diff --git a/src/Umbraco.Core/Models/ContentEditing/NotificationStyle.cs b/src/Umbraco.Core/Models/ContentEditing/NotificationStyle.cs
index aeda314f4c..a8c17d1850 100644
--- a/src/Umbraco.Core/Models/ContentEditing/NotificationStyle.cs
+++ b/src/Umbraco.Core/Models/ContentEditing/NotificationStyle.cs
@@ -1,5 +1,8 @@
-namespace Umbraco.Cms.Core.Models.ContentEditing
+using System.Runtime.Serialization;
+
+namespace Umbraco.Cms.Core.Models.ContentEditing
 {
+    [DataContract]
     public enum NotificationStyle
     {
         /// <summary>
diff --git a/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedApiController.cs b/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedApiController.cs
index 826527aa1f..5b548a146a 100644
--- a/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedApiController.cs
+++ b/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedApiController.cs
@@ -23,6 +23,8 @@ namespace Umbraco.Cms.Web.BackOffice.Controllers
     /// is logged in using forms authentication which indicates the seconds remaining
     /// before their timeout expires.
     /// </remarks>
+    [AngularJsonOnlyConfiguration] // TODO: This could be applied with our Application Model conventions
+    [JsonExceptionFilter]
     [IsBackOffice]
     [UmbracoUserTimeoutFilter]
     [Authorize(Policy = AuthorizationPolicies.BackOfficeAccess)]
diff --git a/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedJsonController.cs b/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedJsonController.cs
index eb082ae6e6..ca536346ae 100644
--- a/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedJsonController.cs
+++ b/src/Umbraco.Web.BackOffice/Controllers/UmbracoAuthorizedJsonController.cs
@@ -1,4 +1,4 @@
-using Umbraco.Cms.Web.BackOffice.Filters;
+using Umbraco.Cms.Web.BackOffice.Filters;
 using Umbraco.Cms.Web.Common.Filters;
 
 namespace Umbraco.Cms.Web.BackOffice.Controllers
@@ -11,8 +11,6 @@ namespace Umbraco.Cms.Web.BackOffice.Controllers
     /// methods that are not called by Angular or don't contain a valid csrf header will NOT work.
     /// </remarks>
     [ValidateAngularAntiForgeryToken]
-    [AngularJsonOnlyConfiguration] // TODO: This could be applied with our Application Model conventions
-    [JsonExceptionFilter]
     public abstract class UmbracoAuthorizedJsonController : UmbracoAuthorizedApiController
     {
     }