This is because of the browser that is restricting javascript not to load a remote resource without proper permission
Read more about Cross-origin resource sharing from the Wikipedia
In order to enable cross domain access, enable crossOriginResourceSharing on your api server as shown in the following example
use Luracast\Restler\Restler;
use Luracast\Restler\Defaults;
require_once "../../../vendor/restler.php";
Defaults::$crossOriginResourceSharing = true;
$r = new Restler();
$r->addAPIClass('MinMax');
$r->addAPIClass('MinMaxFix');
$r->addAPIClass('Type');
$r->addAPIClass('Resources');
$r->handle();
Above example is live in http://restler3.luracast.com/tests/param/resources.json you may want to try that from your remote explorer