Is there anyway to use outside resourses in cordva, like api calls

I am very new at cordova (like first time using it), so please don't laugh at my attempts to figure this out. I have tried searching, but nothing really answers my questions.

It seems that everytime I try to an outside url it comes back with the error message

3029 Refused to connect to 'website' because it violates the following Content Security Policy directive: "default-src 'self' data: https://ssl.gstatic.com 'unsafe-eval'". Note that 'connect-src' was not explicitly set, so 'default-src' is used as a fallback.

This is if I try to link to a website via iframe or through an api call. I understand this is for security, but is there a specific reason why everything seems to be blocked? It seems limiting on what you can do. And is there any way to get around this and connect to other sites without creating a huge security hole?

I will give an example of my ajax call for reference. Outside of the environment it works fine, but once in the cordova app I get the error above.

$.get({
    url: 'website',
    type: 'post',
    contentType: 'application/json',
    data: {
        apikey: key,
        objectType: 'something',
    },
    dataType: 'json',
    success: function (data) {
        console.info(JSON.stringify(data));
    }
});
How many English words
do you know?
Test your English vocabulary size, and measure
how many words do you know
Online Test
Powered by Examplum