I understand that if I do not want to store private keys in each wallet's node, I can centrally generate address in a cold node then import it in one node by using importaddress command. The public key will be imported, the private one can be given to the user's address owner and he can use it to sign raw-transactions before sending them.
But the APIs documentation indicates that the importaddress command make the address as "watch-only" in the node.
So, if the address is "watch-only" and cannot spend funds in the node, how can it perform raw-transactions on the node ?
Thank you for your reply.