What is the default security setting when starting app development in Mendix?

The default security setting when starting app development in Mendix is configured to Not Demo/Prototype. This setting indicates that the application is designed for actual development where security measures are essential. It means that the application is set up to require more stringent user authentication and authorization, thus ensuring that the data and functions are protected from unauthorized access.

Choosing Not Demo/Prototype establishes a foundation that aligns with best practices in application development, emphasizing the importance of security from the outset. This approach encourages developers to integrate user roles and permissions responsibly right from the initial stages of development, rather than treating the application casually as a prototype or demo, where security might not be a priority.

In contrast, the other options suggest varying levels of access that might compromise the integrity and security of the application if not carefully managed. For instance, Public Access could imply that anyone can access the app without authentication, while Protected Access might suggest that a user is required to register or log in but does not reflect the necessary depth of security that comes with considering the application as being in full development rather than a prototype state.