For workflow monitoring from other platforms it would be nice to have r/o access tokens for the Tower API. For other, limited actions, such as simply starting a registered workflow, it would be nice to have r/w tokens that are limited in scope, so not able to alter users, create compute environments, and so on.

This is not a formal request, simply raising it here to see if it attracts any interest.