It should be possible to create a role and define availability so a user can be e.g. Read Only but not perform action on the task.

We have a specific issue that some users should be allowed read only for e.g. the Access Key added to the role 'Integration queue handler role', so they can see invoices in integration status, but not change/press any buttons.

There is currently no availability to make create a read only role covering this.