allow unsigned fetch for all system users

1 files changed, 2 insertions, 2 deletions

diff --git a/packages/backend/migration/1740162088574-add_unsignedFetch.js b/packages/backend/migration/1740162088574-add_unsignedFetch.js
index 855a3796aa..0744e68dfa 100644
--- a/packages/backend/migration/1740162088574-add_unsignedFetch.js
+++ b/packages/backend/migration/1740162088574-add_unsignedFetch.js
@@ -12,8 +12,8 @@ export class AddUnsignedFetch1740162088574 {
 		await queryRunner.query(`CREATE TYPE "public"."user_allowunsignedfetch_enum" AS ENUM('never', 'always', 'essential', 'staff')`);
 		await queryRunner.query(`ALTER TABLE "user" ADD "allowUnsignedFetch" "public"."user_allowunsignedfetch_enum" NOT NULL DEFAULT 'staff'`);
 
-		// Special one-time migration: allow unauthorized fetch for instance actor
-		await queryRunner.query(`UPDATE "user" SET "allowUnsignedFetch" = 'always' WHERE "username" = 'instance.actor' AND "host" IS null`);
+		// Special one-time migration: allow unauthorized fetch for system accounts
+		await queryRunner.query(`UPDATE "user" SET "allowUnsignedFetch" = 'always' WHERE "username" LIKE '%.%' AND "host" IS null`);
 
 		// Special one-time migration: convert legacy config "" to meta setting ""
 		const config = await loadConfig();