Set up an Amazon API Gateway with an edge-optimized API endpoint that acts as an S3 service proxy. Configure the PUT method to expose the S3 PutObject operation and secure the API Gateway using a COGNITO_USER_POOLS authorizer. Redirect the browser interface to use API Gateway instead of the presigned URL for uploads.

Set up an Amazon API Gateway with a regional API endpoint that acts as an S3 service proxy. Configure the PUT method to expose the S3 PutObject operation and secure the API Gateway using an AWS Lambda authorizer. Redirect the browser interface to use API Gateway instead of the presigned URL for uploads.

Enable an S3 Transfer Acceleration endpoint on the S3 bucket. Use this endpoint when generating presigned URLs and instruct the browser interface to upload objects using the S3 multipart upload API for improved performance.

Configure an Amazon CloudFront distribution for the S3 bucket, enabling PUT and POST methods for the CloudFront cache behavior. Update the CloudFront origin to use an origin access identity (OAI) and grant the OAI PutObject permissions in the bucket policy. Redirect the browser interface to upload objects using the CloudFront distribution.