From c8121d47d6a83ca63402697584de523dfa02a17e Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Mon, 16 Oct 2023 22:43:50 +0530
Subject: [PATCH 1/6] resolve associated roles of shared app

---
 .../FragmentApplicationMgtListener.java       | 24 +++++++++++++++++++
 1 file changed, 24 insertions(+)

diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
index b336a5eb3..0758bc8e0 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
@@ -24,10 +24,12 @@
 import org.wso2.carbon.context.PrivilegedCarbonContext;
 import org.wso2.carbon.identity.application.common.IdentityApplicationManagementClientException;
 import org.wso2.carbon.identity.application.common.IdentityApplicationManagementException;
+import org.wso2.carbon.identity.application.common.model.AssociatedRolesConfig;
 import org.wso2.carbon.identity.application.common.model.Claim;
 import org.wso2.carbon.identity.application.common.model.ClaimConfig;
 import org.wso2.carbon.identity.application.common.model.ClaimMapping;
 import org.wso2.carbon.identity.application.common.model.LocalAndOutboundAuthenticationConfig;
+import org.wso2.carbon.identity.application.common.model.RoleV2;
 import org.wso2.carbon.identity.application.common.model.ServiceProvider;
 import org.wso2.carbon.identity.application.common.model.ServiceProviderProperty;
 import org.wso2.carbon.identity.application.common.model.script.AuthenticationScriptConfig;
@@ -46,6 +48,7 @@
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementClientException;
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementException;
 
+import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.List;
 import java.util.Optional;
@@ -210,6 +213,14 @@ public boolean doPostGetServiceProvider(ServiceProvider serviceProvider, String
                                 .setUseUserstoreDomainInRoles(mainApplication
                                         .getLocalAndOutBoundAuthenticationConfig().isUseUserstoreDomainInRoles());
                     }
+
+                    // Set application's associated roles.
+                    AssociatedRolesConfig associatedRolesConfigOfMainApp = mainApplication.getAssociatedRolesConfig();
+                    if (associatedRolesConfigOfMainApp != null) {
+                        AssociatedRolesConfig associatedRolesConfigForSharedApp =
+                                getAssociatedRolesConfigForSharedApp(associatedRolesConfigOfMainApp);
+                        serviceProvider.setAssociatedRolesConfig(associatedRolesConfigForSharedApp);
+                    }
                 }
             } catch (OrganizationManagementException e) {
                 throw new IdentityApplicationManagementException
@@ -219,6 +230,19 @@ public boolean doPostGetServiceProvider(ServiceProvider serviceProvider, String
         return super.doPostGetServiceProvider(serviceProvider, applicationName, tenantDomain);
     }
 
+    private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
+            AssociatedRolesConfig associatedRolesConfigOfMainApp) {
+
+        String allowedAudience = associatedRolesConfigOfMainApp.getAllowedAudience();
+        List<RoleV2> mainAppRoles = associatedRolesConfigOfMainApp.getRoles();
+        AssociatedRolesConfig associatedRolesConfigForSharedApp = new AssociatedRolesConfig();
+        associatedRolesConfigForSharedApp.setAllowedAudience(allowedAudience);
+        // TODO resolve to shared role id reference and re build.
+        List<RoleV2> associatedRolesOfSharedApp = mainAppRoles;
+        associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp);
+        return associatedRolesConfigForSharedApp;
+    }
+
     @Override
     public boolean doPreDeleteApplication(String applicationName, String tenantDomain, String userName)
             throws IdentityApplicationManagementException {

From bb7bd264729ef27441b45c85e23d6361240c32dd Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Tue, 17 Oct 2023 13:28:10 +0530
Subject: [PATCH 2/6] resolved associated role names in shared app

---
 .../pom.xml                                   |  7 ++-
 .../internal/OrgApplicationMgtDataHolder.java | 24 ++++++++++-
 .../OrgApplicationMgtServiceComponent.java    | 19 ++++++++
 .../FragmentApplicationMgtListener.java       | 43 ++++++++++++++++---
 pom.xml                                       |  6 ++-
 5 files changed, 90 insertions(+), 9 deletions(-)

diff --git a/components/org.wso2.carbon.identity.organization.management.application/pom.xml b/components/org.wso2.carbon.identity.organization.management.application/pom.xml
index 1a221c0a8..2387cd850 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/pom.xml
+++ b/components/org.wso2.carbon.identity.organization.management.application/pom.xml
@@ -86,7 +86,10 @@
             <groupId>org.wso2.carbon.identity.framework</groupId>
             <artifactId>org.wso2.carbon.identity.claim.metadata.mgt</artifactId>
         </dependency>
-
+        <dependency>
+            <groupId>org.wso2.carbon.identity.framework</groupId>
+            <artifactId>org.wso2.carbon.identity.role.v2.mgt.core</artifactId>
+        </dependency>
         <!--Test Dependencies-->
         <dependency>
             <groupId>org.testng</groupId>
@@ -181,6 +184,8 @@
                             org.wso2.carbon.identity.event.event; version="${carbon.identity.package.import.version.range}",
                             org.wso2.carbon.identity.event; version="${carbon.identity.package.import.version.range}",
                             org.wso2.carbon.identity.event.services; version="${carbon.identity.package.import.version.range}",
+                            org.wso2.carbon.identity.role.v2.mgt.core.*;
+                            version="${carbon.identity.package.import.version.range}",
                         </Import-Package>
                     </instructions>
                 </configuration>
diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
index d4f92bad4..938a7b185 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
@@ -26,6 +26,7 @@
 import org.wso2.carbon.identity.organization.management.application.listener.ApplicationSharingManagerListener;
 import org.wso2.carbon.identity.organization.management.service.OrganizationManager;
 import org.wso2.carbon.identity.organization.management.service.OrganizationUserResidentResolverService;
+import org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService;
 import org.wso2.carbon.idp.mgt.IdpManager;
 import org.wso2.carbon.user.core.service.RealmService;
 
@@ -46,8 +47,9 @@ public class OrgApplicationMgtDataHolder {
     private IdpManager idpManager;
     private ApplicationSharingManagerListener applicationSharingManagerListener;
     private IdentityEventService identityEventService;
-
     private ClaimMetadataManagementService claimMetadataManagementService;
+    private RoleManagementService roleManagementServiceV2;
+
     private OrgApplicationMgtDataHolder() {
 
     }
@@ -248,4 +250,24 @@ public void setIdentityEventService(IdentityEventService identityEventService) {
 
         this.identityEventService = identityEventService;
     }
+
+    /**
+     * Get {@link RoleManagementService}.
+     *
+     * @return RoleManagementService.
+     */
+    public RoleManagementService getRoleManagementServiceV2() {
+
+        return roleManagementServiceV2;
+    }
+
+    /**
+     * Set {@link RoleManagementService}.
+     *
+     * @param roleManagementServiceV2 Instance of {@link RoleManagementService}.
+     */
+    public void setRoleManagementServiceV2(RoleManagementService roleManagementServiceV2) {
+
+        this.roleManagementServiceV2 = roleManagementServiceV2;
+    }
 }
diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
index 18b43c22f..a39ef0b38 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
@@ -42,6 +42,7 @@
 import org.wso2.carbon.identity.organization.management.application.listener.OrganizationCreationHandler;
 import org.wso2.carbon.identity.organization.management.service.OrganizationManager;
 import org.wso2.carbon.identity.organization.management.service.OrganizationUserResidentResolverService;
+import org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService;
 import org.wso2.carbon.idp.mgt.IdpManager;
 import org.wso2.carbon.user.core.service.RealmService;
 
@@ -238,4 +239,22 @@ protected void unsetClaimMetaDataManagementService(ClaimMetadataManagementServic
         log.debug("Unset the claim metadata management service.");
         OrgApplicationMgtDataHolder.getInstance().setClaimMetadataManagementService(null);
     }
+
+    @Reference(
+            name = "org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService",
+            service = org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService.class,
+            cardinality = ReferenceCardinality.MANDATORY,
+            policy = ReferencePolicy.DYNAMIC,
+            unbind = "unsetRoleManagementServiceV2")
+    protected void setRoleManagementServiceV2(RoleManagementService roleManagementService) {
+
+        OrgApplicationMgtDataHolder.getInstance().setRoleManagementServiceV2(roleManagementService);
+        log.debug("RoleManagementServiceV2 set in OrgApplicationMgtServiceComponent bundle.");
+    }
+
+    protected void unsetRoleManagementServiceV2(RoleManagementService roleManagementService) {
+
+        OrgApplicationMgtDataHolder.getInstance().setRoleManagementServiceV2(null);
+        log.debug("RoleManagementServiceV2 unset in OrgApplicationMgtServiceComponent bundle.");
+    }
 }
diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
index 0758bc8e0..1cf35d9f0 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
@@ -47,11 +47,14 @@
 import org.wso2.carbon.identity.organization.management.service.OrganizationManager;
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementClientException;
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementException;
+import org.wso2.carbon.identity.role.v2.mgt.core.IdentityRoleManagementException;
+import org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService;
 
-import java.util.ArrayList;
 import java.util.Arrays;
 import java.util.List;
+import java.util.Map;
 import java.util.Optional;
+import java.util.stream.Collectors;
 
 import static java.lang.String.format;
 import static org.wso2.carbon.identity.organization.management.application.constant.OrgApplicationMgtConstants.DELETE_FRAGMENT_APPLICATION;
@@ -218,11 +221,11 @@ public boolean doPostGetServiceProvider(ServiceProvider serviceProvider, String
                     AssociatedRolesConfig associatedRolesConfigOfMainApp = mainApplication.getAssociatedRolesConfig();
                     if (associatedRolesConfigOfMainApp != null) {
                         AssociatedRolesConfig associatedRolesConfigForSharedApp =
-                                getAssociatedRolesConfigForSharedApp(associatedRolesConfigOfMainApp);
+                                getAssociatedRolesConfigForSharedApp(associatedRolesConfigOfMainApp, tenantDomain);
                         serviceProvider.setAssociatedRolesConfig(associatedRolesConfigForSharedApp);
                     }
                 }
-            } catch (OrganizationManagementException e) {
+            } catch (OrganizationManagementException | IdentityRoleManagementException e) {
                 throw new IdentityApplicationManagementException
                         ("Error while retrieving the fragment application details.", e);
             }
@@ -231,14 +234,37 @@ public boolean doPostGetServiceProvider(ServiceProvider serviceProvider, String
     }
 
     private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
-            AssociatedRolesConfig associatedRolesConfigOfMainApp) {
+            AssociatedRolesConfig associatedRolesConfigOfMainApp, String tenantDomainOfSharedApp)
+            throws IdentityRoleManagementException {
 
         String allowedAudience = associatedRolesConfigOfMainApp.getAllowedAudience();
         List<RoleV2> mainAppRoles = associatedRolesConfigOfMainApp.getRoles();
         AssociatedRolesConfig associatedRolesConfigForSharedApp = new AssociatedRolesConfig();
         associatedRolesConfigForSharedApp.setAllowedAudience(allowedAudience);
-        // TODO resolve to shared role id reference and re build.
-        List<RoleV2> associatedRolesOfSharedApp = mainAppRoles;
+        List<String> mainAppRoleIds = mainAppRoles.stream().map(RoleV2::getId).collect(Collectors.toList());
+        Map<String, String> mainRoleToSharedRoleMappingsBySubOrg =
+                getRoleManagementServiceV2().getMainRoleToSharedRoleMappingsBySubOrg(mainAppRoleIds,
+                        tenantDomainOfSharedApp);
+
+        List<RoleV2> associatedRolesOfSharedApp = mainRoleToSharedRoleMappingsBySubOrg.entrySet().stream()
+                .map(entry -> {
+                    String sharedRoleId = entry.getValue();
+                    String mainRoleId = entry.getKey();
+
+                    // Find the main role by ID and retrieve its name.
+                    String mainRoleName = mainAppRoles.stream()
+                            .filter(role -> role.getId().equals(mainRoleId))
+                            .findFirst()
+                            .map(RoleV2::getName)
+                            .orElse(null);
+
+                    RoleV2 sharedRole = new RoleV2();
+                    sharedRole.setId(sharedRoleId);
+                    sharedRole.setName(mainRoleName);
+                    return sharedRole;
+                })
+                .collect(Collectors.toList());
+
         associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp);
         return associatedRolesConfigForSharedApp;
     }
@@ -329,6 +355,11 @@ private OrganizationManager getOrganizationManager() {
         return OrgApplicationMgtDataHolder.getInstance().getOrganizationManager();
     }
 
+    private RoleManagementService getRoleManagementServiceV2() {
+
+        return OrgApplicationMgtDataHolder.getInstance().getRoleManagementServiceV2();
+    }
+
     /**
      * Add application roles claim mapping to the filtered claim mappings.
      *
diff --git a/pom.xml b/pom.xml
index b145e912c..f2760ad67 100644
--- a/pom.xml
+++ b/pom.xml
@@ -240,7 +240,11 @@
                 <artifactId>org.wso2.carbon.identity.governance</artifactId>
                 <version>${org.wso2.carbon.identity.governance.version}</version>
             </dependency>
-
+            <dependency>
+                <groupId>org.wso2.carbon.identity.framework</groupId>
+                <artifactId>org.wso2.carbon.identity.role.v2.mgt.core</artifactId>
+                <version>${carbon.identity.framework.version}</version>
+            </dependency>
             <dependency>
                 <groupId>com.google.code.findbugs</groupId>
                 <artifactId>annotations</artifactId>

From 765da8f4d1c7d18a068f1b270f2a5ff2126b849f Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Tue, 17 Oct 2023 14:06:01 +0530
Subject: [PATCH 3/6] fix license year range in edited files

---
 .../pom.xml                                    | 18 ++++++++++--------
 .../internal/OrgApplicationMgtDataHolder.java  |  4 ++--
 .../OrgApplicationMgtServiceComponent.java     |  2 +-
 3 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/components/org.wso2.carbon.identity.organization.management.application/pom.xml b/components/org.wso2.carbon.identity.organization.management.application/pom.xml
index 2387cd850..28bab65aa 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/pom.xml
+++ b/components/org.wso2.carbon.identity.organization.management.application/pom.xml
@@ -1,18 +1,20 @@
 <?xml version="1.0" encoding="UTF-8"?>
 <!--
-  ~ Copyright (c) 2022, WSO2 LLC. (http://www.wso2.com).
+  ~ Copyright (c) 2022-2023, WSO2 LLC. (http://www.wso2.com).
   ~
-  ~ Licensed under the Apache License, Version 2.0 (the "License");
-  ~ you may not use this file except in compliance with the License.
+  ~ WSO2 LLC. licenses this file to you under the Apache License,
+  ~ Version 2.0 (the "License"); you may not use this file except
+  ~ in compliance with the License.
   ~ You may obtain a copy of the License at
   ~
   ~ http://www.apache.org/licenses/LICENSE-2.0
   ~
-  ~ Unless required by applicable law or agreed to in writing, software
-  ~ distributed under the License is distributed on an "AS IS" BASIS,
-  ~ WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  ~ See the License for the specific language governing permissions and
-  ~ limitations under the License.
+  ~ Unless required by applicable law or agreed to in writing,
+  ~ software distributed under the License is distributed on an
+  ~ "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+  ~ KIND, either express or implied.  See the License for the
+  ~ specific language governing permissions and limitations
+  ~ under the License.
   -->
 
 <project xmlns="http://maven.apache.org/POM/4.0.0" xmlns:xsi="http://www.w3.org/2001/XMLSchema-instance" xsi:schemaLocation="http://maven.apache.org/POM/4.0.0 http://maven.apache.org/xsd/maven-4.0.0.xsd">
diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
index 938a7b185..9e7c3d130 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtDataHolder.java
@@ -1,7 +1,7 @@
 /*
- * Copyright (c) 2022, WSO2 Inc. (http://www.wso2.com).
+ * Copyright (c) 2022-2023, WSO2 LLC. (http://www.wso2.com).
  *
- * WSO2 Inc. licenses this file to you under the Apache License,
+ * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
  * in compliance with the License.
  * You may obtain a copy of the License at
diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
index a39ef0b38..9799f3451 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/internal/OrgApplicationMgtServiceComponent.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2022, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2022-2023, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except

From 6195bac9757f1279ff72defb05ed14c5c76359d7 Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Mon, 23 Oct 2023 10:49:05 +0530
Subject: [PATCH 4/6] fix imports

---
 .../listener/FragmentApplicationMgtListener.java     | 12 +++++++-----
 pom.xml                                              |  2 +-
 2 files changed, 8 insertions(+), 6 deletions(-)

diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
index 1cf35d9f0..722ba2ac6 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
@@ -47,8 +47,8 @@
 import org.wso2.carbon.identity.organization.management.service.OrganizationManager;
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementClientException;
 import org.wso2.carbon.identity.organization.management.service.exception.OrganizationManagementException;
-import org.wso2.carbon.identity.role.v2.mgt.core.IdentityRoleManagementException;
 import org.wso2.carbon.identity.role.v2.mgt.core.RoleManagementService;
+import org.wso2.carbon.identity.role.v2.mgt.core.exception.IdentityRoleManagementException;
 
 import java.util.Arrays;
 import java.util.List;
@@ -238,10 +238,12 @@ private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
             throws IdentityRoleManagementException {
 
         String allowedAudience = associatedRolesConfigOfMainApp.getAllowedAudience();
-        List<RoleV2> mainAppRoles = associatedRolesConfigOfMainApp.getRoles();
+        RoleV2[] mainAppRoles = associatedRolesConfigOfMainApp.getRoles();
+        List<RoleV2> mainappRoleList = Arrays.asList(mainAppRoles);
         AssociatedRolesConfig associatedRolesConfigForSharedApp = new AssociatedRolesConfig();
         associatedRolesConfigForSharedApp.setAllowedAudience(allowedAudience);
-        List<String> mainAppRoleIds = mainAppRoles.stream().map(RoleV2::getId).collect(Collectors.toList());
+        List<String> mainAppRoleIds =
+                mainappRoleList.stream().map(RoleV2::getId).collect(Collectors.toList());
         Map<String, String> mainRoleToSharedRoleMappingsBySubOrg =
                 getRoleManagementServiceV2().getMainRoleToSharedRoleMappingsBySubOrg(mainAppRoleIds,
                         tenantDomainOfSharedApp);
@@ -252,7 +254,7 @@ private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
                     String mainRoleId = entry.getKey();
 
                     // Find the main role by ID and retrieve its name.
-                    String mainRoleName = mainAppRoles.stream()
+                    String mainRoleName = mainappRoleList.stream()
                             .filter(role -> role.getId().equals(mainRoleId))
                             .findFirst()
                             .map(RoleV2::getName)
@@ -265,7 +267,7 @@ private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
                 })
                 .collect(Collectors.toList());
 
-        associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp);
+        associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp.toArray(new RoleV2[0]));
         return associatedRolesConfigForSharedApp;
     }
 
diff --git a/pom.xml b/pom.xml
index f2760ad67..4875f1e3e 100644
--- a/pom.xml
+++ b/pom.xml
@@ -503,7 +503,7 @@
         <carbon.multitenancy.package.import.version.range>[4.7.0,5.0.0)
         </carbon.multitenancy.package.import.version.range>
 
-        <carbon.identity.framework.version>5.25.400</carbon.identity.framework.version>
+        <carbon.identity.framework.version>5.25.424-SNAPSHOT</carbon.identity.framework.version>
         <carbon.identity.package.import.version.range>[5.20.0, 7.0.0)
         </carbon.identity.package.import.version.range>
 

From 19c18c00a6278ffa04771c390c7731bc7c878e89 Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Mon, 23 Oct 2023 11:13:11 +0530
Subject: [PATCH 5/6] resolve possible NPE

---
 .../listener/FragmentApplicationMgtListener.java            | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
index 722ba2ac6..58395f6c7 100644
--- a/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
+++ b/components/org.wso2.carbon.identity.organization.management.application/src/main/java/org/wso2/carbon/identity/organization/management/application/listener/FragmentApplicationMgtListener.java
@@ -248,7 +248,7 @@ private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
                 getRoleManagementServiceV2().getMainRoleToSharedRoleMappingsBySubOrg(mainAppRoleIds,
                         tenantDomainOfSharedApp);
 
-        List<RoleV2> associatedRolesOfSharedApp = mainRoleToSharedRoleMappingsBySubOrg.entrySet().stream()
+        RoleV2[] associatedRolesOfSharedApp = mainRoleToSharedRoleMappingsBySubOrg.entrySet().stream()
                 .map(entry -> {
                     String sharedRoleId = entry.getValue();
                     String mainRoleId = entry.getKey();
@@ -265,9 +265,9 @@ private AssociatedRolesConfig getAssociatedRolesConfigForSharedApp(
                     sharedRole.setName(mainRoleName);
                     return sharedRole;
                 })
-                .collect(Collectors.toList());
+                .toArray(RoleV2[]::new);
 
-        associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp.toArray(new RoleV2[0]));
+        associatedRolesConfigForSharedApp.setRoles(associatedRolesOfSharedApp);
         return associatedRolesConfigForSharedApp;
     }
 

From f9a0b1bd487bff065f753e4dbbc1bbc0b5286e39 Mon Sep 17 00:00:00 2001
From: AnuradhaSK <anuradha199528@gmail.com>
Date: Mon, 23 Oct 2023 15:01:13 +0530
Subject: [PATCH 6/6] bump framework

---
 pom.xml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pom.xml b/pom.xml
index 4875f1e3e..8d0fb2bb9 100644
--- a/pom.xml
+++ b/pom.xml
@@ -503,7 +503,7 @@
         <carbon.multitenancy.package.import.version.range>[4.7.0,5.0.0)
         </carbon.multitenancy.package.import.version.range>
 
-        <carbon.identity.framework.version>5.25.424-SNAPSHOT</carbon.identity.framework.version>
+        <carbon.identity.framework.version>5.25.426</carbon.identity.framework.version>
         <carbon.identity.package.import.version.range>[5.20.0, 7.0.0)
         </carbon.identity.package.import.version.range>