Sonarr, Radarr, and other exposed to www via portaccess


i have a clean install of quickbox and encounter a risky problem for me.
Acces sonarr via everythign works fine, http gets redirect to https, htacces password check and certificate is green.
But when i go to mydomain:8989 i am straight into sonarr (even on other PCs and in privat tab). Is there a way to force htaccess check there to or is my only solution to use build in auth in the applications ?


<Location /sonarr>
ProxyPass h t t p ://localhost:8989/sonarr
ProxyPassReverse  h t t p ://localhost:8989/sonarr
AuthType Digest
AuthName "rutorrent"
AuthUserFile '/etc/htpasswd'
Require user [USERNAME]

I tried bind sonarr to localhost or or without solution.