diff --git a/common/ASC.Common/Data/DbRegistry.cs b/common/ASC.Common/Data/DbRegistry.cs
index 10c23861a2..3b25df3978 100644
--- a/common/ASC.Common/Data/DbRegistry.cs
+++ b/common/ASC.Common/Data/DbRegistry.cs
@@ -27,7 +27,8 @@
 using System;
 using System.Collections.Generic;
 
-using System.Data.Common;
+using System.Data.Common;
+using System.Configuration;
 using ASC.Common.Data.Sql;
 using ASC.Common.Data.Sql.Dialects;
 
diff --git a/web/ASC.Web.Api/Startup.cs b/web/ASC.Web.Api/Startup.cs
index 97bf2dd3aa..ee64f4701e 100644
--- a/web/ASC.Web.Api/Startup.cs
+++ b/web/ASC.Web.Api/Startup.cs
@@ -4,6 +4,7 @@ using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Builder;
 using Microsoft.AspNetCore.Hosting;
 using Microsoft.AspNetCore.Mvc;
+using Microsoft.AspNetCore.Mvc.Authorization;
 using Microsoft.AspNetCore.Mvc.Formatters;
 using Microsoft.Extensions.Configuration;
 using Microsoft.Extensions.DependencyInjection;
@@ -32,7 +33,9 @@ namespace ASC.Web.Api
 
             services.AddMvc(config =>
             {
+                var policy = new AuthorizationPolicyBuilder().RequireAuthenticatedUser().Build();
                 config.Filters.Add(new TypeFilterAttribute(typeof(FormatFilter)));
+                config.Filters.Add(new AuthorizeFilter(policy));
             });
         }