1. my end user role contains:
2. I login as end user who has this role and try to request a role
3. before submitting I set relation to non-default, e.g. "Approver".
4. GUI allows this in request phase even if it should not as the relation is non-default. Submitting the request fails obviously because of the authorizations. (So from security point of view, it behaves correctly, just UX is not good.)
The combo box for relations in Request role should consider this and not allow selection of relation that I cannot use because of authz...