Allow granular permission assignment for REST HTTP Methods
As an IT professional centered around security, it would be most ideal for Woocommerce to have an ability to create a role or even explicitly grant REST permissions (via basic AND oauth) to a particular user. This grant would also allow for the explicit grant for HTTP methods for the various existing functionality within Woocommerce.
An example use case would be for an external business to business partner to be able to create orders, but not update nor delete orders. Further security improvements would also protect orders they did not create from being viewed w/ GET calls (or if they are only allowed to POST/PUT).
Another example use case would be for a logistics provider to perform GETs to retrieve orders in general - or even better - for a specific SKU. However, they would not have the ability to PUT/DELETE/UPDATE.