I just figured out how to setup #goauthentik with #nginxproxymanager to protect just the #ghost admin page without having negative lookahead.

This is the trick!

Just create a normal proxy provider on the base domain as normal

Then in Nginx Proxy Manager you make a custom location to authentik for the outpost and for the urls you want to protect, blog article coming tomorrow