The solution is on the server-side, you must include some custom headers in response to cross domain works. Experiment send the following headers in response:
Access-Control-Allow-Origin: yourApiDomain
Access-Control-Allow-Methods: *
In case of using custom headers:
Access-Control-Expose-Headers: X-My-Custom-Header, X-Another-Custom-Header
Access-Control-Allow-Headers: X-My-Custom-Header, X-Another-Custom-Header
In case of using HTTP Cookies and HTTP Authentication information:
Access-Control-Allow-Credentials: true
For more informations read the documentation in MDN about CORS: