diff --git a/src/controllers/ImportController.ts b/src/controllers/ImportController.ts
index 232df6f..bccdfb3 100644
--- a/src/controllers/ImportController.ts
+++ b/src/controllers/ImportController.ts
@@ -1,5 +1,5 @@
 import csv from 'csvtojson';
-import { Body, ContentType, Controller, Param, Post, QueryParam, Req, UseBefore } from 'routing-controllers';
+import { Authorized, Body, ContentType, Controller, Param, Post, QueryParam, Req, UseBefore } from 'routing-controllers';
 import { OpenAPI, ResponseSchema } from 'routing-controllers-openapi';
 import { RunnerGroupNeededError } from '../errors/RunnerErrors';
 import { RunnerGroupNotFoundError } from '../errors/RunnerGroupErrors';
@@ -9,7 +9,8 @@ import { ResponseRunner } from '../models/responses/ResponseRunner';
 import { RunnerController } from './RunnerController';
 
 @Controller()
-//@Authorized("IMPORT:read")
+@Authorized(["RUNNER:IMPORT", "TEAM:IMPORT"])
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class ImportController {
     private runnerController: RunnerController;
 
diff --git a/src/controllers/PermissionController.ts b/src/controllers/PermissionController.ts
index 3763145..f5264f6 100644
--- a/src/controllers/PermissionController.ts
+++ b/src/controllers/PermissionController.ts
@@ -12,7 +12,7 @@ import { ResponsePrincipal } from '../models/responses/ResponsePrincipal';
 
 
 @JsonController('/permissions')
-//@Authorized('RUNNERS:read')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class PermissionController {
     private permissionRepository: Repository<Permission>;
 
diff --git a/src/controllers/RunnerController.ts b/src/controllers/RunnerController.ts
index a8bf93f..05f8c93 100644
--- a/src/controllers/RunnerController.ts
+++ b/src/controllers/RunnerController.ts
@@ -10,7 +10,7 @@ import { ResponseEmpty } from '../models/responses/ResponseEmpty';
 import { ResponseRunner } from '../models/responses/ResponseRunner';
 
 @JsonController('/runners')
-//@Authorized('RUNNERS:read')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class RunnerController {
 	private runnerRepository: Repository<Runner>;
 
diff --git a/src/controllers/RunnerOrganisationController.ts b/src/controllers/RunnerOrganisationController.ts
index 8c48496..d435b1d 100644
--- a/src/controllers/RunnerOrganisationController.ts
+++ b/src/controllers/RunnerOrganisationController.ts
@@ -12,7 +12,7 @@ import { RunnerTeamController } from './RunnerTeamController';
 
 
 @JsonController('/organisations')
-//@Authorized('RUNNERS:read')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class RunnerOrganisationController {
 	private runnerOrganisationRepository: Repository<RunnerOrganisation>;
 
diff --git a/src/controllers/RunnerTeamController.ts b/src/controllers/RunnerTeamController.ts
index c9c4d5c..4b90c53 100644
--- a/src/controllers/RunnerTeamController.ts
+++ b/src/controllers/RunnerTeamController.ts
@@ -11,7 +11,7 @@ import { RunnerController } from './RunnerController';
 
 
 @JsonController('/teams')
-//@Authorized('RUNNERS:read')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class RunnerTeamController {
 	private runnerTeamRepository: Repository<RunnerTeam>;
 
diff --git a/src/controllers/TrackController.ts b/src/controllers/TrackController.ts
index ab56159..8a3736b 100644
--- a/src/controllers/TrackController.ts
+++ b/src/controllers/TrackController.ts
@@ -9,7 +9,7 @@ import { ResponseEmpty } from '../models/responses/ResponseEmpty';
 import { ResponseTrack } from '../models/responses/ResponseTrack';
 
 @JsonController('/tracks')
-//@Authorized("TRACKS:read")
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class TrackController {
 	private trackRepository: Repository<Track>;
 
@@ -23,7 +23,6 @@ export class TrackController {
 	@Get()
 	@Authorized("TRACK:READ")
 	@ResponseSchema(ResponseTrack, { isArray: true })
-	@OpenAPI({ description: "Lists all tracks.", security: [{ "AuthToken": [] }] })
 	async getAll() {
 		let responseTracks: ResponseTrack[] = new Array<ResponseTrack>();
 		const tracks = await this.trackRepository.find();
diff --git a/src/controllers/UserController.ts b/src/controllers/UserController.ts
index e460ad1..4cc1544 100644
--- a/src/controllers/UserController.ts
+++ b/src/controllers/UserController.ts
@@ -12,6 +12,7 @@ import { PermissionController } from './PermissionController';
 
 
 @JsonController('/users')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class UserController {
 	private userRepository: Repository<User>;
 
diff --git a/src/controllers/UserGroupController.ts b/src/controllers/UserGroupController.ts
index 95c6ca3..f5212ea 100644
--- a/src/controllers/UserGroupController.ts
+++ b/src/controllers/UserGroupController.ts
@@ -11,6 +11,7 @@ import { PermissionController } from './PermissionController';
 
 
 @JsonController('/usergroups')
+@OpenAPI({ security: [{ "AuthToken": [] }] })
 export class UserGroupController {
 	private userGroupsRepository: Repository<UserGroup>;