Hello,

I'm interested in creating an admin role with privileges to read any and all data on the system, but not be able to update anything.   The use case is for a report building user that will need to use the API to query data from across the system with admin like privileges (GET's), but they should not have access to update any data (PUT, DELETE, POST, etc)   

Is it enough to give an account admin all the available VIEW permissions and none of the rest, or will that cause the person to miss things?    Is there a set of admin permissions that would let a person have all read but no write permissions?