Fix access control on view searching and handle errors when fetching view definitions

packages/frontend-core/src/fetch/ViewV2Fetch.js

@@ -25,6 +25,10 @@ export default class ViewV2Fetch extends DataFetch {
       const res = await this.API.viewV2.fetchDefinition(datasource.id)
       return res?.data
     } catch (error) {
+      this.store.update(state => ({
+        ...state,
+        error,
+      }))
       return null
     }
   }

packages/server/src/api/routes/row.ts

@@ -269,6 +269,7 @@ router
 
 router.post(
   "/api/v2/views/:viewId/search",
+  paramResource("viewId"),
   authorized(PermissionType.TABLE, PermissionLevel.READ),
   rowController.views.searchView
 )