Allow optional permissions to webApiPermissionRequests so admin can approve some
Allow users to specify multiple permissions in webApiPermissionRequests that admin can approve only some of them (not all or nothing).
Also would be great if the application can request more/different permissions based on user configuration during runtime:
Make a request to resource X
Get access denied
Prompt the user and open a new "request" for that resource during runtime