Demo users enabled

Check ID

APP_0003

Category

Security

Summary

Demo users is a feature in Mendix that will create test users for you automatically when you run your app (locally or in the cloud). Although this is a handy feature for quickly testing different user roles, it presents a possible security risk as the names of demo users are easy to guess and they bypass SSO. Demo users should never be enabled in an app deployed to the cloud. Note: Mendix prevents demo users from being created in non SANDBOX environments, thus this check is only relevant (and will only be checked) in Mendix Cloud sandbox environments.

Options

This check does not have any options.

Pass

Demo users are disabled for revisions deployed to a SANDBOX environment.

Fail

Demo users are enabled and the revision is deployed to a SANDBOX environment.

PreviousProject security enabled NextAnonymous users enabled

Last updated 12 days ago