Handle role permission update when authorized api is deleted

components/application-mgt/org.wso2.carbon.identity.application.mgt/src/main/java/org/wso2/carbon/identity/application/mgt/AuthorizedAPIManagementServiceImpl.java

@@ -93,6 +93,14 @@ public void deleteAuthorizedAPI(String appId, String apiId, String tenantDomain)
             listener.preDeleteAuthorizedAPI(appId, apiId, tenantDomain);
         }
         authorizedAPIDAO.deleteAuthorizedAPI(appId, apiId, IdentityTenantUtil.getTenantId(tenantDomain));
+        try {
+            List<String> apiScopes = ApplicationManagementServiceComponentHolder.getInstance().getAPIResourceManager()
+                    .getAPIResourceById(apiId, tenantDomain).getScopes().stream().map(Scope::getName)
+                    .collect(Collectors.toList());
+            updateRolesWithRemovedScopes(appId, apiScopes, tenantDomain);
+        } catch (APIResourceMgtException e) {
+            throw buildServerException("Error while retrieving API resource.", e);
+        }
         for (AuthorizedAPIManagementListener listener : listeners) {
             listener.postDeleteAuthorizedAPI(appId, apiId, tenantDomain);
         }