From a security standpoint it'd be great to see when / where an API Token is being used. Alternatively give the activity log have a flag that a token was used vs a user logged in the system. When someone leaves there's no easy way to track which APIs are used and what needs to be changed.