location /user-admin/ {
    # checks for static file, if not found proxy to app
    try_files $uri @proxy_to_oncall_admin;
}

location @proxy_to_oncall_admin {
    auth_basic "Restricted Access for Oncall User Management";
    auth_basic_user_file /etc/nginx/oncall-admin.pass;
    proxy_set_header X-Real-IP $remote_addr;
    proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    proxy_set_header Host $http_host;
    proxy_redirect off;
    proxy_buffering off;
    proxy_pass http://127.0.0.1:16652;
}
