If allowing all hosts doesn’t help, then also try to allow all headers, since they also cause CORS problems:
module.exports = {
//...
settings: {
cors: {
origin: ['*'], //allow all origins
headers: ['*'], //allow all headers
},
},
};