CORS at realm level

I understand that CORS can be applied at client level using the Web Origins setting in Keycloak.

At relam level, I’ve noticed that when making a GET request to the OIDC discovery endpoint (http://<keycloak_url>/auth/realms//.well-known/openid-configuration), the HTTP response mirrors the value the requester passes in for the request header “Origin” in the “Access-Control-Allow-Origin” response header.

Is this intentional behaviour, or is there any way to apply CORS at the realm level?