It would be really good when you generate a token, that you can make it read-only. Ex you have a measurement or report that extracts data to displays some graphs and data, but it is not needed to be able to update the data, then I read only token will be great, then you also do not have to think so much about access rights to write, if it is shared. In the company I work for we do not hide data for the employees, so all data is available for all the users, so this does not create problems for us.