Access to XMLHttpRequest at 'https://exmple.com//any/api/vendors'from origin 'http://localhost:4200' has been blocked by CORS policy: Response to preflight request doesn't pass access control check: No 'Access-Control-Allow-Origin' header is present on the requested resource.
You need to add the hayla.com (or even * ) into the Access-Control-Allow-Origin header, generated by your local webserver from which you make requests.
You can find additional details in the following article about CORS: