Currently is is referring to the "Basic Authentication" credentials maintained in the SAP backend in the Destination service. Basically, whatever the API/OData from the backend destination is exposed to cloud, there's no prompt for backend authorization, anyone can access to the data.
Is there plan to add Basic Authentication check if username and password is not added to the CF Destination cockpit?
Sometimes it's very useful to get all informations (like, url, type etc..) of a destination.
These infos are already used to call the destination, but not exposed.
I would like to suggest that these informations can be retrieved.