Great information. I was unaware of this statement! Thanks for sharing.

“Sometimes, you don’t have control over the server-code though. You would not be able to include the Access-Control-Allow-Origin header. An alternate solution is to make your own proxy server make the cross-origin request for you. The Same-Origin policy only applies to the browser. Servers are free to make cross-origin requests.”