When you try and call your API from a (JavaScript) client on another domain, you might see this error in your browser's developer console:

Access to fetch at 'http://xxx.xxx.xxx.xxx:8088/dedi/151629' from origin 'http://127.0.0.1:8000' has been blocked by CORS policy: Request header field authorization is not allowed by Access-Control-Allow-Headers in preflight response.

Apparently CORS is enabled on the multiplayer web server. One way to circumvent this issue is to create an endpoint on your own server that calls the API and returns the data back to your client.