Is there a way to remove the authorization bear token in the second request?

I am trying to upload to Cloudflare. I am generating the upload URL at my sever and send 201 back and set Location header [ ]. Al those works fine.

However, my own server is using a bearer token for authorization, but the same authorization header is been sent to, which is then get rejected due to

Access to XMLHttpRequest at '' from origin '' has been blocked by CORS policy: Request header field authorization is not allowed by Access-Control-Allow-Headers in preflight response.

is there a way for me to remove the authorization header in the direction request?