There are an increase number of tools making use of the Mendix Model SDK to retrieve the Mendix model of an app and perform an analysis, e.g. for quality purposes (like Omnext) or for Function-point analysis (like the First Consulting FPA tool). These tools only need read-only access to the model and it is not desirable that these tool can make changes or updates to the model. For this reason, we need a read-only app role that can retrieve the model from the Model SDK but cannot make any changes. Currently, it is only possible to give an app role full CRUD authorities to the model. Als for security reasons this is not acceptable for particular customers.