Before the latest changes using the DA checks was more complicated.  In addition to the HTTP Basic Auth creds, callers had to pass the administrator’s session in the payload of the request.  This made it harder to use and (worse) less secure.

read more