Add feature to set and forward "forbidden" request headers

[baryluk]

In https://fetch.spec.whatwg.org/#terminology-headers you can see a list of "forbidden header names". Setting them in JavaScript will be ignored.

But in many situations it is very useful to set some of them. Most useful one is Referer. Would be nice to be able to call "CORSE-Referer", and the addon would translate it to Referer.

Not sure if this is possible with the Firefox addon architecture, but would be helpful to have.

[spenibus]

If I ever find the time I could test some header injection, although I get the feeling they might just end up being dropped.