fix: rewrite Origin header to bypass CORS restriction on Screenly API

fix: rewrite Origin header to bypass CORS restriction on Screenly API #223