Proposal (breaking): Change the way scripted document updates are handled

While I was working on something, I realized that for every doc.insert or doc.save the document’s last update is attributed to the session user and also permissions are validated. When done programmatically either via a script or controller (example: changing status of an Issue to “Open” when a new Communication is made), this is wrong because the session user does not control the internal update. So I am proposing 2 changes:

1. Don’t attribute the change to the session user, attribute it to a system user, maybe create a new user called “System” that indicates that the document was updated programmatically, or just use “Administrator” (but that is also wrong)
2. Don’t check permissions internally. Default ignore_permissions to True except for REST API updates.

Planning to send a fix soon to develop in time for v14. I understand there maybe certain security concerns on bypassing permissions check, but if the updater is “System”, then those checks are mostly meaningless. There are upteen cases where we have to add ignore_permissions=True on the ORM update - which we can now avoid.

If there are any other major concerns, please share!