The ReportingCloud API supports Cross Origin Resource Sharing (CORS) for AJAX requests from any origin. You can learn more about the CORS W3C recommendation here:

Traditionally, AJAX requests have been restricted by the Same Origin Policy that only allowed them to make request to resources within the same domain. Since HTML5, this restriction is gone and allows for AJAX requests to be made across domains.

The following is a sample CURL request from a browser hitting

curl -u username:password -i -H "Origin:"
HTTP/1.1 200 OK
Cache-Control: no-cache
Pragma: no-cache
Content-Type: application/json; charset=utf-8
Expires: -1
Server: Microsoft-IIS/8.5
Access-Control-Allow-Origin: *
X-AspNet-Version: 4.0.30319
X-Powered-By: ASP.NET
Date: Mon, 26 Sep 2016 15:45:38 GMT
Content-Length: 157

This enables client-side languages such as JavaScript or jQuery to make ReportingCloud Web API calls. With CORS supported by ReportingCloud, you can make AJAX requests like any other AJAX call. The following sample calls the Account/Settings endpoint using jQuery:

var serviceURL =
type: "GET",
url: serviceURL,
dataType: "json",
async: false,
cache: false,
headers: {
"Authorization": "Basic " + btoa("username:password")
success: function(response) {
view raw query.js hosted with ❤ by GitHub

Happy coding!