A company's web application securely uploads multimedia content (pictures and videos) to an Amazon S3 bucket, requiring that only authenticated users can upload content. The application generates presigned URLs for browser-based uploads, but users experience slow upload times for files larger than 100 MB. How can a solutions architect enhance upload performance while maintaining secure access for authenticated users?

Exam-Like

Set up an Amazon API Gateway with an edge-optimized API endpoint that acts as an S3 service proxy. Configure the PUT method to expose the S3 PutObject operation and secure the API Gateway using a COGNITO_USER_POOLS authorizer. Redirect the browser interface to use API Gateway instead of the presigned URL for uploads.

16.7%

Set up an Amazon API Gateway with a regional API endpoint that acts as an S3 service proxy. Configure the PUT method to expose the S3 PutObject operation and secure the API Gateway using an AWS Lambda authorizer. Redirect the browser interface to use API Gateway instead of the presigned URL for uploads.

16.7%

Enable an S3 Transfer Acceleration endpoint on the S3 bucket. Use this endpoint when generating presigned URLs and instruct the browser interface to upload objects using the S3 multipart upload API for improved performance.

50.0%

Configure an Amazon CloudFront distribution for the S3 bucket, enabling PUT and POST methods for the CloudFront cache behavior. Update the CloudFront origin to use an origin access identity (OAI) and grant the OAI PutObject permissions in the bucket policy. Redirect the browser interface to upload objects using the CloudFront distribution.

16.7%

AWS Certified Solutions Architect - Professional

Get started today

Comments