{
  "$schema": "https://json-schema.org/draft/2020-12/schema",
  "$id": "#/components/schemas/microsoft.graph.conditionalAccessClientApplications",
  "title": "conditionalAccessClientApplications",
  "required": [
    "@odata.type"
  ],
  "type": "object",
  "properties": {
    "excludeServicePrincipals": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Service principal IDs excluded from the policy scope."
    },
    "includeServicePrincipals": {
      "type": "array",
      "items": {
        "type": "string"
      },
      "description": "Service principal IDs included in the policy scope, or ServicePrincipalsInMyTenant."
    },
    "servicePrincipalFilter": {
      "anyOf": [
        {
          "$ref": "#/components/schemas/microsoft.graph.conditionalAccessFilter"
        },
        {
          "type": "object",
          "nullable": true
        }
      ],
      "description": "Filter that defines the dynamic-servicePrincipal-syntax rule to include/exclude service principals. A filter can use custom security attributes to include/exclude service principals."
    },
    "@odata.type": {
      "type": "string"
    }
  }
}