We use CorsURLLoader since the 124-based Chromium. This performs a safety check on calling CorsURLLoader::OnReceiveRedirect(), since fetch() requests have more strict rules when accessing cross origin resources. This patch extends our dummy response with the Allow-Origin header (only in case of redirects), so the request interceptor API users won't hit this wall. Test case implemented by: Benjamin Terrier Task-number: QTBUG-140889 Change-Id: I7025fb69b5ac9b8763d61cb2bf0880dcc20721cf Reviewed-by: Allan Sandfeld Jensen <allan.jensen@qt.io>