Indeed @Forrest, { mode: "same-origin" } did the trick for development purposes, since I am calling a service on localhost. Probably in production this will require different configurations in this regard. My understanding of cors seems to be quite poor at the moment.
Thanks for your input!