I recently posted two questions on security:
In both cases, someone mentioned that whatever I was trying to do through VS development could be done through the UI. I have very little knowledge of the front end - I only see it when I test my own developments.
privileges, duties, roles: it looks like only privileges are needed from the development side?
policies: Should it only be created in development and then linked to roles in the UI?
I was just wondering where the split between development and UI customization in regards to security is intended to be, ie what should be implemented by me as a (super-junior) developer and what should be implemented in the UI? Or any other general comments or sources I can read?