René's URL Explorer Experiment

{"@context":"https://schema.org","@type":"DiscussionForumPosting","headline":"App Registration Federated Credentials Using Custom Claim Expression Causes Internal Server Error","articleBody":"### Describe the bug\n\nI am attempting to filter through all of my App Registrations that have Federated Credentials configured, but am getting an Internal Server Error from the API whenever a credential uses the Claim Matching Expressions functionality instead of an explicit subject value. For example, this is a problematic credential for the API:\n\n\u003cimg width=\"891\" height=\"753\" alt=\"Image\" src=\"https://github.com/user-attachments/assets/34e8d010-5469-406d-90b0-04135704fccb\" /\u003e\n\nThis results in the following response data from the API which the SDK cannot handle properly as it's not valid JSON:\n```json\n{\n  \"@odata.context\":\"https://graph.microsoft.com/v1.0/$metadata#applications('\u003capplication id\u003e')/federatedIdentityCredentials\",\n  \"value\":[\n    {\n      \"id\":\"\u003ccredential id\u003e\",\n      \"name\":\"debug_v2\",\n      \"issuer\":\"https://token.actions.githubusercontent.com\"{\"error\":{\"code\":\"InternalServerError\",\"message\":\"The property 'subject[Nullable=False]' of type 'Edm.String' has a null value, which is not allowed.\",\"innerError\":{\"date\":\"2025-09-17T21:05:59\",\"request-id\":\"f1ffe8e1-f229-4ba1-83e6-69c64046e4a5\",\"client-request-id\":\"f1ffe8e1-f229-4ba1-83e6-69c64046e4a5\"}}}\n```\n\nYou'll note that the `value` attribute _would_ contain multiple other credentials (there are 3 on this app registration), but because of this error they're not visible at all. I don't think this is an issue with the SDK specifically, rather the Graph API it's using, but this seems like a reasonable place to report the issue since it's preventing SDK functionality from working properly.\n\n### Expected behavior\n\nClaims matching expressions are supported in the JSON response for Federated Credentials\n\n### How to reproduce\n\n```python\nGraphServiceClient(credentials=\u003ccredential\u003e).applications.by_application_id(app_object_id).federated_identity_credentials.get()\n``` \nwhere the app registration being queried has at least 1 federated credential using the \"claims matching expression\" feature.\n\n### SDK Version\n\n1.2.0\n\n### Latest version known to work for scenario above?\n\n_No response_\n\n### Known Workarounds\n\nHaven't been able to find a way around other than finding the data manually through the portal\n\n### Debug output\n\n\u003cdetails\u003e\u003csummary\u003eClick to expand log\u003c/summary\u003e\n```\n\n\u003cLog output here\u003e\n\n```\n\u003c/details\u003e\n\n\n### Configuration\n\n_No response_\n\n### Other information\n\n_No response_","author":{"url":"https://github.com/brett-swan-sh","@type":"Person","name":"brett-swan-sh"},"datePublished":"2025-09-17T21:28:35.000Z","interactionStatistic":{"@type":"InteractionCounter","interactionType":"https://schema.org/CommentAction","userInteractionCount":0},"url":"https://github.com/1359/msgraph-sdk-python/issues/1359"}