I am trying to make sure a file is viewable, not downloadable by a specific role. What type of configuration would I need to have on the file or repository?
You want to make sure the user has the
browse permission but not the
read permission for the file/repository. I believe file-level permissions will override the repository permissions. You can find more information at Access Control.