IAM permission code generation rules: the service name + APITag method name + name + method type
We must ensure that the code is the only privileges.
When in the same service, different controller inside the same type using the same method and the same method name APITag time, cause some interfaces are not authorized to brush out