode == 'openSDK') ?
             await (0, common_1.runCtxForOpenSDK)(this.appCtx, async () => {
                 return await Request.GetInstance().openSDKCreateRecordsBySync(this.apiName, recordMapList);
-            }) : await Request.GetInstance().createRecordsBySync(this.apiName, recordMapList);
+            }) : await Request.GetInstance().createRecordsBySync(this.apiName, recordMapList, this.authType);
         // todo: 确定函数返回值
         if (!(data instanceof Array) && data["record_ids"]) {
             return data["record_ids"];
@@ -169,7 +170,7 @@ class _KObjectSync {
                 return await Request.GetInstance().openSDKDeleteRecordsBySync(this.apiName, recordIDs);
             });
         }
-        return await Request.GetInstance().deleteRecordsBySync(this.apiName, recordIDs);
+        return await Request.GetInstance().deleteRecordsBySync(this.apiName, recordIDs, this.authType);
     }
     async batchUpdate(recordMapList) {
         // 参数校验、组装
@@ -193,9 +194,17 @@ class _KObjectSync {
                 return await Request.GetInstance().openSDKUpdateRecordsBySync(this.apiName, recordMapList);
             });
         }
-        return await Request.GetInstance().updateRecordsBySync(this.apiName, recordMap);
+        return await Request.GetInstance().updateRecordsBySync(this.apiName, recordMap, this.authType);
     }
     ;
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
 }
 class _KObjectAsync {
     constructor() {
@@ -221,7 +230,7 @@ class _KObjectAsync {
         if (server_common_node_1.utils.stringify(recordMapList).length > 50 * 1024 * 1024) {
             throw new server_common_node_1.exceptions.InvalidParamError("parameter records size exceeds 50MB");
         }
-        return await Request.GetInstance().createRecordsByAsync(this.apiName, recordMapList);
+        return await Request.GetInstance().createRecordsByAsync(this.apiName, recordMapList, this.authType);
     }
     ;
     async batchDeleteAsync(recordOrIDList) {
@@ -250,7 +259,7 @@ class _KObjectAsync {
         if (server_common_node_1.utils.stringify(recordIDs).length > 50 * 1024 * 1024) {
             throw new server_common_node_1.exceptions.InvalidParamError("parameter records size exceeds 50MB");
         }
-        return await Request.GetInstance().deleteRecordsByAsync(this.apiName, recordIDs);
+        return await Request.GetInstance().deleteRecordsByAsync(this.apiName, recordIDs, this.authType);
     }
     async batchUpdateAsync(recordMapList) {
         // 参数校验、组装
@@ -280,9 +289,17 @@ class _KObjectAsync {
         if (server_common_node_1.utils.stringify(recordMap).length > 50 * 1024 * 1024) {
             throw new server_common_node_1.exceptions.InvalidParamError("parameter records size exceeds 50MB");
         }
-        return await Request.GetInstance().updateRecordsByAsync(this.apiName, recordMap);
+        return await Request.GetInstance().updateRecordsByAsync(this.apiName, recordMap, this.authType);
     }
     ;
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
 }
 class _KObjectQuery {
     constructor() {
@@ -290,15 +307,15 @@ class _KObjectQuery {
     }
     // find, findOne
     async find() {
-        return new _KQuery(this.apiName, this.appCtx).find();
+        return new _KQuery(this.apiName, this.appCtx, this.authType).find();
     }
     ;
     async findOne() {
-        return new _KQuery(this.apiName, this.appCtx).findOne();
+        return new _KQuery(this.apiName, this.appCtx, this.authType).findOne();
     }
     ;
     async findAll() {
-        return new _KQuery(this.apiName, this.appCtx).findAll();
+        return new _KQuery(this.apiName, this.appCtx, this.authType).findAll();
     }
     ;
     async findStream(handler) {
@@ -306,42 +323,55 @@ class _KObjectQuery {
     }
     orderBy(fieldApiNames, ...restFieldApiNames) {
         fieldApiNames = !fieldApiNames ? [] : fieldApiNames;
-        return new _KQuery(this.apiName, this.appCtx).orderBy(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
+        return new _KQuery(this.apiName, this.appCtx, this.authType).orderBy(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
     }
     orderByDesc(fieldApiNames, ...restFieldApiNames) {
         fieldApiNames = !fieldApiNames ? [] : fieldApiNames;
-        return new _KQuery(this.apiName, this.appCtx).orderByDesc(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
+        return new _KQuery(this.apiName, this.appCtx, this.authType).orderByDesc(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
     }
     select(fieldApiNames, ...restFieldApiNames) {
         fieldApiNames = !fieldApiNames ? [] : fieldApiNames;
-        return new _KQuery(this.apiName, this.appCtx).select(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
+        return new _KQuery(this.apiName, this.appCtx, this.authType).select(server_common_node_1.utils.argsToList(fieldApiNames, restFieldApiNames));
     }
     where(conditionMap) {
         if (!conditionMap) {
-            return new _KQuery(this.apiName, this.appCtx).where();
+            return new _KQuery(this.apiName, this.appCtx, this.authType).where();
         }
-        return new _KQuery(this.apiName, this.appCtx).where(conditionMap);
+        return new _KQuery(this.apiName, this.appCtx, this.authType).where(conditionMap);
+    }
+    fuzzySearch(keyword, fieldAPINames) {
+        return new _KQuery(this.apiName, this.appCtx).fuzzySearch(keyword, fieldAPINames);
     }
     // limit, offset, count
     limit(limit) {
-        return new _KQuery(this.apiName, this.appCtx).limit(limit);
+        return new _KQuery(this.apiName, this.appCtx, this.authType).limit(limit);
     }
     ;
     offset(offset) {
-        return new _KQuery(this.apiName, this.appCtx).offset(offset);
+        return new _KQuery(this.apiName, this.appCtx, this.authType).offset(offset);
     }
     ;
     async count() {
-        return new _KQuery(this.apiName, this.appCtx).count();
+        return new _KQuery(this.apiName, this.appCtx, this.authType).count();
     }
     ;
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
 }
 /**
  * _KQuery is kunlun query implement, implements ORM operations.
  */
 class _KQuery {
-    // 使用请求上下文和对象 Api Name 进行初始化
-    constructor(objectApiName, appCtx = null) {
+    constructor(objectApiName, appCtx = null, authType = null) {
+        if (authType) {
+            this.authType = authType;
+        }
         if (!objectApiName) {
             throw new server_common_node_1.exceptions.InvalidParamError("objectApiName is empty");
         }
@@ -370,7 +400,7 @@ class _KQuery {
         }
         else {
             const criterion = (0, logic_1.buildCriterion)(queryBuilder.getLogic(), apiName);
-            return await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.getOrder(), false, queryBuilder.getSelect(), queryBuilder.getOffset(), queryBuilder.getLimit(), false);
+            return await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.fuzzySearch, queryBuilder.getOrder(), false, queryBuilder.getSelect(), queryBuilder.getOffset(), queryBuilder.getLimit(), false, this.authType);
         }
     }
     ;
@@ -455,7 +485,7 @@ class _KQuery {
             }
             else {
                 let criterion = (0, logic_1.buildCriterion)(queryBuilder.getLogic(), apiName, maxId);
-                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), [new order_1.Order("_id", "asc")], false, queryBuilder.getSelect(), 0, newLimit, false);
+                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.fuzzySearch, [new order_1.Order("_id", "asc")], false, queryBuilder.getSelect(), 0, newLimit, false, this.authType);
             }
             queryCount += rs.length;
             rs.forEach((r) => {
@@ -525,7 +555,7 @@ class _KQuery {
             }
             else {
                 let criterion = (0, logic_1.buildCriterion)(queryBuilder.getLogic(), apiName, maxId);
-                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), orders, false, selectFields, i, newLimit, false);
+                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.fuzzySearch, orders, false, selectFields, i, newLimit, false, this.authType);
             }
             queryCount += rs.length;
             try {
@@ -563,7 +593,8 @@ class _KQuery {
             }
             else {
                 let criterion = (0, logic_1.buildCriterion)(queryBuilder.getLogic(), apiName, maxId);
-                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), [new order_1.Order("_id", "asc")], false, queryBuilder.getSelect(), 0, queryBuilder_1.defaultLimit, false);
+                rs = await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), null, // FindAll 不再迭代
+                [new order_1.Order("_id", "asc")], false, queryBuilder.getSelect(), 0, queryBuilder_1.defaultLimit, false, this.authType);
             }
             rs.forEach((r) => {
                 maxId = r._id > maxId ? r._id : maxId;
@@ -633,6 +664,26 @@ class _KQuery {
         }
         return this;
     }
+    fuzzySearch(keyword, fieldAPINames) {
+        const { queryBuilder, queryV2 } = queryPropertiesStore.get(this);
+        if (queryV2) {
+            throw new server_common_node_1.exceptions.InvalidParamError(`OpenSDK does not implement FuzzySearch`);
+        }
+        if (queryBuilder.fuzzySearch) {
+            throw new server_common_node_1.exceptions.InvalidParamError(`FuzzySearch can only be called once`);
+        }
+        if (!keyword) {
+            throw new server_common_node_1.exceptions.InvalidParamError(`FuzzySearch's keyword can not be empty`);
+        }
+        if (!fieldAPINames || fieldAPINames.length === 0) {
+            throw new server_common_node_1.exceptions.InvalidParamError(`FuzzySearch's fieldAPINames can not be empty`);
+        }
+        queryBuilder.fuzzySearch = {
+            keyword: keyword,
+            fieldAPINames: fieldAPINames,
+        };
+        return this;
+    }
     limit(limit) {
         const { queryBuilder, queryV2 } = queryPropertiesStore.get(this);
         limit = Number(limit);
@@ -675,7 +726,7 @@ class _KQuery {
         }
         else {
             let criterion = (0, logic_1.buildCriterion)(queryBuilder.getLogic(), apiName);
-            return await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.getOrder(), false, queryBuilder.getSelect(), queryBuilder.getOffset(), queryBuilder.getLimit(), true);
+            return await Request.GetInstance().getRecordsOrCountByCriterion(apiName, await (0, logic_1.handleCriterion)(criterion), queryBuilder.fuzzySearch, queryBuilder.getOrder(), false, queryBuilder.getSelect(), queryBuilder.getOffset(), queryBuilder.getLimit(), true, this.authType);
         }
     }
     ;
@@ -693,6 +744,14 @@ class _KQuery {
             throw new server_common_node_1.exceptions.InvalidParamError(`limit(${limit}) < 1`);
         }
     }
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
 }
 function applyMixins(derivedCtor, constructors) {
     constructors.forEach((baseCtor) => {

package/context/db/impl/oql/ioql.d.ts

@@ -3,4 +3,12 @@ export interface IOql {
      * 执行 OQL
      */
     execute(): Promise<any | any[]>;
+    /**
+     * 用户级鉴权
+     */
+    useUserAuth(): IOql;
+    /**
+     * 系统级鉴权
+     */
+    useSystemAuth(): IOql;
 }

package/context/db/impl/oql/oql.d.ts

@@ -3,7 +3,10 @@ export declare class Oql implements IOql {
     oql: string;
     params: any[];
     namedParams: Record<string, any>;
+    authType: string;
     constructor(oql: string);
     constructor(oql: string, namedArgs: Record<string, any>);
     execute(): Promise<any[]>;
+    useSystemAuth(): IOql;
+    useUserAuth(): IOql;
 }

package/context/db/impl/oql/oql.js

@@ -4,6 +4,7 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.Oql = void 0;
 const Request = require("../../../../request/interface");
+const constants_1 = require("@byted-apaas/server-common-node/constants/constants");
 class Oql {
     constructor(oql, namedArgs) {
         this.oql = oql;
@@ -15,11 +16,19 @@ class Oql {
         }
     }
     async execute() {
-        let records = await Request.GetInstance().oql(this.oql, this.params, this.namedParams);
+        let records = await Request.GetInstance().oql(this.oql, this.params, this.namedParams, this.authType);
         if (records && Array.isArray(records)) {
             return records;
         }
         return [];
     }
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
 }
 exports.Oql = Oql;

package/context/db/impl/queryBuilder.d.ts

@@ -14,6 +14,7 @@ export declare class QueryBuilder {
     offset: number;
     order: Order[];
     logic: Logic;
+    fuzzySearch: object;
     constructor(objectApiName: string);
     addLogic(logic: Logic): void;
     getLogic(): Logic;

package/context/db/impl/transaction/index.d.ts

@@ -11,10 +11,13 @@ export declare class Transaction<T, mt> implements ITransaction<mt>, ITransactio
     operations: TransactionOperation[];
     uuid2result: Record<string, uuidOrRecordIDResult>;
     isCommit: boolean;
+    authType: string;
     batchResults: (string | number)[][];
     constructor(objectApiName: string);
     currentObject(): TransactionObject<mt[currentObjApiName]>;
     object<T extends keyof mt>(objectApiName: T): TransactionObject<mt[T]>;
     commit(): Promise<void>;
+    useSystemAuth(): this;
+    useUserAuth(): this;
 }
 export {};

package/context/db/impl/transaction/index.js

@@ -6,6 +6,7 @@ exports.Transaction = void 0;
 const server_common_node_1 = require("@byted-apaas/server-common-node");
 const Request = require("../../../../request/interface");
 const operation_1 = require("./operation");
+const constants_1 = require("@byted-apaas/server-common-node/constants/constants");
 const assert = require('assert');
 const { v4: uuidv4 } = require("uuid");
 class Transaction {
@@ -216,7 +217,7 @@ class Transaction {
         if (!this.operations || this.operations.length === 0) {
             return;
         }
-        let uuid2recordId = await Request.GetInstance().modifyRecordsWithTransaction(this.placeholders, this.operations);
+        let uuid2recordId = await Request.GetInstance().modifyRecordsWithTransaction(this.placeholders, this.operations, this.authType);
         if (!uuid2recordId) {
             throw new server_common_node_1.exceptions.InternalError("uuid2recordId is empty");
         }
@@ -255,6 +256,14 @@ class Transaction {
             }
         }
     }
+    useSystemAuth() {
+        this.authType = constants_1.AuthTypeSystem;
+        return this;
+    }
+    useUserAuth() {
+        this.authType = constants_1.AuthTypeUser;
+        return this;
+    }
 }
 exports.Transaction = Transaction;
 function deepEqualExceptID(left, right) {

package/context/db/impl/transaction.d.ts

@@ -13,6 +13,14 @@ export interface ITransaction<mt> {
      * 提交事务
      */
     commit(): Promise<void>;
+    /**
+     * 用户级鉴权
+     */
+    useUserAuth(): this;
+    /**
+     * 系统级鉴权
+     */
+    useSystemAuth(): this;
 }
 export interface ITransactionWithCurrentObject<mt> {
     /**

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@byted-apaas/server-sdk-node",
-  "version": "1.0.14",
+  "version": "1.0.16",
   "description": "aPaaS Server SDK",
   "author": "zhouwexin <zhouwexin@bytedance.com>",
   "homepage": "",
@@ -12,7 +12,7 @@
     "pre-build": "rm -rf build && tsc"
   },
   "dependencies": {
-    "@byted-apaas/server-common-node": "^1.0.12",
+    "@byted-apaas/server-common-node": "^1.0.14",
     "@jorgeferrero/stream-to-buffer": "^2.0.6",
     "dayjs": "^1.9.6",
     "form-data": "^3.0.0",

package/request/innerapi.d.ts

@@ -8,16 +8,16 @@ import { ExecutionInfo, ExecutionResult, RevokeExecutionOptions } from "@byted-a
 import { AppCtx } from "../application/application";
 export declare class RequestRpc implements IInnerAPIRequest {
     constructor();
-    createRecordBySync(objectApiName: string, record: object): any;
-    updateRecordBySync(objectApiName: string, recordID: number, record: object): any;
-    deleteRecordBySync(objectApiName: string, recordID: number): any;
-    createRecordsByAsync(objectApiName: string, records: object[]): any;
-    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsByAsync(objectApiName: string, recordIDs: number[]): any;
-    createRecordsBySync(objectApiName: string, records: object[]): any;
-    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsBySync(objectApiName: string, recordIDs: number[]): any;
-    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, order: Order[], ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean): any;
+    createRecordBySync(objectApiName: string, record: object, authType: string): any;
+    updateRecordBySync(objectApiName: string, recordID: number, record: object, authType: string): any;
+    deleteRecordBySync(objectApiName: string, recordID: number, authType: string): any;
+    createRecordsByAsync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsByAsync(objectApiName: string, recordIDs: number[], authType: string): any;
+    createRecordsBySync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsBySync(objectApiName: string, recordIDs: number[], authType: string): any;
+    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, fuzzySearch: any, order: Order[], ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean, authType: string): any;
     updateWorkflowVariables(ctx: any, instanceId: number, variables: object, variableTypes: object): Promise<void>;
     uploadFile(data: Stream, expire: number): Promise<UploadFileResp>;
     downloadFileByID(fileID: string, filePath?: string): Promise<Buffer | void>;
@@ -27,9 +27,9 @@ export declare class RequestRpc implements IInnerAPIRequest {
     getFields(objectApiName: string): Promise<any>;
     getField(objectApiName: string, fieldApiName: string): Promise<any>;
     terminateWorkflowInstance(workflowInstanceId: number, operator: number, reason: string): Promise<void>;
-    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[]): Promise<Map<string, number>>;
+    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[], authType: string): Promise<Map<string, number>>;
     getGlobalConfigByKey<valueT>(key: string): Promise<valueT>;
-    oql(oql: string, args: any[], namedArgs: Record<string, any>): Promise<string | any[]>;
+    oql(oql: string, args: any[], namedArgs: Record<string, any>, authType: string): Promise<string | any[]>;
     invokeFuncSync(idOrName: {
         APIId?: string;
         APIName?: string;

package/request/innerapi.js

@@ -14,10 +14,10 @@ const utils = common.utils;
 const fs = require("fs");
 const checkUtils = common.checkUtils;
 const path = require('path');
-async function pre(isTransUser) {
+async function pre(isTransUser, authType) {
     let ctx;
     try {
-        ctx = await rpc.rebuildRpcCtx(isTransUser);
+        ctx = await rpc.rebuildRpcCtx(isTransUser, authType);
     }
     catch (err) {
         throw new exceptions.InternalError(`RebuildRpcCtx failed: ${err.message}`);
@@ -33,19 +33,19 @@ function post(baseResp) {
         if (baseResp.StatusMessage !== "") {
             msg = baseResp.StatusMessage;
         }
-        if (baseResp.extra["is_system_error"] === "true") {
+        if (baseResp.extra.get("is_system_error") === "true") {
             throw new exceptions.InternalError(`${msg} [${baseResp.KStatusCode}]`);
         }
         throw new exceptions.InvalidParamError(`${msg} [${baseResp.KStatusCode}]`);
     }
 }
-async function createRecordBySync(objectApiName, record) {
+async function createRecordBySync(objectApiName, record, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -68,13 +68,13 @@ async function createRecordBySync(objectApiName, record) {
     post(resp.BaseResp);
     return { _id: Number(resp.RecordID) };
 }
-async function updateRecordBySync(objectApiName, recordID, record) {
+async function updateRecordBySync(objectApiName, recordID, record, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -98,13 +98,13 @@ async function updateRecordBySync(objectApiName, recordID, record) {
     post(resp.BaseResp);
     return;
 }
-async function deleteRecordBySync(objectApiName, recordID) {
+async function deleteRecordBySync(objectApiName, recordID, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -127,13 +127,13 @@ async function deleteRecordBySync(objectApiName, recordID) {
     post(resp.BaseResp);
     return;
 }
-async function createRecordsByAsync(objectApiName, records) {
+async function createRecordsByAsync(objectApiName, records, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -156,13 +156,13 @@ async function createRecordsByAsync(objectApiName, records) {
     post(resp.BaseResp);
     return { taskID: Number(resp.TaskID) };
 }
-async function updateRecordsByAsync(objectApiName, recordMap) {
+async function updateRecordsByAsync(objectApiName, recordMap, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -185,13 +185,13 @@ async function updateRecordsByAsync(objectApiName, recordMap) {
     post(resp.BaseResp);
     return { taskID: Number(resp.TaskID) };
 }
-async function deleteRecordsByAsync(objectApiName, recordIDs) {
+async function deleteRecordsByAsync(objectApiName, recordIDs, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -218,13 +218,13 @@ async function deleteRecordsByAsync(objectApiName, recordIDs) {
     post(resp.BaseResp);
     return { taskID: Number(resp.TaskID) };
 }
-async function createRecordsBySync(objectApiName, records) {
+async function createRecordsBySync(objectApiName, records, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -247,25 +247,25 @@ async function createRecordsBySync(objectApiName, records) {
     // 5.后置处理
     post(resp.BaseResp);
     let recordIDList = new Array();
-    let errMap = new Map();
+    let errMap = {};
     resp.RecordIDs.forEach((v, idx) => {
         recordIDList.push(Number(v));
     });
     resp.ErrMap.forEach((v, k) => {
-        errMap.set(Number(k), v);
+        errMap[Number(k)] = v;
     });
     return {
         record_ids: recordIDList,
         err_map: errMap
     };
 }
-async function updateRecordsBySync(objectApiName, recordMap) {
+async function updateRecordsBySync(objectApiName, recordMap, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -287,19 +287,19 @@ async function updateRecordsBySync(objectApiName, recordMap) {
     }
     // 5.后置处理
     post(resp.BaseResp);
-    let errMap = new Map();
+    let errMap = {};
     resp.ErrMap.forEach((v, k) => {
-        errMap.set(Number(k), v);
+        errMap[Number(k)] = v;
     });
     return { err_map: errMap };
 }
-async function deleteRecordsBySync(objectApiName, recordIDs) {
+async function deleteRecordsBySync(objectApiName, recordIDs, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let task_id = utils.getTriggerTaskID();
@@ -325,22 +325,19 @@ async function deleteRecordsBySync(objectApiName, recordIDs) {
     }
     // 5.后置处理
     post(resp.BaseResp);
-    let errMap = new Map();
+    let errMap = {};
     resp.ErrMap.forEach((v, k) => {
-        errMap.set(Number(k), v);
+        errMap[Number(k)] = v;
     });
     return { err_map: errMap };
 }
-async function getRecordsOrCountByCriterion(objectApiName, criterion, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount) {
-    if (limit > 10000) {
-        limit = 10000;
-    }
+async function getRecordsOrCountByCriterion(objectApiName, criterion, fuzzySearch, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
     }
     // 2.前置处理
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 3.构造 params
     let param = {};
     let orders = new Array();
@@ -361,6 +358,7 @@ async function getRecordsOrCountByCriterion(objectApiName, criterion, order, ign
     param.FieldAPIAPIAliases = fieldApiNames;
     param.NeedFilterUserPermission = false;
     param.NeedTotalCount = needCount;
+    param.FuzzySearch = fuzzySearch;
     // 4.发起请求
     let resp;
     try {
@@ -713,7 +711,7 @@ async function terminateWorkflowInstance(workflowInstanceId, operator, reason) {
     // 5. deal with response
     post(resp.BaseResp);
 }
-async function modifyRecordsWithTransaction(placeholders, operations) {
+async function modifyRecordsWithTransaction(placeholders, operations, authType) {
     // 1. prepare args
     // TODO: change placeholders type
     let ph = new Map();
@@ -733,7 +731,7 @@ async function modifyRecordsWithTransaction(placeholders, operations) {
         param.TaskID = BigInt(taskID);
     }
     // 3. prepare request
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 4. do request
     let resp;
     try {
@@ -782,7 +780,7 @@ async function getGlobalConfigByKey(key) {
     }
     throw new exceptions.InvalidParamError(`undefined global variable (${key})`);
 }
-async function oql(oql, args, namedArgs) {
+async function oql(oql, args, namedArgs, authType) {
     // 1. build parameters
     const queryData = JSON.stringify({
         "query": oql,
@@ -795,7 +793,7 @@ async function oql(oql, args, namedArgs) {
     param.Namespace = await (0, common_1.getNamespaceForOpenAndFaaSSDK)();
     param.QueryData = Buffer.from(queryData);
     // 3. prepare request
-    let ctx = await pre();
+    let ctx = await pre(true, authType);
     // 4. do request
     let resp;
     try {
@@ -1096,25 +1094,25 @@ class RequestRpc {
         this.openSDKUploadAvatar = openSDKUploadAvatar;
         this.openSDKDownloadAvatar = openSDKDownloadAvatar;
     }
-    createRecordBySync(objectApiName, record) {
+    createRecordBySync(objectApiName, record, authType) {
     }
-    updateRecordBySync(objectApiName, recordID, record) {
+    updateRecordBySync(objectApiName, recordID, record, authType) {
     }
-    deleteRecordBySync(objectApiName, recordID) {
+    deleteRecordBySync(objectApiName, recordID, authType) {
     }
-    createRecordsByAsync(objectApiName, records) {
+    createRecordsByAsync(objectApiName, records, authType) {
     }
-    updateRecordsByAsync(objectApiName, recordMap) {
+    updateRecordsByAsync(objectApiName, recordMap, authType) {
     }
-    deleteRecordsByAsync(objectApiName, recordIDs) {
+    deleteRecordsByAsync(objectApiName, recordIDs, authType) {
     }
-    createRecordsBySync(objectApiName, records) {
+    createRecordsBySync(objectApiName, records, authType) {
     }
-    updateRecordsBySync(objectApiName, recordMap) {
+    updateRecordsBySync(objectApiName, recordMap, authType) {
     }
-    deleteRecordsBySync(objectApiName, recordIDs) {
+    deleteRecordsBySync(objectApiName, recordIDs, authType) {
     }
-    getRecordsOrCountByCriterion(objectApiName, criterion, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount) {
+    getRecordsOrCountByCriterion(objectApiName, criterion, fuzzySearch, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount, authType) {
     }
     async updateWorkflowVariables(ctx, instanceId, variables, variableTypes) {
     }
@@ -1139,13 +1137,13 @@ class RequestRpc {
     }
     async terminateWorkflowInstance(workflowInstanceId, operator, reason) {
     }
-    async modifyRecordsWithTransaction(placeholders, operations) {
+    async modifyRecordsWithTransaction(placeholders, operations, authType) {
         return null;
     }
     async getGlobalConfigByKey(key) {
         return null;
     }
-    async oql(oql, args, namedArgs) {
+    async oql(oql, args, namedArgs, authType) {
         return [];
     }
     async invokeFuncSync(idOrName, params) {

package/request/interface.d.ts

@@ -32,16 +32,16 @@ export type OpenSDKGetRecordsReq = {
 export interface IInnerAPIRequest extends IInnerAPIBaseRequest, IInnerAPIOpenSDKRequest {
 }
 export interface IInnerAPIBaseRequest {
-    createRecordBySync(objectApiName: string, record: object): any;
-    updateRecordBySync(objectApiName: string, recordID: number, record: object): any;
-    deleteRecordBySync(objectApiName: string, recordID: number): any;
-    createRecordsByAsync(objectApiName: string, records: object[]): any;
-    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsByAsync(objectApiName: string, recordIDs: number[]): any;
-    createRecordsBySync(objectApiName: string, records: object[]): any;
-    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsBySync(objectApiName: string, recordIDs: number[]): any;
-    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, order: Order[], ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean): any;
+    createRecordBySync(objectApiName: string, record: object, authType: string): any;
+    updateRecordBySync(objectApiName: string, recordID: number, record: object, authType: string): any;
+    deleteRecordBySync(objectApiName: string, recordID: number, authType: string): any;
+    createRecordsByAsync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsByAsync(objectApiName: string, recordIDs: number[], authType: string): any;
+    createRecordsBySync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsBySync(objectApiName: string, recordIDs: number[], authType: string): any;
+    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, fuzzySearch: any, order: Order[], ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean, authType: string): any;
     updateWorkflowVariables(ctx: any, instanceId: number, variables: object, variableTypes: object): Promise<void>;
     uploadFile(data: Stream, expire: number): Promise<UploadFileResp>;
     downloadFileByID(fileID: string, filePath?: string): Promise<Buffer | void>;
@@ -51,9 +51,9 @@ export interface IInnerAPIBaseRequest {
     getFields(objectApiName: string): Promise<any>;
     getField(objectApiName: string, fieldApiName: string): Promise<any>;
     terminateWorkflowInstance(workflowInstanceId: number, operator: number, reason: string): Promise<void>;
-    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[]): Promise<Map<string, number>>;
+    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[], authType: string): Promise<Map<string, number>>;
     getGlobalConfigByKey<valueT>(key: string): Promise<valueT>;
-    oql(oql: string, args: any[], namedArgs: Record<string, any>): Promise<string | any[]>;
+    oql(oql: string, args: any[], namedArgs: Record<string, any>, authType: string): Promise<string | any[]>;
     invokeFuncSync(idOrName: {
         APIId?: string;
         APIName?: string;

package/request/openapi.d.ts

@@ -10,16 +10,16 @@ export declare function updateWorkflowVariables(ctx: any, instanceId: number, va
 export declare class RequestHttp implements IInnerAPIRequest {
     constructor();
     updateWorkflowVariables(ctx: any, instanceId: number, variables: object, variableTypes: object): any;
-    createRecordBySync(objectApiName: string, record: object): any;
-    updateRecordBySync(objectApiName: string, recordID: number, record: object): any;
-    deleteRecordBySync(objectApiName: string, recordID: number): any;
-    createRecordsByAsync(objectApiName: string, records: object[]): any;
-    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsByAsync(objectApiName: string, recordIDs: number[]): any;
-    createRecordsBySync(objectApiName: string, records: object[]): any;
-    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>): any;
-    deleteRecordsBySync(objectApiName: string, recordIDs: number[]): any;
-    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, order: Order[], ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean): any;
+    createRecordBySync(objectApiName: string, record: object, authType: string): any;
+    updateRecordBySync(objectApiName: string, recordID: number, record: object, authType: string): any;
+    deleteRecordBySync(objectApiName: string, recordID: number, authType: string): any;
+    createRecordsByAsync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsByAsync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsByAsync(objectApiName: string, recordIDs: number[], authType: string): any;
+    createRecordsBySync(objectApiName: string, records: object[], authType: string): any;
+    updateRecordsBySync(objectApiName: string, recordMap: Record<number, object>, authType: string): any;
+    deleteRecordsBySync(objectApiName: string, recordIDs: number[], authType: string): any;
+    getRecordsOrCountByCriterion(objectApiName: string, criterion: string | Criterion, order: Order[], fuzzySearch: any, ignoreBackLookupField: boolean, fieldApiNames: string[], offset: number, limit: number, needCount: boolean, authType: string): any;
     uploadFile(data: Stream, expire: number): Promise<UploadFileResp>;
     downloadFileByID(fileID: string, filePath?: string): Promise<void | Buffer>;
     downloadFileByToken(fileToken: string, filePath?: string): Promise<Buffer | void>;
@@ -28,9 +28,9 @@ export declare class RequestHttp implements IInnerAPIRequest {
     getFields(objectApiName: string): any;
     getField(objectApiName: string, fieldApiName: string): any;
     terminateWorkflowInstance(workflowInstanceId: number, operator: number, reason: string): any;
-    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[]): Promise<Map<string, number>>;
+    modifyRecordsWithTransaction(placeholders: Record<string, number>, operations: object[], authType: string): Promise<Map<string, number>>;
     getGlobalConfigByKey<valueT>(key: string): Promise<valueT>;
-    oql(oql: string, args: any[], namedArgs: Record<string, any>): any;
+    oql(oql: string, args: any[], namedArgs: Record<string, any>, authType: string): any;
     invokeFuncSync(idOrName: {
         APIId?: string;
         APIName?: string;

package/request/openapi.js

@@ -9,6 +9,7 @@ const common = require("@byted-apaas/server-common-node");
 const constants_2 = require("./constants");
 const constants_3 = require("@byted-apaas/server-common-node/constants/constants");
 const common_1 = require("./common");
+const utils_1 = require("@byted-apaas/server-common-node/utils/utils");
 const nodeCls = require("node-cls");
 const fs = require('fs');
 const path = require('path');
@@ -33,7 +34,7 @@ async function updateWorkflowVariables(ctx, instanceId, variables, variableTypes
     await openapi.doRequest(null, urlPath, options);
 }
 exports.updateWorkflowVariables = updateWorkflowVariables;
-async function createRecordBySync(objectApiName, record) {
+async function createRecordBySync(objectApiName, record, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
@@ -47,6 +48,11 @@ async function createRecordBySync(objectApiName, record) {
         "operator": utils.getUserIDFromCtx(),
         "data": record,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["task_id"] = task_id;
@@ -60,7 +66,7 @@ async function createRecordBySync(objectApiName, record) {
     }
     return data;
 }
-async function updateRecordBySync(objectApiName, recordID, record) {
+async function updateRecordBySync(objectApiName, recordID, record, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
@@ -75,13 +81,18 @@ async function updateRecordBySync(objectApiName, recordID, record) {
         "record_id": recordID,
         "data": record,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function deleteRecordBySync(objectApiName, recordID) {
+async function deleteRecordBySync(objectApiName, recordID, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InvalidParamError("objectApiName is empty");
@@ -95,13 +106,18 @@ async function deleteRecordBySync(objectApiName, recordID) {
         "operator": utils.getUserIDFromCtx(),
         "record_id": recordID,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function createRecordsByAsync(objectApiName, records) {
+async function createRecordsByAsync(objectApiName, records, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.createRecordsByAsyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -111,13 +127,18 @@ async function createRecordsByAsync(objectApiName, records) {
         "operator": utils.getUserIDFromCtx(),
         "data": records,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function updateRecordsByAsync(objectApiName, recordMap) {
+async function updateRecordsByAsync(objectApiName, recordMap, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.updateRecordsByAsyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -127,13 +148,18 @@ async function updateRecordsByAsync(objectApiName, recordMap) {
         "operator": utils.getUserIDFromCtx(),
         "data": recordMap,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function deleteRecordsByAsync(objectApiName, recordIDs) {
+async function deleteRecordsByAsync(objectApiName, recordIDs, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.deleteRecordsByAsyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -143,13 +169,18 @@ async function deleteRecordsByAsync(objectApiName, recordIDs) {
         "operator": utils.getUserIDFromCtx(),
         "record_id_list": recordIDs,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function createRecordsBySync(objectApiName, records) {
+async function createRecordsBySync(objectApiName, records, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.mCreateRecordsBySyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -160,13 +191,18 @@ async function createRecordsBySync(objectApiName, records) {
         "set_system_mod": 2,
         "data": records,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function updateRecordsBySync(objectApiName, recordMap) {
+async function updateRecordsBySync(objectApiName, recordMap, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.mUpdateRecordsBySyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -177,13 +213,18 @@ async function updateRecordsBySync(objectApiName, recordMap) {
         "set_system_mod": 2,
         "data": recordMap,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
     }
     return openapi.doRequest(null, urlPath, options);
 }
-async function deleteRecordsBySync(objectApiName, recordIDs) {
+async function deleteRecordsBySync(objectApiName, recordIDs, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.mDeleteRecordsBySyncV2);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -194,6 +235,11 @@ async function deleteRecordsBySync(objectApiName, recordIDs) {
         "set_system_mod": 2,
         "record_id_list": recordIDs,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let task_id = utils.getTriggerTaskID();
     if (task_id) {
         options.json["automation_task_id"] = task_id;
@@ -215,10 +261,7 @@ function handleResponse(data, needCount) {
         return [];
     }
 }
-async function getRecordsOrCountByCriterion(objectApiName, criterion, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount) {
-    if (limit > 10000) {
-        limit = 10000;
-    }
+async function getRecordsOrCountByCriterion(objectApiName, criterion, fuzzySearch, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount, authType) {
     // 1.check
     if (!objectApiName) {
         throw new exceptions.InternalError("objectApiName is empty");
@@ -237,7 +280,13 @@ async function getRecordsOrCountByCriterion(objectApiName, criterion, order, ign
         "limit": limit,
         "need_filter_user_permission": false,
         "need_total_count": needCount,
+        "fuzzySearch": fuzzySearch,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let data = await openapi.doRequest(null, urlPath, options);
     return handleResponse(data, needCount);
 }
@@ -484,7 +533,7 @@ async function terminateWorkflowInstance(workflowInstanceId, operator, reason) {
     };
     await openapi.doRequest(null, urlPath, options);
 }
-async function modifyRecordsWithTransaction(placeholders, operations) {
+async function modifyRecordsWithTransaction(placeholders, operations, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.modifyRecordsWithTransaction);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -495,6 +544,11 @@ async function modifyRecordsWithTransaction(placeholders, operations) {
         "operatorId": utils.getUserIDFromCtx(),
         "setSystemField": 1,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let taskId = utils.getTriggerTaskID();
     if (taskId) {
         options.json["taskId"] = taskId;
@@ -508,7 +562,6 @@ async function modifyRecordsWithTransaction(placeholders, operations) {
     }
     return retPlaceholders;
 }
-;
 async function getGlobalConfigByKey(key) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, openapiHttpPath.getAllGlobalConfigs);
@@ -536,7 +589,7 @@ async function getGlobalConfigByKey(key) {
     }
     throw new exceptions.InvalidParamError(`undefined global variable (${key})`);
 }
-async function oql(oql, args, namedArgs) {
+async function oql(oql, args, namedArgs, authType) {
     // 1.获取 options
     let options = commonHttp.getOptions(null, constants_2.openapiHttpPath.oql);
     let urlPath = options._reqPath.replace(replaceKeys.namespace, await (0, common_1.getNamespaceForOpenAndFaaSSDK)());
@@ -547,6 +600,11 @@ async function oql(oql, args, namedArgs) {
         "namedArgs": namedArgs,
         "compat": true,
     };
+    authType = (0, utils_1.formatAuthType)(authType);
+    options.headers["User"] = utils.getUserIDFromCtx() + "";
+    if (authType) {
+        options.headers[constants_3.AuthTypeHttpHeader] = authType;
+    }
     let result = await openapi.doRequest(null, urlPath, options);
     if (result && result.rows) {
         return result.rows;
@@ -715,25 +773,25 @@ class RequestHttp {
     }
     updateWorkflowVariables(ctx, instanceId, variables, variableTypes) {
     }
-    createRecordBySync(objectApiName, record) {
+    createRecordBySync(objectApiName, record, authType) {
     }
-    updateRecordBySync(objectApiName, recordID, record) {
+    updateRecordBySync(objectApiName, recordID, record, authType) {
     }
-    deleteRecordBySync(objectApiName, recordID) {
+    deleteRecordBySync(objectApiName, recordID, authType) {
     }
-    createRecordsByAsync(objectApiName, records) {
+    createRecordsByAsync(objectApiName, records, authType) {
     }
-    updateRecordsByAsync(objectApiName, recordMap) {
+    updateRecordsByAsync(objectApiName, recordMap, authType) {
     }
-    deleteRecordsByAsync(objectApiName, recordIDs) {
+    deleteRecordsByAsync(objectApiName, recordIDs, authType) {
     }
-    createRecordsBySync(objectApiName, records) {
+    createRecordsBySync(objectApiName, records, authType) {
     }
-    updateRecordsBySync(objectApiName, recordMap) {
+    updateRecordsBySync(objectApiName, recordMap, authType) {
     }
-    deleteRecordsBySync(objectApiName, recordIDs) {
+    deleteRecordsBySync(objectApiName, recordIDs, authType) {
     }
-    getRecordsOrCountByCriterion(objectApiName, criterion, order, ignoreBackLookupField, fieldApiNames, offset, limit, needCount) {
+    getRecordsOrCountByCriterion(objectApiName, criterion, order, fuzzySearch, ignoreBackLookupField, fieldApiNames, offset, limit, needCount, authType) {
     }
     uploadFile(data, expire) {
         return null;
@@ -756,13 +814,13 @@ class RequestHttp {
     }
     terminateWorkflowInstance(workflowInstanceId, operator, reason) {
     }
-    modifyRecordsWithTransaction(placeholders, operations) {
+    modifyRecordsWithTransaction(placeholders, operations, authType) {
         return null;
     }
     getGlobalConfigByKey(key) {
         return null;
     }
-    oql(oql, args, namedArgs) {
+    oql(oql, args, namedArgs, authType) {
     }
     async invokeFuncSync(idOrName, params) {
         return await invokeFuncSync(idOrName, params);