Currently the user role choices are co-admin (modify access to everything), readonly (modify access to nothing), and reportonly (we never use).
This config is not very usable in an enterprise with multiple groups having different responsibilities. We would like to provide our users with self service capabilities without opening things up to the world.
--Randall