diff --git a/pagure/api/issue.py b/pagure/api/issue.py
index 68e1674..ff4d26a 100644
--- a/pagure/api/issue.py
+++ b/pagure/api/issue.py
@@ -501,8 +501,10 @@ def api_change_status_issue(repo, issueid, username=None):
         raise pagure.exceptions.APIError(
             404, error_code=APIERROR.ETRACKERDISABLED)
 
-    if repo != flask.g.token.project:
-        raise pagure.exceptions.APIError(401, error_code=APIERROR.EINVALIDTOK)
+    if api_authenticated():
+        if repo != flask.g.token.project:
+            raise pagure.exceptions.APIError(
+                401, error_code=APIERROR.EINVALIDTOK)
 
     issue = pagure.lib.search_issues(SESSION, repo, issueid=issueid)
 
@@ -595,8 +597,10 @@ def api_comment_issue(repo, issueid, username=None):
         raise pagure.exceptions.APIError(
             404, error_code=APIERROR.ETRACKERDISABLED)
 
-    if repo.fullname != flask.g.token.project.fullname:
-        raise pagure.exceptions.APIError(401, error_code=APIERROR.EINVALIDTOK)
+    if api_authenticated():
+        if repo != flask.g.token.project:
+            raise pagure.exceptions.APIError(
+                401, error_code=APIERROR.EINVALIDTOK)
 
     issue = pagure.lib.search_issues(SESSION, repo, issueid=issueid)
 
@@ -683,8 +687,10 @@ def api_assign_issue(repo, issueid, username=None):
         raise pagure.exceptions.APIError(
             404, error_code=APIERROR.ETRACKERDISABLED)
 
-    if repo.fullname != flask.g.token.project.fullname:
-        raise pagure.exceptions.APIError(401, error_code=APIERROR.EINVALIDTOK)
+    if api_authenticated():
+        if repo != flask.g.token.project:
+            raise pagure.exceptions.APIError(
+                401, error_code=APIERROR.EINVALIDTOK)
 
     issue = pagure.lib.search_issues(SESSION, repo, issueid=issueid)