Hi Tammy,
Thank you for the response and information. Unfortunately, it does not appear there is a way to limit the authorization to the the queries only. The infoprovider access is required in the the role to allow the user, through the query, to access data in the provider. This seems strange that something this simple is not accomodated.