diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManager.java b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManager.java
deleted file mode 100644
index d4c06c6c8c28..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManager.java
+++ /dev/null
@@ -1,265 +0,0 @@
-/*
- * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
- *
- * WSO2 LLC. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied.  See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
-package org.wso2.carbon.ai.service.mgt.token;
-
-import com.google.gson.Gson;
-import com.google.gson.GsonBuilder;
-import com.google.gson.JsonSyntaxException;
-import org.apache.commons.lang.StringUtils;
-import org.apache.commons.logging.Log;
-import org.apache.commons.logging.LogFactory;
-import org.apache.http.HttpResponse;
-import org.apache.http.HttpStatus;
-import org.apache.http.client.methods.HttpPost;
-import org.apache.http.concurrent.FutureCallback;
-import org.apache.http.entity.StringEntity;
-import org.apache.http.impl.nio.client.CloseableHttpAsyncClient;
-import org.apache.http.impl.nio.client.HttpAsyncClients;
-import org.apache.http.message.BasicHeader;
-import org.apache.http.protocol.HTTP;
-import org.apache.http.util.EntityUtils;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
-import org.wso2.carbon.identity.core.util.IdentityUtil;
-
-import java.io.IOException;
-import java.io.UnsupportedEncodingException;
-import java.nio.charset.StandardCharsets;
-import java.util.Base64;
-import java.util.Map;
-import java.util.UUID;
-import java.util.concurrent.CountDownLatch;
-import java.util.concurrent.TimeUnit;
-
-import static org.apache.axis2.transport.http.HTTPConstants.HEADER_CONTENT_TYPE;
-import static org.apache.http.HttpHeaders.AUTHORIZATION;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ACCESS_TOKEN_KEY;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.AI_SERVICE_KEY_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.AI_TOKEN_ENDPOINT_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.AI_TOKEN_SERVICE_TIMEOUT_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.CONTENT_TYPE_FORM_URLENCODED;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ErrorMessages.MAXIMUM_RETRIES_EXCEEDED;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.HTTP_BASIC;
-import static org.wso2.carbon.identity.core.util.IdentityTenantUtil.getTenantDomainFromContext;
-
-/**
- * The purpose of this class is to retrieve an active token to access the AI service.
- */
-public class AIAccessTokenManager {
-
-    private static volatile AIAccessTokenManager instance;  // Volatile for thread safety.
-    private static final Object lock = new Object();  // Lock for synchronization.
-
-    private static final Log LOG = LogFactory.getLog(AIAccessTokenManager.class);
-
-    private static final String AI_KEY = IdentityUtil.getProperty(AI_SERVICE_KEY_PROPERTY_NAME);
-    private static final String AI_TOKEN_ENDPOINT = IdentityUtil.getProperty(AI_TOKEN_ENDPOINT_PROPERTY_NAME);
-
-    private AccessTokenRequestHelper accessTokenRequestHelper;
-
-    private String accessToken;
-    private final String clientId;
-
-    private AIAccessTokenManager() {
-
-        byte[] decodedBytes = Base64.getDecoder().decode(AI_KEY);
-        String decodedString = new String(decodedBytes, StandardCharsets.UTF_8);
-        String[] parts = decodedString.split(":");
-        if (parts.length == 2) {
-            this.clientId = parts[0]; // Extract clientId.
-        } else {
-            throw new IllegalArgumentException("Invalid AI service key.");
-        }
-    }
-
-    /**
-     * Get the singleton instance of the AIAccessTokenManager.
-     *
-     * @return The singleton instance.
-     */
-    public static AIAccessTokenManager getInstance() {
-
-        if (instance == null) {
-            synchronized (lock) {
-                if (instance == null) {
-                    instance = new AIAccessTokenManager();
-                }
-            }
-        }
-        return instance;
-    }
-
-    /**
-     * Set the access token request helper.
-     *
-     * @param helper The access token request helper.
-     */
-    protected void setAccessTokenRequestHelper(AccessTokenRequestHelper helper) {
-
-        this.accessTokenRequestHelper = helper;
-    }
-
-    /**
-     * Get the access token.
-     *
-     * @param renewAccessToken Whether to renew the access token.
-     * @return The access token.
-     * @throws AIServerException If an error occurs while obtaining the access token.
-     */
-    public String getAccessToken(boolean renewAccessToken) throws AIServerException {
-
-        if (StringUtils.isEmpty(accessToken) || renewAccessToken) {
-            synchronized (AIAccessTokenManager.class) {
-                if (StringUtils.isEmpty(accessToken) || renewAccessToken) {
-                    this.accessToken = accessTokenRequestHelper != null ?
-                            accessTokenRequestHelper.requestAccessToken() : createDefaultHelper().requestAccessToken();
-                }
-            }
-        }
-        return this.accessToken;
-    }
-
-    private AccessTokenRequestHelper createDefaultHelper() {
-
-        return new AccessTokenRequestHelper(AI_KEY, AI_TOKEN_ENDPOINT,
-                // Here we keep the default HTTP client to send the token request.
-                // We open and close it for each request.
-                HttpAsyncClients.createDefault());
-    }
-
-    /**
-     * Get the client ID.
-     *
-     * @return The client ID.
-     */
-    public String getClientId() {
-
-        return this.clientId;
-    }
-
-    /**
-     * Helper class to request access token from the AI services.
-     */
-    protected static class AccessTokenRequestHelper {
-
-        private final CloseableHttpAsyncClient client;
-        private final Gson gson;
-        private final String key;
-        private final String aiServiceTokenEndpoint;
-        private static final int MAX_RETRIES = IdentityUtil.getProperty(
-                AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME) != null ?
-                Integer.parseInt(IdentityUtil.getProperty(AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME)) : 3;
-        private static final long TIMEOUT = IdentityUtil.getProperty(AI_TOKEN_SERVICE_TIMEOUT_PROPERTY_NAME) != null ?
-                Long.parseLong(IdentityUtil.getProperty(AI_TOKEN_SERVICE_TIMEOUT_PROPERTY_NAME)) : 3000;
-
-        AccessTokenRequestHelper(String key, String tokenEndpoint, CloseableHttpAsyncClient client) {
-
-            this.client = client;
-            this.gson = new GsonBuilder().create();
-            this.key = key;
-            this.aiServiceTokenEndpoint = tokenEndpoint;
-        }
-
-        /**
-         * Request access token to access the AI services.
-         *
-         * @return the JWT access token.
-         * @throws AIServerException If an error occurs while requesting the access token.
-         */
-        public String requestAccessToken() throws AIServerException {
-
-            String tenantDomain = getTenantDomainFromContext();
-            LOG.info("Initiating access token request for AI services from tenant: " + tenantDomain);
-            try {
-                client.start();
-                for (int attempt = 0; attempt < MAX_RETRIES; attempt++) {
-                    HttpPost post = new HttpPost(aiServiceTokenEndpoint);
-                    post.setHeader(AUTHORIZATION, HTTP_BASIC + " " + key);
-                    post.setHeader(HEADER_CONTENT_TYPE, CONTENT_TYPE_FORM_URLENCODED);
-
-                    StringEntity entity = new StringEntity("grant_type=client_credentials&tokenBindingId=" +
-                            UUID.randomUUID());
-                    entity.setContentType(new BasicHeader(HTTP.CONTENT_TYPE, CONTENT_TYPE_FORM_URLENCODED));
-                    post.setEntity(entity);
-
-                    CountDownLatch latch = new CountDownLatch(1);
-                    final String[] accessToken = new String[1];
-                    client.execute(post, new FutureCallback<HttpResponse>() {
-                        @Override
-                        public void completed(HttpResponse response) {
-
-                            try {
-                                if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
-                                    String responseBody = EntityUtils.toString(response.getEntity());
-                                    Map<String, Object> responseMap = gson.fromJson(responseBody, Map.class);
-                                    accessToken[0] = (String) responseMap.get(ACCESS_TOKEN_KEY);
-                                } else {
-                                    LOG.error("Token request failed with status code: " +
-                                            response.getStatusLine().getStatusCode());
-                                }
-                            } catch (IOException | JsonSyntaxException e) {
-                                LOG.warn("Error parsing token response: " + e.getMessage(), e);
-                            } finally {
-                                latch.countDown();
-                            }
-                        }
-
-                        @Override
-                        public void failed(Exception e) {
-
-                            LOG.warn("Token request failed: " + e.getMessage(), e);
-                            latch.countDown();
-                        }
-
-                        @Override
-                        public void cancelled() {
-
-                            LOG.warn("Token request was cancelled");
-                            latch.countDown();
-                        }
-                    });
-
-                    if (latch.await(TIMEOUT, TimeUnit.MILLISECONDS)) {
-                        if (accessToken[0] != null) {
-                            return accessToken[0];
-                        }
-                    } else {
-                        LOG.warn("Token request timed out");
-                    }
-                    // Wait before retrying.
-                    TimeUnit.MILLISECONDS.sleep(500);
-                }
-            } catch (InterruptedException e) {
-                Thread.currentThread().interrupt();
-                throw new AIServerException("Token request interrupted: " + e.getMessage(), e);
-            } catch (UnsupportedEncodingException e) {
-                throw new AIServerException("Error creating token request: " + e.getMessage(), e);
-            } finally {
-                try {
-                    client.close();
-                } catch (IOException e) {
-                    LOG.error("Failed to close HTTP client: " + e.getMessage(), e);
-                }
-            }
-            // If it reaches this point.
-            throw new AIServerException("Failed to obtain access token after " + MAX_RETRIES +
-                    " attempts.", MAXIMUM_RETRIES_EXCEEDED.getCode());
-        }
-    }
-}
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtil.java b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtil.java
deleted file mode 100644
index 297a0837085a..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtil.java
+++ /dev/null
@@ -1,284 +0,0 @@
-/*
- * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
- *
- * WSO2 LLC. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied.  See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
-package org.wso2.carbon.ai.service.mgt.util;
-
-import com.fasterxml.jackson.databind.ObjectMapper;
-import org.apache.commons.httpclient.HttpStatus;
-import org.apache.commons.logging.Log;
-import org.apache.commons.logging.LogFactory;
-import org.apache.http.HttpResponse;
-import org.apache.http.client.methods.HttpGet;
-import org.apache.http.client.methods.HttpPost;
-import org.apache.http.client.methods.HttpUriRequest;
-import org.apache.http.concurrent.FutureCallback;
-import org.apache.http.entity.StringEntity;
-import org.apache.http.impl.nio.client.CloseableHttpAsyncClient;
-import org.apache.http.impl.nio.client.HttpAsyncClients;
-import org.apache.http.impl.nio.conn.PoolingNHttpClientConnectionManager;
-import org.apache.http.impl.nio.reactor.DefaultConnectingIOReactor;
-import org.apache.http.impl.nio.reactor.IOReactorConfig;
-import org.apache.http.nio.reactor.ConnectingIOReactor;
-import org.apache.http.util.EntityUtils;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIClientException;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
-import org.wso2.carbon.ai.service.mgt.token.AIAccessTokenManager;
-import org.wso2.carbon.context.PrivilegedCarbonContext;
-import org.wso2.carbon.identity.core.util.IdentityUtil;
-
-import java.io.IOException;
-import java.io.Serializable;
-import java.util.Map;
-import java.util.concurrent.ExecutionException;
-import java.util.concurrent.Future;
-
-import static org.apache.axis2.transport.http.HTTPConstants.HEADER_CONTENT_TYPE;
-import static org.apache.http.HttpHeaders.AUTHORIZATION;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.CONTENT_TYPE_JSON;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ErrorMessages.CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ErrorMessages.ERROR_RETRIEVING_ACCESS_TOKEN;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ErrorMessages.SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.ErrorMessages.UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.HTTP_BEARER;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.TENANT_CONTEXT_PREFIX;
-
-/**
- * Utility class for AI Services to send HTTP requests.
- */
-public class AIHttpClientUtil {
-
-    private static final Log LOG = LogFactory.getLog(AIHttpClientUtil.class);
-    private static final ObjectMapper objectMapper = new ObjectMapper();
-
-    private static final int HTTP_CONNECTION_POOL_SIZE = IdentityUtil.getProperty(
-            HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME) != null ? Integer.parseInt(IdentityUtil.getProperty(
-                    HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME)) : 20;
-    private static final int HTTP_CONNECTION_TIMEOUT = IdentityUtil.getProperty(
-            HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME) != null ? Integer.parseInt(IdentityUtil.getProperty(
-            HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME)) : 60000; // Making the default timeout 60 seconds.
-
-
-    // Singleton instance of CloseableHttpAsyncClient with connection pooling.
-    private static final CloseableHttpAsyncClient httpClient;
-
-    static {
-        // Configure the IO reactor.
-        IOReactorConfig ioReactorConfig = IOReactorConfig.custom()
-                .setIoThreadCount(Runtime.getRuntime().availableProcessors())
-                .setConnectTimeout(HTTP_CONNECTION_TIMEOUT)
-                .build();
-        ConnectingIOReactor ioReactor;
-        try {
-            // Create the IO reactor.
-            ioReactor = new DefaultConnectingIOReactor(ioReactorConfig);
-        } catch (IOException e) {
-            throw new RuntimeException("Error initializing IO Reactor", e);
-        }
-        // Create a connection manager with the IO reactor.
-        PoolingNHttpClientConnectionManager connectionManager = new PoolingNHttpClientConnectionManager(ioReactor);
-        // Maximum total connections.
-        connectionManager.setMaxTotal(HTTP_CONNECTION_POOL_SIZE);
-        // Initialize the HttpClient with the connection manager.
-        httpClient = HttpAsyncClients.custom()
-                .setConnectionManager(connectionManager)
-                .build();
-        // Start the HttpClient.
-        httpClient.start();
-        // Add a shutdown hook to close the client when the application stops.
-        Runtime.getRuntime().addShutdownHook(new Thread(() -> {
-            try {
-                httpClient.close();
-            } catch (IOException e) {
-                LOG.error("Error while shutting down HTTP client: " + e.getMessage());
-            }
-        }));
-    }
-
-    /**
-     * Execute a request to the AI service.
-     *
-     * @param path              The endpoint to which the request should be sent.
-     * @param requestType       The type of the request (GET, POST).
-     * @param requestBody       The request body(Only for POST requests).
-     * @param aiServiceEndpoint The endpoint of the AI service.
-     * @return The response from the AI service as a map.
-     * @throws AIServerException If a server error occurred while accessing the AI service.
-     * @throws AIClientException If a client error occurred while accessing the AI service.
-     */
-    public static Map<String, Object> executeRequest(String aiServiceEndpoint, String path,
-                                                     Class<? extends HttpUriRequest> requestType, Object requestBody)
-            throws AIServerException, AIClientException {
-
-        String tenantDomain = PrivilegedCarbonContext.getThreadLocalCarbonContext().getTenantDomain();
-
-        try {
-            String accessToken = AIAccessTokenManager.getInstance().getAccessToken(false);
-            String orgName = AIAccessTokenManager.getInstance().getClientId();
-
-            HttpUriRequest request = createRequest(aiServiceEndpoint + TENANT_CONTEXT_PREFIX + orgName + path,
-                    requestType, accessToken, requestBody);
-            HttpResponseWrapper aiServiceResponse = executeRequestWithRetry(request);
-
-            int statusCode = aiServiceResponse.getStatusCode();
-            String responseBody = aiServiceResponse.getResponseBody();
-
-            if (statusCode >= 400) {
-                handleErrorResponse(statusCode, responseBody, tenantDomain);
-            }
-            return convertJsonStringToMap(responseBody);
-        } catch (IOException | ExecutionException e) {
-            throw new AIServerException("An error occurred while connecting to the AI Service.",
-                    SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode(), e);
-        } catch (InterruptedException e) {
-            // Restore the interrupted status of the thread to ensure it is not swallowed
-            // and can be handled appropriately by other parts of the program. This is
-            // important for proper thread coordination and graceful shutdown in a
-            // multithreaded environment.
-            Thread.currentThread().interrupt();
-
-            // Wrap and rethrow the exception as a custom AIServerException to provide
-            // a meaningful error message and maintain the original exception for debugging.
-            throw new AIServerException("An error occurred while connecting to the AI Service.",
-                    SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode(), e);
-        }
-    }
-
-    private static HttpUriRequest createRequest(String url, Class<? extends HttpUriRequest> requestType,
-                                                String accessToken, Object requestBody) throws IOException {
-
-        HttpUriRequest request;
-        if (requestType == HttpPost.class) {
-            HttpPost post = new HttpPost(url);
-            if (requestBody != null) {
-                post.setEntity(new StringEntity(objectMapper.writeValueAsString(requestBody)));
-            }
-            request = post;
-        } else if (requestType == HttpGet.class) {
-            request = new HttpGet(url);
-        } else {
-            throw new IllegalArgumentException("Unsupported request type: " + requestType.getName());
-        }
-
-        request.setHeader(AUTHORIZATION, HTTP_BEARER + " " + accessToken);
-        request.setHeader(HEADER_CONTENT_TYPE, CONTENT_TYPE_JSON);
-        return request;
-    }
-
-    private static HttpResponseWrapper executeRequestWithRetry(HttpUriRequest request)
-            throws InterruptedException, ExecutionException, IOException, AIServerException {
-
-        HttpResponseWrapper response = executeHttpRequest(request);
-
-        if (response.getStatusCode() == HttpStatus.SC_UNAUTHORIZED) {
-            String newAccessToken = AIAccessTokenManager.getInstance().getAccessToken(true);
-            if (newAccessToken == null) {
-                throw new AIServerException("Failed to renew access token.", ERROR_RETRIEVING_ACCESS_TOKEN.getCode());
-            }
-            request.setHeader(AUTHORIZATION, HTTP_BEARER + " " + newAccessToken);
-            response = executeHttpRequest(request);
-        }
-        return response;
-    }
-
-    private static void handleErrorResponse(int statusCode, String responseBody, String tenantDomain)
-            throws AIServerException, AIClientException {
-
-        if (statusCode == HttpStatus.SC_UNAUTHORIZED) {
-            throw new AIServerException("Failed to access AI service with renewed access token for " +
-                    "the tenant domain: " + tenantDomain,
-                    UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN.getCode());
-        } else if (statusCode >= 400 && statusCode < 500) {
-            throw new AIClientException(new HttpResponseWrapper(statusCode, responseBody),
-                    "Client error occurred from tenant: " + tenantDomain + " with status code: '" + statusCode
-                            + "' while accessing AI service.", CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode());
-        } else if (statusCode >= 500) {
-            throw new AIServerException(new HttpResponseWrapper(statusCode, responseBody),
-                    "Server error occurred from tenant: " + tenantDomain + " with status code: '" + statusCode
-                            + "' while accessing AI service.", SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode());
-        }
-    }
-
-    private static Map<String, Object> convertJsonStringToMap(String jsonString) throws AIServerException {
-
-        try {
-            return objectMapper.readValue(jsonString, Map.class);
-        } catch (IOException e) {
-            throw new AIServerException("Error occurred while parsing the JSON response from the AI service.", e);
-        }
-    }
-
-    protected static HttpResponseWrapper executeHttpRequest(HttpUriRequest httpRequest)
-            throws InterruptedException, ExecutionException, IOException, AIServerException {
-
-        Future<HttpResponse> apiResponse = AIHttpClientUtil.httpClient.execute(httpRequest,
-                new FutureCallback<HttpResponse>() {
-            @Override
-            public void completed(HttpResponse response) {
-
-                LOG.info("API request completed with status code: " + response.getStatusLine().getStatusCode());
-            }
-
-            @Override
-            public void failed(Exception e) {
-
-                LOG.error("API request failed: " + e.getMessage(), e);
-            }
-
-            @Override
-            public void cancelled() {
-
-                LOG.warn("API request was cancelled");
-            }
-        });
-        if (apiResponse == null) {
-            throw new AIServerException("Unable to get the response from the AI service.",
-                    SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode());
-        }
-        HttpResponse httpResponse = apiResponse.get();
-        int status = httpResponse.getStatusLine().getStatusCode();
-        String response = EntityUtils.toString(httpResponse.getEntity());
-        return new HttpResponseWrapper(status, response);
-    }
-
-    /**
-     * Wrapper class for HTTP response.
-     */
-    public static class HttpResponseWrapper implements Serializable {
-
-        private final int statusCode;
-        private final String responseBody;
-
-        public HttpResponseWrapper(int statusCode, String responseBody) {
-
-            this.statusCode = statusCode;
-            this.responseBody = responseBody;
-        }
-
-        public int getStatusCode() {
-
-            return statusCode;
-        }
-
-        public String getResponseBody() {
-
-            return responseBody;
-        }
-    }
-}
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManagerTest.java b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManagerTest.java
deleted file mode 100644
index 1dfbb96d68f5..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/token/AIAccessTokenManagerTest.java
+++ /dev/null
@@ -1,275 +0,0 @@
-/*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
- *
- * WSO2 LLC. licenses this file to you under the Apache License,
- * Version 2.0 (the "License"); you may not use this file except
- * in compliance with the License.
- * You may obtain a copy of the License at
- *
- * http://www.apache.org/licenses/LICENSE-2.0
- *
- * Unless required by applicable law or agreed to in writing,
- * software distributed under the License is distributed on an
- * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
- * KIND, either express or implied.  See the License for the
- * specific language governing permissions and limitations
- * under the License.
- */
-
-package org.wso2.carbon.ai.service.mgt.token;
-
-import org.apache.http.HttpResponse;
-import org.apache.http.HttpStatus;
-import org.apache.http.StatusLine;
-import org.apache.http.client.methods.HttpPost;
-import org.apache.http.concurrent.FutureCallback;
-import org.apache.http.entity.StringEntity;
-import org.apache.http.impl.nio.client.CloseableHttpAsyncClient;
-import org.mockito.ArgumentCaptor;
-import org.mockito.Mock;
-import org.mockito.MockitoAnnotations;
-import org.testng.Assert;
-import org.testng.annotations.AfterMethod;
-import org.testng.annotations.BeforeMethod;
-import org.testng.annotations.Test;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
-
-import java.io.IOException;
-import java.lang.reflect.Field;
-import java.lang.reflect.Modifier;
-import java.util.Base64;
-import java.util.concurrent.Future;
-
-import static org.junit.Assert.assertEquals;
-import static org.mockito.ArgumentMatchers.any;
-import static org.mockito.Mockito.doAnswer;
-import static org.mockito.Mockito.doNothing;
-import static org.mockito.Mockito.doThrow;
-import static org.mockito.Mockito.mock;
-import static org.mockito.Mockito.times;
-import static org.mockito.Mockito.verify;
-import static org.mockito.Mockito.when;
-
-/**
- * Test class for AIAccessTokenManager.
- */
-public class AIAccessTokenManagerTest {
-
-    @Mock
-    private CloseableHttpAsyncClient mockHttpClient;
-
-    @Mock
-    private Future<HttpResponse> mockFuture;
-
-    @Mock
-    private HttpResponse mockResponse;
-
-    @Mock
-    private StatusLine mockStatusLine;
-
-    private AIAccessTokenManager tokenManager;
-    private TestAccessTokenRequestHelper testHelper;
-    private AIAccessTokenManager.AccessTokenRequestHelper helper;
-
-    @BeforeMethod
-    public void setUp() throws NoSuchFieldException, IllegalAccessException {
-
-        MockitoAnnotations.openMocks(this);
-        testHelper = new TestAccessTokenRequestHelper(mockHttpClient);
-        String key = Base64.getEncoder().encodeToString("testClientId:testClientSecret".getBytes());
-        assignAIKey(key);
-        tokenManager = AIAccessTokenManager.getInstance();
-        tokenManager.setAccessTokenRequestHelper(testHelper);
-
-        helper = new AIAccessTokenManager.AccessTokenRequestHelper(key, "endpoint", mockHttpClient);
-    }
-
-    @AfterMethod
-    public void tearDown() {
-
-        // Reset other mocks and state.
-        tokenManager = null;
-        testHelper = null;
-    }
-
-    @Test
-    public void testGetInstance() {
-
-        AIAccessTokenManager instance1 = AIAccessTokenManager.getInstance();
-        AIAccessTokenManager instance2 = AIAccessTokenManager.getInstance();
-        Assert.assertSame(instance1, instance2, "getInstance should always return the same instance");
-    }
-
-    @Test
-    public void testGetAccessToken_Success() throws Exception {
-
-        String expectedToken = "eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJjbGllbnRfaWQiOiJ0ZXN0Q2xpZW50SWQifQ.signature";
-        setupMockHttpResponse(HttpStatus.SC_OK, "{\"access_token\":\"" + expectedToken + "\"}");
-
-        String token = tokenManager.getAccessToken(true);
-        Assert.assertEquals(token, expectedToken);
-        Assert.assertEquals(tokenManager.getClientId(), "testClientId");
-    }
-
-    @Test
-    public void testGetAccessToken_Renewal() throws Exception {
-
-        setupMockHttpResponse(HttpStatus.SC_OK, "{\"access_token\":\"oldToken\"}");
-        String token1 = tokenManager.getAccessToken(false);
-
-        setupMockHttpResponse(HttpStatus.SC_OK, "{\"access_token\":\"newToken\"}");
-        String token2 = tokenManager.getAccessToken(true);
-
-        Assert.assertNotEquals(token1, token2, "Tokens should be different after renewal");
-    }
-
-    @Test(expectedExceptions = AIServerException.class)
-    public void testGetAccessToken_HttpError() throws Exception {
-
-        setupMockHttpResponse(HttpStatus.SC_INTERNAL_SERVER_ERROR, "Internal Server Error");
-        tokenManager.getAccessToken(false);
-    }
-
-    @Test(expectedExceptions = AIServerException.class)
-    public void testGetAccessToken_Timeout() throws Exception {
-
-        when(mockHttpClient.execute(any(HttpPost.class), any(FutureCallback.class))).thenReturn(mockFuture);
-        when(mockFuture.get()).thenThrow(new InterruptedException("Timeout"));
-        tokenManager.getAccessToken(true);
-    }
-
-    @Test(expectedExceptions = AIServerException.class)
-    public void testGetAccessToken_MaxRetriesExceeded() throws Exception {
-        setupMockHttpResponse(HttpStatus.SC_BAD_REQUEST, "Bad Request");
-        tokenManager.getAccessToken(false);
-    }
-
-    @Test(expectedExceptions = AIServerException.class)
-    public void testGetAccessToken_InterruptedDuringRequest() throws Exception {
-        when(mockHttpClient.execute(any(HttpPost.class), any(FutureCallback.class))).thenAnswer(invocation -> {
-            Thread.currentThread().interrupt();
-            throw new InterruptedException("Request interrupted");
-        });
-
-        try {
-            tokenManager.getAccessToken(false);
-        } finally {
-            Assert.assertTrue(Thread.interrupted(), "Thread interrupt flag should be cleared");
-        }
-    }
-
-    @Test
-    public void completed_InvalidJsonResponse() throws Exception {
-        setupMockHttpResponse(HttpStatus.SC_OK, "Invalid JSON");
-
-        try {
-            tokenManager.getAccessToken(true);
-            Assert.fail("Expected AIServerException to be thrown");
-        } catch (AIServerException e) {
-            Assert.assertTrue(e.getMessage().contains("Failed to obtain access token after 3 attempts."));
-        }
-    }
-
-    @Test
-    public void testFailedScenario() throws Exception {
-        ArgumentCaptor<FutureCallback<HttpResponse>> captor = ArgumentCaptor.forClass(FutureCallback.class);
-        doNothing().when(mockHttpClient).start();
-        doAnswer(invocation -> {
-            FutureCallback<HttpResponse> callback = captor.getValue();
-            callback.failed(new Exception("Test Exception"));
-            return null;
-        }).when(mockHttpClient).execute(any(), captor.capture());
-
-        try {
-            helper.requestAccessToken();
-        } catch (AIServerException e) {
-            assertEquals("Failed to obtain access token after 3 attempts.", e.getMessage());
-        }
-
-        verify(mockHttpClient, times(1)).start();
-        verify(mockHttpClient, times(3)).execute(any(), any(FutureCallback.class));
-    }
-
-    @Test
-    public void testCancelledScenario() throws Exception {
-
-        ArgumentCaptor<FutureCallback<HttpResponse>> captor = ArgumentCaptor.forClass(FutureCallback.class);
-        doNothing().when(mockHttpClient).start();
-        doAnswer(invocation -> {
-            FutureCallback<HttpResponse> callback = captor.getValue();
-            callback.cancelled();
-            return null;
-        }).when(mockHttpClient).execute(any(), captor.capture());
-
-        try {
-            helper.requestAccessToken();
-        } catch (AIServerException e) {
-            assertEquals("Failed to obtain access token after 3 attempts.", e.getMessage());
-        }
-
-        verify(mockHttpClient, times(1)).start();
-        verify(mockHttpClient, times(3)).execute(any(), any(FutureCallback.class));
-    }
-
-    @Test(expectedExceptions = AIServerException.class)
-    public void testRequestAccessToken_IOException() throws Exception {
-
-        CloseableHttpAsyncClient mockClient = mock(CloseableHttpAsyncClient.class);
-        doThrow(new IOException("Test IOException")).when(mockClient).close();
-
-        AIAccessTokenManager.AccessTokenRequestHelper helper =
-                new AIAccessTokenManager.AccessTokenRequestHelper("key", "endpoint", mockClient);
-
-        helper.requestAccessToken();
-    }
-
-    private void setupMockHttpResponse(int statusCode, String responseBody) throws Exception {
-
-        when(mockHttpClient.execute(any(HttpPost.class), any(FutureCallback.class))).thenAnswer(invocation -> {
-            FutureCallback<HttpResponse> callback = invocation.getArgument(1);
-            when(mockResponse.getStatusLine()).thenReturn(mockStatusLine);
-            when(mockStatusLine.getStatusCode()).thenReturn(statusCode);
-            when(mockResponse.getEntity()).thenReturn(new StringEntity(responseBody));
-            callback.completed(mockResponse);
-            return mockFuture;
-        });
-        when(mockFuture.get()).thenReturn(mockResponse);
-    }
-
-    // Custom AccessTokenRequestHelper for testing.
-    private class TestAccessTokenRequestHelper extends AIAccessTokenManager.AccessTokenRequestHelper {
-        public TestAccessTokenRequestHelper(CloseableHttpAsyncClient client) {
-            super("testKey", "https://test.endpoint", client);
-        }
-
-        @Override
-        public String requestAccessToken() throws AIServerException {
-            try {
-                return super.requestAccessToken();
-            } catch (AIServerException e) {
-                // Rethrow AIServerException directly for testing purposes.
-                throw e;
-            } catch (Exception e) {
-                throw new AIServerException("Test exception", e);
-            }
-        }
-    }
-
-    private static void assignAIKey(String key) throws NoSuchFieldException, IllegalAccessException {
-
-        // Target class and field.
-        Class<?> targetClass = AIAccessTokenManager.class;
-        Field aiKeyField = targetClass.getDeclaredField("AI_KEY");
-
-        // Make the field accessible.
-        aiKeyField.setAccessible(true);
-
-        // Remove the "final" modifier.
-        Field modifiersField = Field.class.getDeclaredField("modifiers");
-        modifiersField.setAccessible(true);
-        modifiersField.setInt(aiKeyField, aiKeyField.getModifiers() & ~Modifier.FINAL);
-
-        // Set the new value.
-        aiKeyField.set(null, key); // null because it's a static field.
-    }
-}
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/carbon.xml b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/carbon.xml
deleted file mode 100755
index e2f7f02dc050..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/carbon.xml
+++ /dev/null
@@ -1,686 +0,0 @@
-<?xml version="1.0" encoding="ISO-8859-1"?>
-<!--
-  ~ Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
-  ~
-  ~ WSO2 LLC. licenses this file to you under the Apache License,
-  ~ Version 2.0 (the "License"); you may not use this file except
-  ~ in compliance with the License.
-  ~ You may obtain a copy of the License at
-  ~
-  ~ http://www.apache.org/licenses/LICENSE-2.0
-  ~
-  ~ Unless required by applicable law or agreed to in writing,
-  ~ software distributed under the License is distributed on an
-  ~ "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
-  ~ KIND, either express or implied.  See the License for the
-  ~ specific language governing permissions and limitations
-  ~ under the License.
--->
-
-<!--
-    This is the main server configuration file
-
-    ${carbon.home} represents the carbon.home system property.
-    Other system properties can be specified in a similar manner.
--->
-<Server xmlns="http://wso2.org/projects/carbon/carbon.xml">
-
-    <!--
-       Product Name
-    -->
-    <Name>WSO2 Identity Server</Name>
-
-    <!--
-       machine readable unique key to identify each product
-    -->
-    <ServerKey>IS</ServerKey>
-
-    <!--
-       Product Version
-    -->
-    <Version>5.3.0</Version>
-
-    <!--
-       Host name or IP address of the machine hosting this server
-       e.g. www.wso2.org, 192.168.1.10
-       This is will become part of the End Point Reference of the
-       services deployed on this server instance.
-    -->
-    <HostName>localhost</HostName>
-
-    <!--
-    Host name to be used for the Carbon management console
-    -->
-    <MgtHostName>localhost</MgtHostName>
-
-    <!--
-        The URL of the back end server. This is where the admin services are hosted and
-        will be used by the clients in the front end server.
-        This is required only for the Front-end server. This is used when seperating BE server from FE server
-       -->
-    <ServerURL>local:/${carbon.context}/services/</ServerURL>
-    <!--
-    <ServerURL>https://localhost:${carbon.management.port}${carbon.context}/services/</ServerURL>
-    -->
-     <!--
-     The URL of the index page. This is where the user will be redirected after signing in to the
-     carbon server.
-     -->
-    <!-- IndexPageURL>/carbon/admin/index.jsp</IndexPageURL-->
-
-    <!--
-    For cApp deployment, we have to identify the roles that can be acted by the current server.
-    The following property is used for that purpose. Any number of roles can be defined here.
-    Regular expressions can be used in the role.
-    Ex : <Role>.*</Role> means this server can act any role
-    -->
-    <ServerRoles>
-        <Role>IdentityServer</Role>
-    </ServerRoles>
-
-    <!-- uncommnet this line to subscribe to a bam instance automatically -->
-    <!--<BamServerURL>https://bamhost:bamport/services/</BamServerURL>-->
-
-    <!--
-       The fully qualified name of the server
-    -->
-    <Package>org.wso2.carbon</Package>
-
-    <!--
-       Webapp context root of WSO2 Carbon management console.
-    -->
-    <WebContextRoot>/</WebContextRoot>
-
-    <!--
-    	Proxy context path is a useful parameter to add a proxy path when a Carbon server is fronted by reverse proxy. In addtion
-        to the proxy host and proxy port this parameter allows you add a path component to external URLs. e.g.
-     		URL of the Carbon server -> https://10.100.1.1:9443/carbon
-   		URL of the reverse proxy -> https://prod.abc.com/appserver/carbon
-
-   	appserver - proxy context path. This specially required whenever you are generating URLs to displace in
-   	Carbon UI components.
-    -->
-    <!--
-    	<MgtProxyContextPath></MgtProxyContextPath>
-    	<ProxyContextPath></ProxyContextPath>
-    -->
-
-    <!-- In-order to  get the registry http Port from the back-end when the default http transport is not the same-->
-    <!--RegistryHttpPort>9763</RegistryHttpPort-->
-
-    <!--
-    Number of items to be displayed on a management console page. This is used at the
-    backend server for pagination of various items.
-    -->
-    <ItemsPerPage>15</ItemsPerPage>
-
-    <!-- The endpoint URL of the cloud instance management Web service -->
-    <!--<InstanceMgtWSEndpoint>https://ec2.amazonaws.com/</InstanceMgtWSEndpoint>-->
-
-    <!--
-       Ports used by this server
-    -->
-    <Ports>
-
-        <!-- Ports offset. This entry will set the value of the ports defined below to
-         the define value + Offset.
-         e.g. Offset=2 and HTTPS port=9443 will set the effective HTTPS port to 9445
-         -->
-        <Offset>0</Offset>
-
-        <!-- The JMX Ports -->
-        <JMX>
-            <!--The port RMI registry is exposed-->
-            <RMIRegistryPort>9999</RMIRegistryPort>
-            <!--The port RMI server should be exposed-->
-            <RMIServerPort>11111</RMIServerPort>
-        </JMX>
-
-        <!-- Embedded LDAP server specific ports -->
-        <EmbeddedLDAP>
-            <!-- Port which embedded LDAP server runs -->
-            <LDAPServerPort>10389</LDAPServerPort>
-            <!-- Port which KDC (Kerberos Key Distribution Center) server runs -->
-            <KDCServerPort>8000</KDCServerPort>
-        </EmbeddedLDAP>
-	
-	<!-- 
-             Override datasources JNDIproviderPort defined in bps.xml and datasources.properties files
-	-->
-	<!--<JNDIProviderPort>2199</JNDIProviderPort>-->
-	<!--Override receive port of thrift based entitlement service.-->
-	<ThriftEntitlementReceivePort>10500</ThriftEntitlementReceivePort>
-
-    <!--
-     This is the proxy port of the worker cluster. These need to be configured in a scenario where
-     manager node is not exposed through the load balancer through which the workers are exposed
-     therefore doesn't have a proxy port.
-    <WorkerHttpProxyPort>80</WorkerHttpProxyPort>
-    <WorkerHttpsProxyPort>443</WorkerHttpsProxyPort>
-    -->
-
-    </Ports>
-
-    <!--
-        JNDI Configuration
-    -->
-    <JNDI>
-        <!-- 
-             The fully qualified name of the default initial context factory
-        -->
-        <DefaultInitialContextFactory>org.wso2.carbon.tomcat.jndi.CarbonJavaURLContextFactory</DefaultInitialContextFactory>
-        <!-- 
-             The restrictions that are done to various JNDI Contexts in a Multi-tenant environment 
-        -->
-        <Restrictions>
-            <!--
-                Contexts that will be available only to the super-tenant
-            -->
-            <!-- <SuperTenantOnly>
-                <UrlContexts>
-                    <UrlContext>
-                        <Scheme>foo</Scheme>
-                    </UrlContext>
-                    <UrlContext>
-                        <Scheme>bar</Scheme>
-                    </UrlContext>
-                </UrlContexts>
-            </SuperTenantOnly> -->
-            <!-- 
-                Contexts that are common to all tenants
-            -->
-            <AllTenants>
-                <UrlContexts>
-                    <UrlContext>
-                        <Scheme>java</Scheme>
-                    </UrlContext>
-                    <!-- <UrlContext>
-                        <Scheme>foo</Scheme>
-                    </UrlContext> -->
-                </UrlContexts>
-            </AllTenants>
-            <!-- 
-                 All other contexts not mentioned above will be available on a per-tenant basis 
-                 (i.e. will not be shared among tenants)
-            -->
-        </Restrictions>
-    </JNDI>
-
-    <!--
-        Property to determine if the server is running an a cloud deployment environment.
-        This property should only be used to determine deployment specific details that are
-        applicable only in a cloud deployment, i.e when the server deployed *-as-a-service.
-    -->
-    <IsCloudDeployment>false</IsCloudDeployment>
-
-    <!--
-	Property to determine whether usage data should be collected for metering purposes
-    -->
-    <EnableMetering>false</EnableMetering>
-
-    <!-- The Max time a thread should take for execution in seconds -->
-    <MaxThreadExecutionTime>600</MaxThreadExecutionTime>
-
-    <!--
-        A flag to enable or disable Ghost Deployer. By default this is set to false. That is
-        because the Ghost Deployer works only with the HTTP/S transports. If you are using
-        other transports, don't enable Ghost Deployer.
-    -->
-    <GhostDeployment>
-        <Enabled>false</Enabled>
-    </GhostDeployment>
-
-
-    <!--
-        Eager loading or lazy loading is a design pattern commonly used in computer programming which
-        will initialize an object upon creation or load on-demand. In carbon, lazy loading is used to
-        load tenant when a request is received only. Similarly Eager loading is used to enable load
-        existing tenants after carbon server starts up. Using this feature, you will be able to include
-        or exclude tenants which are to be loaded when server startup.
-
-        We can enable only one LoadingPolicy at a given time.
-
-        1. Tenant Lazy Loading
-           This is the default behaviour and enabled by default. With this policy, tenants are not loaded at
-           server startup, but loaded based on-demand (i.e when a request is received for a tenant).
-           The default tenant idle time is 30 minutes.
-
-        2. Tenant Eager Loading
-           This is by default not enabled. It can be be enabled by un-commenting the <EagerLoading> section.
-           The eager loading configurations supported are as below. These configurations can be given as the
-           value for <Include> element with eager loading.
-                (i)Load all tenants when server startup             -   *
-                (ii)Load all tenants except foo.com & bar.com       -   *,!foo.com,!bar.com
-                (iii)Load only foo.com &  bar.com to be included    -   foo.com,bar.com
-    -->
-    <Tenant>
-        <LoadingPolicy>
-            <LazyLoading>
-                <IdleTime>30</IdleTime>
-            </LazyLoading>
-            <!-- <EagerLoading>
-                   <Include>*,!foo.com,!bar.com</Include>
-            </EagerLoading>-->
-        </LoadingPolicy>
-    </Tenant>
-
-    <!--
-     Caching related configurations
-    -->
-    <Cache>
-        <!-- Default cache timeout in minutes -->
-        <DefaultCacheTimeout>15</DefaultCacheTimeout>
-    </Cache>
-
-    <!--
-    Axis2 related configurations
-    -->
-    <Axis2Config>
-        <!--
-             Location of the Axis2 Services & Modules repository
-
-             This can be a directory in the local file system, or a URL.
-
-             e.g.
-             1. /home/wso2wsas/repository/ - An absolute path
-             2. repository - In this case, the path is relative to CARBON_HOME
-             3. file:///home/wso2wsas/repository/
-             4. http://wso2wsas/repository/
-        -->
-        <RepositoryLocation>${carbon.home}/repository/deployment/server/</RepositoryLocation>
-
-        <!--
-         Deployment update interval in seconds. This is the interval between repository listener
-         executions. 
-        -->
-        <DeploymentUpdateInterval>15</DeploymentUpdateInterval>
-
-        <!--
-            Location of the main Axis2 configuration descriptor file, a.k.a. axis2.xml file
-
-            This can be a file on the local file system, or a URL
-
-            e.g.
-            1. /home/repository/axis2.xml - An absolute path
-            2. conf/axis2.xml - In this case, the path is relative to CARBON_HOME
-            3. file:///home/carbon/repository/axis2.xml
-            4. http://repository/conf/axis2.xml
-        -->
-        <ConfigurationFile>${carbon.home}/repository/conf/axis2/axis2.xml</ConfigurationFile>
-
-        <!--
-          ServiceGroupContextIdleTime, which will be set in ConfigurationContex
-          for multiple clients which are going to access the same ServiceGroupContext
-          Default Value is 30 Sec.
-        -->
-        <ServiceGroupContextIdleTime>30000</ServiceGroupContextIdleTime>
-
-        <!--
-          This repository location is used to crete the client side configuration
-          context used by the server when calling admin services.
-        -->
-        <ClientRepositoryLocation>${carbon.home}/repository/deployment/client/</ClientRepositoryLocation>
-        <!-- This axis2 xml is used in createing the configuration context by the FE server
-         calling to BE server -->
-        <clientAxis2XmlLocation>${carbon.home}/repository/conf/axis2/axis2_client.xml</clientAxis2XmlLocation>
-        <!-- If this parameter is set, the ?wsdl on an admin service will not give the admin service wsdl. -->
-        <HideAdminServiceWSDLs>true</HideAdminServiceWSDLs>
-	
-	<!--WARNING-Use With Care! Uncommenting bellow parameter would expose all AdminServices in HTTP transport.
-	With HTTP transport your credentials and data routed in public channels are vulnerable for sniffing attacks. 
-	Use bellow parameter ONLY if your communication channels are confirmed to be secured by other means -->
-        <!--HttpAdminServices>*</HttpAdminServices-->
-
-    </Axis2Config>
-
-    <!--
-       The default user roles which will be created when the server
-       is started up for the first time.
-    -->
-    <ServiceUserRoles>
-        <Role>
-            <Name>admin</Name>
-            <Description>Default Administrator Role</Description>
-        </Role>
-        <Role>
-            <Name>user</Name>
-            <Description>Default User Role</Description>
-        </Role>
-    </ServiceUserRoles>
-    
-    <!-- 
-      Enable following config to allow Emails as usernames. 	
-    -->	    	
-    <!--EnableEmailUserName>true</EnableEmailUserName-->	
-
-    <!--
-      Security configurations
-    -->
-    <Security>
-        <!--
-            KeyStore which will be used for encrypting/decrypting passwords
-            and other sensitive information.
-        -->
-        <KeyStore>
-            <!-- Keystore file location-->
-            <Location>${carbon.home}/repository/resources/security/wso2carbon.jks</Location>
-            <!-- Keystore type (JKS/PKCS12 etc.)-->
-            <Type>JKS</Type>
-            <!-- Keystore password-->
-            <Password>wso2carbon</Password>
-            <!-- Private Key alias-->
-            <KeyAlias>wso2carbon</KeyAlias>
-            <!-- Private Key password-->
-            <KeyPassword>wso2carbon</KeyPassword>
-        </KeyStore>
-
-        <!--
-            System wide trust-store which is used to maintain the certificates of all
-            the trusted parties.
-        -->
-        <TrustStore>
-            <!-- trust-store file location -->
-            <Location>${carbon.home}/repository/resources/security/client-truststore.jks</Location>
-            <!-- trust-store type (JKS/PKCS12 etc.) -->
-            <Type>JKS</Type>
-            <!-- trust-store password -->
-            <Password>wso2carbon</Password>
-        </TrustStore>
-
-        <!--
-            The Authenticator configuration to be used at the JVM level. We extend the
-            java.net.Authenticator to make it possible to authenticate to given servers and 
-            proxies.
-        -->
-        <NetworkAuthenticatorConfig>
-            <!-- 
-                Below is a sample configuration for a single authenticator. Please note that
-                all child elements are mandatory. Not having some child elements would lead to
-                exceptions at runtime.
-            -->
-            <!-- <Credential> -->
-                <!-- 
-                    the pattern that would match a subset of URLs for which this authenticator
-                    would be used
-                -->
-                <!-- <Pattern>regularExpression</Pattern> -->
-                <!-- 
-                    the type of this authenticator. Allowed values are:
-                    1. server
-                    2. proxy
-                -->
-                <!-- <Type>proxy</Type> -->
-                <!-- the username used to log in to server/proxy -->
-                <!-- <Username>username</Username> -->
-                <!-- the password used to log in to server/proxy -->
-                <!-- <Password>password</Password> -->
-            <!-- </Credential> -->
-        </NetworkAuthenticatorConfig>
-
-        <!--
-         The Tomcat realm to be used for hosted Web applications. Allowed values are;
-         1. UserManager
-         2. Memory
-
-         If this is set to 'UserManager', the realm will pick users & roles from the system's
-         WSO2 User Manager. If it is set to 'memory', the realm will pick users & roles from
-         CARBON_HOME/repository/conf/tomcat/tomcat-users.xml
-        -->
-        <TomcatRealm>UserManager</TomcatRealm>
-
-	<!--Option to disable storing of tokens issued by STS-->
-	<DisableTokenStore>false</DisableTokenStore>
-
- <STSCallBackHandlerName>org.wso2.carbon.identity.provider.AttributeCallbackHandler</STSCallBackHandlerName>
-
-	<!--
-	 Security token store class name. If this is not set, default class will be
-	 org.wso2.carbon.security.util.SecurityTokenStore
-	-->
-	<TokenStoreClassName>org.wso2.carbon.identity.sts.store.DBTokenStore</TokenStoreClassName>
-
-        <XSSPreventionConfig>
-            <Enabled>true</Enabled>
-            <Rule>allow</Rule>
-            <Patterns>
-                <!--Pattern></Pattern-->
-            </Patterns>
-        </XSSPreventionConfig>
-    </Security>
-<HideMenuItemIds>
-<HideMenuItemId>claim_mgt_menu</HideMenuItemId>
-<HideMenuItemId>identity_mgt_emailtemplate_menu</HideMenuItemId>
-<HideMenuItemId>identity_security_questions_menu</HideMenuItemId>
-</HideMenuItemIds>
-
-    <!--
-       The temporary work directory
-    -->
-    <WorkDirectory>${carbon.home}/tmp/work</WorkDirectory>
-
-    <!--
-       House-keeping configuration
-    -->
-    <HouseKeeping>
-
-        <!--
-           true  - Start House-keeping thread on server startup
-           false - Do not start House-keeping thread on server startup.
-                   The user will run it manually as and when he wishes.
-        -->
-        <AutoStart>true</AutoStart>
-
-        <!--
-           The interval in *minutes*, between house-keeping runs
-        -->
-        <Interval>10</Interval>
-
-        <!--
-          The maximum time in *minutes*, temp files are allowed to live
-          in the system. Files/directories which were modified more than
-          "MaxTempFileLifetime" minutes ago will be removed by the
-          house-keeping task
-        -->
-        <MaxTempFileLifetime>30</MaxTempFileLifetime>
-    </HouseKeeping>
-
-    <!--
-       Configuration for handling different types of file upload & other file uploading related
-       config parameters.
-       To map all actions to a particular FileUploadExecutor, use
-       <Action>*</Action>
-    -->
-    <FileUploadConfig>
-        <!--
-           The total file upload size limit in MB
-        -->
-        <TotalFileSizeLimit>100</TotalFileSizeLimit>
-
-        <Mapping>
-            <Actions>
-                <Action>keystore</Action>
-                <Action>certificate</Action>
-                <Action>*</Action>
-            </Actions>
-            <Class>org.wso2.carbon.ui.transports.fileupload.AnyFileUploadExecutor</Class>
-        </Mapping>
-
-        <Mapping>
-            <Actions>
-                <Action>jarZip</Action>
-            </Actions>
-            <Class>org.wso2.carbon.ui.transports.fileupload.JarZipUploadExecutor</Class>
-        </Mapping>
-        <Mapping>
-            <Actions>
-                <Action>dbs</Action>
-            </Actions>
-            <Class>org.wso2.carbon.ui.transports.fileupload.DBSFileUploadExecutor</Class>
-        </Mapping>
-        <Mapping>
-            <Actions>
-                <Action>tools</Action>
-            </Actions>
-            <Class>org.wso2.carbon.ui.transports.fileupload.ToolsFileUploadExecutor</Class>
-        </Mapping>
-        <Mapping>
-            <Actions>
-                <Action>toolsAny</Action>
-            </Actions>
-            <Class>org.wso2.carbon.ui.transports.fileupload.ToolsAnyFileUploadExecutor</Class>
-        </Mapping>
-    </FileUploadConfig>
-
-    <!-- FileNameRegEx is used to validate the file input/upload/write-out names.
-    e.g.
-     <FileNameRegEx>^(?!(?:CON|PRN|AUX|NUL|COM[1-9]|LPT[1-9])(?:\.[^.])?$)[^&lt;&gt:"/\\|?*\x00-\x1F][^&lt;&gt:"/\\|?*\x00-\x1F\ .]$</FileNameRegEx>
-    -->
-    <!--<FileNameRegEx></FileNameRegEx>-->
-
-    <!--
-       Processors which process special HTTP GET requests such as ?wsdl, ?policy etc.
-
-       In order to plug in a processor to handle a special request, simply add an entry to this
-       section.
-
-       The value of the Item element is the first parameter in the query string(e.g. ?wsdl)
-       which needs special processing
-       
-       The value of the Class element is a class which implements
-       org.wso2.carbon.transport.HttpGetRequestProcessor
-    -->
-    <HttpGetRequestProcessors>
-        <Processor>
-            <Item>info</Item>
-            <Class>org.wso2.carbon.core.transports.util.InfoProcessor</Class>
-        </Processor>
-        <Processor>
-            <Item>wsdl</Item>
-            <Class>org.wso2.carbon.core.transports.util.Wsdl11Processor</Class>
-        </Processor>
-        <Processor>
-            <Item>wsdl2</Item>
-            <Class>org.wso2.carbon.core.transports.util.Wsdl20Processor</Class>
-        </Processor>
-        <Processor>
-            <Item>xsd</Item>
-            <Class>org.wso2.carbon.core.transports.util.XsdProcessor</Class>
-        </Processor>
-    </HttpGetRequestProcessors>
-
-    <!-- Deployment Synchronizer Configuration. Enable value to true when running with "svn based" dep sync.
-	In master nodes you need to set both AutoCommit and AutoCheckout to true
-	and in  worker nodes set only AutoCheckout to true.
-    -->
-    <DeploymentSynchronizer>
-        <Enabled>false</Enabled>
-        <AutoCommit>false</AutoCommit>
-        <AutoCheckout>true</AutoCheckout>
-        <RepositoryType>svn</RepositoryType>
-        <SvnUrl>http://svnrepo.example.com/repos/</SvnUrl>
-        <SvnUser>username</SvnUser>
-        <SvnPassword>password</SvnPassword>
-        <SvnUrlAppendTenantId>true</SvnUrlAppendTenantId>
-    </DeploymentSynchronizer>
-
-    <!-- Deployment Synchronizer Configuration. Uncomment the following section when running with "registry based" dep sync.
-        In master nodes you need to set both AutoCommit and AutoCheckout to true
-        and in  worker nodes set only AutoCheckout to true.
-    -->
-    <!--<DeploymentSynchronizer>
-        <Enabled>true</Enabled>
-        <AutoCommit>false</AutoCommit>
-        <AutoCheckout>true</AutoCheckout>
-    </DeploymentSynchronizer>-->
-
-    <!-- Mediation persistence configurations. Only valid if mediation features are available i.e. ESB -->
-    <!--<MediationConfig>
-        <LoadFromRegistry>false</LoadFromRegistry>
-        <SaveToFile>false</SaveToFile>
-        <Persistence>enabled</Persistence>
-        <RegistryPersistence>enabled</RegistryPersistence>
-    </MediationConfig>-->
-
-    <!--
-    Server intializing code, specified as implementation classes of org.wso2.carbon.core.ServerInitializer.
-    This code will be run when the Carbon server is initialized
-    -->
-    <ServerInitializers>
-        <!--<Initializer></Initializer>-->
-    </ServerInitializers>
-    
-    <!--
-    Indicates whether the Carbon Servlet is required by the system, and whether it should be
-    registered
-    -->
-    <RequireCarbonServlet>${require.carbon.servlet}</RequireCarbonServlet>
-
-    <!--
-    Carbon H2 OSGI Configuration
-    By default non of the servers start.
-        name="web" - Start the web server with the H2 Console
-        name="webPort" - The port (default: 8082)
-        name="webAllowOthers" - Allow other computers to connect
-        name="webSSL" - Use encrypted (HTTPS) connections
-        name="tcp" - Start the TCP server
-        name="tcpPort" - The port (default: 9092)
-        name="tcpAllowOthers" - Allow other computers to connect
-        name="tcpSSL" - Use encrypted (SSL) connections
-        name="pg" - Start the PG server
-        name="pgPort"  - The port (default: 5435)
-        name="pgAllowOthers"  - Allow other computers to connect
-        name="trace" - Print additional trace information; for all servers
-        name="baseDir" - The base directory for H2 databases; for all servers  
-    -->
-    <!--H2DatabaseConfiguration>
-        <property name="web" />
-        <property name="webPort">8082</property>
-        <property name="webAllowOthers" />
-        <property name="webSSL" />
-        <property name="tcp" />
-        <property name="tcpPort">9092</property>
-        <property name="tcpAllowOthers" />
-        <property name="tcpSSL" />
-        <property name="pg" />
-        <property name="pgPort">5435</property>
-        <property name="pgAllowOthers" />
-        <property name="trace" />
-        <property name="baseDir">${carbon.home}</property>
-    </H2DatabaseConfiguration-->
-    <!--Disabling statistics reporter by default-->
-    <StatisticsReporterDisabled>true</StatisticsReporterDisabled>
-
-    <!-- Enable accessing Admin Console via HTTP -->
-    <!-- EnableHTTPAdminConsole>true</EnableHTTPAdminConsole -->
-
-    <!--
-       Default Feature Repository of WSO2 Carbon.
-    -->
-    <FeatureRepository>
-	    <RepositoryName>default repository</RepositoryName>
-	    <RepositoryURL>http://product-dist.wso2.com/p2/carbon/releases/wilkes/</RepositoryURL>
-    </FeatureRepository>
-
-    <!--
-	Configure API Management
-   -->
-   <APIManagement>
-	
-	<!--Uses the embedded API Manager by default. If you want to use an external 
-	API Manager instance to manage APIs, configure below  externalAPIManager-->
-	
-	<Enabled>true</Enabled>
-	
-	<!--Uncomment and configure API Gateway and 
-	Publisher URLs to use external API Manager instance-->
-	
-	<!--ExternalAPIManager>
-
-		<APIGatewayURL>http://localhost:8281</APIGatewayURL>
-		<APIPublisherURL>http://localhost:8281/publisher</APIPublisherURL>
-
-	</ExternalAPIManager-->
-	
-	<LoadAPIContextsInServerStartup>true</LoadAPIContextsInServerStartup>
-   </APIManagement>
-</Server>
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/identity/identity.xml b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/identity/identity.xml
deleted file mode 100644
index 1bf7cb28de20..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/conf/identity/identity.xml
+++ /dev/null
@@ -1,994 +0,0 @@
-<?xml version="1.0" encoding="ISO-8859-1"?>
-<!--
-  ~ Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
-  ~
-  ~ WSO2 LLC. licenses this file to you under the Apache License,
-  ~ Version 2.0 (the "License"); you may not use this file except
-  ~ in compliance with the License.
-  ~ You may obtain a copy of the License at
-  ~
-  ~ http://www.apache.org/licenses/LICENSE-2.0
-  ~
-  ~ Unless required by applicable law or agreed to in writing,
-  ~ software distributed under the License is distributed on an
-  ~ "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
-  ~ KIND, either express or implied.  See the License for the
-  ~ specific language governing permissions and limitations
-  ~ under the License.
--->
-
-<Server xmlns="http://wso2.org/projects/carbon/carbon.xml">
-
-    <JDBCPersistenceManager>
-        <DataSource>
-            <!-- Include a data source name (jndiConfigName) from the set of data
-                sources defined in master-datasources.xml -->
-            <Name>jdbc/WSO2IdentityDB</Name>
-        </DataSource>
-        <!-- If the identity database is created from another place and if it is
-            required to skip schema initialization during the server start up, set the
-            following property to "true". -->
-        <!-- <SkipDBSchemaCreation>false</SkipDBSchemaCreation> -->
-        <SessionDataPersist>
-            <Enable>true</Enable>
-            <Temporary>true</Temporary>
-            <PoolSize>0</PoolSize>
-            <SessionDataCleanUp>
-                <Enable>true</Enable>
-                <CleanUpTimeout>20160</CleanUpTimeout>
-                <CleanUpPeriod>1140</CleanUpPeriod>
-                <!--Instead of deleting all the records at once, we are deleting the records in chunks to prevent the -->
-                <!--possible deadlock and lock scenarios. The following property defines the chunk size.-->
-                <DeleteChunkSize>50000</DeleteChunkSize>
-            </SessionDataCleanUp>
-            <OperationDataCleanUp>
-                <Enable>true</Enable>
-            </OperationDataCleanUp>
-            <TempDataCleanup>
-                <!-- Enabling separated cleanup for temporary authentication context data -->
-                <Enable>true</Enable>
-                <!-- When PoolZize > 0, temporary data which have no usage after the authentication flow will be deleted immediately
-                 When PoolZise = 0, data will be deleted only by the scheduled cleanup task-->
-                <PoolSize>20</PoolSize>
-                <!-- All temporary authentication context data older than CleanUpTimeout value are considered as expired
-                and would be deleted during cleanup task -->
-                <CleanUpTimeout>40</CleanUpTimeout>
-            </TempDataCleanup>
-        </SessionDataPersist>
-    </JDBCPersistenceManager>
-
-    <!-- Time configurations are in minutes -->
-    <TimeConfig>
-        <SessionIdleTimeout>15</SessionIdleTimeout>
-        <RememberMeTimeout>20160</RememberMeTimeout>
-    </TimeConfig>
-
-    <!-- Security configurations -->
-    <Security>
-        <!-- The directory under which all other KeyStore files will be stored -->
-        <KeyStoresDir>${carbon.home}/conf/keystores</KeyStoresDir>
-        <KeyManagerType>SunX509</KeyManagerType>
-        <TrustManagerType>SunX509</TrustManagerType>
-    </Security>
-
-    <!--This configuration is to resolve the internal service URL for internal API calls.-->
-    <ServerHostName>localhost</ServerHostName>
-
-    <Identity>
-        <IssuerPolicy>SelfAndManaged</IssuerPolicy>
-        <TokenValidationPolicy>CertValidate</TokenValidationPolicy>
-        <BlackList></BlackList>
-        <WhiteList></WhiteList>
-        <System>
-            <KeyStore></KeyStore>
-            <StorePass></StorePass>
-        </System>
-    </Identity>
-
-    <OpenID>
-        <!--
-            Default values for OpenIDServerUrl and OpenIDUSerPattern are built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/<context>
-            If above format doesn't satisfy uncomment the following configs and explicitly configure the values
-         -->
-        <OpenIDServerUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/openidserver</OpenIDServerUrl>
-        <OpenIDUserPattern>${carbon.protocol}://${carbon.host}:${carbon.management.port}/openid</OpenIDUserPattern>
-        <OpenIDLoginUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/openid_login.do</OpenIDLoginUrl>
-        <!-- If the users must be prompted for approval -->
-        <OpenIDSkipUserConsent>false</OpenIDSkipUserConsent>
-        <!-- Expiry time of the OpenID RememberMe token in minutes -->
-        <OpenIDRememberMeExpiry>7200</OpenIDRememberMeExpiry>
-        <!-- To enable or disable openid dumb mode -->
-        <DisableOpenIDDumbMode>false</DisableOpenIDDumbMode>
-        <!--
-               OpenID private association store is configurable from following configs.
-               It includes two new replication stores,
-                       i.   OpenIDServerAssociationStore (Default association store)
-                       ii.  PrivateAssociationCryptoStore
-                       iii. PrivateAssociationReplicationStore
-        -->
-
-        <!-- Specify full qualified class name of the class which going to use as private association store -->
-        <!--
-		<OpenIDPrivateAssociationStoreClass>org.wso2.carbon.identity.provider.openid.PrivateAssociationCryptoStore</OpenIDPrivateAssociationStoreClass>
-	-->
-
-        <!-- The expiration time (in minutes) for the OpenID association -->
-        <!--
-		<OpenIDAssociationExpiryTime>15</OpenIDAssociationExpiryTime>
-	-->
-
-        <!-- Configs specific to PrivateAssociationCryptoStore -->
-        <!-- Server secret. This value should be the same in all nodes in the cluster -->
-        <!--
-		<OpenIDPrivateAssociationServerKey>qewlj324lmasc</OpenIDPrivateAssociationServerKey>
-	-->
-
-        <!-- Configs specific to PrivateAssociationCryptoStore -->
-        <!-- This enable private association cleanup task which cleans expired private associations -->
-        <!--
-		<EnableOpenIDAssociationCleanupTask>true</EnableOpenIDAssociationCleanupTask>
-	-->
-        <!-- Time Period (in minutes) that cleanup task would run -->
-        <!--
-		<OpenIDAssociationCleanupPeriod>15</OpenIDAssociationCleanupPeriod>
-	-->
-    </OpenID>
-
-    <OAuth>
-        <!-- Specify the Token issuer class to be used.
-             Default: org.wso2.carbon.identity.oauth2.token.OauthTokenIssuerImpl.
-             Applicable values: org.wso2.carbon.identity.oauth2.token.JWTTokenIssuer
-        -->
-        <!--<IdentityOAuthTokenGenerator>org.wso2.carbon.identity.oauth2.token.JWTTokenIssuer</IdentityOAuthTokenGenerator>-->
-
-        <!-- True, if access token alias is stored in the database instead of access token.
-             Eg. token alias and token is same when default AccessTokenValueGenerator is used.
-             When JWTTokenIssuer is used, jti is used as the token alias
-             Default: true.
-             Applicable values: true,false
-        -->
-        <!--<PersistAccessTokenAlias>false</PersistAccessTokenAlias>-->
-
-        <!-- This configuration is used to specify the access token value generator.
-             Default: org.apache.oltu.oauth2.as.issuer.UUIDValueGenerator
-             Applicable values: org.apache.oltu.oauth2.as.issuer.UUIDValueGenerator,
-                                org.apache.oltu.oauth2.as.issuer.MD5Generator,
-                                org.wso2.carbon.identity.oauth.tokenvaluegenerator.SHA256Generator-->
-        <!--<AccessTokenValueGenerator>org.wso2.carbon.identity.oauth.tokenvaluegenerator.SHA256Generator</AccessTokenValueGenerator>-->
-
-        <!-- This configuration is used to specify whether the Service Provider tenant domain should be used when generating
-             access token. Otherwise user domain will be used. Currently this value is only supported by the JWTTokenIssuer.-->
-        <!--<UseSPTenantDomain>True</UseSPTenantDomain>-->
-
-        <!--
-            Default values for OAuth1RequestTokenUrl, OAuth1AccessTokenUrl, OAuth1AuthorizeUrl
-            OAuth2AuthzEPUrl, OAuth2TokenEPUrl and OAuth2UserInfoEPUrl are built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/<context>/<path>
-            If above format doesn't satisfy uncomment the following configs and explicitly configure the values
-         -->
-        <OAuth1RequestTokenUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth/request-token</OAuth1RequestTokenUrl>
-        <OAuth1AuthorizeUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth/authorize-url</OAuth1AuthorizeUrl>
-        <OAuth1AccessTokenUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth/access-token</OAuth1AccessTokenUrl>
-        <OAuth2AuthzEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/authorize</OAuth2AuthzEPUrl>
-        <OAuth2TokenEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/token</OAuth2TokenEPUrl>
-        <OAuth2RevokeEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/revoke</OAuth2RevokeEPUrl>
-        <OAuth2IntrospectEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/introspect</OAuth2IntrospectEPUrl>
-        <OAuth2UserInfoEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/userinfo</OAuth2UserInfoEPUrl>
-        <OIDCCheckSessionEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oidc/checksession</OIDCCheckSessionEPUrl>
-        <OIDCLogoutEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oidc/logout</OIDCLogoutEPUrl>
-        <OAuth2ConsentPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/oauth2_authz.do</OAuth2ConsentPage>
-        <OAuth2ErrorPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/oauth2_error.do</OAuth2ErrorPage>
-        <OIDCConsentPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/oauth2_consent.do</OIDCConsentPage>
-        <OIDCLogoutConsentPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/oauth2_logout_consent.do</OIDCLogoutConsentPage>
-        <OIDCLogoutPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/oauth2_logout.do</OIDCLogoutPage>
-
-        <OIDCWebFingerEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/.well-known/webfinger</OIDCWebFingerEPUrl>
-
-        <!-- For tenants below urls will be modified as https://<hostname>:<port>/t/<tenant domain>/<path>-->
-        <OAuth2DCREPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/api/identity/oauth2/dcr/v1.1/register</OAuth2DCREPUrl>
-        <OAuth2JWKSPage>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/jwks</OAuth2JWKSPage>
-        <OIDCDiscoveryEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/oidcdiscovery</OIDCDiscoveryEPUrl>
-
-        <!-- Default validity period for Authorization Code in seconds -->
-        <AuthorizationCodeDefaultValidityPeriod>300</AuthorizationCodeDefaultValidityPeriod>
-        <!-- Default validity period for application access tokens in seconds -->
-        <AccessTokenDefaultValidityPeriod>3600</AccessTokenDefaultValidityPeriod>
-        <!-- Default validity period for user access tokens in seconds -->
-        <UserAccessTokenDefaultValidityPeriod>3600</UserAccessTokenDefaultValidityPeriod>
-        <!-- Validity period for refresh token -->
-        <RefreshTokenValidityPeriod>84600</RefreshTokenValidityPeriod>
-        <!-- Timestamp skew in seconds -->
-        <TimestampSkew>0</TimestampSkew>
-        <!-- Enable renewal of refresh token for refresh_token grant -->
-        <RenewRefreshTokenForRefreshGrant>true</RenewRefreshTokenForRefreshGrant>
-        <!-- Process the token before storing it in database, e.g. encrypting -->
-        <TokenPersistenceProcessor>org.wso2.carbon.identity.oauth.tokenprocessor.PlainTextPersistenceProcessor</TokenPersistenceProcessor>
-        <!-- This should be true if the oauth keys (consumer secret, access token, refresh token and authorization code) need to be hashed,
-             before storing them in the database. If the value is false, the oauth keys will be saved in a plain text format.
-             By default : false.
-             Supported versions: IS 5.6.0 onwards.
-        -->
-        <EnableClientSecretHash>false</EnableClientSecretHash>
-        <!-- If the user is a federated, user will not be able to access claims from local userstore even if the username matches -->
-        <MapFederatedUsersToLocal>false</MapFederatedUsersToLocal>
-        <!-- Supported Response Types -->
-        <SupportedResponseTypes>
-            <SupportedResponseType>
-                <ResponseTypeName>token</ResponseTypeName>
-                <ResponseTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.authz.handlers.AccessTokenResponseTypeHandler</ResponseTypeHandlerImplClass>
-            </SupportedResponseType>
-            <SupportedResponseType>
-                <ResponseTypeName>code</ResponseTypeName>
-                <ResponseTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.authz.handlers.CodeResponseTypeHandler</ResponseTypeHandlerImplClass>
-            </SupportedResponseType>
-            <SupportedResponseType>
-                <ResponseTypeName>id_token</ResponseTypeName>
-                <ResponseTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.authz.handlers.IDTokenResponseTypeHandler</ResponseTypeHandlerImplClass>
-            </SupportedResponseType>
-            <SupportedResponseType>
-                <ResponseTypeName>id_token token</ResponseTypeName>
-                <ResponseTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.authz.handlers.IDTokenTokenResponseTypeHandler</ResponseTypeHandlerImplClass>
-            </SupportedResponseType>
-        </SupportedResponseTypes>
-        <!-- Supported Grant Types -->
-        <SupportedGrantTypes>
-            <SupportedGrantType>
-                <GrantTypeName>authorization_code</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.AuthorizationCodeGrantHandler</GrantTypeHandlerImplClass>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>password</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.PasswordGrantHandler</GrantTypeHandlerImplClass>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>refresh_token</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.RefreshGrantHandler</GrantTypeHandlerImplClass>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>client_credentials</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.ClientCredentialsGrantHandler</GrantTypeHandlerImplClass>
-                <IsRefreshTokenAllowed>false</IsRefreshTokenAllowed>
-                <IdTokenAllowed>false</IdTokenAllowed>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>urn:ietf:params:oauth:grant-type:saml2-bearer</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.saml.SAML2BearerGrantHandler</GrantTypeHandlerImplClass>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>iwa:ntlm</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.token.handlers.grant.iwa.ntlm.NTLMAuthenticationGrantHandler</GrantTypeHandlerImplClass>
-            </SupportedGrantType>
-            <SupportedGrantType>
-                <GrantTypeName>urn:ietf:params:oauth:grant-type:jwt-bearer</GrantTypeName>
-                <GrantTypeHandlerImplClass>org.wso2.carbon.identity.oauth2.grant.jwt.JWTBearerGrantHandler</GrantTypeHandlerImplClass>
-                <GrantTypeValidatorImplClass>org.wso2.carbon.identity.oauth2.grant.jwt.JWTGrantValidator</GrantTypeValidatorImplClass>
-            </SupportedGrantType>
-        </SupportedGrantTypes>
-
-        <!--
-            Defines the grant types that will filter user claims based on user consent in their responses such as
-            id_token or user info response.
-
-            Default grant types that filter user claims based on user consent are 'authorization_code' and 'implicit'.
-
-            Supported versions: IS 5.5.0 onwards.
-        -->
-        <UserConsentEnabledGrantTypes>
-            <UserConsentEnabledGrantType>
-                <GrantTypeName>authorization_code</GrantTypeName>
-            </UserConsentEnabledGrantType>
-            <UserConsentEnabledGrantType>
-                <GrantTypeName>implicit</GrantTypeName>
-            </UserConsentEnabledGrantType>
-        </UserConsentEnabledGrantTypes>
-
-        <OAuthCallbackHandlers>
-            <OAuthCallbackHandler Class="org.wso2.carbon.identity.oauth.callback.DefaultCallbackHandler"/>
-        </OAuthCallbackHandlers>
-        <TokenValidators>
-            <TokenValidator type="bearer" class="org.wso2.carbon.identity.oauth2.validators.DefaultOAuth2TokenValidator"/>
-            <TokenValidator type="jwt" class="org.wso2.carbon.identity.oauth2.validators.OAuth2JWTTokenValidator"/>
-        </TokenValidators>
-
-        <!-- Scope validators list. The validators registered here wil be executed during token validation. -->
-        <ScopeValidators>
-            <ScopeValidator class="org.wso2.carbon.identity.oauth2.validators.JDBCScopeValidator" />
-            <ScopeValidator class="org.wso2.carbon.identity.oauth2.validators.xacml.XACMLScopeValidator"/>
-        </ScopeValidators>
-
-        <!-- Scope handlers list. The handlers registered here will be executed at the scope validation phase while
-             issuing access tokens. -->
-        <ScopeHandlers>
-            <ScopeHandler class="org.wso2.carbon.identity.oauth2.validators.OIDCScopeHandler" />
-        </ScopeHandlers>
-
-        <!-- Assertions can be used to embedd parameters into access token. -->
-        <EnableAssertions>
-            <UserName>false</UserName>
-        </EnableAssertions>
-
-
-        <!-- This should be true if subject identifier in the token validation response needs to adhere to the
-        following SP configuration.
-
-        - Use tenant domain in local subject identifier.
-        - Use user store domain in local subject identifier.
-
-        if the value is false, subject identifier will be set as the fully qualified username.
-
-        Default value : false
-
-        Supported versions: IS 5.4.0 beta onwards
-        -->
-        <!--<BuildSubjectIdentifierFromSPConfig>true</BuildSubjectIdentifierFromSPConfig>-->
-
-        <!-- This should be set to true when using multiple user stores and keys
-            should saved into different tables according to the user store. By default
-            all the application keys are saved in to the same table. UserName Assertion
-            should be 'true' to use this. -->
-        <EnableAccessTokenPartitioning>false</EnableAccessTokenPartitioning>
-        <!-- user store domain names and mapping to new table name. eg: if you
-            provide 'A:foo.com', foo.com should be the user store domain name and 'A'
-            represent the relavant mapping of token store table, i.e. tokens will be
-            added to a table called IDN_OAUTH2_ACCESS_TOKEN_A. -->
-        <AccessTokenPartitioningDomains><!-- A:foo.com, B:bar.com --></AccessTokenPartitioningDomains>
-        <AuthorizationContextTokenGeneration>
-            <Enabled>false</Enabled>
-            <TokenGeneratorImplClass>org.wso2.carbon.identity.oauth2.authcontext.JWTTokenGenerator</TokenGeneratorImplClass>
-            <ClaimsRetrieverImplClass>org.wso2.carbon.identity.oauth2.authcontext.DefaultClaimsRetriever</ClaimsRetrieverImplClass>
-            <ConsumerDialectURI>http://wso2.org/claims</ConsumerDialectURI>
-            <SignatureAlgorithm>SHA256withRSA</SignatureAlgorithm>
-            <AuthorizationContextTTL>15</AuthorizationContextTTL>
-        </AuthorizationContextTokenGeneration>
-
-        <SAML2Grant>
-            <!--SAML2TokenHandler></SAML2TokenHandler-->
-            <!-- UserType conifg decides whether the SAML assertion carrying user is local user or a federated user.
-            Only Local Users can access claims from local userstore. LEGACY users will have to have tenant domain appended username.
-            They will not be able to access claims from local userstore. To get claims by mapping users with exact same username from local
-            userstore (for non LOCAL scenarios) use mapFederatedUsersToLocal config -->
-            <!--<UserType>LOCAL</UserType>-->
-            <UserType>FEDERATED</UserType>
-            <!--UserType>LEGACY</UserType-->
-        </SAML2Grant>
-
-        <OpenIDConnect>
-            <IDTokenBuilder>org.wso2.carbon.identity.openidconnect.DefaultIDTokenBuilder</IDTokenBuilder>
-            <SignatureAlgorithm>SHA256withRSA</SignatureAlgorithm>
-
-            <!-- Default asymmetric encryption algorithm that used to encrypt CEK. -->
-            <IDTokenEncryptionAlgorithm>RSA-OAEP</IDTokenEncryptionAlgorithm>
-            <!-- Default symmetric encryption algorithm that used to encrypt JWT claims set. -->
-            <IDTokenEncryptionMethod>A128GCM</IDTokenEncryptionMethod>
-
-            <!-- Supported versions: IS 5.5.0 onwards. -->
-            <SupportedIDTokenEncryptionAlgorithms>
-                <SupportedIDTokenEncryptionAlgorithm>RSA1_5</SupportedIDTokenEncryptionAlgorithm>
-                <SupportedIDTokenEncryptionAlgorithm>RSA-OAEP</SupportedIDTokenEncryptionAlgorithm>
-            </SupportedIDTokenEncryptionAlgorithms>
-            <SupportedIDTokenEncryptionMethods>
-                <SupportedIDTokenEncryptionMethod>A128GCM</SupportedIDTokenEncryptionMethod>
-                <SupportedIDTokenEncryptionMethod>A192GCM</SupportedIDTokenEncryptionMethod>
-                <SupportedIDTokenEncryptionMethod>A256GCM</SupportedIDTokenEncryptionMethod>
-                <SupportedIDTokenEncryptionMethod>A128CBC-HS256</SupportedIDTokenEncryptionMethod>
-                <SupportedIDTokenEncryptionMethod>A128CBC+HS256</SupportedIDTokenEncryptionMethod>
-            </SupportedIDTokenEncryptionMethods>
-
-            <EnableAudiences>true</EnableAudiences>
-            <!-- Comment out to add Audience values to the JWT token (id_token)  -->
-            <!--Audiences>
-                   <Audience>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/token</Audience>
-            </Audiences -->
-
-            <!--
-                Default value for IDTokenIssuerID, is OAuth2TokenEPUrl.
-                If that doesn't satisfy uncomment the following config and explicitly configure the value
-            -->
-            <IDTokenIssuerID>${carbon.protocol}://${carbon.host}:${carbon.management.port}/oauth2/token</IDTokenIssuerID>
-            <IDTokenCustomClaimsCallBackHandler>org.wso2.carbon.identity.openidconnect.SAMLAssertionClaimsCallback</IDTokenCustomClaimsCallBackHandler>
-            <IDTokenExpiration>3600</IDTokenExpiration>
-            <UserInfoJWTSignatureAlgorithm>SHA256withRSA</UserInfoJWTSignatureAlgorithm>
-            <UserInfoEndpointClaimRetriever>org.wso2.carbon.identity.oauth.endpoint.user.impl.UserInfoUserStoreClaimRetriever</UserInfoEndpointClaimRetriever>
-            <UserInfoEndpointRequestValidator>org.wso2.carbon.identity.oauth.endpoint.user.impl.UserInforRequestDefaultValidator</UserInfoEndpointRequestValidator>
-            <UserInfoEndpointAccessTokenValidator>org.wso2.carbon.identity.oauth.endpoint.user.impl.UserInfoISAccessTokenValidator</UserInfoEndpointAccessTokenValidator>
-            <UserInfoEndpointResponseBuilder>org.wso2.carbon.identity.oauth.endpoint.user.impl.UserInfoJSONResponseBuilder</UserInfoEndpointResponseBuilder>
-            <SkipUserConsent>false</SkipUserConsent>
-            <!-- Sign the ID Token with Service Provider Tenant Private Key-->
-            <SignJWTWithSPKey>false</SignJWTWithSPKey>
-            <!--
-                Expiry period of the logout token used in OIDC Back Channel Logout in seconds.
-                Supported versions: IS 5.5.0 onwards
-            -->
-            <LogoutTokenExpiration>120</LogoutTokenExpiration>
-
-            <!--
-                OIDC Request Object builder implementation.
-                Supported versions: IS 5.4.0 onwards
-            -->
-            <RequestObjectBuilders>
-                <RequestObjectBuilder>
-                    <Type>request_param_value_builder</Type>
-                    <ClassName>org.wso2.carbon.identity.openidconnect.RequestParamRequestObjectBuilder</ClassName>
-                </RequestObjectBuilder>
-            </RequestObjectBuilders>
-
-            <!--
-                OIDC Request Object validator implementation.
-                Supported versions: IS 5.4.0 onwards
-            -->
-            <RequestObjectValidator>org.wso2.carbon.identity.openidconnect.RequestObjectValidatorImpl</RequestObjectValidator>
-        </OpenIDConnect>
-
-        <!-- Configs related to OAuth2 token persistence -->
-        <TokenPersistence>
-            <Enable>true</Enable>
-            <PoolSize>0</PoolSize>
-            <RetryCount>5</RetryCount>
-        </TokenPersistence>
-    </OAuth>
-
-    <MultifactorAuthentication>
-        <!--Enable>false</Enable-->
-        <XMPPSettings>
-            <XMPPConfig>
-                <XMPPProvider>gtalk</XMPPProvider>
-                <XMPPServer>talk.google.com</XMPPServer>
-                <XMPPPort>5222</XMPPPort>
-                <XMPPExt>gmail.com</XMPPExt>
-                <XMPPUserName>multifactor1@gmail.com</XMPPUserName>
-                <XMPPPassword>wso2carbon</XMPPPassword>
-            </XMPPConfig>
-        </XMPPSettings>
-    </MultifactorAuthentication>
-
-    <SSOService>
-        <EntityId>${carbon.host}</EntityId>
-        <!--
-            Default value for IdentityProviderURL is  built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/samlsso
-            If that doesn't satisfy uncomment the following config and explicitly configure the value
-        -->
-        <IdentityProviderURL>${carbon.protocol}://${carbon.host}:${carbon.management.port}/samlsso</IdentityProviderURL>
-        <DefaultLogoutEndpoint>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/samlsso_logout.do</DefaultLogoutEndpoint>
-        <NotificationEndpoint>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/samlsso_notification.do</NotificationEndpoint>
-        <SingleLogoutRetryCount>5</SingleLogoutRetryCount>
-        <SingleLogoutRetryInterval>60000</SingleLogoutRetryInterval>
-        <!-- in milli seconds -->
-        <TenantPartitioningEnabled>false</TenantPartitioningEnabled>
-        <AttributesClaimDialect>http://wso2.org/claims</AttributesClaimDialect>
-        <!--<SAMLSSOAssertionBuilder>org.wso2.carbon.identity.sso.saml.builders.assertion.ExtendedDefaultAssertionBuilder</SAMLSSOAssertionBuilder>-->
-        <SAMLSSOAssertionBuilder>org.wso2.carbon.identity.sso.saml.builders.assertion.DefaultSAMLAssertionBuilder</SAMLSSOAssertionBuilder>
-        <SAMLSSOEncrypter>org.wso2.carbon.identity.sso.saml.builders.encryption.DefaultSSOEncrypter</SAMLSSOEncrypter>
-        <SAMLSSOSigner>org.wso2.carbon.identity.sso.saml.builders.signature.DefaultSSOSigner</SAMLSSOSigner>
-        <SAML2HTTPRedirectSignatureValidator>org.wso2.carbon.identity.sso.saml.validators.SAML2HTTPRedirectDeflateSignatureValidator</SAML2HTTPRedirectSignatureValidator>
-        <!--SAMLSSOResponseBuilder>org.wso2.carbon.identity.sso.saml.builders.DefaultResponseBuilder</SAMLSSOResponseBuilder-->
-
-        <!-- SAML Token validity period in minutes -->
-        <SAMLResponseValidityPeriod>5</SAMLResponseValidityPeriod>
-        <UseAuthenticatedUserDomainCrypto>false</UseAuthenticatedUserDomainCrypto>
-        <SAMLDefaultSigningAlgorithmURI>http://www.w3.org/2000/09/xmldsig#rsa-sha1</SAMLDefaultSigningAlgorithmURI>
-        <SAMLDefaultDigestAlgorithmURI>http://www.w3.org/2000/09/xmldsig#sha1</SAMLDefaultDigestAlgorithmURI>
-        <SAMLDefaultAssertionEncryptionAlgorithmURI>http://www.w3.org/2001/04/xmlenc#aes256-cbc</SAMLDefaultAssertionEncryptionAlgorithmURI>
-        <SAMLDefaultKeyEncryptionAlgorithmURI>http://www.w3.org/2001/04/xmlenc#rsa-oaep-mgf1p</SAMLDefaultKeyEncryptionAlgorithmURI>
-        <SLOHostNameVerificationEnabled>true</SLOHostNameVerificationEnabled>
-    </SSOService>
-
-    <Consent>
-        <!--Specify whether consent management should be enable during SSO.-->
-        <EnableSSOConsentManagement>true</EnableSSOConsentManagement>
-    </Consent>
-
-    <SecurityTokenService>
-        <!--
-            Default value for IdentityProviderURL is  built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/services/wso2carbon-sts
-            If that doesn't satisfy uncomment the following config and explicitly configure the value
-        -->
-        <IdentityProviderURL>${carbon.protocol}://${carbon.host}:${carbon.management.port}/services/wso2carbon-sts</IdentityProviderURL>
-    </SecurityTokenService>
-
-    <PassiveSTS>
-        <!--
-            Default value for IdentityProviderURL is  built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/passivests
-            If that doesn't satisfy uncomment the following config and explicitly configure the value
-        -->
-        <IdentityProviderURL>${carbon.protocol}://${carbon.host}:${carbon.management.port}/passivests</IdentityProviderURL>
-        <RetryURL>${carbon.protocol}://${carbon.host}:${carbon.management.port}/authenticationendpoint/retry.do</RetryURL>
-        <TokenStoreClassName>org.wso2.carbon.identity.sts.passive.utils.NoPersistenceTokenStore</TokenStoreClassName>
-        <SLOHostNameVerificationEnabled>true</SLOHostNameVerificationEnabled>
-    </PassiveSTS>
-
-    <EntitlementSettings>
-        <ThirftBasedEntitlementConfig>
-            <EnableThriftService>false</EnableThriftService>
-            <ReceivePort>${Ports.ThriftEntitlementReceivePort}</ReceivePort>
-            <ClientTimeout>10000</ClientTimeout>
-            <KeyStore>
-                <Location>${carbon.home}/repository/resources/security/wso2carbon.jks</Location>
-                <Password>wso2carbon</Password>
-            </KeyStore>
-            <!-- Enable this element to mention the host-name of your IS machine -->
-            <ThriftHostName>${carbon.host}</ThriftHostName>
-        </ThirftBasedEntitlementConfig>
-    </EntitlementSettings>
-
-    <SCIM>
-        <!--
-            Default value for UserEPUrl and GroupEPUrl are built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/<context>/<path>
-            If that doesn't satisfy uncomment the following config and explicitly configure the value
-        -->
-        <UserEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/wso2/scim/Users</UserEPUrl>
-        <GroupEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/wso2/scim/Groups</GroupEPUrl>
-        <SCIMAuthenticators>
-            <Authenticator class="org.wso2.carbon.identity.scim.provider.auth.BasicAuthHandler">
-                <Property name="Priority">5</Property>
-            </Authenticator>
-            <Authenticator class="org.wso2.carbon.identity.scim.provider.auth.OAuthHandler">
-                <Property name="Priority">10</Property>
-                <Property name="AuthorizationServer">local://services</Property>
-                <!--Property name="AuthorizationServer">${carbon.protocol}://${carbon.host}:${carbon.management.port}/services</Property>
-                <Property name="UserName">admin</Property>
-                <Property name="Password">admin</Property-->
-            </Authenticator>
-
-            <!-- Flag to indicate advanced complex multiValued attributes support enabled or not.
-            Default value : false
-            Supported versions: IS 5.5.0 beta onwards
-            -->
-            <!--<ComplexMultiValuedAttributeSupportEnabled>true</ComplexMultiValuedAttributeSupportEnabled>-->
-        </SCIMAuthenticators>
-    </SCIM>
-
-    <SCIM2>
-        <!--
-            Default value for UserEPUrl and GroupEPUrl are built in following format
-            https://<HostName>:<MgtTrpProxyPort except 443>/<ProxyContextPath>/<context>/<path>
-            If that doesn't satisfy uncomment the following config and explicitly configure the value
-        -->
-        <!--UserEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/scim2/Users</UserEPUrl-->
-        <!--GroupEPUrl>${carbon.protocol}://${carbon.host}:${carbon.management.port}/scim2/Groups</GroupEPUrl-->
-    </SCIM2>
-
-    <!--Recovery>
-        <Notification>
-            <Password>
-                <Enable>false</Enable>
-            </Password>
-            <Username>
-                <Enable>false</Enable>
-            </Username>
-            <InternallyManage>true</InternallyManage>
-       </Notification>
-       <Question>
-            <Password>
-                <Enable>false</Enable>
-                <NotifyStart>false</NotifyStart>
-                <Separator>!</Separator>
-                <MinAnswers>2</MinAnswers>
-                <ReCaptcha>
-                    <Enable>true</Enable>
-                    <MaxFailedAttempts>2</MaxFailedAttempts>
-                </ReCaptcha>
-            </Password>
-        </Question>
-        <ExpiryTime>1440</ExpiryTime>
-        <NotifySuccess>false</NotifySuccess>
-        <AdminPasswordReset>
-            <Offline>false</Offline>
-            <OTP>false</OTP>
-            <RecoveryLink>false</RecoveryLink>
-        </AdminPasswordReset>
-    </Recovery>
-
-    <EmailVerification>
-        <Enable>false</Enable>
-	    <ExpiryTime>1440</ExpiryTime>
-        <LockOnCreation>true</LockOnCreation>
-        <Notification>
-            <InternallyManage>true</InternallyManage>
-        </Notification>
-        <AskPassword>
-	        <ExpiryTime>1440</ExpiryTime>
-	        <PasswordGenerator>org.wso2.carbon.user.mgt.common.DefaultPasswordGenerator</PasswordGenerator>
-        </AskPassword>
-    </EmailVerification>
-
-    <SelfRegistration>
-        <Enable>false</Enable>
-        <LockOnCreation>true</LockOnCreation>
-        <Notification>
-            <InternallyManage>true</InternallyManage>
-        </Notification>
-        <ReCaptcha>true</ReCaptcha>
-	<VerificationCode>
-	    <ExpiryTime>1440</ExpiryTime>
-	</VerificationCode>
-    </SelfRegistration-->
-
-    <EnableAskPasswordAdminUI>false</EnableAskPasswordAdminUI>
-
-    <EnableRecoveryEndpoint>true</EnableRecoveryEndpoint>
-    <EnableSelfSignUpEndpoint>true</EnableSelfSignUpEndpoint>
-
-    <AuthenticationPolicy>
-        <CheckAccountExist>true</CheckAccountExist>
-    </AuthenticationPolicy>
-
-    <EventListeners>
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.identity.mgt.IdentityMgtEventListener"
-                       orderId="50" enable="false"/>
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.identity.scim.common.listener.SCIMUserOperationListener"
-                       orderId="90" enable="true"/>
-        <!-- Enable the following SCIM2 event listener and disable the above SCIM event listener if SCIM2 is used. -->
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.identity.scim2.common.listener.SCIMUserOperationListener"
-                       orderId="93" enable="false"/>
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.identity.governance.listener.IdentityMgtEventListener"
-                       orderId="95" enable="true"/>
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener" name="org.wso2.carbon.identity.governance.listener.IdentityStoreEventListener"
-                       orderId="97" enable="true">
-            <Property name="Data.Store">org.wso2.carbon.identity.governance.store.JDBCIdentityDataStore</Property>
-        </EventListener>
-        <EventListener type="org.wso2.carbon.identity.core.handler.AbstractIdentityMessageHandler"
-                       name="org.wso2.carbon.identity.data.publisher.application.authentication.impl.DASLoginDataPublisherImpl"
-                       orderId="10" enable="false"/>
-        <EventListener type="org.wso2.carbon.identity.core.handler.AbstractIdentityMessageHandler"
-                       name="org.wso2.carbon.identity.data.publisher.application.authentication.impl.DASSessionDataPublisherImpl"
-                       orderId="11" enable="false"/>
-        <EventListener type="org.wso2.carbon.identity.core.handler.AbstractIdentityMessageHandler"
-                       name="org.wso2.carbon.identity.data.publisher.application.authentication.AuthnDataPublisherProxy"
-                       orderId="11" enable="true"/>
-
-        <!-- Enable this listener to call DeleteEventRecorders. -->
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.user.mgt.listeners.UserDeletionEventListener"
-                       orderId="98" enable="false"/>
-        <EventListener type="org.wso2.carbon.identity.core.handler.AbstractIdentityHandler"
-                       name="org.wso2.carbon.identity.application.authentication.framework.handler.request.impl.consent.ConsentMgtPostAuthnHandler"
-                       orderId="110" enable="true"/>
-
-        <!-- Audit Loggers -->
-
-        <!-- Old Audit Logger -->
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.user.mgt.listeners.UserMgtAuditLogger"
-                       orderId="0" enable="false"/>
-
-        <!-- New Audit Loggers-->
-        <EventListener type="org.wso2.carbon.user.core.listener.UserOperationEventListener"
-                       name="org.wso2.carbon.user.mgt.listeners.UserManagementAuditLogger"
-                       orderId="1" enable="true"/>
-        <EventListener type="org.wso2.carbon.user.core.listener.UserManagementErrorEventListener"
-                       name="org.wso2.carbon.user.mgt.listeners.UserMgtFailureAuditLogger"
-                       orderId="0" enable="true"/>
-    </EventListeners>
-
-    <!-- These recorders are used to write user delete information to specific sources. Default event recorder is CSV
-     file recorder. This recorder is disabled by default. Enable it by setting enable="true". To run these recorders,
-     EventListener "rg.wso2.carbon.user.mgt.listeners.UserDeletionEventListener" also should be enabled. Which is
-     also disabled by default. -->
-    <UserDeleteEventRecorders>
-        <UserDeleteEventRecorder name="org.wso2.carbon.user.mgt.recorder.DefaultUserDeletionEventRecorder" enable="false">
-            <!-- Un comment below line if you need to write entries to a separate .csv file. Otherwise this will be
-            written in to a log file using a separate appender. -->
-            <!--<Property name="path">${carbon.home}/repository/logs/delete-records.csv</Property>-->
-        </UserDeleteEventRecorder>
-    </UserDeleteEventRecorders>
-
-    <CacheConfig>
-        <!-- Identity cache configuration.
-             Timeouts are in seconds.
-             Capacity is the maximum cache size.
-             Unless specifically mentioned, you do not need to set the isDistributed flag.
-         -->
-        <CacheManager name="IdentityApplicationManagementCacheManager">
-            <Cache name="AppAuthFrameworkSessionContextCache"
-                   enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="AuthenticationContextCache" enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="AuthenticationRequestCache" enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="AuthenticationResultCache"  enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="AppInfoCache"               enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="AuthorizationGrantCache"    enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="OAuthCache"                 enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="OAuthScopeCache"            enable="true"  timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="OAuthSessionDataCache"      enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="SAMLSSOParticipantCache"    enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="SAMLSSOSessionIndexCache"   enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="SAMLSSOSessionDataCache"    enable="true" timeout="300" capacity="5000" isDistributed="false"/>
-            <Cache name="ServiceProviderCache"       enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="ProvisioningConnectorCache" enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="ProvisioningEntityCache"    enable="true" timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="ServiceProviderProvisioningConnectorCache" enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="IdPCacheByAuthProperty"     enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="IdPCacheByHRI"              enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-            <Cache name="IdPCacheByName"             enable="true"  timeout="900" capacity="5000" isDistributed="false"/>
-        </CacheManager>
-    </CacheConfig>
-
-    <!--Cookies>
-        <Cookie name="commonAuthId" domain="localhost" httpOnly="true" secure="true" />
-    </Cookies-->
-
-
-    <ResourceAccessControl default-access="deny">
-        <Resource context="(.*)" secured="false" http-method="OPTIONS"/>
-        <Resource context="(.*)/api/identity/user/v1.0/validate-code(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/identitymgt</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/user/v1.0/resend-code(.*)" secured="true" http-method="all"/>
-        <Resource context="(.*)/api/identity/user/v1.0/me(.*)" secured="true" http-method="POST"/>
-        <Resource context="(.*)/api/identity/user/v1.0/me(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/user/v1.0/pi-info" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/usermgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/user/v1.0/pi-info/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/usermgt/view</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/search(.*)" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/configmgt/list</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource-type" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/configmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource-type" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/configmgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource-type/(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource-type/(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/configmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/configmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/configmgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/configmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/configmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/configmgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)/(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/config-mgt/v1.0/resource/(.*)/(.*)/(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/configmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents" secured="true" http-method="all"/>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/receipts/(.*)" secured="true" http-method="all"/>
-
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purposes(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/consentmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purposes(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purposes(.+)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/consentmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/pii-categories(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/consentmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/pii-categories(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/pii-categories(.+)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/consentmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purpose-categories(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/consentmgt/add</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purpose-categories(.*)" secured="true" http-method="GET"/>
-        <Resource context="(.*)/api/identity/consent-mgt/v1.0/consents/purpose-categories(.+)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/consentmgt/delete</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/recovery/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/identitymgt</Permissions>
-        </Resource>
-        <Resource context="(.*)/.well-known(.*)" secured="false" http-method="all"/>
-        <Resource context="(.*)/api/identity/oauth2/dcr/v1.1/register(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/create</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/oauth2/dcr/v1.1/register(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/delete</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/oauth2/dcr/v1.1/register(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/oauth2/dcr/v1.1/register(.*)" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/identity/register(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/delete</Permissions>
-        </Resource>
-        <Resource context="(.*)/identity/connect/register(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/create</Permissions>
-        </Resource>
-        <Resource context="(.*)/oauth2/introspect(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/applicationmgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/entitlement/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/pep</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/usermgt/create</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/usermgt/list</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups(.*)" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/rolemgt/create</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/rolemgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users/(.*)" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/usermgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users/(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/usermgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users/(.*)" secured="true" http-method="PATCH">
-            <Permissions>/permission/admin/manage/identity/usermgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Users/(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/usermgt/delete</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups/(.*)" secured="true" http-method="GET">
-            <Permissions>/permission/admin/manage/identity/rolemgt/view</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups/(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/rolemgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups/(.*)" secured="true" http-method="PATCH">
-            <Permissions>/permission/admin/manage/identity/rolemgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Groups/(.*)" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/rolemgt/delete</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Me" secured="true"    http-method="GET">
-            <Permissions>/permission/admin/login</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Me" secured="true" http-method="DELETE">
-            <Permissions>/permission/admin/manage/identity/usermgt/delete</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Me" secured="true"    http-method="PUT">
-            <Permissions>/permission/admin/login</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Me" secured="true"   http-method="PATCH">
-            <Permissions>/permission/admin/login</Permissions>
-        </Resource>
-        <Resource context="(.*)/scim2/Me" secured="true" http-method="POST">
-            <Permissions>/permission/admin/manage/identity/usermgt/create</Permissions>
-        </Resource>
-        <Resource context="/scim2/ServiceProviderConfig" secured="false" http-method="all">
-            <Permissions></Permissions>
-        </Resource>
-        <Resource context="/scim2/ResourceTypes" secured="false" http-method="all">
-            <Permissions></Permissions>
-        </Resource>
-        <Resource context="/scim2/Bulk(.*)" secured="true"  http-method="all">
-            <Permissions>/permission/admin/manage/identity/usermgt</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/oauth2/dcr/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/applicationmgt</Permissions>
-        </Resource>
-
-        <Resource context="(.*)/api/identity/auth/v1.2/data(.*)" secured="true" http-method="all"/>
-        <Resource context="(.*)/api/identity/auth/v1.2/context(.*)" secured="true" http-method="all"/>
-
-        <Resource context="(.*)/api/identity/user/v1.0/update-username(.*)" secured="true" http-method="PUT">
-            <Permissions>/permission/admin/manage/identity/usermgt/update</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/identity/user/v1.0/validate-username(.*))" secured="true" http-method="all"/>
-        <Resource context="(.*)/api/identity/oauth2/v1.0/(.*)" secured="true" http-method="all"/>
-
-        <Resource context="(.*)/api/users/v1/me/approval-tasks(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/humantask/viewtasks</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/users/v1/me(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/login</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/users/v1/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/usermgt</Permissions>
-        </Resource>
-        <Resource context="(.*)/api/server/v1/(.*)" secured="true" http-method="all">
-            <Permissions>/permission/admin/manage/identity/</Permissions>
-        </Resource>
-
-        <Resource context="/carbon(.*)" secured="false" http-method="all"/>
-        <Resource context="/portal(.*)" secured="false" http-method="all"/>
-        <Resource context="/commonauth(.*)" secured="false" http-method="all"/>
-        <Resource context="/t/(.*)/carbon(.*)" secured="false" http-method="all"/>
-        <Resource context="/services(.*)" secured="false" http-method="all"/>
-        <Resource context="/t/(.*)/services(.*)" secured="false" http-method="all"/>
-        <Resource context="/samlsso(.*)" secured="false" http-method="all"/>
-        <Resource context="/openidserver(.*)" secured="false" http-method="all"/>
-        <Resource context="/passivests(.*)" secured="false" http-method="all"/>
-        <Resource context="/samlartresolve(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth/request-token(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth/authorize-url(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth/access-token(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/token(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/authorize(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/revoke(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/userinfo(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/jwks(.*)" secured="false" http-method="all"/>
-        <Resource context="/oidc/checksession(.*)" secured="false" http-method="all"/>
-        <Resource context="/oidc/logout(.*)" secured="false" http-method="all"/>
-        <Resource context="/oauth2/oidcdiscovery(.*)" secured="false" http-method="all"/>
-        <Resource context="/wso2/scim/Users(.*)" secured="false" http-method="all"/>
-        <Resource context="/wso2/scim/Groups(.*)" secured="false" http-method="all"/>
-        <Resource context="/authenticationendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/accountrecoveryendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/api/health-check/v1(.*)" secured="false" http-method="all"/>
-        <Resource context="/emailotpauthenticationendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/mex(.*)" secured="false" http-method="all"/>
-        <Resource context="/mexut(.*)" secured="false" http-method="all"/>
-        <Resource context="/smsotpauthenticationendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/totpauthenticationendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/x509certificateauthenticationendpoint(.*)" secured="false" http-method="all"/>
-        <Resource context="/userandrolemgtservice(.*)" secured="false" http-method="all"/>
-        <Resource context="(.*)/identity/oidc/slo(.*)" secured="false" http-method="POST"/>
-    </ResourceAccessControl>
-
-    <ClientAppAuthentication>
-        <Application name="dashboard" hash="66cd9688a2ae068244ea01e70f0e230f5623b7fa4cdecb65070a09ec06452262"/>
-    </ClientAppAuthentication>
-
-    <TenantContextsToRewrite>
-        <WebApp>
-            <Context>/api/identity/user/v1.0/</Context>
-            <Context>/api/identity/consent-mgt/v1.0/</Context>
-            <Context>/api/identity/recovery/v0.9/</Context>
-            <Context>/oauth2/</Context>
-            <Context>/scim2/</Context>
-            <Context>/api/identity/entitlement/</Context>
-            <Context>/api/identity/oauth2/dcr/v1.1/</Context>
-        </WebApp>
-        <Servlet>
-            <Context>/identity/(.*)</Context>
-        </Servlet>
-    </TenantContextsToRewrite>
-
-    <!-- Server Synchronization Tolerance Configuration in seconds -->
-    <ClockSkew>300</ClockSkew>
-
-    <!-- JWT validator configurations -->
-    <JWTValidatorConfigs>
-        <Enable>true</Enable>
-        <JWKSEndpoint>
-            <HTTPConnectionTimeout>1000</HTTPConnectionTimeout>
-            <HTTPReadTimeout>1000</HTTPReadTimeout>
-            <HTTPSizeLimit>51200</HTTPSizeLimit>
-        </JWKSEndpoint>
-    </JWTValidatorConfigs>
-
-    <AdaptiveAuth>
-        <EventPublisher>
-            <receiverURL>http://localhost:8280/</receiverURL>
-        </EventPublisher>
-        <AsyncSequenceExecutorPoolSize>5</AsyncSequenceExecutorPoolSize>
-
-        <!--Timeouts in milliseconds-->
-        <!--<HTTPConnectionTimeout>5000</HTTPConnectionTimeout>-->
-        <!--<HTTPReadTimeout>5000</HTTPReadTimeout>-->
-        <!--<HTTPConnectionRequestTimeout>5000</HTTPConnectionRequestTimeout>-->
-        <!--<RefreshInterval>500</RefreshInterval>-->
-        <!--<PromptOnLongWait>false</PromptOnLongWait>-->
-    </AdaptiveAuth>
-
-</Server>
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/dbscripts/identity.sql b/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/dbscripts/identity.sql
deleted file mode 100644
index ff1e7a44b2d4..000000000000
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/dbscripts/identity.sql
+++ /dev/null
@@ -1,1241 +0,0 @@
-CREATE TABLE IF NOT EXISTS IDN_BASE_TABLE (
-            PRODUCT_NAME VARCHAR (20),
-            PRIMARY KEY (PRODUCT_NAME)
-);
-
-INSERT INTO IDN_BASE_TABLE values ('WSO2 Identity Server');
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH_CONSUMER_APPS (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            CONSUMER_KEY VARCHAR (255),
-            CONSUMER_SECRET VARCHAR (2048),
-            USERNAME VARCHAR (255),
-            TENANT_ID INTEGER DEFAULT 0,
-            USER_DOMAIN VARCHAR(50),
-            APP_NAME VARCHAR (255),
-            OAUTH_VERSION VARCHAR (128),
-            CALLBACK_URL VARCHAR (2048),
-            GRANT_TYPES VARCHAR (1024),
-            PKCE_MANDATORY CHAR(1) DEFAULT '0',
-            PKCE_SUPPORT_PLAIN CHAR(1) DEFAULT '0',
-            APP_STATE VARCHAR (25) DEFAULT 'ACTIVE',
-            USER_ACCESS_TOKEN_EXPIRE_TIME BIGINT DEFAULT 3600,
-            APP_ACCESS_TOKEN_EXPIRE_TIME BIGINT DEFAULT 3600,
-            REFRESH_TOKEN_EXPIRE_TIME BIGINT DEFAULT 84600,
-            ID_TOKEN_EXPIRE_TIME BIGINT DEFAULT 3600,
-            CONSTRAINT CONSUMER_KEY_CONSTRAINT UNIQUE (TENANT_ID, CONSUMER_KEY),
-            PRIMARY KEY (ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_SCOPE_VALIDATORS (
-	APP_ID INTEGER NOT NULL,
-	SCOPE_VALIDATOR VARCHAR (128) NOT NULL,
-	PRIMARY KEY (APP_ID,SCOPE_VALIDATOR),
-	FOREIGN KEY (APP_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH1A_REQUEST_TOKEN (
-            REQUEST_TOKEN VARCHAR (512),
-            REQUEST_TOKEN_SECRET VARCHAR (512),
-            CONSUMER_KEY_ID INTEGER,
-            CALLBACK_URL VARCHAR (2048),
-            SCOPE VARCHAR(2048),
-            AUTHORIZED VARCHAR (128),
-            OAUTH_VERIFIER VARCHAR (512),
-            AUTHZ_USER VARCHAR (512),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (REQUEST_TOKEN),
-            FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH1A_ACCESS_TOKEN (
-            ACCESS_TOKEN VARCHAR (512),
-            ACCESS_TOKEN_SECRET VARCHAR (512),
-            CONSUMER_KEY_ID INTEGER,
-            SCOPE VARCHAR(2048),
-            AUTHZ_USER VARCHAR (512),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (ACCESS_TOKEN),
-            FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_ACCESS_TOKEN (
-            TOKEN_ID VARCHAR (255),
-            ACCESS_TOKEN VARCHAR (2048),
-            REFRESH_TOKEN VARCHAR (2048),
-            CONSUMER_KEY_ID INTEGER,
-            AUTHZ_USER VARCHAR (100),
-            TENANT_ID INTEGER,
-            USER_DOMAIN VARCHAR(50),
-            USER_TYPE VARCHAR (25),
-            GRANT_TYPE VARCHAR (50),
-            TIME_CREATED TIMESTAMP DEFAULT 0,
-            REFRESH_TOKEN_TIME_CREATED TIMESTAMP DEFAULT 0,
-            VALIDITY_PERIOD BIGINT,
-            REFRESH_TOKEN_VALIDITY_PERIOD BIGINT,
-            TOKEN_SCOPE_HASH VARCHAR (32),
-            TOKEN_STATE VARCHAR (25) DEFAULT 'ACTIVE',
-            TOKEN_STATE_ID VARCHAR (128) DEFAULT 'NONE',
-            SUBJECT_IDENTIFIER VARCHAR(255),
-            ACCESS_TOKEN_HASH VARCHAR (512),
-            REFRESH_TOKEN_HASH VARCHAR (512),
-            IDP_ID INTEGER DEFAULT -1 NOT NULL,
-            TOKEN_BINDING_REF VARCHAR (32) DEFAULT 'NONE',
-            PRIMARY KEY (TOKEN_ID),
-            FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE,
-            CONSTRAINT CON_APP_KEY UNIQUE (CONSUMER_KEY_ID,AUTHZ_USER,TENANT_ID,USER_DOMAIN,USER_TYPE,TOKEN_SCOPE_HASH,
-                                           TOKEN_STATE,TOKEN_STATE_ID,IDP_ID,TOKEN_BINDING_REF)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_TOKEN_BINDING (
-            TOKEN_ID VARCHAR (255),
-            TOKEN_BINDING_TYPE VARCHAR (32),
-            TOKEN_BINDING_REF VARCHAR (32),
-            TOKEN_BINDING_VALUE VARCHAR (1024),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (TOKEN_ID),
-            FOREIGN KEY (TOKEN_ID) REFERENCES IDN_OAUTH2_ACCESS_TOKEN(TOKEN_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_ACCESS_TOKEN_AUDIT (
-            TOKEN_ID VARCHAR (255),
-            ACCESS_TOKEN VARCHAR(2048),
-            REFRESH_TOKEN VARCHAR(2048),
-            CONSUMER_KEY_ID INTEGER,
-            AUTHZ_USER VARCHAR (100),
-            TENANT_ID INTEGER,
-            USER_DOMAIN VARCHAR(50),
-            USER_TYPE VARCHAR (25),
-            GRANT_TYPE VARCHAR (50),
-            TIME_CREATED TIMESTAMP NULL,
-            REFRESH_TOKEN_TIME_CREATED TIMESTAMP NULL,
-            VALIDITY_PERIOD BIGINT,
-            REFRESH_TOKEN_VALIDITY_PERIOD BIGINT,
-            TOKEN_SCOPE_HASH VARCHAR(32),
-            TOKEN_STATE VARCHAR(25),
-            TOKEN_STATE_ID VARCHAR (128) ,
-            SUBJECT_IDENTIFIER VARCHAR(255),
-            ACCESS_TOKEN_HASH VARCHAR(512),
-            REFRESH_TOKEN_HASH VARCHAR(512),
-            INVALIDATED_TIME TIMESTAMP NULL,
-            IDP_ID INTEGER DEFAULT -1 NOT NULL
-);
-
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_AUTHORIZATION_CODE (
-            CODE_ID VARCHAR (255),
-            AUTHORIZATION_CODE VARCHAR (2048),
-            CONSUMER_KEY_ID INTEGER,
-            CALLBACK_URL VARCHAR (2048),
-            SCOPE VARCHAR(2048),
-            AUTHZ_USER VARCHAR (100),
-            TENANT_ID INTEGER,
-            USER_DOMAIN VARCHAR(50),
-            TIME_CREATED TIMESTAMP,
-            VALIDITY_PERIOD BIGINT,
-            STATE VARCHAR (25) DEFAULT 'ACTIVE',
-            TOKEN_ID VARCHAR(255),
-            SUBJECT_IDENTIFIER VARCHAR(255),
-            PKCE_CODE_CHALLENGE VARCHAR (255),
-            PKCE_CODE_CHALLENGE_METHOD VARCHAR(128),
-            AUTHORIZATION_CODE_HASH VARCHAR (512),
-            IDP_ID INTEGER DEFAULT -1 NOT NULL,
-            PRIMARY KEY (CODE_ID),
-            FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_AUTHZ_CODE_SCOPE(
-            CODE_ID   VARCHAR(255),
-            SCOPE     VARCHAR(60),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (CODE_ID, SCOPE),
-            FOREIGN KEY (CODE_ID) REFERENCES IDN_OAUTH2_AUTHORIZATION_CODE (CODE_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_DEVICE_FLOW (
-            CODE_ID VARCHAR(255),
-            DEVICE_CODE VARCHAR(255),
-            USER_CODE VARCHAR(25),
-            CONSUMER_KEY_ID INTEGER,
-            LAST_POLL_TIME TIMESTAMP NOT NULL,
-            EXPIRY_TIME TIMESTAMP NOT NULL,
-            TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-            POLL_TIME BIGINT,
-            STATUS VARCHAR (25) DEFAULT 'PENDING',
-            AUTHZ_USER VARCHAR (100),
-            TENANT_ID INTEGER,
-            USER_DOMAIN VARCHAR(50),
-            IDP_ID INTEGER,
-            SUBJECT_IDENTIFIER VARCHAR(255),
-            PRIMARY KEY (DEVICE_CODE),
-            UNIQUE (CODE_ID),
-            UNIQUE (USER_CODE),
-            FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_DEVICE_FLOW_SCOPES (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            SCOPE_ID VARCHAR(255),
-            SCOPE VARCHAR(255),
-            PRIMARY KEY (ID),
-            FOREIGN KEY (SCOPE_ID) REFERENCES IDN_OAUTH2_DEVICE_FLOW(CODE_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_ACCESS_TOKEN_SCOPE (
-            TOKEN_ID VARCHAR (255),
-            TOKEN_SCOPE VARCHAR (60),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (TOKEN_ID, TOKEN_SCOPE),
-            FOREIGN KEY (TOKEN_ID) REFERENCES IDN_OAUTH2_ACCESS_TOKEN(TOKEN_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_SCOPE (
-            SCOPE_ID INTEGER NOT NULL AUTO_INCREMENT,
-            NAME VARCHAR(255) NOT NULL,
-            DISPLAY_NAME VARCHAR(255) NOT NULL,
-            DESCRIPTION VARCHAR(512),
-            TENANT_ID INTEGER NOT NULL DEFAULT -1,
-            SCOPE_TYPE VARCHAR(255) NOT NULL,
-            PRIMARY KEY (SCOPE_ID),
-            UNIQUE (NAME, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_SCOPE_BINDING (
-            SCOPE_ID INTEGER NOT NULL,
-            SCOPE_BINDING VARCHAR(255) NOT NULL,
-            BINDING_TYPE  VARCHAR(255) NOT NULL,
-            FOREIGN KEY (SCOPE_ID) REFERENCES IDN_OAUTH2_SCOPE(SCOPE_ID) ON DELETE CASCADE,
-            UNIQUE (SCOPE_ID, SCOPE_BINDING, BINDING_TYPE)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_RESOURCE_SCOPE (
-            RESOURCE_PATH VARCHAR(255) NOT NULL,
-            SCOPE_ID INTEGER NOT NULL,
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (RESOURCE_PATH),
-            FOREIGN KEY (SCOPE_ID) REFERENCES IDN_OAUTH2_SCOPE (SCOPE_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_SCIM_GROUP (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            TENANT_ID INTEGER NOT NULL,
-            ROLE_NAME VARCHAR(255) NOT NULL,
-            ATTR_NAME VARCHAR(1024) NOT NULL,
-            ATTR_VALUE VARCHAR(1024),
-            PRIMARY KEY (ID)
-);
-
-
-
-CREATE TABLE IF NOT EXISTS IDN_OPENID_REMEMBER_ME (
-            USER_NAME VARCHAR(255) NOT NULL,
-            TENANT_ID INTEGER DEFAULT 0,
-            COOKIE_VALUE VARCHAR(1024),
-            CREATED_TIME TIMESTAMP,
-            PRIMARY KEY (USER_NAME, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OPENID_USER_RPS (
-			USER_NAME VARCHAR(255) NOT NULL,
-			TENANT_ID INTEGER DEFAULT 0,
-			RP_URL VARCHAR(255) NOT NULL,
-			TRUSTED_ALWAYS VARCHAR(128) DEFAULT 'FALSE',
-			LAST_VISIT DATE NOT NULL,
-			VISIT_COUNT INTEGER DEFAULT 0,
-			DEFAULT_PROFILE_NAME VARCHAR(255) DEFAULT 'DEFAULT',
-			PRIMARY KEY (USER_NAME, TENANT_ID, RP_URL)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OPENID_ASSOCIATIONS (
-			HANDLE VARCHAR(255) NOT NULL,
-			ASSOC_TYPE VARCHAR(255) NOT NULL,
-			EXPIRE_IN TIMESTAMP NOT NULL,
-			MAC_KEY VARCHAR(255) NOT NULL,
-			ASSOC_STORE VARCHAR(128) DEFAULT 'SHARED',
-      TENANT_ID INTEGER DEFAULT -1,
-			PRIMARY KEY (HANDLE)
-);
-
-CREATE TABLE IDN_STS_STORE (
-            ID INTEGER AUTO_INCREMENT,
-            TOKEN_ID VARCHAR(255) NOT NULL,
-            TOKEN_CONTENT BLOB(1024) NOT NULL,
-            CREATE_DATE TIMESTAMP NOT NULL,
-            EXPIRE_DATE TIMESTAMP NOT NULL,
-            STATE INTEGER DEFAULT 0,
-            PRIMARY KEY (ID)
-);
-
-CREATE TABLE IDN_IDENTITY_USER_DATA (
-            TENANT_ID INTEGER DEFAULT -1234,
-            USER_NAME VARCHAR(255) NOT NULL,
-            DATA_KEY VARCHAR(255) NOT NULL,
-            DATA_VALUE VARCHAR(2048),
-            PRIMARY KEY (TENANT_ID, USER_NAME, DATA_KEY)
-);
-
-CREATE TABLE IDN_IDENTITY_META_DATA (
-            USER_NAME VARCHAR(255) NOT NULL,
-            TENANT_ID INTEGER DEFAULT -1234,
-            METADATA_TYPE VARCHAR(255) NOT NULL,
-            METADATA VARCHAR(255) NOT NULL,
-            VALID VARCHAR(255) NOT NULL,
-            PRIMARY KEY (TENANT_ID, USER_NAME, METADATA_TYPE,METADATA)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_THRIFT_SESSION (
-            SESSION_ID VARCHAR(255) NOT NULL,
-            USER_NAME VARCHAR(255) NOT NULL,
-            CREATED_TIME VARCHAR(255) NOT NULL,
-            LAST_MODIFIED_TIME VARCHAR(255) NOT NULL,
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (SESSION_ID)
-);
-
-CREATE TABLE IDN_AUTH_SESSION_STORE (
-            SESSION_ID VARCHAR (100) NOT NULL,
-            SESSION_TYPE VARCHAR(100) NOT NULL,
-            OPERATION VARCHAR(10) NOT NULL,
-            SESSION_OBJECT BLOB,
-            TIME_CREATED BIGINT,
-            TENANT_ID INTEGER DEFAULT -1,
-            EXPIRY_TIME BIGINT,
-            PRIMARY KEY (SESSION_ID, SESSION_TYPE, TIME_CREATED, OPERATION)
-);
-
-
-CREATE TABLE IDN_AUTH_TEMP_SESSION_STORE (
-            SESSION_ID VARCHAR (100) NOT NULL,
-            SESSION_TYPE VARCHAR(100) NOT NULL,
-            OPERATION VARCHAR(10) NOT NULL,
-            SESSION_OBJECT BLOB,
-            TIME_CREATED BIGINT,
-            TENANT_ID INTEGER DEFAULT -1,
-            EXPIRY_TIME BIGINT,
-            PRIMARY KEY (SESSION_ID, SESSION_TYPE, TIME_CREATED, OPERATION)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_AUTH_USER (
-            USER_ID VARCHAR(255) NOT NULL,
-            USER_NAME VARCHAR(255) NOT NULL,
-            TENANT_ID INTEGER NOT NULL,
-            DOMAIN_NAME VARCHAR(255) NOT NULL,
-            IDP_ID INTEGER NOT NULL,
-            PRIMARY KEY (USER_ID),
-            CONSTRAINT USER_STORE_CONSTRAINT UNIQUE (USER_NAME, TENANT_ID, DOMAIN_NAME, IDP_ID));
-
-CREATE TABLE IF NOT EXISTS IDN_AUTH_USER_SESSION_MAPPING (
-            USER_ID VARCHAR(255) NOT NULL,
-            SESSION_ID VARCHAR(255) NOT NULL,
-            CONSTRAINT USER_SESSION_STORE_CONSTRAINT UNIQUE (USER_ID, SESSION_ID));
-
-CREATE TABLE IF NOT EXISTS IDN_AUTH_SESSION_APP_INFO (
-            SESSION_ID VARCHAR (100) NOT NULL,
-            SUBJECT VARCHAR (100) NOT NULL,
-            APP_ID INTEGER NOT NULL,
-            INBOUND_AUTH_TYPE VARCHAR (255) NOT NULL,
-            PRIMARY KEY (SESSION_ID, SUBJECT, APP_ID, INBOUND_AUTH_TYPE));
-
-CREATE TABLE IF NOT EXISTS IDN_AUTH_SESSION_META_DATA (
-            SESSION_ID VARCHAR (100) NOT NULL,
-            PROPERTY_TYPE VARCHAR (100) NOT NULL,
-            `VALUE` VARCHAR (255) NOT NULL,
-            PRIMARY KEY (SESSION_ID, PROPERTY_TYPE, `VALUE`)
-            );
-
-CREATE TABLE IF NOT EXISTS SP_APP (
-        ID INTEGER NOT NULL AUTO_INCREMENT,
-        TENANT_ID INTEGER NOT NULL,
-        APP_NAME VARCHAR (255) NOT NULL ,
-        USER_STORE VARCHAR (255) NOT NULL,
-        USERNAME VARCHAR (255) NOT NULL ,
-        DESCRIPTION VARCHAR (1024),
-        ROLE_CLAIM VARCHAR (512),
-        AUTH_TYPE VARCHAR (255) NOT NULL,
-        PROVISIONING_USERSTORE_DOMAIN VARCHAR (512),
-        IS_LOCAL_CLAIM_DIALECT CHAR(1) DEFAULT '1',
-        IS_SEND_LOCAL_SUBJECT_ID CHAR(1) DEFAULT '0',
-        IS_SEND_AUTH_LIST_OF_IDPS CHAR(1) DEFAULT '0',
-        IS_USE_TENANT_DOMAIN_SUBJECT CHAR(1) DEFAULT '1',
-        IS_USE_USER_DOMAIN_SUBJECT CHAR(1) DEFAULT '1',
-        ENABLE_AUTHORIZATION CHAR(1) DEFAULT '0',
-        SUBJECT_CLAIM_URI VARCHAR (512),
-        IS_SAAS_APP CHAR(1) DEFAULT '0',
-        IS_DUMB_MODE CHAR(1) DEFAULT '0',
-        UUID CHAR(36),
-        IMAGE_URL VARCHAR(1024),
-        ACCESS_URL VARCHAR(1024),
-        IS_DISCOVERABLE CHAR(1) DEFAULT '0',
-
-        PRIMARY KEY (ID));
-
-ALTER TABLE SP_APP ADD CONSTRAINT APPLICATION_NAME_CONSTRAINT UNIQUE(APP_NAME, TENANT_ID);
-ALTER TABLE SP_APP ADD CONSTRAINT APPLICATION_UUID_CONSTRAINT UNIQUE(UUID);
-
-CREATE TABLE IF NOT EXISTS SP_METADATA (
-            ID INTEGER AUTO_INCREMENT,
-            SP_ID INTEGER,
-            NAME VARCHAR(255) NOT NULL,
-            `VALUE` VARCHAR(255) NOT NULL,
-            DISPLAY_NAME VARCHAR(255),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (ID),
-            CONSTRAINT SP_METADATA_CONSTRAINT UNIQUE (SP_ID, NAME),
-            FOREIGN KEY (SP_ID) REFERENCES SP_APP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS SP_INBOUND_AUTH (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            TENANT_ID INTEGER NOT NULL,
-            INBOUND_AUTH_KEY VARCHAR (255),
-            INBOUND_AUTH_TYPE VARCHAR (255) NOT NULL,
-            INBOUND_CONFIG_TYPE VARCHAR (255) NOT NULL,
-            PROP_NAME VARCHAR (255),
-            PROP_VALUE VARCHAR (1024) ,
-            APP_ID INTEGER NOT NULL,
-            PRIMARY KEY (ID));
-
-ALTER TABLE SP_INBOUND_AUTH ADD CONSTRAINT APPLICATION_ID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES SP_APP (ID) ON
-DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_AUTH_STEP (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            TENANT_ID INTEGER NOT NULL,
-            STEP_ORDER INTEGER DEFAULT 1,
-            APP_ID INTEGER NOT NULL ,
-            IS_SUBJECT_STEP CHAR(1) DEFAULT '0',
-            IS_ATTRIBUTE_STEP CHAR(1) DEFAULT '0',
-            PRIMARY KEY (ID));
-
-ALTER TABLE SP_AUTH_STEP ADD CONSTRAINT APPLICATION_ID_CONSTRAINT_STEP FOREIGN KEY (APP_ID) REFERENCES SP_APP (ID) ON
-DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_FEDERATED_IDP (
-            ID INTEGER NOT NULL,
-            TENANT_ID INTEGER NOT NULL,
-            AUTHENTICATOR_ID INTEGER NOT NULL,
-            PRIMARY KEY (ID, AUTHENTICATOR_ID));
-
-ALTER TABLE SP_FEDERATED_IDP ADD CONSTRAINT STEP_ID_CONSTRAINT FOREIGN KEY (ID) REFERENCES SP_AUTH_STEP (ID) ON DELETE
-CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_CLAIM_DIALECT (
-	   	ID INTEGER NOT NULL AUTO_INCREMENT,
-	   	TENANT_ID INTEGER NOT NULL,
-	   	SP_DIALECT VARCHAR (512) NOT NULL,
-	   	APP_ID INTEGER NOT NULL,
-	   	PRIMARY KEY (ID));
-
-ALTER TABLE SP_CLAIM_DIALECT ADD CONSTRAINT DIALECTID_APPID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES SP_APP (ID) ON
-DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_CLAIM_MAPPING ( 
-	   	ID INTEGER NOT NULL AUTO_INCREMENT, 
-	   	TENANT_ID INTEGER NOT NULL, 
-	   	IDP_CLAIM VARCHAR (512) NOT NULL , 
-	   	SP_CLAIM VARCHAR (512) NOT NULL , 
-	   	APP_ID INTEGER NOT NULL, 
-	   	IS_REQUESTED VARCHAR(128) DEFAULT '0', 
-		IS_MANDATORY VARCHAR(128) DEFAULT '0', 
-	   	DEFAULT_VALUE VARCHAR(255), 
-	   	PRIMARY KEY (ID));
-
-ALTER TABLE SP_CLAIM_MAPPING ADD CONSTRAINT CLAIMID_APPID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES SP_APP (ID) ON
-DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_ROLE_MAPPING (
-	    	ID INTEGER NOT NULL AUTO_INCREMENT,
-	    	TENANT_ID INTEGER NOT NULL,
-	    	IDP_ROLE VARCHAR (255) NOT NULL ,
-	    	SP_ROLE VARCHAR (255) NOT NULL ,
-	    	APP_ID INTEGER NOT NULL,
-	    	PRIMARY KEY (ID));
-
-ALTER TABLE SP_ROLE_MAPPING ADD CONSTRAINT ROLEID_APPID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES SP_APP (ID) ON
-DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_REQ_PATH_AUTHENTICATOR (
-	    	ID INTEGER NOT NULL AUTO_INCREMENT,
-	    	TENANT_ID INTEGER NOT NULL,
-	    	AUTHENTICATOR_NAME VARCHAR (255) NOT NULL ,
-	    	APP_ID INTEGER NOT NULL,
-	    	PRIMARY KEY (ID));
-
-ALTER TABLE SP_REQ_PATH_AUTHENTICATOR ADD CONSTRAINT REQ_AUTH_APPID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES SP_APP
-(ID) ON DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_PROVISIONING_CONNECTOR (
-	    	ID INTEGER NOT NULL AUTO_INCREMENT,
-	    	TENANT_ID INTEGER NOT NULL,
-	    	IDP_NAME VARCHAR (255) NOT NULL ,
-	    	CONNECTOR_NAME VARCHAR (255) NOT NULL ,
-	    	APP_ID INTEGER NOT NULL,
-	    	IS_JIT_ENABLED CHAR(1) NOT NULL DEFAULT '0',
-	    	BLOCKING CHAR(1) NOT NULL DEFAULT '0',
-	    	RULE_ENABLED CHAR(1) NOT NULL DEFAULT '0',
-	    	PRIMARY KEY (ID));
-
-ALTER TABLE SP_PROVISIONING_CONNECTOR ADD CONSTRAINT PRO_CONNECTOR_APPID_CONSTRAINT FOREIGN KEY (APP_ID) REFERENCES
-SP_APP (ID) ON DELETE CASCADE;
-
-CREATE TABLE IF NOT EXISTS SP_AUTH_SCRIPT (
-  ID         INTEGER AUTO_INCREMENT NOT NULL,
-  TENANT_ID  INTEGER                NOT NULL,
-  APP_ID     INTEGER                NOT NULL,
-  TYPE       VARCHAR(255)           NOT NULL,
-  CONTENT    BLOB    DEFAULT NULL,
-  IS_ENABLED CHAR(1) NOT NULL DEFAULT '0',
-  PRIMARY KEY (ID));
-
-CREATE TABLE SP_TEMPLATE (
-  ID         INTEGER AUTO_INCREMENT NOT NULL,
-  TENANT_ID  INTEGER                NOT NULL,
-  NAME VARCHAR(255) NOT NULL,
-  DESCRIPTION VARCHAR(1023),
-  CONTENT BLOB DEFAULT NULL,
-  PRIMARY KEY (ID),
-  CONSTRAINT SP_TEMPLATE_CONSTRAINT UNIQUE (TENANT_ID, NAME));
-
-CREATE TABLE IF NOT EXISTS SP_TRUSTED_APPS (
-  ID INTEGER AUTO_INCREMENT,
-  SP_ID INTEGER NOT NULL,
-  PLATFORM_TYPE VARCHAR(255) NOT NULL,
-  APP_IDENTIFIER VARCHAR(255) NOT NULL,
-  THUMBPRINTS VARCHAR(2048),
-  IS_FIDO_TRUSTED BOOLEAN DEFAULT FALSE,
-  TENANT_ID INTEGER DEFAULT -1,
-  PRIMARY KEY (ID),
-  UNIQUE (SP_ID, PLATFORM_TYPE),
-  FOREIGN KEY (SP_ID) REFERENCES SP_APP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDN_AUTH_WAIT_STATUS (
-  ID              INTEGER AUTO_INCREMENT NOT NULL,
-  TENANT_ID       INTEGER                NOT NULL,
-  LONG_WAIT_KEY   VARCHAR(255)           NOT NULL,
-  WAIT_STATUS     CHAR(1) NOT NULL DEFAULT '1',
-  TIME_CREATED    TIMESTAMP DEFAULT 0,
-  EXPIRE_TIME     TIMESTAMP DEFAULT 0,
-  PRIMARY KEY (ID),
-  CONSTRAINT IDN_AUTH_WAIT_STATUS_KEY UNIQUE (LONG_WAIT_KEY));
-
-CREATE TABLE IF NOT EXISTS IDP (
-  ID                         INTEGER               AUTO_INCREMENT,
-  TENANT_ID                  INTEGER,
-  NAME                       VARCHAR(254) NOT NULL,
-  IS_ENABLED                 CHAR(1)      NOT NULL DEFAULT '1',
-  IS_PRIMARY                 CHAR(1)      NOT NULL DEFAULT '0',
-  HOME_REALM_ID              VARCHAR(254),
-  IMAGE                      MEDIUMBLOB,
-  CERTIFICATE                BLOB,
-  ALIAS                      VARCHAR(254),
-  INBOUND_PROV_ENABLED       CHAR(1)      NOT NULL DEFAULT '0',
-  INBOUND_PROV_USER_STORE_ID VARCHAR(254),
-  USER_CLAIM_URI             VARCHAR(254),
-  ROLE_CLAIM_URI             VARCHAR(254),
-  DESCRIPTION                VARCHAR(1024),
-  DEFAULT_AUTHENTICATOR_NAME VARCHAR(254),
-  DEFAULT_PRO_CONNECTOR_NAME VARCHAR(254),
-  PROVISIONING_ROLE          VARCHAR(128),
-  IS_FEDERATION_HUB          CHAR(1)      NOT NULL DEFAULT '0',
-  IS_LOCAL_CLAIM_DIALECT     CHAR(1)      NOT NULL DEFAULT '0',
-  DISPLAY_NAME               VARCHAR(255),
-  IMAGE_URL                  VARCHAR(1024),
-  UUID                       CHAR(36) NOT NULL,
-  PRIMARY KEY (ID),
-  UNIQUE (TENANT_ID, NAME),
-  UNIQUE (UUID)
-);
-
-CREATE TABLE IF NOT EXISTS IDP_ROLE (
-			ID INTEGER AUTO_INCREMENT,
-			IDP_ID INTEGER,
-			TENANT_ID INTEGER,
-			ROLE VARCHAR(254),
-			PRIMARY KEY (ID),
-			UNIQUE (IDP_ID, ROLE),
-			FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_GROUP (
-			ID INTEGER AUTO_INCREMENT NOT NULL,
-			IDP_ID INTEGER NOT NULL,
-			TENANT_ID INTEGER NOT NULL,
-			GROUP_NAME VARCHAR(255) NOT NULL,
-			UUID CHAR(36) NOT NULL,
-			PRIMARY KEY (ID),
-			UNIQUE (IDP_ID, GROUP_NAME),
-			UNIQUE (UUID),
-			FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_ROLE_MAPPING (
-			ID INTEGER AUTO_INCREMENT,
-			IDP_ROLE_ID INTEGER,
-			TENANT_ID INTEGER,
-			USER_STORE_ID VARCHAR (253),
-			LOCAL_ROLE VARCHAR(253),
-			PRIMARY KEY (ID),
-			UNIQUE (IDP_ROLE_ID, TENANT_ID, USER_STORE_ID, LOCAL_ROLE),
-			FOREIGN KEY (IDP_ROLE_ID) REFERENCES IDP_ROLE(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_CLAIM (
-			ID INTEGER AUTO_INCREMENT,
-			IDP_ID INTEGER,
-			TENANT_ID INTEGER,
-			CLAIM VARCHAR(254),
-			PRIMARY KEY (ID),
-			UNIQUE (IDP_ID, CLAIM),
-			FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_CLAIM_MAPPING (
-			ID INTEGER AUTO_INCREMENT,
-			IDP_CLAIM_ID INTEGER,
-			TENANT_ID INTEGER,
-			LOCAL_CLAIM VARCHAR(253),
-			DEFAULT_VALUE VARCHAR(255),
-			IS_REQUESTED VARCHAR(128) DEFAULT '0',
-			PRIMARY KEY (ID),
-			UNIQUE (IDP_CLAIM_ID, TENANT_ID, LOCAL_CLAIM),
-			FOREIGN KEY (IDP_CLAIM_ID) REFERENCES IDP_CLAIM(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_AUTHENTICATOR (
-            ID INTEGER AUTO_INCREMENT,
-            TENANT_ID INTEGER,
-            IDP_ID INTEGER,
-            NAME VARCHAR(255) NOT NULL,
-            IS_ENABLED CHAR (1) DEFAULT '1',
-            DISPLAY_NAME VARCHAR(255),
-            PRIMARY KEY (ID),
-            UNIQUE (TENANT_ID, IDP_ID, NAME),
-            FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_METADATA (
-            ID INTEGER AUTO_INCREMENT,
-            IDP_ID INTEGER,
-            NAME VARCHAR(255) NOT NULL,
-            `VALUE` VARCHAR(255) NOT NULL,
-            DISPLAY_NAME VARCHAR(255),
-            TENANT_ID INTEGER DEFAULT -1,
-            PRIMARY KEY (ID),
-            CONSTRAINT IDP_METADATA_CONSTRAINT UNIQUE (IDP_ID, NAME),
-            FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_AUTHENTICATOR_PROPERTY (
-            ID INTEGER AUTO_INCREMENT,
-            TENANT_ID INTEGER,
-            AUTHENTICATOR_ID INTEGER,
-            PROPERTY_KEY VARCHAR(255) NOT NULL,
-            PROPERTY_VALUE VARCHAR(2047),
-            IS_SECRET CHAR (1) DEFAULT '0',
-            PRIMARY KEY (ID),
-            UNIQUE (TENANT_ID, AUTHENTICATOR_ID, PROPERTY_KEY),
-            FOREIGN KEY (AUTHENTICATOR_ID) REFERENCES IDP_AUTHENTICATOR(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_PROVISIONING_CONFIG (
-            ID INTEGER AUTO_INCREMENT,
-            TENANT_ID INTEGER,
-            IDP_ID INTEGER,
-            PROVISIONING_CONNECTOR_TYPE VARCHAR(255) NOT NULL,
-            IS_ENABLED CHAR (1) DEFAULT '0',
-            IS_BLOCKING CHAR (1) DEFAULT '0',
-            IS_RULES_ENABLED CHAR (1) DEFAULT '0',
-            PRIMARY KEY (ID),
-            UNIQUE (TENANT_ID, IDP_ID, PROVISIONING_CONNECTOR_TYPE),
-            FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_PROV_CONFIG_PROPERTY (
-            ID INTEGER AUTO_INCREMENT,
-            TENANT_ID INTEGER,
-            PROVISIONING_CONFIG_ID INTEGER,
-            PROPERTY_KEY VARCHAR(255) NOT NULL,
-            PROPERTY_VALUE VARCHAR(2048),
-            PROPERTY_BLOB_VALUE BLOB,
-            PROPERTY_TYPE VARCHAR(32) NOT NULL,
-            IS_SECRET CHAR (1) DEFAULT '0',
-            PRIMARY KEY (ID),
-            UNIQUE (TENANT_ID, PROVISIONING_CONFIG_ID, PROPERTY_KEY),
-            FOREIGN KEY (PROVISIONING_CONFIG_ID) REFERENCES IDP_PROVISIONING_CONFIG(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_PROVISIONING_ENTITY (
-            ID INTEGER AUTO_INCREMENT,
-            PROVISIONING_CONFIG_ID INTEGER,
-            ENTITY_TYPE VARCHAR(255) NOT NULL,
-            ENTITY_LOCAL_USERSTORE VARCHAR(255) NOT NULL,
-            ENTITY_NAME VARCHAR(255) NOT NULL,
-            ENTITY_VALUE VARCHAR(255),
-            TENANT_ID INTEGER,
-            ENTITY_LOCAL_ID VARCHAR(255),
-            PRIMARY KEY (ID),
-            UNIQUE (ENTITY_TYPE, TENANT_ID, ENTITY_LOCAL_USERSTORE, ENTITY_NAME, PROVISIONING_CONFIG_ID),
-            UNIQUE (PROVISIONING_CONFIG_ID, ENTITY_TYPE, ENTITY_VALUE),
-            FOREIGN KEY (PROVISIONING_CONFIG_ID) REFERENCES IDP_PROVISIONING_CONFIG(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDP_LOCAL_CLAIM (
-            ID INTEGER AUTO_INCREMENT,
-            TENANT_ID INTEGER,
-            IDP_ID INTEGER,
-            CLAIM_URI VARCHAR(255) NOT NULL,
-            DEFAULT_VALUE VARCHAR(255),
-            IS_REQUESTED VARCHAR(128) DEFAULT '0',
-            PRIMARY KEY (ID),
-            UNIQUE (TENANT_ID, IDP_ID, CLAIM_URI),
-            FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE);
-
-CREATE TABLE IF NOT EXISTS IDN_ASSOCIATED_ID (
-	    ID INTEGER AUTO_INCREMENT,
-	    IDP_USER_ID VARCHAR(255) NOT NULL,
-	    TENANT_ID INTEGER DEFAULT -1234,
-	    IDP_ID INTEGER NOT NULL,
-	    DOMAIN_NAME VARCHAR(255) NOT NULL,
- 	    USER_NAME VARCHAR(255) NOT NULL,
-        ASSOCIATION_ID CHAR(36) NOT NULL,
-	    PRIMARY KEY (ID),
-	    UNIQUE(IDP_USER_ID, TENANT_ID, IDP_ID),
-	    FOREIGN KEY (IDP_ID) REFERENCES IDP(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_USER_ACCOUNT_ASSOCIATION (
-            ASSOCIATION_KEY VARCHAR(255) NOT NULL,
-            TENANT_ID INTEGER,
-            DOMAIN_NAME VARCHAR(255) NOT NULL,
-            USER_NAME VARCHAR(255) NOT NULL,
-            PRIMARY KEY (TENANT_ID, DOMAIN_NAME, USER_NAME));
-
-CREATE TABLE IF NOT EXISTS FIDO_DEVICE_STORE (
-        TENANT_ID INTEGER,
-        DOMAIN_NAME VARCHAR(255) NOT NULL,
-        USER_NAME VARCHAR(45) NOT NULL,
-        TIME_REGISTERED TIMESTAMP,
-        KEY_HANDLE VARCHAR(200) NOT NULL,
-        DEVICE_DATA VARCHAR(2048) NOT NULL,
-      	PRIMARY KEY (TENANT_ID, DOMAIN_NAME, USER_NAME, KEY_HANDLE));
-
-CREATE TABLE IF NOT EXISTS FIDO2_DEVICE_STORE (
-            TENANT_ID INTEGER,
-            DOMAIN_NAME VARCHAR(255) NOT NULL,
-            USER_NAME VARCHAR(45) NOT NULL,
-            TIME_REGISTERED TIMESTAMP,
-            USER_HANDLE VARCHAR(200) NOT NULL,
-            CREDENTIAL_ID VARCHAR(200) NOT NULL,
-            PUBLIC_KEY_COSE VARCHAR(2048) NOT NULL,
-            SIGNATURE_COUNT BIGINT,
-            USER_IDENTITY VARCHAR(200) NOT NULL,
-            DISPLAY_NAME VARCHAR(255),
-            IS_USERNAMELESS_SUPPORTED CHAR(1) DEFAULT '0',
-            PRIMARY KEY (TENANT_ID, DOMAIN_NAME, USER_NAME, USER_HANDLE));
-      	
-CREATE TABLE IF NOT EXISTS WF_REQUEST (
-    UUID VARCHAR (45),
-    CREATED_BY VARCHAR (255),
-    TENANT_ID INTEGER DEFAULT -1,
-    OPERATION_TYPE VARCHAR (50),
-    CREATED_AT TIMESTAMP,
-    UPDATED_AT TIMESTAMP,
-    STATUS VARCHAR (30),
-    REQUEST BLOB,
-    PRIMARY KEY (UUID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_RECOVERY_FLOW_DATA (
-    RECOVERY_FLOW_ID VARCHAR(255) NOT NULL,
-    CODE VARCHAR(255),
-    FAILED_ATTEMPTS INTEGER DEFAULT 0 NOT NULL,
-    RESEND_COUNT INTEGER DEFAULT 0 NOT NULL,
-    TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-    PRIMARY KEY(RECOVERY_FLOW_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_RECOVERY_DATA (
-  USER_NAME VARCHAR(255) NOT NULL,
-  USER_DOMAIN VARCHAR(127) NOT NULL,
-  TENANT_ID INTEGER DEFAULT -1,
-  CODE VARCHAR(255) NOT NULL,
-  SCENARIO VARCHAR(255) NOT NULL,
-  STEP VARCHAR(127) NOT NULL,
-  TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-  REMAINING_SETS VARCHAR(2500) DEFAULT NULL,
-  RECOVERY_FLOW_ID VARCHAR(255),
-  PRIMARY KEY(USER_NAME, USER_DOMAIN, TENANT_ID, SCENARIO,STEP),
-  FOREIGN KEY (RECOVERY_FLOW_ID) REFERENCES IDN_RECOVERY_FLOW_DATA(RECOVERY_FLOW_ID) ON DELETE CASCADE,
-  UNIQUE(CODE)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_PASSWORD_HISTORY_DATA (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  USER_NAME   VARCHAR(255) NOT NULL,
-  USER_DOMAIN VARCHAR(127) NOT NULL,
-  TENANT_ID   INTEGER DEFAULT -1,
-  SALT_VALUE  VARCHAR(255),
-  HASH        VARCHAR(255) NOT NULL,
-  TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-  PRIMARY KEY (ID),
-  UNIQUE (USER_NAME,USER_DOMAIN,TENANT_ID,SALT_VALUE,HASH)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CLAIM_DIALECT (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  DIALECT_URI VARCHAR (255) NOT NULL,
-  TENANT_ID INTEGER NOT NULL,
-  PRIMARY KEY (ID),
-  CONSTRAINT DIALECT_URI_CONSTRAINT UNIQUE (DIALECT_URI, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CLAIM (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  DIALECT_ID INTEGER NOT NULL,
-  CLAIM_URI VARCHAR (255) NOT NULL,
-  TENANT_ID INTEGER NOT NULL,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (DIALECT_ID) REFERENCES IDN_CLAIM_DIALECT(ID) ON DELETE CASCADE,
-  CONSTRAINT CLAIM_URI_CONSTRAINT UNIQUE (DIALECT_ID, CLAIM_URI, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CLAIM_MAPPED_ATTRIBUTE (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  LOCAL_CLAIM_ID INTEGER,
-  USER_STORE_DOMAIN_NAME VARCHAR (255) NOT NULL,
-  ATTRIBUTE_NAME VARCHAR (255) NOT NULL,
-  TENANT_ID INTEGER NOT NULL,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (LOCAL_CLAIM_ID) REFERENCES IDN_CLAIM(ID) ON DELETE CASCADE,
-  CONSTRAINT USER_STORE_DOMAIN_CONSTRAINT UNIQUE (LOCAL_CLAIM_ID, USER_STORE_DOMAIN_NAME, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CLAIM_PROPERTY (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  LOCAL_CLAIM_ID INTEGER,
-  PROPERTY_NAME VARCHAR (255) NOT NULL,
-  PROPERTY_VALUE VARCHAR (255) NOT NULL,
-  TENANT_ID INTEGER NOT NULL,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (LOCAL_CLAIM_ID) REFERENCES IDN_CLAIM(ID) ON DELETE CASCADE,
-  CONSTRAINT PROPERTY_NAME_CONSTRAINT UNIQUE (LOCAL_CLAIM_ID, PROPERTY_NAME, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CLAIM_MAPPING (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  EXT_CLAIM_ID INTEGER NOT NULL,
-  MAPPED_LOCAL_CLAIM_ID INTEGER NOT NULL,
-  TENANT_ID INTEGER NOT NULL,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (EXT_CLAIM_ID) REFERENCES IDN_CLAIM(ID) ON DELETE CASCADE,
-  FOREIGN KEY (MAPPED_LOCAL_CLAIM_ID) REFERENCES IDN_CLAIM(ID) ON DELETE CASCADE,
-  CONSTRAINT EXT_TO_LOC_MAPPING_CONSTRN UNIQUE (EXT_CLAIM_ID, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS  IDN_SAML2_ASSERTION_STORE (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  SAML2_ID  VARCHAR(255) ,
-  SAML2_ISSUER  VARCHAR(255) ,
-  SAML2_SUBJECT  VARCHAR(255) ,
-  SAML2_SESSION_INDEX  VARCHAR(255) ,
-  SAML2_AUTHN_CONTEXT_CLASS_REF  VARCHAR(255) ,
-  SAML2_ASSERTION  VARCHAR(4096) ,
-  ASSERTION BLOB ,
-  PRIMARY KEY (ID)
-);
-
-CREATE TABLE IDN_SAML2_ARTIFACT_STORE (
-  ID INT NOT NULL AUTO_INCREMENT,
-  SOURCE_ID VARCHAR(255) NOT NULL,
-  MESSAGE_HANDLER VARCHAR(255) NOT NULL,
-  AUTHN_REQ_DTO BLOB NOT NULL,
-  SESSION_ID VARCHAR(255) NOT NULL,
-  INIT_TIMESTAMP TIMESTAMP NOT NULL,
-  EXP_TIMESTAMP TIMESTAMP NOT NULL,
-  ASSERTION_ID VARCHAR(255),
-  PRIMARY KEY (`ID`)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OIDC_JTI (
-  JWT_ID VARCHAR(255),
-  EXP_TIME TIMESTAMP NOT NULL ,
-  TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP ,
-  PRIMARY KEY (JWT_ID)
-);
-
-
-CREATE TABLE IF NOT EXISTS IDN_OIDC_PROPERTY (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  TENANT_ID  INTEGER,
-  CONSUMER_KEY  VARCHAR(255) ,
-  PROPERTY_KEY  VARCHAR(255) NOT NULL,
-  PROPERTY_VALUE  VARCHAR(2047) ,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (TENANT_ID, CONSUMER_KEY) REFERENCES IDN_OAUTH_CONSUMER_APPS(TENANT_ID, CONSUMER_KEY) ON DELETE CASCADE
-);
-CREATE TABLE IF NOT EXISTS IDN_OIDC_REQ_OBJECT_REFERENCE (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  CONSUMER_KEY_ID INTEGER ,
-  CODE_ID VARCHAR(255) ,
-  TOKEN_ID VARCHAR(255) ,
-  SESSION_DATA_KEY VARCHAR(255),
-  PRIMARY KEY (ID),
-  FOREIGN KEY (CONSUMER_KEY_ID) REFERENCES IDN_OAUTH_CONSUMER_APPS(ID) ON DELETE CASCADE,
-  FOREIGN KEY (TOKEN_ID) REFERENCES IDN_OAUTH2_ACCESS_TOKEN(TOKEN_ID) ON DELETE CASCADE,
-  FOREIGN KEY (CODE_ID) REFERENCES IDN_OAUTH2_AUTHORIZATION_CODE(CODE_ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OIDC_REQ_OBJECT_CLAIMS (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  REQ_OBJECT_ID INTEGER,
-  CLAIM_ATTRIBUTE VARCHAR(255) ,
-  ESSENTIAL CHAR(1) NOT NULL DEFAULT '0',
-  `VALUE` VARCHAR(255) ,
-  IS_USERINFO CHAR(1) NOT NULL DEFAULT '0',
-  PRIMARY KEY (ID),
-  FOREIGN KEY (REQ_OBJECT_ID) REFERENCES IDN_OIDC_REQ_OBJECT_REFERENCE (ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OIDC_REQ_OBJ_CLAIM_VALUES (
-  ID INTEGER NOT NULL AUTO_INCREMENT,
-  REQ_OBJECT_CLAIMS_ID INTEGER ,
-  CLAIM_VALUES VARCHAR(255) ,
-  PRIMARY KEY (ID),
-  FOREIGN KEY (REQ_OBJECT_CLAIMS_ID) REFERENCES  IDN_OIDC_REQ_OBJECT_CLAIMS(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CERTIFICATE (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            NAME VARCHAR(100),
-            CERTIFICATE_IN_PEM BLOB,
-            TENANT_ID INTEGER DEFAULT 0,
-            PRIMARY KEY(ID),
-            CONSTRAINT CERTIFICATE_UNIQUE_KEY UNIQUE (NAME, TENANT_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OIDC_SCOPE_CLAIM_MAPPING (
-            ID INTEGER NOT NULL AUTO_INCREMENT,
-            SCOPE_ID INTEGER NOT NULL,
-            EXTERNAL_CLAIM_ID INTEGER NOT NULL,
-            PRIMARY KEY (ID),
-            FOREIGN KEY (SCOPE_ID) REFERENCES IDN_OAUTH2_SCOPE(SCOPE_ID) ON DELETE CASCADE,
-            FOREIGN KEY (EXTERNAL_CLAIM_ID) REFERENCES IDN_CLAIM(ID) ON DELETE CASCADE,
-            UNIQUE (SCOPE_ID, EXTERNAL_CLAIM_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_FUNCTION_LIBRARY (
-	NAME VARCHAR(255) NOT NULL,
-	DESCRIPTION VARCHAR(1023),
-	TYPE VARCHAR(255) NOT NULL,
-	TENANT_ID INTEGER NOT NULL,
-	DATA BLOB NOT NULL,
-	PRIMARY KEY (TENANT_ID,NAME)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_CIBA_AUTH_CODE (
-    AUTH_CODE_KEY CHAR (36),
-    AUTH_REQ_ID CHAR (36),
-    ISSUED_TIME TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-    CONSUMER_KEY VARCHAR(255),
-    LAST_POLLED_TIME TIMESTAMP NOT NULL,
-    POLLING_INTERVAL INTEGER,
-    EXPIRES_IN  INTEGER,
-    AUTHENTICATED_USER_NAME VARCHAR(255),
-    USER_STORE_DOMAIN VARCHAR(100),
-    TENANT_ID INTEGER,
-    AUTH_REQ_STATUS VARCHAR (100) DEFAULT 'REQUESTED',
-    IDP_ID INTEGER,
-    UNIQUE(AUTH_REQ_ID),
-    PRIMARY KEY (AUTH_CODE_KEY),
-    FOREIGN KEY (TENANT_ID, CONSUMER_KEY) REFERENCES IDN_OAUTH_CONSUMER_APPS(TENANT_ID, CONSUMER_KEY) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_OAUTH2_CIBA_REQUEST_SCOPES (
-    AUTH_CODE_KEY  CHAR (36),
-    SCOPE VARCHAR (255),
-    FOREIGN KEY (AUTH_CODE_KEY) REFERENCES IDN_OAUTH2_CIBA_AUTH_CODE(AUTH_CODE_KEY) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS IDN_FED_AUTH_SESSION_MAPPING (
-	IDP_SESSION_ID VARCHAR(255) NOT NULL,
-	SESSION_ID VARCHAR(255) NOT NULL,
-	IDP_NAME VARCHAR(255) NOT NULL,
-	AUTHENTICATOR_ID VARCHAR(255),
-	PROTOCOL_TYPE VARCHAR(255),
-	TIME_CREATED TIMESTAMP NOT NULL DEFAULT CURRENT_TIMESTAMP,
-	PRIMARY KEY(IDP_SESSION_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CONFIG_TYPE (
-    ID VARCHAR(255) NOT NULL,
-    NAME VARCHAR(255) NOT NULL,
-    DESCRIPTION VARCHAR(1023) NULL,
-    PRIMARY KEY (ID),
-    CONSTRAINT TYPE_NAME_CONSTRAINT UNIQUE (NAME)
-);
-
-INSERT INTO IDN_CONFIG_TYPE (ID, NAME, DESCRIPTION) VALUES
-('9ab0ef95-13e9-4ed5-afaf-d29bed62f7bd', 'IDP_TEMPLATE', 'Template type to uniquely identify IDP templates'),
-('3c4ac3d0-5903-4e3d-aaca-38df65b33bfd', 'APPLICATION_TEMPLATE',
-'Template type to uniquely identify Application templates'),
-('8ec6dbf1-218a-49bf-bc34-0d2db52d151c', 'CORS_CONFIGURATION',
-'A resource type to keep the tenant CORS configurations');
-
-CREATE TABLE IF NOT EXISTS IDN_CONFIG_RESOURCE (
-    ID VARCHAR(255) NOT NULL,
-    TENANT_ID INT NOT NULL,
-    NAME VARCHAR(255) NOT NULL,
-    CREATED_TIME TIMESTAMP NOT NULL,
-    LAST_MODIFIED TIMESTAMP NOT NULL,
-    HAS_FILE BOOLEAN NOT NULL,
-    HAS_ATTRIBUTE BOOLEAN NOT NULL,
-    TYPE_ID VARCHAR(255) NOT NULL,
-    UNIQUE (NAME, TENANT_ID, TYPE_ID),
-    PRIMARY KEY (ID)
-);
-ALTER TABLE IDN_CONFIG_RESOURCE
-ADD CONSTRAINT TYPE_ID_FOREIGN_CONSTRAINT FOREIGN KEY (TYPE_ID) REFERENCES IDN_CONFIG_TYPE (ID)
-ON DELETE CASCADE ON UPDATE CASCADE;
-
-CREATE TABLE IF NOT EXISTS IDN_CONFIG_ATTRIBUTE (
-    ID VARCHAR(255) NOT NULL,
-    RESOURCE_ID VARCHAR(255) NOT NULL,
-    ATTR_KEY VARCHAR(255) NOT NULL,
-    ATTR_VALUE VARCHAR(1023) NULL,
-    PRIMARY KEY (ID),
-    UNIQUE (RESOURCE_ID, ATTR_KEY)
-);
-ALTER TABLE IDN_CONFIG_ATTRIBUTE
-ADD CONSTRAINT RESOURCE_ID_ATTRIBUTE_FOREIGN_CONSTRAINT FOREIGN KEY (RESOURCE_ID) REFERENCES
-IDN_CONFIG_RESOURCE (ID) ON DELETE CASCADE ON UPDATE CASCADE;
-
-CREATE TABLE IF NOT EXISTS IDN_CONFIG_FILE (
-    ID VARCHAR(255) NOT NULL,
-    `VALUE` BLOB NULL,
-    RESOURCE_ID VARCHAR(255) NOT NULL,
-    NAME VARCHAR(255) NULL,
-    PRIMARY KEY (ID)
-);
-ALTER TABLE IDN_CONFIG_FILE
-ADD CONSTRAINT RESOURCE_ID_FILE_FOREIGN_CONSTRAINT FOREIGN KEY (RESOURCE_ID) REFERENCES
-IDN_CONFIG_RESOURCE (ID) ON DELETE CASCADE ON UPDATE CASCADE;
-
-CREATE TABLE IF NOT EXISTS IDN_REMOTE_FETCH_CONFIG (
-	ID VARCHAR(255) NOT NULL,
-	TENANT_ID INTEGER NOT NULL,
-	IS_ENABLED CHAR(1) NOT NULL,
-	REPO_MANAGER_TYPE VARCHAR(255) NOT NULL,
-	ACTION_LISTENER_TYPE VARCHAR(255) NOT NULL,
-	CONFIG_DEPLOYER_TYPE VARCHAR(255) NOT NULL,
-	REMOTE_FETCH_NAME VARCHAR(255),
-	REMOTE_RESOURCE_URI VARCHAR(255) NOT NULL,
-	ATTRIBUTES_JSON MEDIUMTEXT NOT NULL,
-	PRIMARY KEY (ID),
-	CONSTRAINT UC_REMOTE_RESOURCE_TYPE UNIQUE (TENANT_ID, CONFIG_DEPLOYER_TYPE)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_REMOTE_FETCH_REVISIONS (
-	ID VARCHAR(255) NOT NULL,
-	CONFIG_ID VARCHAR(255) NOT NULL,
-	FILE_PATH VARCHAR(255) NOT NULL,
-	FILE_HASH VARCHAR(255),
-	DEPLOYED_DATE TIMESTAMP,
-	LAST_SYNC_TIME TIMESTAMP,
-	DEPLOYMENT_STATUS VARCHAR(255),
-	ITEM_NAME VARCHAR(255),
-	DEPLOY_ERR_LOG MEDIUMTEXT,
-	PRIMARY KEY (ID),
-	FOREIGN KEY (CONFIG_ID) REFERENCES IDN_REMOTE_FETCH_CONFIG(ID) ON DELETE CASCADE,
-	CONSTRAINT UC_REVISIONS UNIQUE (CONFIG_ID, ITEM_NAME)
-);
-
-
-CREATE TABLE IF NOT EXISTS IDN_USER_FUNCTIONALITY_MAPPING (
-    ID VARCHAR(255) NOT NULL,
-    USER_ID VARCHAR(255) NOT NULL,
-    TENANT_ID INTEGER NOT NULL,
-    FUNCTIONALITY_ID VARCHAR(255) NOT NULL,
-    IS_FUNCTIONALITY_LOCKED BOOLEAN NOT NULL,
-    FUNCTIONALITY_UNLOCK_TIME BIGINT NOT NULL,
-    FUNCTIONALITY_LOCK_REASON VARCHAR(1023),
-    FUNCTIONALITY_LOCK_REASON_CODE VARCHAR(255),
-    PRIMARY KEY (ID),
-    CONSTRAINT IDN_USER_FUNCTIONALITY_MAPPING_CONSTRAINT UNIQUE (USER_ID, TENANT_ID, FUNCTIONALITY_ID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_USER_FUNCTIONALITY_PROPERTY (
-    ID VARCHAR(255) NOT NULL,
-    USER_ID VARCHAR(255) NOT NULL,
-    TENANT_ID INTEGER NOT NULL,
-    FUNCTIONALITY_ID VARCHAR(255) NOT NULL,
-    PROPERTY_NAME VARCHAR(255),
-    PROPERTY_VALUE VARCHAR(255),
-    PRIMARY KEY (ID),
-    CONSTRAINT IDN_USER_FUNCTIONALITY_PROPERTY_CONSTRAINT UNIQUE (USER_ID, TENANT_ID, FUNCTIONALITY_ID, PROPERTY_NAME)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CORS_ORIGIN (
-    ID        INT           NOT NULL AUTO_INCREMENT,
-    TENANT_ID INT           NOT NULL,
-    ORIGIN    VARCHAR(2048) NOT NULL,
-    UUID      CHAR(36)      NOT NULL,
-
-    PRIMARY KEY (ID),
-    UNIQUE (TENANT_ID, ORIGIN),
-    UNIQUE (UUID)
-);
-
-CREATE TABLE IF NOT EXISTS IDN_CORS_ASSOCIATION (
-    IDN_CORS_ORIGIN_ID INT NOT NULL,
-    SP_APP_ID          INT NOT NULL,
-
-    PRIMARY KEY (IDN_CORS_ORIGIN_ID, SP_APP_ID),
-    FOREIGN KEY (IDN_CORS_ORIGIN_ID) REFERENCES IDN_CORS_ORIGIN (ID) ON DELETE CASCADE,
-    FOREIGN KEY (SP_APP_ID) REFERENCES SP_APP (ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS SP_SHARED_APP (
-    ID INTEGER NOT NULL AUTO_INCREMENT,
-    MAIN_APP_ID CHAR(36) NOT NULL,
-    OWNER_ORG_ID CHAR(36) NOT NULL,
-    SHARED_APP_ID CHAR(36) NOT NULL,
-    SHARED_ORG_ID CHAR(36) NOT NULL,
-    SHARE_WITH_ALL_CHILDREN BOOLEAN DEFAULT FALSE,
-    PRIMARY KEY (ID),
-    FOREIGN KEY (MAIN_APP_ID) REFERENCES SP_APP(UUID) ON DELETE CASCADE,
-    FOREIGN KEY (SHARED_APP_ID) REFERENCES SP_APP(UUID) ON DELETE CASCADE,
-    UNIQUE (MAIN_APP_ID, OWNER_ORG_ID, SHARED_ORG_ID),
-    UNIQUE (SHARED_APP_ID)
-);
-
-CREATE TABLE IF NOT EXISTS API_RESOURCE (
-    ID VARCHAR(255) NOT NULL PRIMARY KEY,
-    CURSOR_KEY INTEGER NOT NULL AUTO_INCREMENT,
-    NAME VARCHAR(255) NOT NULL,
-    IDENTIFIER VARCHAR(255) NOT NULL,
-    TENANT_ID INT,
-    DESCRIPTION VARCHAR(255),
-    TYPE VARCHAR(255) NOT NULL,
-    REQUIRES_AUTHORIZATION BOOLEAN NOT NULL
-);
-
-CREATE TABLE IF NOT EXISTS API_RESOURCE_PROPERTY (
-    ID INTEGER AUTO_INCREMENT,
-    API_ID CHAR(36) NOT NULL,
-    NAME VARCHAR(255) NOT NULL,
-    `VALUE` VARCHAR(255) NOT NULL,
-    PRIMARY KEY (ID),
-    CONSTRAINT API_RESOURCE_PROPERTY_CONSTRAINT UNIQUE (API_ID, NAME),
-    FOREIGN KEY (API_ID) REFERENCES API_RESOURCE(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS SCOPE (
-    ID VARCHAR(255) NOT NULL PRIMARY KEY,
-    CURSOR_KEY INTEGER NOT NULL AUTO_INCREMENT,
-    API_ID VARCHAR(255) NOT NULL,
-    NAME VARCHAR(255) NOT NULL,
-    DISPLAY_NAME VARCHAR(255) NOT NULL,
-    DESCRIPTION VARCHAR(300),
-    TENANT_ID INT,
-    FOREIGN KEY (API_ID) REFERENCES API_RESOURCE(ID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS AUTHORIZED_API(
-    APP_ID VARCHAR(255) NOT NULL,
-    API_ID VARCHAR(255) NOT NULL,
-	POLICY_ID VARCHAR(255) NOT NULL,
-	PRIMARY KEY (APP_ID, API_ID),
-    FOREIGN KEY (API_ID) REFERENCES API_RESOURCE(ID) ON DELETE CASCADE,
-    FOREIGN KEY (APP_ID) REFERENCES SP_APP(UUID) ON DELETE CASCADE
-);
-
-CREATE TABLE IF NOT EXISTS AUTHORIZED_SCOPE(
-    APP_ID CHAR(36) NOT NULL,
-    API_ID CHAR(36) NOT NULL,
-    SCOPE_ID CHAR(36) NOT NULL,
-    CONSTRAINT PK_APP_API_SCOPE PRIMARY KEY (APP_ID, API_ID, SCOPE_ID),
-    FOREIGN KEY (API_ID) REFERENCES API_RESOURCE(ID),
-    FOREIGN KEY (SCOPE_ID) REFERENCES SCOPE(ID) ON DELETE CASCADE,
-    FOREIGN KEY (APP_ID) REFERENCES SP_APP(UUID),
-    FOREIGN KEY (APP_ID, API_ID) REFERENCES AUTHORIZED_API(APP_ID, API_ID) ON DELETE CASCADE,
-    CONSTRAINT AUTHORIZED_SCOPE_UNIQUE UNIQUE (APP_ID, SCOPE_ID)
-);
-
-CREATE TABLE IF NOT EXISTS APP_ROLE_ASSOCIATION (
-    APP_ID CHAR(36) NOT NULL,
-    ROLE_ID VARCHAR(255) NOT NULL,
-    PRIMARY KEY (APP_ID, ROLE_ID),
-    FOREIGN KEY (APP_ID) REFERENCES SP_APP(UUID) ON DELETE CASCADE
-);
-
--- --------------------------- INDEX CREATION -----------------------------
--- IDN_OAUTH2_ACCESS_TOKEN --
-CREATE INDEX IDX_TC ON IDN_OAUTH2_ACCESS_TOKEN(TIME_CREATED);
-CREATE INDEX IDX_ATH ON IDN_OAUTH2_ACCESS_TOKEN(ACCESS_TOKEN_HASH);
-CREATE INDEX IDX_AT_TI_UD ON IDN_OAUTH2_ACCESS_TOKEN(AUTHZ_USER, TENANT_ID, TOKEN_STATE, USER_DOMAIN);
-CREATE INDEX IDX_AT_AT ON IDN_OAUTH2_ACCESS_TOKEN(ACCESS_TOKEN);
-CREATE INDEX IDX_AT_RTH ON IDN_OAUTH2_ACCESS_TOKEN(REFRESH_TOKEN_HASH);
-CREATE INDEX IDX_AT_RT ON IDN_OAUTH2_ACCESS_TOKEN(REFRESH_TOKEN);
-
--- IDN_OAUTH2_AUTHORIZATION_CODE --
-CREATE INDEX IDX_AUTHORIZATION_CODE_HASH ON IDN_OAUTH2_AUTHORIZATION_CODE (AUTHORIZATION_CODE_HASH, CONSUMER_KEY_ID);
-CREATE INDEX IDX_AUTHORIZATION_CODE_AU_TI ON IDN_OAUTH2_AUTHORIZATION_CODE (AUTHZ_USER, TENANT_ID, USER_DOMAIN, STATE);
-CREATE INDEX IDX_AC_CKID ON IDN_OAUTH2_AUTHORIZATION_CODE(CONSUMER_KEY_ID);
-CREATE INDEX IDX_AC_TID ON IDN_OAUTH2_AUTHORIZATION_CODE(TOKEN_ID);
-CREATE INDEX IDX_AC_AC_CKID ON IDN_OAUTH2_AUTHORIZATION_CODE(AUTHORIZATION_CODE, CONSUMER_KEY_ID);
-CREATE INDEX IDX_AT_CKID_AU_TID_UD_TSH_TS ON IDN_OAUTH2_ACCESS_TOKEN(CONSUMER_KEY_ID, AUTHZ_USER, TENANT_ID,
-USER_DOMAIN, TOKEN_SCOPE_HASH, TOKEN_STATE);
-
--- IDN_SCIM_GROUP --
-CREATE INDEX IDX_IDN_SCIM_GROUP_TI_RN ON IDN_SCIM_GROUP (TENANT_ID, ROLE_NAME);
-CREATE INDEX IDX_IDN_SCIM_GROUP_TI_RN_AN ON IDN_SCIM_GROUP (TENANT_ID, ROLE_NAME, ATTR_NAME);
-
--- IDN_AUTH_SESSION_STORE --
-CREATE INDEX IDX_IDN_AUTH_SESSION_TIME ON IDN_AUTH_SESSION_STORE (TIME_CREATED);
-
--- IDN_AUTH_TEMP_SESSION_STORE --
-CREATE INDEX IDX_IDN_AUTH_TMP_SESSION_TIME ON IDN_AUTH_TEMP_SESSION_STORE (TIME_CREATED);
-
--- IDN_OIDC_SCOPE_CLAIM_MAPPING --
-CREATE INDEX IDX_AT_SI_ECI ON IDN_OIDC_SCOPE_CLAIM_MAPPING(SCOPE_ID, EXTERNAL_CLAIM_ID);
-
--- IDN_OAUTH2_SCOPE --
-CREATE INDEX IDX_SC_TID ON IDN_OAUTH2_SCOPE(TENANT_ID);
-
--- IDN_OAUTH2_SCOPE_BINDING --
-CREATE INDEX IDX_SB_SCPID ON IDN_OAUTH2_SCOPE_BINDING(SCOPE_ID);
-
--- IDN_OIDC_REQ_OBJECT_REFERENCE --
-CREATE INDEX IDX_OROR_TID ON IDN_OIDC_REQ_OBJECT_REFERENCE(TOKEN_ID);
-
--- IDN_OAUTH2_ACCESS_TOKEN_SCOPE --
-CREATE INDEX IDX_ATS_TID ON IDN_OAUTH2_ACCESS_TOKEN_SCOPE(TOKEN_ID);
-
--- SP_TEMPLATE --
-CREATE INDEX IDX_SP_TEMPLATE ON SP_TEMPLATE (TENANT_ID, NAME);
-
--- IDN_AUTH_USER --
-CREATE INDEX IDX_AUTH_USER_UN_TID_DN ON IDN_AUTH_USER (USER_NAME, TENANT_ID, DOMAIN_NAME);
-CREATE INDEX IDX_AUTH_USER_DN_TOD ON IDN_AUTH_USER (DOMAIN_NAME, TENANT_ID);
-
--- IDN_AUTH_USER_SESSION_MAPPING --
-CREATE INDEX IDX_USER_ID ON IDN_AUTH_USER_SESSION_MAPPING (USER_ID);
-CREATE INDEX IDX_SESSION_ID ON IDN_AUTH_USER_SESSION_MAPPING (SESSION_ID);
-
--- IDN_OAUTH_CONSUMER_APPS --
-CREATE INDEX IDX_OCA_UM_TID_UD_APN ON IDN_OAUTH_CONSUMER_APPS(USERNAME,TENANT_ID,USER_DOMAIN, APP_NAME);
-
--- IDX_SPI_APP --
-CREATE INDEX IDX_SPI_APP ON SP_INBOUND_AUTH(APP_ID);
-
--- IDN_OIDC_PROPERTY --
-CREATE INDEX IDX_IOP_CK ON IDN_OIDC_PROPERTY(TENANT_ID, CONSUMER_KEY);
-
--- IDN_FIDO2_PROPERTY --
-CREATE INDEX IDX_FIDO2_STR ON FIDO2_DEVICE_STORE(USER_NAME, TENANT_ID, DOMAIN_NAME, CREDENTIAL_ID, USER_HANDLE);
-
--- IDN_ASSOCIATED_ID --
-CREATE INDEX IDX_AI_DN_UN_AI ON IDN_ASSOCIATED_ID(DOMAIN_NAME, USER_NAME, ASSOCIATION_ID);
-
--- IDN_OAUTH2_TOKEN_BINDING --
-CREATE INDEX IDX_IDN_AUTH_BIND ON IDN_OAUTH2_TOKEN_BINDING (TOKEN_BINDING_REF);
-
--- IDN_FED_AUTH_SESSION_MAPPING --
-CREATE INDEX IDX_FEDERATED_AUTH_SESSION_ID ON IDN_FED_AUTH_SESSION_MAPPING (SESSION_ID);
-
--- IDN_REMOTE_FETCH_REVISIONS --
-CREATE INDEX IDX_REMOTE_FETCH_REVISION_CONFIG_ID ON IDN_REMOTE_FETCH_REVISIONS (CONFIG_ID);
-
--- IDN_CORS_ASSOCIATION --
-CREATE INDEX IDX_CORS_SP_APP_ID ON IDN_CORS_ASSOCIATION (SP_APP_ID);
-
--- IDN_CORS_ASSOCIATION --
-CREATE INDEX IDX_CORS_ORIGIN_ID ON IDN_CORS_ASSOCIATION (IDN_CORS_ORIGIN_ID);
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/pom.xml b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/pom.xml
similarity index 88%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/pom.xml
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/pom.xml
index 24f5adf220fa..5a049ebe4e56 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/pom.xml
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/pom.xml
@@ -26,10 +26,10 @@
         <relativePath>../pom.xml</relativePath>
     </parent>
 
-    <artifactId>org.wso2.carbon.ai.service.mgt</artifactId>
+    <artifactId>org.wso2.carbon.identity.ai.service.mgt</artifactId>
     <packaging>bundle</packaging>
-    <name>WSO2 Carbon - AI Service Management Bundle</name>
-    <description>This is a Carbon bundle that represents the AI Service Management Bundle.</description>
+    <name>WSO2 Identity - AI Service Management Bundle</name>
+    <description>This represents the AI Service Management Bundle.</description>
     <url>http://wso2.org</url>
 
     <dependencies>
@@ -41,10 +41,6 @@
             <groupId>org.wso2.carbon.identity.framework</groupId>
             <artifactId>org.wso2.carbon.identity.core</artifactId>
         </dependency>
-        <dependency>
-            <groupId>org.wso2.orbit.org.apache.httpcomponents</groupId>
-            <artifactId>httpasyncclient</artifactId>
-        </dependency>
         <dependency>
             <groupId>org.apache.httpcomponents.wso2</groupId>
             <artifactId>httpcore</artifactId>
@@ -53,10 +49,12 @@
         <dependency>
             <groupId>com.fasterxml.jackson.core</groupId>
             <artifactId>jackson-databind</artifactId>
+            <scope>provided</scope>
         </dependency>
         <dependency>
             <groupId>org.mockito</groupId>
             <artifactId>mockito-core</artifactId>
+            <scope>test</scope>
         </dependency>
         <dependency>
             <groupId>org.testng</groupId>
@@ -66,6 +64,7 @@
         <dependency>
             <groupId>org.slf4j</groupId>
             <artifactId>slf4j-api</artifactId>
+            <scope>provided</scope>
         </dependency>
         <dependency>
             <groupId>org.apache.logging.log4j</groupId>
@@ -77,10 +76,10 @@
             <artifactId>wiremock</artifactId>
             <scope>test</scope>
         </dependency>
-
         <dependency>
             <groupId>org.ops4j.pax.logging</groupId>
             <artifactId>pax-logging-api</artifactId>
+            <scope>provided</scope>
         </dependency>
     </dependencies>
 
@@ -115,15 +114,10 @@
                             org.apache.http.protocol; version="${httpcore.version.osgi.import.range}",
                             org.apache.http.util; version="${httpcore.version.osgi.import.range}",
                             org.apache.http.impl.client; version="${httpcomponents-httpclient.imp.pkg.version.range}",
-                            org.apache.http.impl.nio.client; version="${httpasyncclient.version.osgi.import.range}",
-                            org.apache.http.impl.nio.reactor; version="${httpasyncclient.version.osgi.import.range}",
-                            org.apache.http.impl.nio.conn; version="${httpasyncclient.version.osgi.import.range}",
                             org.apache.http.concurrent; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.nio.reactor; version="${httpasyncclient.version.osgi.import.range}",
-                            org.apache.http.nio.conn; version="${httpasyncclient.version.osgi.import.range}",
                         </Import-Package>
                         <Export-Package>
-                            org.wso2.carbon.ai.service.mgt.*; version="${carbon.identity.package.export.version}"
+                            org.wso2.carbon.identity.ai.service.mgt.*; version="${carbon.identity.package.export.version}"
                         </Export-Package>
                     </instructions>
                 </configuration>
@@ -189,7 +183,7 @@
                                         <limit implementation="org.jacoco.report.check.Limit">
                                             <counter>COMPLEXITY</counter>
                                             <value>COVEREDRATIO</value>
-                                            <minimum>0.77</minimum>
+                                            <minimum>0.80</minimum>
                                         </limit>
                                     </limits>
                                 </rule>
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/constants/AIConstants.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstants.java
similarity index 61%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/constants/AIConstants.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstants.java
index 252fd02f35f6..2445ca29375a 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/constants/AIConstants.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstants.java
@@ -16,7 +16,7 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.constants;
+package org.wso2.carbon.identity.ai.service.mgt.constants;
 
 /**
  * Constants for the LoginFlowAI module.
@@ -26,9 +26,16 @@ public class AIConstants {
     public static final String AI_SERVICE_KEY_PROPERTY_NAME = "AIServices.Key";
     public static final String AI_TOKEN_ENDPOINT_PROPERTY_NAME = "AIServices.TokenEndpoint";
     public static final String AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME = "AIServices.TokenRequestMaxRetries";
-    public static final String AI_TOKEN_SERVICE_TIMEOUT_PROPERTY_NAME = "AIServices.TokenRequestTimeout";
+    public static final String AI_TOKEN_CONNECTION_TIMEOUT_PROPERTY_NAME = "AIServices.TokenConnectionTimeout";
+    public static final String AI_TOKEN_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME = "AIServices" +
+            ".TokenConnectionRequestTimeout";
+    public static final String AI_TOKEN_SOCKET_TIMEOUT_PROPERTY_NAME = "AIServices.TokenSocketTimeout";
+
     public static final String HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME = "AIServices.HTTPConnectionPoolSize";
     public static final String HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME = "AIServices.HTTPConnectionTimeout";
+    public static final String HTTP_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME = "AIServices" +
+            ".HTTPConnectionRequestTimeout";
+    public static final String HTTP_SOCKET_TIMEOUT_PROPERTY_NAME = "AIServices.HTTPSocketTimeout";
 
     // Http constants.
     public static final String HTTP_BASIC = "Basic";
@@ -41,23 +48,33 @@ public class AIConstants {
 
     public static final String TENANT_CONTEXT_PREFIX = "/t/";
 
+    // Default Property values.
+    public static final int DEFAULT_TOKEN_REQUEST_MAX_RETRIES = 3;
+    public static final int DEFAULT_TOKEN_CONNECTION_TIMEOUT = 3000;
+    public static final int DEFAULT_TOKEN_CONNECTION_REQUEST_TIMEOUT = 3000;
+    public static final int DEFAULT_TOKEN_SOCKET_TIMEOUT = 3000;
+
+    public static final int DEFAULT_HTTP_CONNECTION_POOL_SIZE = 20;
+    public static final int DEFAULT_HTTP_CONNECTION_TIMEOUT = 3000;
+    public static final int DEFAULT_HTTP_CONNECTION_REQUEST_TIMEOUT = 3000;
+    public static final int DEFAULT_HTTP_SOCKET_TIMEOUT = 3000;
+
     /**
      * Enums for error messages.
      */
     public enum ErrorMessages {
 
-        MAXIMUM_RETRIES_EXCEEDED("AI_10000", "Maximum retries exceeded to retrieve the access token."),
-        UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN("AI_10003", "Unable to access the " +
+        MAXIMUM_RETRIES_EXCEEDED("AI-10000", "Maximum retries exceeded to retrieve the access token."),
+        UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN("AI-10003", "Unable to access the " +
                 "AI service with the renewed access token."),
-        REQUEST_TIMEOUT("AI_10004", "Request to the AI service timed out."),
-        ERROR_RETRIEVING_ACCESS_TOKEN("AI_10007", "Error occurred while retrieving the " +
+        REQUEST_TIMEOUT("AI-10004", "Request to the AI service timed out."),
+        ERROR_RETRIEVING_ACCESS_TOKEN("AI-10007", "Error occurred while retrieving the " +
                 "access token."),
-        CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE("AI_10008", "Client error occurred " +
+        CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE("AI-10008", "Client error occurred " +
                 "for %s tenant while connecting to AI service."),
-        SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE("AI_10009", "Server error occurred " +
+        SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE("AI-10009", "Server error occurred " +
                 "for %s tenant while connecting to AI service.");
 
-
         private final String code;
         private final String message;
 
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientException.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientException.java
similarity index 70%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientException.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientException.java
index 3272e573177e..fa91436a07ae 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientException.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientException.java
@@ -16,9 +16,7 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.exceptions;
-
-import org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil;
+package org.wso2.carbon.identity.ai.service.mgt.exceptions;
 
 /**
  * Client Exception class for AI service.
@@ -26,7 +24,8 @@
 public class AIClientException extends Exception {
 
     private final String errorCode;
-    private AIHttpClientUtil.HttpResponseWrapper loginFlowAIResponse;
+    private String serverMessage;
+    private int serverStatusCode;
 
     public AIClientException(String message, String errorCode) {
 
@@ -34,12 +33,12 @@ public AIClientException(String message, String errorCode) {
         this.errorCode = errorCode;
     }
 
-    public AIClientException(AIHttpClientUtil.HttpResponseWrapper httpResponseWrapper,
-                                      String message, String errorCode) {
+    public AIClientException(String message, String errorCode, int serverStatusCode, String serverMessage) {
 
         super(message);
         this.errorCode = errorCode;
-        this.loginFlowAIResponse = httpResponseWrapper;
+        this.serverStatusCode = serverStatusCode;
+        this.serverMessage = serverMessage;
     }
 
     public AIClientException(String message, String errorCode, Throwable cause) {
@@ -53,8 +52,13 @@ public String getErrorCode() {
         return errorCode;
     }
 
-    public AIHttpClientUtil.HttpResponseWrapper getLoginFlowAIResponse() {
+    public String getServerMessage() {
+
+        return serverMessage;
+    }
+
+    public int getServerStatusCode() {
 
-        return loginFlowAIResponse;
+        return serverStatusCode;
     }
 }
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerException.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerException.java
similarity index 72%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerException.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerException.java
index 1bdadca5a81e..39d7f25c30a9 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/main/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerException.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerException.java
@@ -16,9 +16,7 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.exceptions;
-
-import org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil;
+package org.wso2.carbon.identity.ai.service.mgt.exceptions;
 
 /**
  * Client Exception class for AI service.
@@ -26,7 +24,8 @@
 public class AIServerException extends Exception {
 
     private String errorCode;
-    private AIHttpClientUtil.HttpResponseWrapper loginFlowAIResponse;
+    private String serverMessage;
+    private int serverStatusCode;
 
     public AIServerException(String message, String errorCode) {
 
@@ -34,12 +33,12 @@ public AIServerException(String message, String errorCode) {
         this.errorCode = errorCode;
     }
 
-    public AIServerException(AIHttpClientUtil.HttpResponseWrapper httpResponseWrapper,
-                             String message, String errorCode) {
+    public AIServerException(String message, String errorCode, int serverStatusCode, String serverMessage) {
 
         super(message);
         this.errorCode = errorCode;
-        this.loginFlowAIResponse = httpResponseWrapper;
+        this.serverStatusCode = serverStatusCode;
+        this.serverMessage = serverMessage;
     }
 
     public AIServerException(String message, Throwable cause) {
@@ -58,8 +57,13 @@ public String getErrorCode() {
         return errorCode;
     }
 
-    public AIHttpClientUtil.HttpResponseWrapper getBrandingAIResponse() {
+    public String getServerMessage() {
+
+        return serverMessage;
+    }
+
+    public int getServerStatusCode() {
 
-        return loginFlowAIResponse;
+        return serverStatusCode;
     }
 }
diff --git a/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManager.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManager.java
new file mode 100644
index 000000000000..43f5e89e33c6
--- /dev/null
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManager.java
@@ -0,0 +1,215 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.ai.service.mgt.token;
+
+import com.google.gson.Gson;
+import com.google.gson.GsonBuilder;
+import org.apache.commons.lang.StringUtils;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+import org.apache.http.HttpResponse;
+import org.apache.http.HttpStatus;
+import org.apache.http.client.config.RequestConfig;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.entity.StringEntity;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClientBuilder;
+import org.apache.http.message.BasicHeader;
+import org.apache.http.util.EntityUtils;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.core.util.IdentityUtil;
+
+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+import java.util.Base64;
+import java.util.Map;
+import java.util.UUID;
+
+import static org.apache.axis2.transport.http.HTTPConstants.HEADER_CONTENT_TYPE;
+import static org.apache.http.HttpHeaders.AUTHORIZATION;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ACCESS_TOKEN_KEY;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_SERVICE_KEY_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_TOKEN_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_TOKEN_CONNECTION_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_TOKEN_ENDPOINT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.AI_TOKEN_SOCKET_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.CONTENT_TYPE_FORM_URLENCODED;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_TOKEN_CONNECTION_REQUEST_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_TOKEN_CONNECTION_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_TOKEN_REQUEST_MAX_RETRIES;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_TOKEN_SOCKET_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ErrorMessages.MAXIMUM_RETRIES_EXCEEDED;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_BASIC;
+import static org.wso2.carbon.identity.core.util.IdentityTenantUtil.getTenantDomainFromContext;
+
+/**
+ * The purpose of this class is to retrieve an active token to access the AI service.
+ */
+public class AIAccessTokenManager {
+
+    private static volatile AIAccessTokenManager instance;  // Volatile for thread safety.
+    private static final Object lock = new Object();  // Lock for synchronization.
+
+    private static final Log LOG = LogFactory.getLog(AIAccessTokenManager.class);
+
+    private static final String AI_KEY = IdentityUtil.getProperty(AI_SERVICE_KEY_PROPERTY_NAME);
+    private static final String AI_TOKEN_ENDPOINT = IdentityUtil.getProperty(AI_TOKEN_ENDPOINT_PROPERTY_NAME);
+
+    private final AccessTokenRequestHelper accessTokenRequestHelper;
+
+    private String accessToken;
+    private final String clientId;
+
+    private AIAccessTokenManager() {
+
+        byte[] decodedBytes = Base64.getDecoder().decode(AI_KEY);
+        String decodedString = new String(decodedBytes, StandardCharsets.UTF_8);
+        String[] parts = decodedString.split(":");
+        if (parts.length == 2) {
+            this.clientId = parts[0]; // Extract clientId.
+        } else {
+            throw new IllegalArgumentException("Invalid AI service key.");
+        }
+        this.accessTokenRequestHelper = new AccessTokenRequestHelper(AI_KEY, AI_TOKEN_ENDPOINT);
+    }
+
+    /**
+     * Get the singleton instance of the AIAccessTokenManager.
+     *
+     * @return The singleton instance.
+     */
+    public static AIAccessTokenManager getInstance() {
+
+        if (instance == null) {
+            synchronized (lock) {
+                if (instance == null) {
+                    instance = new AIAccessTokenManager();
+                }
+            }
+        }
+        return instance;
+    }
+
+    /**
+     * Get the access token.
+     *
+     * @param renewAccessToken Whether to renew the access token.
+     * @return The access token.
+     * @throws AIServerException If an error occurs while obtaining the access token.
+     */
+    public String getAccessToken(boolean renewAccessToken) throws AIServerException {
+
+        if (StringUtils.isEmpty(accessToken) || renewAccessToken) {
+            synchronized (AIAccessTokenManager.class) {
+                if (StringUtils.isEmpty(accessToken) || renewAccessToken) {
+                    this.accessToken = accessTokenRequestHelper.requestAccessToken();
+                }
+            }
+        }
+        return this.accessToken;
+    }
+
+    /**
+     * Get the client ID.
+     *
+     * @return The client ID.
+     */
+    public String getClientId() {
+
+        return this.clientId;
+    }
+
+    /**
+     * Helper class to request access token from the AI services.
+     */
+    private static class AccessTokenRequestHelper {
+
+        private final CloseableHttpClient client;
+        private final Gson gson;
+        private final String key;
+        private final HttpPost tokenRequest;
+        private static final int MAX_RETRIES = readIntProperty(AI_TOKEN_SERVICE_MAX_RETRIES_PROPERTY_NAME,
+                DEFAULT_TOKEN_REQUEST_MAX_RETRIES);
+        private static final int CONNECTION_TIMEOUT = readIntProperty(AI_TOKEN_CONNECTION_TIMEOUT_PROPERTY_NAME,
+                DEFAULT_TOKEN_CONNECTION_TIMEOUT);
+        private static final int CONNECTION_REQUEST_TIMEOUT = readIntProperty(
+                AI_TOKEN_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME, DEFAULT_TOKEN_CONNECTION_REQUEST_TIMEOUT);
+        private static final int SOCKET_TIMEOUT = readIntProperty(AI_TOKEN_SOCKET_TIMEOUT_PROPERTY_NAME,
+                DEFAULT_TOKEN_SOCKET_TIMEOUT);
+
+        AccessTokenRequestHelper(String key, String tokenEndpoint) {
+
+            RequestConfig requestConfig = RequestConfig.custom()
+                    .setConnectTimeout(CONNECTION_TIMEOUT)
+                    .setConnectionRequestTimeout(CONNECTION_REQUEST_TIMEOUT)
+                    .setSocketTimeout(SOCKET_TIMEOUT)
+                    .build();
+            this.client = HttpClientBuilder.create()
+                    .setDefaultRequestConfig(requestConfig).build();
+            this.gson = new GsonBuilder().create();
+            this.key = key;
+            this.tokenRequest = new HttpPost(tokenEndpoint);
+        }
+
+        /**
+         * Request access token to access the AI services.
+         *
+         * @return the JWT access token.
+         * @throws AIServerException If an error occurs while requesting the access token.
+         */
+        public String requestAccessToken() throws AIServerException {
+
+            String tenantDomain = getTenantDomainFromContext();
+            LOG.info("Initiating access token request for AI services from tenant: " + tenantDomain);
+            for (int attempt = 0; attempt < MAX_RETRIES; attempt++) {
+                try {
+                    tokenRequest.setHeader(AUTHORIZATION, HTTP_BASIC + " " + key);
+                    tokenRequest.setHeader(HEADER_CONTENT_TYPE, CONTENT_TYPE_FORM_URLENCODED);
+
+                    StringEntity entity = new StringEntity("grant_type=client_credentials&tokenBindingId=" +
+                            UUID.randomUUID());
+                    entity.setContentType(new BasicHeader(HEADER_CONTENT_TYPE, CONTENT_TYPE_FORM_URLENCODED));
+                    tokenRequest.setEntity(entity);
+
+                    HttpResponse response = client.execute(tokenRequest);
+                    if (response.getStatusLine().getStatusCode() == HttpStatus.SC_OK) {
+                        String responseBody = EntityUtils.toString(response.getEntity());
+                        Map<String, Object> responseMap = gson.fromJson(responseBody, Map.class);
+                        return (String) responseMap.get(ACCESS_TOKEN_KEY);
+                    } else {
+                        LOG.error("Token request failed with status code: " +
+                                response.getStatusLine().getStatusCode());
+                    }
+                } catch (IOException e) {
+                    throw new AIServerException("Error executing token request: " + e.getMessage(), e);
+                } finally {
+                    tokenRequest.releaseConnection();
+                }
+            }
+            throw new AIServerException("Failed to obtain access token after " + MAX_RETRIES +
+                " attempts.", MAXIMUM_RETRIES_EXCEEDED.getCode());
+        }
+
+        private static int readIntProperty(String key, int defaultValue) {
+            String value = IdentityUtil.getProperty(key);
+            return value != null ? Integer.parseInt(value) : defaultValue;
+        }
+    }
+}
diff --git a/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtil.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtil.java
new file mode 100644
index 000000000000..5a540bc7cdf6
--- /dev/null
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/main/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtil.java
@@ -0,0 +1,228 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing, software
+ * distributed under the License is distributed on an "AS IS" BASIS,
+ * WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.ai.service.mgt.util;
+
+import com.fasterxml.jackson.databind.ObjectMapper;
+import org.apache.commons.httpclient.HttpStatus;
+import org.apache.commons.logging.Log;
+import org.apache.commons.logging.LogFactory;
+import org.apache.http.HttpResponse;
+import org.apache.http.client.methods.HttpGet;
+import org.apache.http.client.methods.HttpPost;
+import org.apache.http.client.methods.HttpUriRequest;
+import org.apache.http.entity.StringEntity;
+import org.apache.http.impl.client.CloseableHttpClient;
+import org.apache.http.impl.client.HttpClients;
+import org.apache.http.util.EntityUtils;
+import org.wso2.carbon.context.PrivilegedCarbonContext;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.ai.service.mgt.token.AIAccessTokenManager;
+import org.wso2.carbon.identity.core.util.IdentityUtil;
+
+import java.io.IOException;
+import java.util.Map;
+
+import static org.apache.axis2.transport.http.HTTPConstants.HEADER_CONTENT_TYPE;
+import static org.apache.http.HttpHeaders.AUTHORIZATION;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.CONTENT_TYPE_JSON;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_HTTP_CONNECTION_POOL_SIZE;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_HTTP_CONNECTION_REQUEST_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_HTTP_CONNECTION_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.DEFAULT_HTTP_SOCKET_TIMEOUT;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ErrorMessages.CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ErrorMessages.ERROR_RETRIEVING_ACCESS_TOKEN;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ErrorMessages.SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.ErrorMessages.UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_BEARER;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.HTTP_SOCKET_TIMEOUT_PROPERTY_NAME;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.TENANT_CONTEXT_PREFIX;
+
+/**
+ * Utility class for AI Services to send HTTP requests.
+ */
+public class AIHttpClientUtil {
+
+    private static final Log LOG = LogFactory.getLog(AIHttpClientUtil.class);
+    private static final ObjectMapper objectMapper = new ObjectMapper();
+
+    private static final int HTTP_CONNECTION_POOL_SIZE = readIntProperty(HTTP_CONNECTION_POOL_SIZE_PROPERTY_NAME,
+            DEFAULT_HTTP_CONNECTION_POOL_SIZE);
+    private static final int HTTP_CONNECTION_TIMEOUT = readIntProperty(HTTP_CONNECTION_TIMEOUT_PROPERTY_NAME,
+            DEFAULT_HTTP_CONNECTION_TIMEOUT);
+    private static final int HTTP_CONNECTION_REQUEST_TIMEOUT = readIntProperty(
+            HTTP_CONNECTION_REQUEST_TIMEOUT_PROPERTY_NAME, DEFAULT_HTTP_CONNECTION_REQUEST_TIMEOUT);
+    private static final int HTTP_SOCKET_TIMEOUT = readIntProperty(HTTP_SOCKET_TIMEOUT_PROPERTY_NAME,
+            DEFAULT_HTTP_SOCKET_TIMEOUT);
+
+    // Singleton instance of CloseableHttpClient with connection pooling.
+    private static final CloseableHttpClient httpClient = HttpClients.custom()
+            .setMaxConnTotal(HTTP_CONNECTION_POOL_SIZE)
+            .setDefaultRequestConfig(
+                    org.apache.http.client.config.RequestConfig.custom()
+                            .setSocketTimeout(HTTP_SOCKET_TIMEOUT)
+                            .setConnectTimeout(HTTP_CONNECTION_TIMEOUT)
+                            .setConnectionRequestTimeout(HTTP_CONNECTION_REQUEST_TIMEOUT)
+                            .build()
+            ).build();
+
+    /**
+     * Execute a request to the AI service.
+     *
+     * @param path              The endpoint to which the request should be sent.
+     * @param requestType       The type of the request (GET, POST).
+     * @param requestBody       The request body(Only for POST requests).
+     * @param aiServiceEndpoint The endpoint of the AI service.
+     * @return The response from the AI service as a map.
+     * @throws AIServerException If a server error occurred while accessing the AI service.
+     * @throws AIClientException If a client error occurred while accessing the AI service.
+     */
+    public static Map<String, Object> executeRequest(String aiServiceEndpoint, String path,
+                                                     Class<? extends HttpUriRequest> requestType, Object requestBody)
+            throws AIServerException, AIClientException {
+
+        String tenantDomain = PrivilegedCarbonContext.getThreadLocalCarbonContext().getTenantDomain();
+
+        try {
+            String accessToken = AIAccessTokenManager.getInstance().getAccessToken(false);
+            String clientId = AIAccessTokenManager.getInstance().getClientId();
+
+            HttpUriRequest request = createRequest(aiServiceEndpoint + TENANT_CONTEXT_PREFIX + clientId + path,
+                    requestType, accessToken, requestBody);
+            HttpResponseWrapper aiServiceResponse = executeRequestWithRetry(request);
+
+            int statusCode = aiServiceResponse.getStatusCode();
+            String responseBody = aiServiceResponse.getResponseBody();
+
+            if (statusCode >= 400) {
+                handleErrorResponse(statusCode, responseBody, tenantDomain);
+            }
+            return convertJsonStringToMap(responseBody);
+        } catch (IOException e) {
+            throw new AIServerException("An error occurred while connecting to the AI Service.",
+                    SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode(), e);
+        }
+    }
+
+    private static HttpUriRequest createRequest(String url, Class<? extends HttpUriRequest> requestType,
+                                                String accessToken, Object requestBody) throws IOException {
+
+        HttpUriRequest request;
+        if (requestType == HttpPost.class) {
+            HttpPost post = new HttpPost(url);
+            if (requestBody != null) {
+                post.setEntity(new StringEntity(objectMapper.writeValueAsString(requestBody)));
+            }
+            request = post;
+        } else if (requestType == HttpGet.class) {
+            request = new HttpGet(url);
+        } else {
+            throw new IllegalArgumentException("Unsupported request type: " + requestType.getName());
+        }
+
+        request.setHeader(AUTHORIZATION, HTTP_BEARER + " " + accessToken);
+        request.setHeader(HEADER_CONTENT_TYPE, CONTENT_TYPE_JSON);
+        return request;
+    }
+
+    private static HttpResponseWrapper executeRequestWithRetry(HttpUriRequest request)
+            throws IOException, AIServerException {
+
+        HttpResponseWrapper response = executeHttpRequest(request);
+
+        if (response.getStatusCode() == HttpStatus.SC_UNAUTHORIZED) {
+            String newAccessToken = AIAccessTokenManager.getInstance().getAccessToken(true);
+            if (newAccessToken == null) {
+                throw new AIServerException("Failed to renew access token.", ERROR_RETRIEVING_ACCESS_TOKEN.getCode());
+            }
+            request.setHeader(AUTHORIZATION, HTTP_BEARER + " " + newAccessToken);
+            response = executeHttpRequest(request);
+        }
+        return response;
+    }
+
+    private static void handleErrorResponse(int statusCode, String responseBody, String tenantDomain)
+            throws AIServerException, AIClientException {
+
+        if (statusCode == HttpStatus.SC_UNAUTHORIZED) {
+            throw new AIServerException("Failed to access AI service with renewed access token for " +
+                    "the tenant domain: " + tenantDomain,
+                    UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN.getCode());
+        } else if (statusCode >= 400 && statusCode < 500) {
+            throw new AIClientException("Client error occurred from tenant: " + tenantDomain + " with status code: '"
+                    + statusCode + "' while accessing AI service.",
+                    CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode(), statusCode, responseBody);
+        } else if (statusCode >= 500) {
+            throw new AIServerException("Server error occurred from tenant: " + tenantDomain + " with status code: '"
+                    + statusCode + "' while accessing AI service.",
+                    SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE.getCode(), statusCode, responseBody);
+        }
+    }
+
+    private static Map<String, Object> convertJsonStringToMap(String jsonString) throws AIServerException {
+
+        try {
+            return objectMapper.readValue(jsonString, Map.class);
+        } catch (IOException e) {
+            throw new AIServerException("Error occurred while parsing the JSON response from the AI service.", e);
+        }
+    }
+
+    protected static HttpResponseWrapper executeHttpRequest(HttpUriRequest httpRequest)
+            throws IOException {
+
+        HttpResponse httpResponse = httpClient.execute(httpRequest);
+        int status = httpResponse.getStatusLine().getStatusCode();
+        String response = EntityUtils.toString(httpResponse.getEntity());
+        return new HttpResponseWrapper(status, response);
+    }
+
+    private static int readIntProperty(String key, int defaultValue) {
+        String value = IdentityUtil.getProperty(key);
+        return value != null ? Integer.parseInt(value) : defaultValue;
+    }
+
+    /**
+     * Wrapper class for HTTP response.
+     */
+    public static class HttpResponseWrapper {
+
+        private final int statusCode;
+        private final String responseBody;
+
+        public HttpResponseWrapper(int statusCode, String responseBody) {
+
+            this.statusCode = statusCode;
+            this.responseBody = responseBody;
+        }
+
+        public int getStatusCode() {
+
+            return statusCode;
+        }
+
+        public String getResponseBody() {
+
+            return responseBody;
+        }
+    }
+}
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/constants/AIConstantsTest.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstantsTest.java
similarity index 73%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/constants/AIConstantsTest.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstantsTest.java
index 7eaf4ce9fca0..4252283e28da 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/constants/AIConstantsTest.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/constants/AIConstantsTest.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
@@ -16,7 +16,7 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.constants;
+package org.wso2.carbon.identity.ai.service.mgt.constants;
 
 import org.testng.annotations.Test;
 
@@ -30,36 +30,36 @@ public class AIConstantsTest {
     @Test
     public void testErrorMessages() {
         AIConstants.ErrorMessages errorMessage = AIConstants.ErrorMessages.MAXIMUM_RETRIES_EXCEEDED;
-        assertEquals(errorMessage.getCode(), "AI_10000");
+        assertEquals(errorMessage.getCode(), "AI-10000");
         assertEquals(errorMessage.getMessage(), "Maximum retries exceeded to retrieve the access token.");
-        assertEquals(errorMessage.toString(), "AI_10000:Maximum retries exceeded to retrieve the access token.");
+        assertEquals(errorMessage.toString(), "AI-10000:Maximum retries exceeded to retrieve the access token.");
 
         errorMessage = AIConstants.ErrorMessages.UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN;
-        assertEquals(errorMessage.getCode(), "AI_10003");
+        assertEquals(errorMessage.getCode(), "AI-10003");
         assertEquals(errorMessage.getMessage(), "Unable to access the AI service with the renewed access token.");
-        assertEquals(errorMessage.toString(), "AI_10003:Unable to access the AI service with " +
+        assertEquals(errorMessage.toString(), "AI-10003:Unable to access the AI service with " +
                 "the renewed access token.");
 
         errorMessage = AIConstants.ErrorMessages.REQUEST_TIMEOUT;
-        assertEquals(errorMessage.getCode(), "AI_10004");
+        assertEquals(errorMessage.getCode(), "AI-10004");
         assertEquals(errorMessage.getMessage(), "Request to the AI service timed out.");
-        assertEquals(errorMessage.toString(), "AI_10004:Request to the AI service timed out.");
+        assertEquals(errorMessage.toString(), "AI-10004:Request to the AI service timed out.");
 
         errorMessage = AIConstants.ErrorMessages.ERROR_RETRIEVING_ACCESS_TOKEN;
-        assertEquals(errorMessage.getCode(), "AI_10007");
+        assertEquals(errorMessage.getCode(), "AI-10007");
         assertEquals(errorMessage.getMessage(), "Error occurred while retrieving the access token.");
-        assertEquals(errorMessage.toString(), "AI_10007:Error occurred while retrieving the access token.");
+        assertEquals(errorMessage.toString(), "AI-10007:Error occurred while retrieving the access token.");
 
         errorMessage = AIConstants.ErrorMessages.CLIENT_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
-        assertEquals(errorMessage.getCode(), "AI_10008");
+        assertEquals(errorMessage.getCode(), "AI-10008");
         assertEquals(errorMessage.getMessage(), "Client error occurred for %s tenant while connecting to AI service.");
-        assertEquals(errorMessage.toString(), "AI_10008:Client error occurred for %s tenant while" +
+        assertEquals(errorMessage.toString(), "AI-10008:Client error occurred for %s tenant while" +
                 " connecting to AI service.");
 
         errorMessage = AIConstants.ErrorMessages.SERVER_ERROR_WHILE_CONNECTING_TO_AI_SERVICE;
-        assertEquals(errorMessage.getCode(), "AI_10009");
+        assertEquals(errorMessage.getCode(), "AI-10009");
         assertEquals(errorMessage.getMessage(), "Server error occurred for %s tenant while connecting to AI service.");
-        assertEquals(errorMessage.toString(), "AI_10009:Server error occurred for %s tenant while " +
+        assertEquals(errorMessage.toString(), "AI-10009:Server error occurred for %s tenant while " +
                 "connecting to AI service.");
     }
 }
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientExceptionTest.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientExceptionTest.java
similarity index 74%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientExceptionTest.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientExceptionTest.java
index 1fd73f24c95b..6cd9a09546e9 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIClientExceptionTest.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIClientExceptionTest.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
@@ -16,10 +16,9 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.exceptions;
+package org.wso2.carbon.identity.ai.service.mgt.exceptions;
 
 import org.testng.annotations.Test;
-import org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil;
 
 import static org.testng.AssertJUnit.assertEquals;
 import static org.testng.AssertJUnit.assertNull;
@@ -35,18 +34,19 @@ public void testAIClientExceptionWithMessageAndErrorCode() {
         AIClientException exception = new AIClientException("Test message", "AI_10001");
         assertEquals("Test message", exception.getMessage());
         assertEquals("AI_10001", exception.getErrorCode());
-        assertNull(exception.getLoginFlowAIResponse());
+        assertNull(exception.getServerMessage());
     }
 
     @Test
     public void testAIClientExceptionWithHttpResponseWrapperMessageAndErrorCode() {
 
-        AIHttpClientUtil.HttpResponseWrapper responseWrapper = new AIHttpClientUtil.HttpResponseWrapper(
-                400, "Test response");
-        AIClientException exception = new AIClientException(responseWrapper, "Test message", "AI_10002");
+        int statusCode = 400;
+        String message = "Test message";
+        AIClientException exception = new AIClientException("Test message", "AI_10002", statusCode, message);
         assertEquals("Test message", exception.getMessage());
         assertEquals("AI_10002", exception.getErrorCode());
-        assertEquals(responseWrapper, exception.getLoginFlowAIResponse());
+        assertEquals(statusCode, exception.getServerStatusCode());
+        assertEquals(message, exception.getServerMessage());
     }
 
     @Test
@@ -56,6 +56,5 @@ public void testAIClientExceptionWithMessageErrorCodeAndCause() {
         assertEquals("Test message", exception.getMessage());
         assertEquals("AI_10003", exception.getErrorCode());
         assertEquals(cause, exception.getCause());
-        assertNull(exception.getLoginFlowAIResponse());
     }
 }
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerExceptionTest.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerExceptionTest.java
similarity index 69%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerExceptionTest.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerExceptionTest.java
index 17a4c992b509..5ce4298ad2b5 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/exceptions/AIServerExceptionTest.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/exceptions/AIServerExceptionTest.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
@@ -16,13 +16,11 @@
  * under the License.
  */
 
-package org.wso2.carbon.ai.service.mgt.exceptions;
+package org.wso2.carbon.identity.ai.service.mgt.exceptions;
 
 import org.testng.annotations.Test;
-import org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil;
 
 import static org.testng.AssertJUnit.assertEquals;
-import static org.testng.AssertJUnit.assertNull;
 
 /**
  * Test class for AIServerException.
@@ -35,27 +33,29 @@ public void testAIServerExceptionWithMessageAndErrorCode() {
         AIServerException exception = new AIServerException("Test message", "AI_20001");
         assertEquals("Test message", exception.getMessage());
         assertEquals("AI_20001", exception.getErrorCode());
-        assertNull(exception.getBrandingAIResponse());
+
     }
 
     @Test
-    public void testAIServerExceptionWithHttpResponseWrapperMessageAndErrorCode() {
+    public void testAIServerExceptionWithAIServerMessageAndErrorCode() {
 
-        AIHttpClientUtil.HttpResponseWrapper responseWrapper = new AIHttpClientUtil.HttpResponseWrapper(
-                500, "Test response");
-        AIServerException exception = new AIServerException(responseWrapper, "Test message", "AI_20002");
+        String message = "Test message";
+        String errorCode = "AI_20002";
+        int statusCode = 500;
+        AIServerException exception = new AIServerException("Test message", errorCode, statusCode, message);
         assertEquals("Test message", exception.getMessage());
-        assertEquals("AI_20002", exception.getErrorCode());
-        assertEquals(responseWrapper, exception.getBrandingAIResponse());
+        assertEquals(errorCode, exception.getErrorCode());
+        assertEquals(statusCode, exception.getServerStatusCode());
+        assertEquals(message, exception.getServerMessage());
     }
 
     @Test
     public void testAIServerExceptionWithMessageAndCause() {
+
         Throwable cause = new Throwable("Cause message");
         AIServerException exception = new AIServerException("Test message", cause);
         assertEquals("Test message", exception.getMessage());
         assertEquals(cause, exception.getCause());
-        assertNull(exception.getBrandingAIResponse());
     }
 
     @Test
@@ -66,6 +66,5 @@ public void testAIServerExceptionWithMessageErrorCodeAndCause() {
         assertEquals("Test message", exception.getMessage());
         assertEquals("AI_20003", exception.getErrorCode());
         assertEquals(cause, exception.getCause());
-        assertNull(exception.getBrandingAIResponse());
     }
 }
diff --git a/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManagerTest.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManagerTest.java
new file mode 100644
index 000000000000..05aba138565a
--- /dev/null
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/token/AIAccessTokenManagerTest.java
@@ -0,0 +1,286 @@
+/*
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
+ *
+ * WSO2 LLC. licenses this file to you under the Apache License,
+ * Version 2.0 (the "License"); you may not use this file except
+ * in compliance with the License.
+ * You may obtain a copy of the License at
+ *
+ * http://www.apache.org/licenses/LICENSE-2.0
+ *
+ * Unless required by applicable law or agreed to in writing,
+ * software distributed under the License is distributed on an
+ * "AS IS" BASIS, WITHOUT WARRANTIES OR CONDITIONS OF ANY
+ * KIND, either express or implied.  See the License for the
+ * specific language governing permissions and limitations
+ * under the License.
+ */
+
+package org.wso2.carbon.identity.ai.service.mgt.token;
+
+import com.github.tomakehurst.wiremock.WireMockServer;
+import com.github.tomakehurst.wiremock.http.Fault;
+import org.testng.Assert;
+import org.testng.annotations.AfterMethod;
+import org.testng.annotations.BeforeMethod;
+import org.testng.annotations.Test;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
+
+import java.util.Base64;
+
+import static com.github.tomakehurst.wiremock.client.WireMock.aResponse;
+import static com.github.tomakehurst.wiremock.client.WireMock.post;
+import static com.github.tomakehurst.wiremock.client.WireMock.postRequestedFor;
+import static com.github.tomakehurst.wiremock.client.WireMock.urlEqualTo;
+import static com.github.tomakehurst.wiremock.core.WireMockConfiguration.wireMockConfig;
+
+public class AIAccessTokenManagerTest {
+
+    private WireMockServer wireMockServer;
+    private AIAccessTokenManager tokenManager;
+
+    @BeforeMethod
+    public void setUp() throws Exception {
+
+        // Reset the singleton instance
+        resetSingletonInstance(AIAccessTokenManager.class, "instance");
+    }
+
+    private void startWireMockServer() throws Exception {
+
+        // Start WireMock server
+        wireMockServer = new WireMockServer(wireMockConfig().dynamicPort());
+        wireMockServer.start();
+
+        // Set the AI_TOKEN_ENDPOINT to WireMock's base URL
+        setStaticField(AIAccessTokenManager.class, "AI_TOKEN_ENDPOINT", wireMockServer.baseUrl() + "/token");
+    }
+
+    private void setAiServiceKey(String key) throws Exception {
+
+        String aiServiceKey = Base64.getEncoder().encodeToString((key).getBytes());
+        setStaticField(AIAccessTokenManager.class, "AI_KEY", aiServiceKey);
+    }
+
+    private void resetSingletonInstance(Class<?> clazz, String fieldName) throws Exception {
+
+        java.lang.reflect.Field instanceField = clazz.getDeclaredField(fieldName);
+        instanceField.setAccessible(true);
+        instanceField.set(null, null); // Reset the static field to null
+    }
+
+    @AfterMethod
+    public void tearDown() {
+
+        if (wireMockServer != null) {
+            wireMockServer.stop();
+            wireMockServer = null;
+        }
+    }
+
+    @Test
+    public void testGetAccessToken_Success() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Arrange: Mock a successful token response
+        String expectedAccessToken = "mockedAccessToken";
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(200)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"access_token\":\"" + expectedAccessToken + "\"}")));
+
+        // Act: Call getAccessToken
+        String accessToken = tokenManager.getAccessToken(false);
+
+        // Assert: Verify the access token
+        Assert.assertEquals(accessToken, expectedAccessToken, "Access token should match the mocked value.");
+        Assert.assertEquals(tokenManager.getClientId(), "testClientId", "Client ID should match the mocked value.");
+    }
+
+    @Test(expectedExceptions = AIServerException.class)
+    public void testGetAccessToken_Unauthorized() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Arrange: Mock a 401 Unauthorized response
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(401)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"error\":\"Unauthorized\"}")));
+
+        // Act: Call getAccessToken and expect an exception
+        tokenManager.getAccessToken(false);
+    }
+
+    @Test(expectedExceptions = AIServerException.class)
+    public void testGetAccessToken_ServerError() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Arrange: Mock a 500 Internal Server Error response
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(500)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"error\":\"Internal Server Error\"}")));
+
+        // Act: Call getAccessToken and expect an exception
+        tokenManager.getAccessToken(false);
+    }
+
+    @Test
+    public void testGetAccessToken_Renewal() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Arrange: Mock a successful token response for renewal.
+        String newAccessToken = "newMockedAccessToken";
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(200)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"access_token\":\"" + newAccessToken + "\"}")));
+
+        // Act: Call getAccessToken with renewal.
+        String accessToken = tokenManager.getAccessToken(true);
+
+        // Assert: Verify the new access token.
+        Assert.assertEquals(accessToken, newAccessToken, "Access token should match the renewed mocked value.");
+    }
+
+    @Test
+    public void testGetAccessToken_ExistingTokenReturnsWithoutRenewal() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Arrange: Mock a successful token response.
+        String existingAccessToken = "existingMockedAccessToken";
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(200)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"access_token\":\"" + existingAccessToken + "\"}")));
+
+        // Act (1): First call to getAccessToken. This should fetch the token from the server.
+        String firstCallToken = tokenManager.getAccessToken(false);
+        Assert.assertEquals(firstCallToken, existingAccessToken,
+                "First call should retrieve the newly obtained token.");
+
+        // Reset WireMock’s request history to track subsequent calls.
+        wireMockServer.resetRequests();
+
+        // Act (2): Second call with renewAccessToken = false and an existing token.
+        // This should NOT call the token endpoint again; it should return the cached token.
+        String secondCallToken = tokenManager.getAccessToken(false);
+
+        // Assert
+        Assert.assertEquals(secondCallToken, existingAccessToken,
+                "Second call should return the same token without making a new request.");
+        // Verify that no new requests to the token endpoint were made after the first call.
+        wireMockServer.verify(0, postRequestedFor(urlEqualTo("/token")));
+    }
+
+    @Test(expectedExceptions = AIServerException.class,
+            expectedExceptionsMessageRegExp = "Failed to obtain access token after.*attempts.*")
+    public void testGetAccessToken_MaxRetriesExceeded() throws Exception {
+
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Stub the /token endpoint to always return a non-200 status (e.g., 500). This simulates repeated failures.
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        .withStatus(500)
+                        .withHeader("Content-Type", "application/json")
+                        .withBody("{\"error\":\"Internal Server Error\"}")));
+        tokenManager.getAccessToken(false);
+    }
+
+    @Test(expectedExceptions = AIServerException.class,
+            expectedExceptionsMessageRegExp = "Error executing token request:.*")
+    public void testGetAccessToken_IOException() throws Exception {
+
+        // Start WireMock & set fields as usual.
+        startWireMockServer();
+        setAiServiceKey("testClientId:testClientSecret");
+        tokenManager = AIAccessTokenManager.getInstance();
+
+        // Configure WireMock to cause a network-level fault that should trigger an IOException.
+        wireMockServer.stubFor(post(urlEqualTo("/token"))
+                .willReturn(aResponse()
+                        // This simulates a situation where the connection is abruptly reset.
+                        .withFault(Fault.CONNECTION_RESET_BY_PEER)));
+
+        // Act: When getAccessToken calls the endpoint, the client should throw an IOException,
+        // causing the catch block to throw an AIServerException with "Error executing token request: ...".
+        tokenManager.getAccessToken(false);
+    }
+
+    @Test(expectedExceptions = IllegalArgumentException.class)
+    public void testInvalidAIServiceKey() throws Exception {
+
+        setAiServiceKey("invalidKey");
+
+        // Act: Attempt to get the instance, which should throw an exception.
+        AIAccessTokenManager.getInstance();
+    }
+
+    @Test
+    public void testGetInstance_FirstTimeCreation() throws Exception {
+
+        // 1) Reset the singleton to ensure it's null:
+        setAiServiceKey("testClientId:testClientSecret");
+        setStaticField(AIAccessTokenManager.class, "AI_TOKEN_ENDPOINT", "http://localhost.com/token");
+
+        // 2) Call getInstance() the first time.
+        AIAccessTokenManager firstCallInstance = AIAccessTokenManager.getInstance();
+
+        // 3) Assert that the manager is created.
+        Assert.assertNotNull(firstCallInstance, "First call to getInstance() should create a new instance.");
+    }
+
+    @Test
+    public void testGetInstance_SubsequentCallsReturnSameInstance() throws Exception {
+
+        setAiServiceKey("testClientId:testClientSecret");
+        setStaticField(AIAccessTokenManager.class, "AI_TOKEN_ENDPOINT", "http://localhost.com/token");
+
+        // 1) Reset the singleton to ensure it's null, then create it once.
+        AIAccessTokenManager firstCallInstance = AIAccessTokenManager.getInstance();
+
+        // 2) Call getInstance() again.
+        AIAccessTokenManager secondCallInstance = AIAccessTokenManager.getInstance();
+
+        // 3) Verify that the second call did NOT re-create the object.
+        Assert.assertNotNull(secondCallInstance, "Second call should still return an instance.");
+        Assert.assertEquals(secondCallInstance, firstCallInstance,
+                "Both calls should return the exact same singleton instance.");
+    }
+
+
+    private void setStaticField(Class<?> clazz, String fieldName, String value) throws Exception {
+
+        java.lang.reflect.Field field = clazz.getDeclaredField(fieldName);
+        field.setAccessible(true);
+
+        java.lang.reflect.Field modifiersField = java.lang.reflect.Field.class.getDeclaredField("modifiers");
+        modifiersField.setAccessible(true);
+        modifiersField.setInt(field, field.getModifiers() & ~java.lang.reflect.Modifier.FINAL);
+
+        field.set(null, value); // Set the static field
+    }
+}
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtilTest.java b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtilTest.java
similarity index 91%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtilTest.java
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtilTest.java
index 499c4bc72987..6f944feda381 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/java/org/wso2/carbon/ai/service/mgt/util/AIHttpClientUtilTest.java
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/java/org/wso2/carbon/identity/ai/service/mgt/util/AIHttpClientUtilTest.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
@@ -16,7 +16,7 @@
  * under the License.
 */
 
-package org.wso2.carbon.ai.service.mgt.util;
+package org.wso2.carbon.identity.ai.service.mgt.util;
 
 import com.github.tomakehurst.wiremock.WireMockServer;
 import com.github.tomakehurst.wiremock.http.Fault;
@@ -29,11 +29,11 @@
 import org.testng.annotations.AfterMethod;
 import org.testng.annotations.BeforeMethod;
 import org.testng.annotations.Test;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIClientException;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
-import org.wso2.carbon.ai.service.mgt.token.AIAccessTokenManager;
 import org.wso2.carbon.base.CarbonBaseConstants;
 import org.wso2.carbon.context.PrivilegedCarbonContext;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.ai.service.mgt.token.AIAccessTokenManager;
 
 import java.nio.file.Paths;
 import java.util.HashMap;
@@ -54,7 +54,7 @@
 import static org.mockito.Mockito.verify;
 import static org.mockito.Mockito.when;
 import static org.mockito.MockitoAnnotations.openMocks;
-import static org.wso2.carbon.ai.service.mgt.constants.AIConstants.TENANT_CONTEXT_PREFIX;
+import static org.wso2.carbon.identity.ai.service.mgt.constants.AIConstants.TENANT_CONTEXT_PREFIX;
 
 /**
  * Test class for AIHttpClientUtil.
@@ -332,38 +332,6 @@ public void testExecuteRequest_ExecutionException() throws Exception {
         );
     }
 
-    @Test(expectedExceptions = AIServerException.class)
-    public void testExecuteRequest_InterruptedException() throws Exception {
-
-        // Arrange: Mock a server that responds but simulate thread interruption manually.
-        String path = "/test-endpoint";
-        String fullPath = TENANT_CONTEXT_PREFIX + clientId + path; // This is the path that AIHttpClientUtil will use.
-
-        // Simulate a valid server response to ensure interruption occurs in client code.
-        wireMockServer.stubFor(get(urlEqualTo(fullPath))
-                .willReturn(aResponse()
-                        .withStatus(200)
-                        .withHeader("Content-Type", "application/json")
-                        .withBody("{\"result\":\"SUCCESS\"}")));
-
-        // Simulate interruption in the thread executing the HTTP request.
-        Thread.currentThread().interrupt(); // Mark the thread as interrupted.
-
-        try {
-            // Act: Execute the HTTP request.
-            String baseUrl = wireMockServer.baseUrl();
-            AIHttpClientUtil.executeRequest(
-                    baseUrl,
-                    path,
-                    HttpGet.class,
-                    null
-            );
-        } finally {
-            // Assert: Verify that the thread is still marked as interrupted.
-            Assert.assertTrue(Thread.currentThread().isInterrupted(), "Thread should be marked as interrupted");
-        }
-    }
-
     @Test(expectedExceptions = IllegalArgumentException.class)
     public void testExecuteRequest_UnsupportedRequestType() throws Exception {
 
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/log4j.properties b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/log4j.properties
similarity index 94%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/log4j.properties
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/log4j.properties
index 5a83c3d02a16..b2ef4da808f5 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/log4j.properties
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/log4j.properties
@@ -1,5 +1,5 @@
 #
-# Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+# Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
 #
 # WSO2 LLC. licenses this file to you under the Apache License,
 # Version 2.0 (the "License"); you may not use this file except
diff --git a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/testng.xml b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/testng.xml
similarity index 61%
rename from components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/testng.xml
rename to components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/testng.xml
index 69d12f19d4d5..67ddc6f4f5bb 100644
--- a/components/ai-services-mgt/org.wso2.carbon.ai.service.mgt/src/test/resources/testng.xml
+++ b/components/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt/src/test/resources/testng.xml
@@ -1,5 +1,5 @@
 <!--
-  ~ Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+  ~ Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
   ~
   ~ WSO2 LLC. licenses this file to you under the Apache License,
   ~ Version 2.0 (the "License"); you may not use this file except
@@ -21,11 +21,11 @@
 <suite name="org.wso2.carbon.ai.service.mgt">
     <test name="org.wso2.carbon.identity.application.mgt.test" preserve-order="true" parallel="false">
         <classes>
-            <class name="org.wso2.carbon.ai.service.mgt.constants.AIConstantsTest"/>
-            <class name="org.wso2.carbon.ai.service.mgt.exceptions.AIClientExceptionTest"/>
-            <class name="org.wso2.carbon.ai.service.mgt.exceptions.AIServerExceptionTest"/>
-            <class name="org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtilTest"/>
-            <class name="org.wso2.carbon.ai.service.mgt.token.AIAccessTokenManagerTest"/>
+            <class name="org.wso2.carbon.identity.ai.service.mgt.constants.AIConstantsTest"/>
+            <class name="org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientExceptionTest"/>
+            <class name="org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerExceptionTest"/>
+            <class name="org.wso2.carbon.identity.ai.service.mgt.util.AIHttpClientUtilTest"/>
+            <class name="org.wso2.carbon.identity.ai.service.mgt.token.AIAccessTokenManagerTest"/>
         </classes>
     </test>
 </suite>
diff --git a/components/ai-services-mgt/pom.xml b/components/ai-services-mgt/pom.xml
index 496236ccc8d9..90577096806a 100644
--- a/components/ai-services-mgt/pom.xml
+++ b/components/ai-services-mgt/pom.xml
@@ -31,14 +31,14 @@
 
     <artifactId>ai-services-mgt</artifactId>
     <packaging>pom</packaging>
-    <name>WSO2 Carbon - AI Management Aggregator Module</name>
+    <name>WSO2 Identity - AI Management Aggregator Module</name>
     <description>
         This is a Carbon bundle that represent the AI Management Aggregator Module.
     </description>
     <url>http://wso2.org</url>
 
     <modules>
-        <module>org.wso2.carbon.ai.service.mgt</module>
+        <module>org.wso2.carbon.identity.ai.service.mgt</module>
     </modules>
 
 </project>
diff --git a/components/application-mgt/org.wso2.carbon.identity.application.mgt/pom.xml b/components/application-mgt/org.wso2.carbon.identity.application.mgt/pom.xml
index b4deab273659..801bd720bcb9 100644
--- a/components/application-mgt/org.wso2.carbon.identity.application.mgt/pom.xml
+++ b/components/application-mgt/org.wso2.carbon.identity.application.mgt/pom.xml
@@ -59,18 +59,6 @@
             <groupId>org.apache.axis2.wso2</groupId>
             <artifactId>axis2</artifactId>
         </dependency>
-        <dependency>
-            <groupId>org.wso2.orbit.org.apache.httpcomponents</groupId>
-            <artifactId>httpclient</artifactId>
-        </dependency>
-        <dependency>
-            <groupId>org.apache.httpcomponents.wso2</groupId>
-            <artifactId>httpcore</artifactId>
-        </dependency>
-        <dependency>
-            <groupId>org.wso2.orbit.org.apache.httpcomponents</groupId>
-            <artifactId>httpasyncclient</artifactId>
-        </dependency>
         <dependency>
             <groupId>org.wso2.carbon</groupId>
             <artifactId>org.wso2.carbon.utils</artifactId>
@@ -147,7 +135,7 @@
         </dependency>
         <dependency>
             <groupId>org.wso2.carbon.identity.framework</groupId>
-            <artifactId>org.wso2.carbon.ai.service.mgt</artifactId>
+            <artifactId>org.wso2.carbon.identity.ai.service.mgt</artifactId>
         </dependency>
         <dependency>
             <groupId>org.wso2.carbon.identity.framework</groupId>
@@ -284,17 +272,6 @@
                             org.wso2.carbon.identity.certificate.management.service; version="${carbon.identity.package.import.version.range}",
                             org.wso2.carbon.identity.certificate.management.exception; version="${carbon.identity.package.import.version.range}",
                             org.wso2.carbon.identity.certificate.management.model; version="${carbon.identity.package.import.version.range}",
-
-                            org.apache.http; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.client; version="${httpcomponents-httpclient.imp.pkg.version.range}",
-                            org.apache.http.client.methods; version="${httpcomponents-httpclient.imp.pkg.version.range}",
-                            org.apache.http.entity; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.message; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.protocol; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.util; version="${httpcore.version.osgi.import.range}",
-                            org.apache.http.impl.client; version="${httpcomponents-httpclient.imp.pkg.version.range}",
-                            org.apache.http.impl.nio.client; version="${httpasyncclient.version.osgi.import.range}",
-                            org.apache.http.concurrent; version="${httpcore.version.osgi.import.range}",
                         </Import-Package>
                         <Export-Package>
                             !org.wso2.carbon.identity.application.mgt.internal,
diff --git a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManager.java b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManager.java
index ad242539e5eb..cb2e6ba8bf22 100644
--- a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManager.java
+++ b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManager.java
@@ -20,8 +20,8 @@
 
 import org.json.JSONArray;
 import org.json.JSONObject;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIClientException;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
 
 import java.util.Map;
 
diff --git a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerImpl.java b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerImpl.java
index b446386fdfcf..28e77c46af35 100644
--- a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerImpl.java
+++ b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerImpl.java
@@ -26,8 +26,8 @@
 import org.apache.http.client.methods.HttpPost;
 import org.json.JSONArray;
 import org.json.JSONObject;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIClientException;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
 import org.wso2.carbon.identity.core.util.IdentityUtil;
 
 import java.io.IOException;
@@ -35,9 +35,9 @@
 import java.util.List;
 import java.util.Map;
 
-import static org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil.executeRequest;
+import static org.wso2.carbon.identity.ai.service.mgt.util.AIHttpClientUtil.executeRequest;
 import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.AUTHENTICATORS_PROPERTY;
-import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.ErrorMessages.SERVER_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE;
+import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.ErrorMessages.CLIENT_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE;
 import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.OPERATION_ID_PROPERTY;
 import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.USER_CLAIM_PROPERTY;
 import static org.wso2.carbon.identity.application.mgt.ai.constant.LoginFlowAIConstants.USER_QUERY_PROPERTY;
@@ -55,7 +55,6 @@ public class LoginFlowAIManagerImpl implements LoginFlowAIManager {
     private static final String LOGINFLOW_AI_RESULT_PATH = "/api/server/v1/applications/loginflow/result";
 
     private static final Log LOG = LogFactory.getLog(LoginFlowAIManagerImpl.class);
-    private static final ObjectMapper objectMapper = new ObjectMapper();
 
     /**
      * Generates an authentication sequence using the LoginFlow AI service.
@@ -88,7 +87,7 @@ public String generateAuthenticationSequence(String userQuery, JSONArray userCla
             requestBody.put(AUTHENTICATORS_PROPERTY, authenticatorsMap);
         } catch (JsonSyntaxException | IOException e) {
             throw new AIClientException("Error occurred while parsing the user claims or available " +
-                    "authenticators.", SERVER_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE.getCode(), e);
+                    "authenticators.", CLIENT_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE.getCode(), e);
         }
 
         Map<String, Object> stringObjectMap = executeRequest(LOGINFLOW_AI_ENDPOINT, LOGINFLOW_AI_GENERATE_PATH,
diff --git a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/constant/LoginFlowAIConstants.java b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/constant/LoginFlowAIConstants.java
index 5e164d0f86fd..7854dd4881cb 100644
--- a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/constant/LoginFlowAIConstants.java
+++ b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/ai/constant/LoginFlowAIConstants.java
@@ -34,19 +34,9 @@ public class LoginFlowAIConstants {
      */
     public enum ErrorMessages {
 
-        MAXIMUM_RETRIES_EXCEEDED("AILF_10000", "Maximum retries exceeded to retrieve the access token."),
-        UNABLE_TO_ACCESS_AI_SERVICE_WITH_RENEW_ACCESS_TOKEN("AILF_10003", "Unable to access the " +
-                "AI service with the renewed access token."),
-        REQUEST_TIMEOUT("AILF_10004", "Request to the AI service timed out."),
-        ERROR_WHILE_GENERATING_AUTHENTICATION_SEQUENCE("AILF_10005", "Error occurred while " +
-                "generating the authentication sequence."),
-        ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE("AILF_10006", "Error occurred while" +
-                " connecting to the Loginflow AI service."),
-        ERROR_RETRIEVING_ACCESS_TOKEN("AILF_10007", "Error occurred while retrieving the " +
-                "access token."),
-        CLIENT_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE("AILF_10008", "Client error occurred " +
+        CLIENT_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE("AILF-10008", "Client error occurred " +
                 "for %s tenant while generating authentication sequence."),
-        SERVER_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE("AILF_10009", "Server error occurred " +
+        SERVER_ERROR_WHILE_CONNECTING_TO_LOGINFLOW_AI_SERVICE("AILF-10009", "Server error occurred " +
                 "for %s tenant while generating authentication sequence.");
 
 
diff --git a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/test/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerTest.java b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/test/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerTest.java
index 7d3c681ca9f4..f364eaa49c2d 100644
--- a/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/test/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerTest.java
+++ b/components/application-mgt/org.wso2.carbon.identity.application.mgt/src/test/java/org/wso2/carbon/identity/application/mgt/ai/LoginFlowAIManagerTest.java
@@ -1,5 +1,5 @@
 /*
- * Copyright (c) 2024, WSO2 LLC. (http://www.wso2.com).
+ * Copyright (c) 2025, WSO2 LLC. (http://www.wso2.com).
  *
  * WSO2 LLC. licenses this file to you under the Apache License,
  * Version 2.0 (the "License"); you may not use this file except
@@ -28,9 +28,9 @@
 import org.testng.annotations.AfterMethod;
 import org.testng.annotations.BeforeMethod;
 import org.testng.annotations.Test;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIClientException;
-import org.wso2.carbon.ai.service.mgt.exceptions.AIServerException;
-import org.wso2.carbon.ai.service.mgt.util.AIHttpClientUtil;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIClientException;
+import org.wso2.carbon.identity.ai.service.mgt.exceptions.AIServerException;
+import org.wso2.carbon.identity.ai.service.mgt.util.AIHttpClientUtil;
 import org.wso2.carbon.base.CarbonBaseConstants;
 import org.wso2.carbon.context.PrivilegedCarbonContext;
 import org.wso2.carbon.identity.common.testng.realm.InMemoryRealmService;
@@ -48,6 +48,9 @@
 import static org.wso2.carbon.base.MultitenantConstants.SUPER_TENANT_DOMAIN_NAME;
 import static org.wso2.carbon.base.MultitenantConstants.SUPER_TENANT_ID;
 
+/**
+ * Test class for LoginFlowAIManager.
+ */
 public class LoginFlowAIManagerTest {
 
     private MockedStatic<AIHttpClientUtil> aiHttpClientUtilMockedStatic;
diff --git a/features/ai-services-mgt/org.wso2.carbon.ai.service.mgt.server.feature/pom.xml b/features/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt.server.feature/pom.xml
similarity index 94%
rename from features/ai-services-mgt/org.wso2.carbon.ai.service.mgt.server.feature/pom.xml
rename to features/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt.server.feature/pom.xml
index f0f6267bb3ff..f4ac685dfbe4 100644
--- a/features/ai-services-mgt/org.wso2.carbon.ai.service.mgt.server.feature/pom.xml
+++ b/features/ai-services-mgt/org.wso2.carbon.identity.ai.service.mgt.server.feature/pom.xml
@@ -28,7 +28,7 @@
         <relativePath>../pom.xml</relativePath>
     </parent>
 
-    <artifactId>org.wso2.carbon.ai.service.mgt.server.feature</artifactId>
+    <artifactId>org.wso2.carbon.identity.ai.service.mgt.server.feature</artifactId>
     <packaging>pom</packaging>
     <name>AI Service Management Feature</name>
     <url>http://wso2.org</url>
@@ -37,7 +37,7 @@
     <dependencies>
         <dependency>
             <groupId>org.wso2.carbon.identity.framework</groupId>
-            <artifactId>org.wso2.carbon.ai.service.mgt</artifactId>
+            <artifactId>org.wso2.carbon.identity.ai.service.mgt</artifactId>
         </dependency>
     </dependencies>
 
@@ -64,7 +64,7 @@
                             </adviceFile>
                             <bundles>
                                 <bundleDef>
-                                    org.wso2.carbon.identity.framework:org.wso2.carbon.ai.service.mgt
+                                    org.wso2.carbon.identity.framework:org.wso2.carbon.identity.ai.service.mgt
                                 </bundleDef>
                             </bundles>
                         </configuration>
diff --git a/features/ai-services-mgt/pom.xml b/features/ai-services-mgt/pom.xml
index f34911adbcc4..4e27efe31d97 100644
--- a/features/ai-services-mgt/pom.xml
+++ b/features/ai-services-mgt/pom.xml
@@ -30,11 +30,11 @@
 
     <artifactId>ai-services-mgt-feature</artifactId>
     <packaging>pom</packaging>
-    <name>WSO2 Carbon - AI Service Management Feature</name>
+    <name>WSO2 Identity - AI Service Management Feature</name>
     <url>http://wso2.org</url>
 
     <modules>
-        <module>org.wso2.carbon.ai.service.mgt.server.feature</module>
+        <module>org.wso2.carbon.identity.ai.service.mgt.server.feature</module>
     </modules>
 
 </project>
diff --git a/pom.xml b/pom.xml
index 32174fc093ad..b6c8d0af391a 100644
--- a/pom.xml
+++ b/pom.xml
@@ -725,7 +725,7 @@
             </dependency>
             <dependency>
                 <groupId>org.wso2.carbon.identity.framework</groupId>
-                <artifactId>org.wso2.carbon.ai.service.mgt.server.feature</artifactId>
+                <artifactId>org.wso2.identity.ai.service.mgt.server.feature</artifactId>
                 <version>${project.version}</version>
             </dependency>
             <dependency>
@@ -794,12 +794,6 @@
                 <artifactId>httpcore</artifactId>
                 <version>${httpcore.version}</version>
             </dependency>
-
-            <dependency>
-                <groupId>org.wso2.orbit.org.apache.httpcomponents</groupId>
-                <artifactId>httpasyncclient</artifactId>
-                <version>${httpasyncclient.version}</version>
-            </dependency>
             <dependency>
                 <groupId>org.wso2.carbon.identity.framework</groupId>
                 <artifactId>org.wso2.carbon.identity.application.authentication.framework</artifactId>
@@ -1733,7 +1727,7 @@
             </dependency>
             <dependency>
                 <groupId>org.wso2.carbon.identity.framework</groupId>
-                <artifactId>org.wso2.carbon.ai.service.mgt</artifactId>
+                <artifactId>org.wso2.carbon.identity.ai.service.mgt</artifactId>
                 <version>${project.version}</version>
             </dependency>
             <dependency>
@@ -2034,7 +2028,6 @@
         <httpcore.version>4.4.14.wso2v1</httpcore.version>
         <httpcore.version.osgi.import.range>[4.3.0, 5.0.0)</httpcore.version.osgi.import.range>
 
-        <httpasyncclient.version>4.1.3.wso2v1</httpasyncclient.version>
         <com.google.code.gson.version>2.8.9</com.google.code.gson.version>
         <com.google.code.gson.osgi.version.range>[2.3.1,3.0.0)</com.google.code.gson.osgi.version.range>
         <com.google.code.findbugs.version>1.3.9</com.google.code.findbugs.version>
@@ -2052,7 +2045,6 @@
         <gdata-core.imp.pkg.version.range>[1.47.0.wso2v1,2.0.0)</gdata-core.imp.pkg.version.range>
         <httpcomponents-httpclient.wso2.version>4.5.13.wso2v1</httpcomponents-httpclient.wso2.version>
         <httpcomponents-httpclient.imp.pkg.version.range>[4.3.1.wso2v2,5.0.0)</httpcomponents-httpclient.imp.pkg.version.range>
-        <httpasyncclient.version.osgi.import.range>[4.1.3.wso2v1,5.0)</httpasyncclient.version.osgi.import.range>
         <orbit.version.commons.lang>2.6.0.wso2v1</orbit.version.commons.lang>
         <org.wso2.securevault.version>1.1.10</org.wso2.securevault.version>
         <org.wso2.securevault.import.version.range>[1.1.0, 2.0.0)</org.wso2.securevault.import.version.range>