Missing 'Access-Control-Allow-Origin' header when making an API request.

[Keraito]

I've wanted to experiment with the track-o-bot API in Polymer and tried to retrieve my match history. But the request fails with the error message:

XMLHttpRequest cannot load https://trackobot.com/profile/etc. No 'Access-Control-Allow-Origin' header is present on the requested resource. Origin 'http://localhost:8080' is therefore not allowed access.

Checking the request headers with DHC - Restlet Client also shows that no such value is present. Could someone help me with this?

Extra info: I used the iron-ajax Polymer element, specifying username and token in url and handle-as was set to "json". Source code is also available on my profile.