I find it a bit odd that we are able to allow a role to create and delete a resource without admin but editing requires admin. I think this should not consume an admin license because it doesn't make much sense since this does not mirror the accounts permission requirements.