diff --git a/services/auth/oauth2.go b/services/auth/oauth2.go
index 547dd0d183..3b401cf861 100644
--- a/services/auth/oauth2.go
+++ b/services/auth/oauth2.go
@@ -126,7 +126,8 @@ func (o *OAuth2) Verify(req *http.Request, w http.ResponseWriter, store DataStor
 	}
 
 	id := o.userIDFromToken(req, store)
-	if id == -1 || id <= -3 { // -2 means actions, so we need to allow it.
+
+	if id <= 0 && id != -2 { // -2 means actions, so we need to allow it.
 		return nil, nil
 	}
 	log.Trace("OAuth2 Authorization: Found token for user[%d]", id)