I think that's beyond my abilities. I might just stick with blocking public access to /admin.
edit:This post was very helpful for adding those lines for blocking admin access through Nginx Proxy Manager:
What's the easiest way (for a beginner) to satisfy the HTTPS requirement when I only want to run it locally?
I got it running with Nginx Proxy Manager, but would much rather have it only be local.