Excluding URLs from the security-constraint in App Engine

I was playing and searching around for how to exclude a URL from the security constraint in the web.xml file in App Engine. For my application everyone has to be authenticated to access anything in the application and I don't want to add every URL to the pattern. So…