Changing who can login to a application with authentik

By default authentik allows anyone to login to the application. This can however easily be changed by clicking on the application and clicking bind existing policy and selecting a user:

Weird huh? this will make it so just that user can login to the application, so its open for everyone by default unless you add a binding.