openxiangda 1.0.34 → 1.0.36

package/README.md

@@ -29,6 +29,8 @@ openxiangda automation executions daily_ticket_digest --profile dev
 openxiangda automation diagnose daily_ticket_digest --profile dev
 openxiangda permission role-list --profile dev
 openxiangda settings get customer --profile dev
+openxiangda data-view list --profile dev
+openxiangda data-view status ticket_with_customer --profile dev
 openxiangda resource validate --profile dev
 openxiangda resource plan --profile dev
 openxiangda resource publish --profile dev
@@ -79,6 +81,8 @@ Use `openxiangda skill install --dest <skills-dir>` to target a different Codex
 
 Create a new publishable app workspace with `openxiangda workspace init <dir>`. The command writes a minimal `sy-lowcode-app-workspace` template with React, Ant Design, the single `openxiangda` package, and the required `publish:all` / `openxiangda:publish` scripts. Use `--install` to run `pnpm install` immediately, or run it manually after creation.
 
+New OpenXiangda code pages and form custom pages publish with `cssIsolation: "none"` by default, so Tailwind utilities and normal Ant Design styles apply without a `.sy-app-workspace` prefix. Explicit `namespace` and `shadow` settings are kept only for legacy compatibility.
+
 Local workspace state is authoritative. If the current folder has no `.openxiangda/state.json` app binding, create a new app instead of searching the platform for a similar app name:
 
 ```bash
@@ -96,6 +100,20 @@ openxiangda workspace bind --profile dev --app-type APP_XXXX
 
 工程化资源放在工作区 `src/resources/` 下，由 `openxiangda resource validate|plan|publish|pull` 管理。`workspace publish` 会先构建并注册 workspace 表单/页面，再执行非破坏性资源 upsert，这样菜单、权限组、流程和表单设置可以解析最新的 profile-local ID。需要删除平台中 manifest 未声明的资源时，显式传 `--prune`。连接器页面运行时通过 `sdk.connector.invoke()` / `sdk.connector.call("connector.api")` 调用平台运行时接口，第三方密钥只保存在后端连接器配置中。
 
+多表只读查询优先声明 `src/resources/data-views/*.json` 数据视图，而不是在页面里手写多次单表查询再拼数据。数据视图适合工单+客户、订单+商品、项目+成员、报表列表、跨页面复用查询等读多写少场景。发布时 CLI 会把 `formCode` 解析为当前 profile 的 `formUuid`，平台创建 PostgreSQL materialized view；页面通过 `sdk.dataView.query(code, params)` 或 `sdk.dataSource.run()` 查询输出字段。数据视图只读，刷新后才反映源表变化，不适合单表 CRUD、写回源表、强实时状态或简单 linkedForm 下拉。
+
+常用数据视图命令：
+
+```bash
+openxiangda resource validate --profile dev
+openxiangda resource plan --profile dev
+openxiangda resource publish --profile dev
+openxiangda data-view list --profile dev
+openxiangda data-view status ticket_with_customer --profile dev
+openxiangda data-view refresh ticket_with_customer --profile dev
+openxiangda data-view query ticket_with_customer --query-json query.json --profile dev
+```
+
 AI-authored automation can use code-first resources:
 
 - Source: `src/automations/<resourceCode>/index.ts`

package/lib/cli.js

@@ -54,6 +54,7 @@ async function main(argv) {
   if (command === 'menu') return menu(rest);
   if (command === 'workflow') return workflow(rest);
   if (command === 'automation') return automation(rest);
+  if (command === 'data-view') return dataView(rest);
   if (command === 'permission') return permission(rest);
   if (command === 'settings') return settings(rest);
   if (command === 'resource') return resource(rest);
@@ -105,6 +106,7 @@ Usage:
   openxiangda automation logs <instanceId> [--automation <automationCode|automationId>] [--summary] [--redact] [--json]
   openxiangda automation diagnose <automationCode|automationId> [--redact] [--json]
   openxiangda automation publish|enable|disable <automationCode|automationId>
+  openxiangda data-view list|status|refresh|query <dataViewCode> [--profile name] [--json]
   openxiangda permission role-list|role-create|role-bind
   openxiangda permission page-group-list|page-group-create|page-group-bind
   openxiangda permission form-group-list|form-group-create|form-group-bind
@@ -1090,6 +1092,7 @@ async function workspace(args) {
         menus: {},
         roles: {},
         connectors: {},
+        dataViews: {},
         pagePermissionGroups: {},
         formPermissionGroups: {},
         formSettings: {},
@@ -1479,7 +1482,7 @@ async function page(args) {
             jsUrls: splitList(flags['js-urls']),
             framework: flags.framework || 'react',
             frameworkVersion: flags['framework-version'] || '',
-            cssIsolation: flags['css-isolation'] || 'namespace',
+            cssIsolation: flags['css-isolation'] || 'none',
             format: flags.format || 'esm',
           },
           menu: flags.menu
@@ -1981,6 +1984,75 @@ async function automation(args) {
   fail('用法: openxiangda automation list|create|bind|pull|executions|logs|diagnose|publish|unpublish|enable|disable|delete|validate|cron-validate');
 }
 
+async function dataView(args) {
+  const [subcommand, ...rest] = args;
+  const { flags, positional } = parseArgs(rest);
+  const config = loadConfig();
+  const profileName = flags.profile || config.currentProfile;
+  const target = getWorkspaceTarget(config, profileName, flags);
+
+  if (subcommand === 'list') {
+    const data = await requestWithAuth(
+      config,
+      target.profileName,
+      apiPathWithQuery(`/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views`, {
+        page: flags.page,
+        pageSize: flags['page-size'] || flags.limit,
+        code: flags.code,
+      })
+    );
+    if (flags.json) return writeJson(data);
+    print(JSON.stringify(data, null, 2));
+    return;
+  }
+
+  if (subcommand === 'status') {
+    const [code] = positional;
+    if (!code) fail('用法: openxiangda data-view status <dataViewCode>');
+    const data = await requestWithAuth(
+      config,
+      target.profileName,
+      `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}/status`
+    );
+    if (flags.json) return writeJson(data);
+    print(JSON.stringify(data, null, 2));
+    return;
+  }
+
+  if (subcommand === 'refresh') {
+    const [code] = positional;
+    if (!code) fail('用法: openxiangda data-view refresh <dataViewCode>');
+    const data = await requestWithAuth(
+      config,
+      target.profileName,
+      `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}/refresh`,
+      { method: 'POST' }
+    );
+    if (flags.json) return writeJson(data);
+    print(JSON.stringify(data, null, 2));
+    return;
+  }
+
+  if (subcommand === 'query') {
+    const [code] = positional;
+    if (!code) fail('用法: openxiangda data-view query <dataViewCode> [--query-json file]');
+    const data = await requestWithAuth(
+      config,
+      target.profileName,
+      `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}/query`,
+      {
+        method: 'POST',
+        body: buildDataViewQueryBody(flags),
+      }
+    );
+    if (flags.json) return writeJson(data);
+    print(JSON.stringify(data, null, 2));
+    return;
+  }
+
+  fail('用法: openxiangda data-view list|status|refresh|query');
+}
+
 async function permission(args) {
   const [subcommand, ...rest] = args;
   const { flags, positional } = parseArgs(rest);
@@ -2601,6 +2673,7 @@ async function commands(args) {
       'menu list|create|bind|delete',
       'workflow list|create|bind|pull|publish|delete|validate',
       'automation list|create|bind|pull|publish|unpublish|enable|disable|delete|validate|cron-validate',
+      'data-view list|status|refresh|query',
       'permission role-list|role-create|role-bind|role-users|role-add-users',
       'permission page-group-list|page-group-create|page-group-bind',
       'permission form-group-list|form-group-create|form-group-bind|form-summary|menu-permissions',
@@ -2747,6 +2820,7 @@ function ensureResourceBuckets(bound) {
   bound.resources.menus = bound.resources.menus || {};
   bound.resources.roles = bound.resources.roles || {};
   bound.resources.connectors = bound.resources.connectors || {};
+  bound.resources.dataViews = bound.resources.dataViews || {};
   bound.resources.notifications = bound.resources.notifications || {};
   bound.resources.notifications.templates = bound.resources.notifications.templates || {};
   bound.resources.notifications.typeConfigs = bound.resources.notifications.typeConfigs || {};
@@ -2939,6 +3013,14 @@ function saveAutomationResource(target, automationCode, automationId, extra = {}
   }, keys);
 }
 
+function saveDataViewResource(target, dataViewCode, dataViewId, extra = {}) {
+  const keys = ['dataViewId', 'materializedViewName', 'status'];
+  saveStateResource(target, 'dataViews', dataViewCode, {
+    ...pickStateFields(extra, keys),
+    dataViewId,
+  }, keys);
+}
+
 function saveRoleResource(target, roleCode, roleId) {
   saveStateResource(target, 'roles', roleCode, { roleId }, ['roleId']);
 }
@@ -3044,6 +3126,7 @@ const RESOURCE_SPECS = [
   { key: 'menus', dir: 'menus', topFiles: ['menus.json'], pluralKeys: ['menus'] },
   { key: 'workflows', dir: 'workflows', topFiles: ['workflows.json'], pluralKeys: ['workflows'] },
   { key: 'automations', dir: 'automations', topFiles: ['automations.json'], pluralKeys: ['automations'] },
+  { key: 'dataViews', dir: 'data-views', topFiles: ['data-views.json'], pluralKeys: ['dataViews', 'data-views'] },
   {
     key: 'pagePermissionGroups',
     dir: path.join('permissions', 'page-groups'),
@@ -3254,6 +3337,14 @@ function validateResourceItem(kind, item, errors, warnings) {
       errors.push(`${label}: 缺少 definitionJson 或 definitionFile`);
     }
   }
+  if (kind === 'dataViews') {
+    const definition = item.definition || item;
+    if (!item.name && !definition.name) errors.push(`${label}: 缺少 name`);
+    if (!definition.base) errors.push(`${label}: 缺少 base`);
+    if (!Array.isArray(definition.select) || definition.select.length === 0) {
+      errors.push(`${label}: 缺少 select`);
+    }
+  }
   if (kind === 'pagePermissionGroups' && !item.name) errors.push(`${label}: 缺少 name`);
   if (kind === 'formPermissionGroups') {
     if (!item.name) errors.push(`${label}: 缺少 name`);
@@ -3542,6 +3633,7 @@ async function buildResourcePlan(config, target, manifest) {
   addNotificationPlanActions(target, actions, manifest.notifications || [], existing);
   await addWorkflowPlanActions(config, target, actions, manifest.workflows, existing.workflows);
   await addAutomationPlanActions(config, target, actions, manifest.automations, existing.automations);
+  addPlanActions(actions, 'dataView', manifest.dataViews, existing.dataViews, (item, current) => dataViewEquals(target.bound, item, current));
   addPlanActions(actions, 'pagePermissionGroup', manifest.pagePermissionGroups, existing.pagePermissionGroups, (item, current) => pagePermissionGroupEquals(target.bound, item, current));
   addPlanActions(actions, 'formPermissionGroup', manifest.formPermissionGroups, existing.formPermissionGroups, (item, current) => formPermissionGroupEquals(target.bound, item, current));
   for (const item of manifest.formSettings || []) {
@@ -3575,6 +3667,7 @@ async function publishResourceManifest(config, target, manifest, options = {}) {
   await publishNotificationResources(config, target, manifest.notifications || [], result);
   await publishWorkflowResources(config, target, manifest.workflows || [], result);
   await publishAutomationResources(config, target, manifest.automations || [], result);
+  await publishDataViewResources(config, target, manifest.dataViews || [], result);
   await publishPagePermissionGroupResources(config, target, manifest.pagePermissionGroups || [], result);
   await publishFormPermissionGroupResources(config, target, manifest.formPermissionGroups || [], result);
   if (options.prune) {
@@ -3596,6 +3689,7 @@ async function fetchExistingResourceMaps(config, target, manifest) {
     notificationTypeConfigs: new Map(),
     workflows: new Map(),
     automations: new Map(),
+    dataViews: new Map(),
     pagePermissionGroups: new Map(),
     formPermissionGroups: new Map(),
   };
@@ -3674,6 +3768,37 @@ async function fetchExistingResourceMaps(config, target, manifest) {
     );
     indexByCode(maps.automations, normalizeItems(data), item => item.resourceCode);
   }
+  if ((manifest.dataViews || []).length > 0) {
+    const data = await requestWithAuth(
+      config,
+      target.profileName,
+      apiPathWithQuery(`/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views`, {
+        page: 1,
+        pageSize: 1000,
+      })
+    );
+    indexByCode(maps.dataViews, normalizeItems(data), item => item.code || item.resourceCode);
+    for (const item of manifest.dataViews || []) {
+      const code = item.code || item.resourceCode;
+      const existing = maps.dataViews.get(code);
+      if (!existing) continue;
+      const detail = await requestOptionalWithAuth(
+        config,
+        target.profileName,
+        `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}`
+      );
+      const groups = await requestOptionalWithAuth(
+        config,
+        target.profileName,
+        `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}/permission-groups`
+      );
+      maps.dataViews.set(code, {
+        ...existing,
+        ...(detail || {}),
+        permissionGroups: normalizeItems(groups),
+      });
+    }
+  }
   if ((manifest.pagePermissionGroups || []).length > 0) {
     const data = await requestWithAuth(
       config,
@@ -4237,6 +4362,52 @@ async function publishAutomationResources(config, target, automations, result) {
   }
 }
 
+async function publishDataViewResources(config, target, dataViews, result) {
+  for (const dataViewItem of dataViews) {
+    const existing = await findExistingDataView(config, target, dataViewItem.code);
+    const body = normalizeDataViewManifest(target.bound, dataViewItem);
+    const data = existing
+      ? await requestWithAuth(
+          config,
+          target.profileName,
+          `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(dataViewItem.code)}`,
+          { method: 'PUT', body }
+        )
+      : await requestWithAuth(
+          config,
+          target.profileName,
+          `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views`,
+          { method: 'POST', body }
+        );
+    if (data?.id) {
+      saveDataViewResource(target, dataViewItem.code, data.id, {
+        materializedViewName: data.materializedViewName,
+        status: data.status,
+      });
+    }
+    result.published.push({
+      kind: 'dataView',
+      code: dataViewItem.code,
+      action: existing ? 'update' : 'create',
+      id: data?.id,
+    });
+  }
+}
+
+async function findExistingDataView(config, target, code) {
+  const stateId = target.bound.resources?.dataViews?.[code]?.dataViewId;
+  const byCode = await requestOptionalWithAuth(
+    config,
+    target.profileName,
+    `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}`
+  );
+  if (byCode?.id) return byCode;
+  if (stateId) {
+    return { id: stateId, code };
+  }
+  return null;
+}
+
 async function findExistingAutomation(config, target, code) {
   const stateId = target.bound.resources?.automations?.[code]?.automationId;
   if (stateId) {
@@ -4369,6 +4540,7 @@ async function pruneResourceManifest(config, target, manifest, result) {
   await pruneMenus(config, target, desiredCodes(manifest.menus), result);
   await pruneWorkflows(config, target, desiredCodes(manifest.workflows), result);
   await pruneAutomations(config, target, desiredCodes(manifest.automations), result);
+  await pruneDataViews(config, target, desiredCodes(manifest.dataViews), result);
   await prunePagePermissionGroups(
     config,
     target,
@@ -4517,6 +4689,29 @@ async function pruneAutomations(config, target, desired, result) {
   }
 }
 
+async function pruneDataViews(config, target, desired, result) {
+  const data = await requestWithAuth(
+    config,
+    target.profileName,
+    apiPathWithQuery(`/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views`, {
+      page: 1,
+      pageSize: 1000,
+    })
+  );
+  for (const dataView of normalizeItems(data)) {
+    const code = dataView.code || dataView.resourceCode;
+    if (!code || desired.has(code)) continue;
+    await pruneOne(config, target, result, 'dataView', code, dataView.id, async () => {
+      await requestWithAuth(
+        config,
+        target.profileName,
+        `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}`,
+        { method: 'DELETE' }
+      );
+    });
+  }
+}
+
 async function prunePagePermissionGroups(config, target, desired, result) {
   const data = await requestWithAuth(
     config,
@@ -4591,6 +4786,7 @@ function removeStateResource(target, kind, code) {
     menu: 'menus',
     workflow: 'workflows',
     automation: 'automations',
+    dataView: 'dataViews',
     pagePermissionGroup: 'pagePermissionGroups',
     formPermissionGroup: 'formPermissionGroups',
   };
@@ -4759,6 +4955,31 @@ async function pullResources(config, target) {
     written.push(path.relative(process.cwd(), filePath));
   }
 
+  const dataViews = await requestWithAuth(
+    config,
+    target.profileName,
+    apiPathWithQuery(`/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views`, {
+      page: 1,
+      pageSize: 1000,
+    })
+  );
+  for (const dataView of normalizeItems(dataViews)) {
+    const code = dataView.code || dataView.resourceCode || dataView.id;
+    const detail = await requestWithAuth(
+      config,
+      target.profileName,
+      `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}`
+    );
+    const permissionGroups = await requestOptionalWithAuth(
+      config,
+      target.profileName,
+      `/openxiangda-api/v1/apps/${encodeURIComponent(target.appType)}/data-views/${encodeURIComponent(code)}/permission-groups`
+    );
+    const filePath = path.join(baseDir, 'data-views', `${code}.json`);
+    writeResourceJsonFile(filePath, toPulledDataView(detail, permissionGroups, pullLookups));
+    written.push(path.relative(process.cwd(), filePath));
+  }
+
   const pageGroups = await requestWithAuth(
     config,
     target.profileName,
@@ -4920,6 +5141,43 @@ function toPulledNotificationTypeConfig(configItem, lookups) {
   });
 }
 
+function toPulledDataView(dataView, permissionGroups, lookups) {
+  const definition = rewriteDataViewDefinitionForManifest(
+    clonePlainJson(dataView.definition || {}),
+    lookups
+  );
+  const groups = normalizeItems(permissionGroups).map(group => {
+    const item = stripPulledResource(group);
+    delete item.dataViewCode;
+    return item;
+  });
+  return stripUndefinedValues({
+    code: dataView.code || dataView.resourceCode,
+    name: dataView.name,
+    description: dataView.description || '',
+    definition,
+    refreshConfig: dataView.refreshConfig || undefined,
+    permissionGroups: groups.length > 0 ? groups : undefined,
+  });
+}
+
+function rewriteDataViewDefinitionForManifest(definition, lookups) {
+  rewriteDataViewSourceForManifest(definition.base, lookups);
+  for (const join of definition.joins || []) {
+    rewriteDataViewSourceForManifest(join, lookups);
+  }
+  return definition;
+}
+
+function rewriteDataViewSourceForManifest(source, lookups) {
+  if (!source || typeof source !== 'object') return;
+  const formCode = lookups.formCodeByUuid.get(source.formUuid);
+  if (formCode) {
+    source.formCode = formCode;
+    delete source.formUuid;
+  }
+}
+
 function stripNotificationSecrets(value) {
   if (!value || typeof value !== 'object') return value;
   if (Array.isArray(value)) return value.map(stripNotificationSecrets);
@@ -5056,6 +5314,70 @@ function notificationTypeConfigExistingKey(config) {
   return `${level}:${config.formUuid || ''}:${config.notificationType}`;
 }
 
+function normalizeDataViewManifest(bound, dataView) {
+  const definition = dataView.definition !== undefined
+    ? clonePlainJson(dataView.definition)
+    : clonePlainJson(withoutDataViewManifestMeta(dataView));
+  if (!definition.code) definition.code = dataView.code || dataView.resourceCode;
+  if (!definition.name && dataView.name) definition.name = dataView.name;
+  if (definition.description === undefined && dataView.description !== undefined) {
+    definition.description = dataView.description;
+  }
+  const normalizedDefinition = normalizeDataViewDefinitionFormRefs(bound, definition, dataView);
+  return stripUndefinedValues({
+    code: dataView.code || dataView.resourceCode || normalizedDefinition.code,
+    name: dataView.name || normalizedDefinition.name || dataView.code || normalizedDefinition.code,
+    description: dataView.description !== undefined
+      ? dataView.description
+      : normalizedDefinition.description || '',
+    definition: normalizedDefinition,
+    refreshConfig: dataView.refreshConfig || dataView.refresh || normalizedDefinition.refresh,
+    permissionGroups: Array.isArray(dataView.permissionGroups)
+      ? dataView.permissionGroups.map(group => stripUndefinedValues(withoutResourceMeta(group)))
+      : undefined,
+  });
+}
+
+function withoutDataViewManifestMeta(dataView) {
+  const next = withoutResourceMeta(dataView);
+  delete next.permissionGroups;
+  delete next.refreshConfig;
+  return next;
+}
+
+function normalizeDataViewDefinitionFormRefs(bound, definition, dataView) {
+  if (!definition?.base) {
+    fail(`${resourceLabel('dataView', dataView)} 缺少 base`);
+  }
+  resolveDataViewSourceFormUuid(bound, definition.base, dataView, 'base');
+  for (const [index, join] of (definition.joins || []).entries()) {
+    resolveDataViewSourceFormUuid(bound, join, dataView, `joins[${index}]`);
+  }
+  return definition;
+}
+
+function resolveDataViewSourceFormUuid(bound, source, dataView, label) {
+  if (!source || typeof source !== 'object') {
+    fail(`${resourceLabel('dataView', dataView)} ${label} 必须是 object`);
+  }
+  if (source.formUuid) {
+    delete source.formCode;
+    delete source.form;
+    return;
+  }
+  const formCode = source.formCode || source.form;
+  if (!formCode) {
+    fail(`${resourceLabel('dataView', dataView)} ${label} 缺少 formCode 或 formUuid`);
+  }
+  const formUuid = bound.resources?.forms?.[formCode]?.formUuid;
+  if (!formUuid) {
+    fail(`${resourceLabel('dataView', dataView)} ${label}.formCode 未绑定: ${formCode}`);
+  }
+  source.formUuid = formUuid;
+  delete source.formCode;
+  delete source.form;
+}
+
 async function resolveManifestJson(config, profileName, item, objectKey, fileKey, optional = false) {
   let value = item[objectKey];
   if (value === undefined && item[fileKey]) {
@@ -5315,6 +5637,11 @@ function stripUndefinedValues(value) {
   }, {});
 }
 
+function clonePlainJson(value) {
+  if (value === undefined) return undefined;
+  return JSON.parse(JSON.stringify(value));
+}
+
 function workflowEquals(bound, desired, existing) {
   if (!existing) return false;
   const desiredDefinition = resolveManifestPlainJson(desired, 'definitionJson', 'definitionFile');
@@ -5361,6 +5688,57 @@ function automationEquals(target, desired, existing) {
   );
 }
 
+function dataViewEquals(bound, desired, existing) {
+  if (!existing) return false;
+  const expected = normalizeDataViewManifest(bound, desired);
+  const permissionGroupsEqual = expected.permissionGroups === undefined
+    ? true
+    : dataViewPermissionGroupsEqual(expected.permissionGroups, existing.permissionGroups || []);
+  return (
+    String(existing.code || existing.resourceCode || '') === String(expected.code || '') &&
+    String(existing.name || '') === String(expected.name || '') &&
+    String(existing.description || '') === String(expected.description || '') &&
+    jsonEqualsForPlan(existing.definition || {}, expected.definition || {}, desired.__dir) &&
+    jsonEqualsForPlan(existing.refreshConfig || {}, expected.refreshConfig || {}, desired.__dir) &&
+    permissionGroupsEqual
+  );
+}
+
+function dataViewPermissionGroupsEqual(desiredGroups = [], existingGroups = []) {
+  return stableStringifyForPlan(normalizeDataViewPermissionGroupsForPlan(existingGroups), process.cwd()) ===
+    stableStringifyForPlan(normalizeDataViewPermissionGroupsForPlan(desiredGroups), process.cwd());
+}
+
+function normalizeDataViewPermissionGroupsForPlan(groups = []) {
+  return (groups || [])
+    .map(group => {
+      const code = group.code || group.resourceCode || '';
+      return stripUndefinedValues({
+        code,
+        name: group.name || code || '默认权限组',
+        roles: Array.isArray(group.roles) ? sortStringValues(group.roles) : [],
+        operations: Array.isArray(group.operations) ? sortStringValues(group.operations) : ['query'],
+        fieldPermissions: normalizeFieldPermissionsForPlan(group.fieldPermissions),
+        dataPermission: group.dataPermission || undefined,
+      });
+    })
+    .sort((left, right) => {
+      const leftKey = `${left.code || ''}:${left.name || ''}`;
+      const rightKey = `${right.code || ''}:${right.name || ''}`;
+      return leftKey.localeCompare(rightKey);
+    });
+}
+
+function normalizeFieldPermissionsForPlan(fieldPermissions) {
+  if (!Array.isArray(fieldPermissions) || !fieldPermissions.length) return undefined;
+  return fieldPermissions
+    .map(item => ({
+      field: item.field,
+      value: item.value,
+    }))
+    .sort((left, right) => `${left.field || ''}:${left.value || ''}`.localeCompare(`${right.field || ''}:${right.value || ''}`));
+}
+
 function resolveManifestPlainJson(item, objectKey, fileKey, optional = false) {
   if (item[objectKey] !== undefined) return item[objectKey];
   if (item[fileKey]) {
@@ -5510,6 +5888,37 @@ function readJsonArg(value, label) {
   return readJsonArgWithBase(value, label).data;
 }
 
+function buildDataViewQueryBody(flags = {}) {
+  const explicit = flags['query-json'] || flags['params-json'] || flags['body-json'];
+  if (explicit) return readJsonArg(explicit, explicit === flags['query-json'] ? 'query-json' : 'params-json');
+  const body = {};
+  const fields = splitList(flags.fields || flags.field);
+  if (fields.length > 0) body.fields = fields;
+  if (flags['filters-json']) body.filters = readJsonArg(flags['filters-json'], 'filters-json');
+  if (flags['filter-json']) body.filters = readJsonArg(flags['filter-json'], 'filter-json');
+  if (flags['condition-type']) body.conditionType = String(flags['condition-type']).toUpperCase();
+  if (flags.keyword || flags.search) body.searchKeyWord = flags.keyword || flags.search;
+  if (flags.page) body.currentPage = Number(flags.page);
+  if (flags['page-size'] || flags.limit) body.pageSize = Number(flags['page-size'] || flags.limit);
+  if (flags['order-json']) {
+    body.order = readJsonArg(flags['order-json'], 'order-json');
+  } else if (flags['sort-field'] || flags.sort) {
+    const field = flags['sort-field'] || flags.sort;
+    body.order = [
+      {
+        field,
+        isAsc:
+          String(flags.desc || flags.direction || '').toLowerCase() === 'desc'
+            ? 'n'
+            : flags.asc === false
+              ? 'n'
+              : 'y',
+      },
+    ];
+  }
+  return body;
+}
+
 function readJsonArgWithBase(value, label) {
   if (!value) fail(`缺少 ${label}`);
   const raw = String(value).trim();

package/lib/workspace-init.js

@@ -42,6 +42,7 @@ function initWorkspace(options = {}) {
             menus: {},
             roles: {},
             connectors: {},
+            dataViews: {},
             notifications: {
               templates: {},
               typeConfigs: {},

package/openxiangda-skills/SKILL.md

@@ -85,12 +85,13 @@ When the user provides a root domain such as `https://yida.wisejob.cn/`, use it
 - Shared workspace env values such as `APP_OSS_*` should live in `~/.openxiangda/.env` by default. Project `.env` files are only per-workspace overrides.
 - For suspected platform defects, bugs, or product optimization requests, ask the user to confirm first, then use `openxiangda feedback preview` and `openxiangda feedback submit --yes` to send a detailed DingTalk robot report. Include the command, error, relevant files, and logs/context files when available. The CLI redacts tokens, cookies, secrets, phone numbers, and emails before sending.
 - For form pages, every visible field should have a concise user-facing `placeholder`. Use `tips` only for special constraints or non-obvious business rules; do not add tips to every field.
-- Form pages should display only fields the user needs to see. Use `SelectField` / `RadioField` for enums and `AssociationFormField` for data maintained by another form, such as class, college, customer, or project. Do not make users maintain raw ID text fields.
-- Permission scope keys, computed fields, sync fields, and developer/internal fields should be present only when needed for permissions or logic, and should normally be derived from a visible select/association field and marked `behavior: "HIDDEN"`.
+- Form pages should display only fields the user needs to see. Use `SelectField` / `RadioField` for enums. For data maintained by another form, such as class, college, customer, or project, use `SelectField` with `optionSource.type: "linkedForm"` so the runtime queries form data through the SDK and builds dropdown options; set `remoteSearch: true` and an explicit `searchFieldId` when the source data can be large. Do not make users maintain raw ID text fields, and do not use `AssociationFormField` for new form work.
+- Permission scope keys, computed fields, sync fields, and developer/internal fields should be present only when needed for permissions or logic, and should normally be derived from visible select/person/department fields and marked `behavior: "HIDDEN"`. For select-derived scalar keys, use `valueSync`.
 - Do not add extra fields for platform system metadata such as creator, updater, creator department, updater department, created time, or updated time unless the user explicitly needs a separate business field; the platform already creates system fields for each form.
 - All visible copy in forms and pages must be written for end users. Do not put implementation notes, developer explanations, schema descriptions, or "this area is generated by..." text into page sections, cards, labels, tips, or empty states.
 - Use logical resource codes in local files. Platform-specific IDs such as `formUuid`, `pageId`, `workflowId`, and `automationId` must be isolated by profile.
 - Put engineering-managed resources in `src/resources/` and use `openxiangda resource validate|plan|publish|pull`. `workspace publish` publishes workspace forms/pages first, then runs non-destructive resource upsert. Only pass `--prune` when the user explicitly wants local manifests to delete platform-side extras.
+- For repeated read-only multi-form queries, create a data view manifest in `src/resources/data-views/` and query it with `sdk.dataView.query` or `sdk.dataSource.run`. Use data views for joined list/report/lookup sources where refresh lag is acceptable; do not use them for single-form CRUD, simple linkedForm selects, real-time writes, or write-back. Read `references/data-views.md` before designing one.
 - For external APIs, create a connector manifest in `src/resources/connectors/` and call it from pages through `sdk.connector`; never put third-party API keys in page source.
 - Before scaffolding a real app, complex page, data management page, portal shell, status lifecycle, role governance, or automation, read `references/best-practices.md` and pick the architecture first. Prefer copying the relevant pattern from `examples/best-practices/` into `src/` instead of generating a single large page file.
 - Before publishing to another platform, verify the workspace is bound for that profile. Resource IDs from one profile must not be reused for another profile.
@@ -127,6 +128,7 @@ Core CLI / state:
 - `references/openxiangda-api.md` — `/openxiangda-api/v1` request and response fields.
 - `references/workspace-state.md` — `.openxiangda/state.json` shape and profile isolation rules.
 - `references/connector-resources.md` — `src/resources` manifests, connector schema, and SDK connector calls.
+- `references/data-views.md` — `src/resources/data-views` materialized view resources, DSL, permissions, refresh, CLI commands, and runtime SDK usage.
 - `references/notifications.md` — `src/resources/notifications`, notification templates/type bindings, and `sdk.notification` / `ctx.notification`.
 - `references/best-practices.md` — initialized examples for modular pages, state lifecycles, role governance, permission isolation, high-performance queries, portal shells, workflow boundaries, and automation patterns.
 
@@ -151,7 +153,7 @@ Workflow / automation / permissions:
 Platform domain knowledge (read these first when generating forms or pages so the output matches the live platform behavior):
 
 - `references/platform-data-model.md` — how the platform persists field values (JSONB, `{label, value}` for option fields, attachment shape, etc.). Use this whenever you write, render, or diagnose form data.
-- `references/style-system.md` — three-layer style architecture, CSS namespace, and flexible Tailwind/CSS guidance. Use this before writing substantial page or form CSS.
+- `references/style-system.md` — style isolation defaults, legacy namespace compatibility, and flexible Tailwind/CSS guidance. Use this before writing substantial page or form CSS.
 - `references/architecture-patterns.md` — CRUD data flow, `DataManagementList` pattern, recommended directory layout for `src/pages` and `src/forms`. Use this before scaffolding a new page or list view.
 - `references/best-practices.md` — read this before implementing app-level business patterns; it points to `examples/best-practices/` and explains when to use status fields instead of workflow.
 - `references/component-guide.md` — when to pick platform components vs. raw Ant Design vs. custom components, with the rules for option fields. Use this before introducing a new component.