RE: Security configuration: Developer vs UI implementation

When configuring security in UI it creates an additional data layer on security on top of security metadata.

While using UI based security could be needed on some select time critical scenarios, best practice is to build any security artifact via development process.

Some info on security, docs.microsoft.com/.../role-based-security