Cross-Origin Resource Sharing (CORS) works by adding a special header to responses from a server to the client. If a response contains the
Access-Control-Allow-Origin
header, and if the browser supports CORS, then there is a chance you can load the resource directly with Ajax – no need for a proxy or JSONP hacks.