MAGETWO-50611: [Github][Security] WebAPIs allow anonymous access

Yaroslav Voronoy · Sergey Nosov · commit fbaa42b87802 · 2016-03-26T17:26:25.000+02:00
diff --git a/app/code/Magento/WebapiSecurity/Model/Plugin/CacheInvalidator.php b/app/code/Magento/WebapiSecurity/Model/Plugin/CacheInvalidator.php
@@ -37,7 +37,7 @@ public function afterAfterSave(
         if ($result->getPath() == \Magento\WebapiSecurity\Model\Plugin\AnonymousResourceSecurity::XML_ALLOW_INSECURE
             && $result->isValueChanged()
         ) {
-            $this->cacheTypeList->invalidate(\Magento\Webapi\Model\Cache\Type\Webapi::TYPE_IDENTIFIER);
+            $this->cacheTypeList->invalidate(\Magento\Framework\App\Cache\Type\Webapi::TYPE_IDENTIFIER);
         }
 
         return $result;

Original file line number	Diff line number	Diff line change
`@@ -37,7 +37,7 @@ public function afterAfterSave(`
`37`	`37`	`if ($result->getPath() == \Magento\WebapiSecurity\Model\Plugin\AnonymousResourceSecurity::XML_ALLOW_INSECURE`
`38`	`38`	`&& $result->isValueChanged()`
`39`	`39`	`) {`
`40`		`- $this->cacheTypeList->invalidate(\Magento\Webapi\Model\Cache\Type\Webapi::TYPE_IDENTIFIER);`
	`40`	`+ $this->cacheTypeList->invalidate(\Magento\Framework\App\Cache\Type\Webapi::TYPE_IDENTIFIER);`
`41`	`41`	`}`
`42`	`42`
`43`	`43`	`return $result;`