Security
For me, the most important consideration which should be thought about is the security of the underlying data. Too many times I have seen apps created without the necessary thought about what protective measures should be applied to the data.
Is there a risk if any of the data which I’m storing can be seen by other members of the organisation? Do I need to lock that data away somewhere that I have the utmost control over what is going in? Do I need to permission each row or each record in the table? Or do I need to go lower than that and apply security to a column?
They’re all questions which you need to ask. Secure by design is a key development principal which we should all be working to. Creating an app and then trying to shoehorn security in afterwards is extremely difficult as I guarantee you’ll need to go back and make some quite fundamental changes. Whether those changes are to the data source itself, or whether you need to start building lots of checks...
