It would be useful if certain application launchers in Shotgun Desktop only appeared for users with particular permissions. For example, when testing newer software versions, having the launcher only show up for Admins and Supervisors and not for Artists.
Engine.register_command() supports a property called "deny_permissions" to exclude a command for certain permission groups. Currently, most of the engines, including tk-desktop, do not respect this setting. Also, the tk-multi-launcher application that is used to add Launcher items to Shotgun Desktop does not provide a mechanism or setting to pass this setting along to the register_command() call when adding launcher commands.