I have a user role (1),
I have a page which has security settings inside the module, and is set to be visible for other user roles (2 & 3).
User role (1) in my project does not have security roles 2 or 3 in the project security settings
The homepage for user role (1) is set to go to this page with visibility for other users.
This user can view this page.
Why does mendix ignore the security settings in the module in this case? Shouldn't it throw a 403 forbidden?