We're working on a new API where some of the content will come from a partner company. We'd like them to be able to see a report on the traffic of our joint API proxy (which uses our Edge instance), and the email addresses of the developers using it.

I was easily able to create a custom report just like the one I wanted, and I also created a new organization role, with all privileges disabled except the ability to view this one report. See the attached screen-grab.

However, when I tested it, I found that a user with this role could still view traffic levels on other APIs from the main dashboard. More worryingly, they could go into API BaaS and change the defaults as they liked.

Is there any way to disable all of this functionality for an admin user, so that they can see just one report? Or is there another way I should expose this data to our partner company?