Exclude Certain URLs fro basic auth .htpasswd

Hi Everyone,
I just setup a staging site for a Laravel 5.8 application and to prevent Search Engines and even visitors from accessing it publicly, I setup basic auth in Nginx & Apache configs. However the devs need certain ‘callback URLS’ to be ‘OPEN’ so that payment gateway can return values to these URLs when payment is completed.

Fie example Laravel app is inside /suite directory and the URL to allow would be:

I tried

in Nginx conf before the location / block

location = /suite/confirmsubscription {
       auth_basic off;
       allow all; # Allow all to see content 

in Apache conf

#---Enable Basic Auth

	SetEnvIfNoCase Request_URI "^/suite/confirmsubscription" noauth

	AuthType Basic
	AuthName "staging site"
	AuthUserFile /home/.htpasswd
	Require valid-user
	Order Deny,Allow
	Deny from all
	Allow from env=noauth

	Satisfy any

but it still asks for auth password. Can someone help me get this right please.
Many thanks