diff --git a/app/controllers/shared/api.php b/app/controllers/shared/api.php
index 6dcb99b56f..959ee77b7d 100644
--- a/app/controllers/shared/api.php
+++ b/app/controllers/shared/api.php
@@ -246,10 +246,11 @@ App::init()
             $role = $apiKey->getRole();
             $scopes = $apiKey->getScopes();
 
-            // Disable authorization checks for API keys
-            Authorization::setDefaultStatus(false);
 
             if ($apiKey->getRole() === Auth::USER_ROLE_APPS) {
+                // Disable authorization checks for API keys
+                Authorization::setDefaultStatus(false);
+
                 $user = new Document([
                     '$id' => '',
                     'status' => true,