Read only access to Developer

Is it possible to modify the security on the server as such that users can view services through the Developer but they can not modify them? Adding users to the Developers group gives them full update access. In some cases, I want users to only have read access to services on production servers.