From 11c73c388e3077f6cb3440d3ec4e099a1b247075 Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Thu, 18 Dec 2025 11:05:35 +0000
Subject: [PATCH 1/6] Stopped role selection from editing rolesWithAccess data
 Removed access related calculated fields from local storage Simplified
 rendering of role selection page

---
 ...eps-prescription-tracker-ui.code-workspace |   2 +-
 .../common/commonTypes/src/trackerUserInfo.ts |   2 -
 .../cpt-ui/__tests__/AuthProvider.test.tsx    |  10 +-
 .../__tests__/BasicDetailsSearch.test.tsx     |   2 -
 .../BasicDetailsSearchResultsPage.test.tsx    |   2 -
 packages/cpt-ui/__tests__/EpsHeader.test.tsx  |   2 -
 .../__tests__/EpsPrescriptionList.test.tsx    |   2 -
 .../__tests__/EpsRoleSelectionPage.test.tsx   |  43 ++-
 .../EpsSearchForAPrescription.test.tsx        |   2 -
 packages/cpt-ui/__tests__/LoginPage.test.tsx  |   2 -
 packages/cpt-ui/__tests__/LogoutPage.test.tsx |   2 -
 .../PrescriptionDetailsPage.test.tsx          |   2 -
 .../__tests__/PrescriptionIdSearch.test.tsx   |   2 -
 .../__tests__/SessionLoggedOutPage.test.tsx   |   2 -
 .../__tests__/SessionSelectionPage.test.tsx   |   2 -
 .../__tests__/YourSelectedRole.test.tsx       |   2 -
 packages/cpt-ui/__tests__/userInfo.test.tsx   |  26 +-
 packages/cpt-ui/src/components/EpsHeader.tsx  |   4 +-
 .../src/components/EpsRoleSelectionPage.tsx   | 167 ++++------
 packages/cpt-ui/src/context/AuthProvider.tsx  |  21 +-
 packages/cpt-ui/src/helpers/userInfo.tsx      |   8 +-
 packages/selectedRoleLambda/src/handler.ts    |  62 ----
 .../tests/test_handler.test.ts                | 295 ++----------------
 23 files changed, 127 insertions(+), 537 deletions(-)

diff --git a/.vscode/eps-prescription-tracker-ui.code-workspace b/.vscode/eps-prescription-tracker-ui.code-workspace
index 357d934377..4dd24e7aee 100644
--- a/.vscode/eps-prescription-tracker-ui.code-workspace
+++ b/.vscode/eps-prescription-tracker-ui.code-workspace
@@ -67,7 +67,7 @@
       {
         "name": "packages/common/lambdaUtils",
         "path": "../packages/common/lambdaUtils"
-      }
+      },
       {
         "name": "packages/common/testing",
         "path": "../packages/common/testing"
diff --git a/packages/common/commonTypes/src/trackerUserInfo.ts b/packages/common/commonTypes/src/trackerUserInfo.ts
index 3fc53d8830..e5bbc19a2e 100644
--- a/packages/common/commonTypes/src/trackerUserInfo.ts
+++ b/packages/common/commonTypes/src/trackerUserInfo.ts
@@ -30,10 +30,8 @@ export type TrackerUserInfo = {
 export type TrackerUserInfoResult = {
   rolesWithAccess: Array<RoleDetails>,
   rolesWithoutAccess: Array<RoleDetails>,
-  hasNoAccess: boolean
   selectedRole: RoleDetails | undefined,
   userDetails: UserDetails | undefined,
-  hasSingleRoleAccess: boolean,
   isConcurrentSession: boolean,
   invalidSessionCause: string | undefined,
   sessionId: string | undefined,
diff --git a/packages/cpt-ui/__tests__/AuthProvider.test.tsx b/packages/cpt-ui/__tests__/AuthProvider.test.tsx
index a9ba497966..9bfb88f76a 100644
--- a/packages/cpt-ui/__tests__/AuthProvider.test.tsx
+++ b/packages/cpt-ui/__tests__/AuthProvider.test.tsx
@@ -41,10 +41,8 @@ const userDetails = {
 const mockUserInfo = {
   rolesWithAccess: rolesWithAccess,
   rolesWithoutAccess: [],
-  hasNoAccess: false,
   selectedRole: currentlySelectedRole,
   userDetails: userDetails,
-  hasSingleRoleAccess: true,
   error: undefined
 }
 
@@ -142,10 +140,8 @@ const TestConsumer = () => {
       <div data-testid="isSigningIn">{auth.isSigningIn.toString()}</div>
       <div data-testid="rolesWithAccess">{JSON.stringify(auth.rolesWithAccess, null, 2)}</div>
       <div data-testid="rolesWithoutAccess">{JSON.stringify(auth.rolesWithoutAccess, null, 2)}</div>
-      <div data-testid="noAccess">{auth.hasNoAccess.toString()}</div>
       <div data-testid="selectedRole">{JSON.stringify(auth.selectedRole, null, 2)}</div>
       <div data-testid="userDetails">{JSON.stringify(auth.userDetails, null, 2)}</div>
-      <div data-testid="singleAccess">{auth.hasSingleRoleAccess.toString()}</div>
     </div>
   )
 }
@@ -265,10 +261,8 @@ describe("AuthProvider", () => {
       expect(screen.getByTestId("user").textContent).toBe("test_user")
       expect(screen.getByTestId("rolesWithAccess").textContent).toBe(JSON.stringify(rolesWithAccess, null, 2))
       expect(screen.getByTestId("rolesWithoutAccess").textContent).toBe("[]")
-      expect(screen.getByTestId("noAccess").textContent).toBe("false")
       expect(screen.getByTestId("selectedRole").textContent).toBe(JSON.stringify(currentlySelectedRole, null, 2))
       expect(screen.getByTestId("userDetails").textContent).toBe(JSON.stringify(userDetails, null, 2))
-      expect(screen.getByTestId("singleAccess").textContent).toBe("true")
     })
   })
 
@@ -326,10 +320,8 @@ describe("AuthProvider", () => {
       expect(screen.getByTestId("error").textContent).toBe("")
       expect(screen.getByTestId("rolesWithAccess").textContent).toBe("[]")
       expect(screen.getByTestId("rolesWithoutAccess").textContent).toBe("[]")
-      expect(screen.getByTestId("noAccess").textContent).toBe("true")
       expect(screen.getByTestId("selectedRole").textContent).toBe("")
       expect(screen.getByTestId("userDetails").textContent).toBe("")
-      expect(screen.getByTestId("singleAccess").textContent).toBe("false")
     })
   })
 
@@ -395,7 +387,7 @@ describe("AuthProvider", () => {
       };
 
       (updateRemoteSelectedRole as jest.Mock).mockResolvedValue({
-        rolesWithAccess: [newRole]
+        currentlySelectedRole: newRole
       })
 
       let contextValue: AuthContextType | null
diff --git a/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx b/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
index cf53f88049..eb00c86420 100644
--- a/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
+++ b/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
@@ -45,8 +45,6 @@ const signedInAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx b/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
index 5f584be7dd..b99a374f9b 100644
--- a/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
+++ b/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
@@ -50,8 +50,6 @@ const mockAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/EpsHeader.test.tsx b/packages/cpt-ui/__tests__/EpsHeader.test.tsx
index 1173d8ff38..33124da518 100644
--- a/packages/cpt-ui/__tests__/EpsHeader.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsHeader.test.tsx
@@ -54,8 +54,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx b/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
index f37ccd4f09..fc1f7b075e 100644
--- a/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
@@ -137,8 +137,6 @@ const signedInAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx b/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
index 7d463b5664..c7851243f1 100644
--- a/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
@@ -13,6 +13,7 @@ import {FRONTEND_PATHS} from "@/constants/environment"
 import {getSearchParams} from "@/helpers/getSearchParams"
 import {handleRestartLogin} from "@/helpers/logout"
 import axios from "axios"
+import {RoleDetails} from "@cpt-ui-common/common-types"
 
 jest.mock("@/context/AuthProvider")
 jest.mock("@/helpers/getSearchParams")
@@ -89,7 +90,6 @@ describe("RoleSelectionPage", () => {
   it("renders loading spinner if redirecting during sign in", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: true,
-      hasNoAccess: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
       error: null,
@@ -107,7 +107,6 @@ describe("RoleSelectionPage", () => {
   it("renders error message if auth.error exists", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasNoAccess: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
       error: "Something went wrong"
@@ -118,10 +117,9 @@ describe("RoleSelectionPage", () => {
     expect(screen.getByText("Something went wrong")).toBeInTheDocument()
   })
 
-  it("renders titleNoAccess and captionNoAccess when hasNoAccess is true", () => {
+  it("renders titleNoAccess and captionNoAccess when rolesWithAccess is empty", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasNoAccess: true,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
       error: null
@@ -139,8 +137,6 @@ describe("RoleSelectionPage", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: true,
       isSignedIn: false,
-      hasSingleRoleAccess: true,
-      hasNoAccess: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
       selectedRole: null,
@@ -157,16 +153,21 @@ describe("RoleSelectionPage", () => {
     expect(navigateMock).toHaveBeenCalledWith(FRONTEND_PATHS.LOGIN)
   })
 
-  it("redirects if user hasSingleRoleAccess", () => {
+  it("redirects if user has single roleWithAccess", () => {
     const navigateMock = jest.fn()
     mockNavigate.mockReturnValue(navigateMock)
 
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
       isSignedIn: true,
-      hasSingleRoleAccess: true,
-      hasNoAccess: false,
-      rolesWithAccess: [],
+      rolesWithAccess: [
+        {
+          role_id: "1",
+          role_name: "Pharmacist",
+          org_code: "ABC",
+          org_name: "Pharmacy Org"
+        }
+      ],
       rolesWithoutAccess: [],
       selectedRole: null,
       error: null
@@ -180,8 +181,6 @@ describe("RoleSelectionPage", () => {
   it("renders login info when selectedRole is present", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasSingleRoleAccess: false,
-      hasNoAccess: false,
       selectedRole: {
         org_name: "Test Org",
         org_code: "TEST123",
@@ -202,7 +201,6 @@ describe("RoleSelectionPage", () => {
   it("renders roles without access in table", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasNoAccess: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [
         {
@@ -224,7 +222,6 @@ describe("RoleSelectionPage", () => {
   it("renders EpsCard components for roles with access", () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasNoAccess: false,
       selectedRole: {
         role_id: "1"
       },
@@ -265,7 +262,6 @@ describe("RoleSelectionPage", () => {
   it("navigates on confirm and continue button click", async () => {
     mockUseAuth.mockReturnValue({
       isSigningIn: false,
-      hasNoAccess: false,
       selectedRole: {
         role_id: "1",
         org_name: "Pharmacy A",
@@ -284,7 +280,6 @@ describe("RoleSelectionPage", () => {
     expect(button).toBeEnabled()
     fireEvent.click(button)
 
-    expect(mockNavigate.mock.calls.length).toBe(5)
     expect(mockNavigate).toHaveBeenCalledWith("/continue")
   })
 
@@ -293,11 +288,9 @@ describe("RoleSelectionPage", () => {
     const authState = {
       isSigningIn: true,
       isSignedIn: false,
-      hasSingleRoleAccess: false,
-      hasNoAccess: false,
-      rolesWithAccess: [],
+      rolesWithAccess: [] as Array<RoleDetails>,
       rolesWithoutAccess: [],
-      selectedRole: null,
+      selectedRole: undefined as RoleDetails | undefined,
       error: null,
       clearAuthState: jest.fn()
     }
@@ -317,8 +310,14 @@ describe("RoleSelectionPage", () => {
     // Step 2: Simulate login complete and role assignment
     act(() => {
       authState.isSigningIn = false
-      authState.isSignedIn = true
-      authState.hasSingleRoleAccess = true
+      const role = {
+        role_id: "2",
+        role_name: "Pharmacist",
+        org_code: "ABC",
+        org_name: "Pharmacy Org"
+      }
+      authState.rolesWithAccess = [role]
+      authState.selectedRole = role
       authState.isSignedIn = true
       mockUseAuth.mockReturnValue(authState)
     })
diff --git a/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx b/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
index 3f4a21d0f5..f38e6e6199 100644
--- a/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
@@ -17,8 +17,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/LoginPage.test.tsx b/packages/cpt-ui/__tests__/LoginPage.test.tsx
index b14067ac99..736ffe6fd5 100644
--- a/packages/cpt-ui/__tests__/LoginPage.test.tsx
+++ b/packages/cpt-ui/__tests__/LoginPage.test.tsx
@@ -89,8 +89,6 @@ const defaultAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/LogoutPage.test.tsx b/packages/cpt-ui/__tests__/LogoutPage.test.tsx
index b8e1d92edb..567176f043 100644
--- a/packages/cpt-ui/__tests__/LogoutPage.test.tsx
+++ b/packages/cpt-ui/__tests__/LogoutPage.test.tsx
@@ -69,8 +69,6 @@ const MockAuthProvider = ({
     invalidSessionCause: undefined,
     rolesWithAccess: [],
     rolesWithoutAccess: [],
-    hasNoAccess: false,
-    hasSingleRoleAccess: false,
     selectedRole: undefined,
     userDetails: undefined,
     isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx b/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
index 51143d6c10..bcced788a1 100644
--- a/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
+++ b/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
@@ -27,8 +27,6 @@ const defaultAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx b/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
index b4f5efb905..b2f6a2941f 100644
--- a/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
+++ b/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
@@ -40,8 +40,6 @@ const mockAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
diff --git a/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx b/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
index e34b16a80c..1b4dcbe42a 100644
--- a/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
+++ b/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
@@ -44,8 +44,6 @@ export const defaultAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: true,
diff --git a/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx b/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
index ad50771ec0..8e2264b418 100644
--- a/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
+++ b/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
@@ -58,8 +58,6 @@ export const defaultAuthState: AuthContextType = {
   error: null,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: true,
diff --git a/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx b/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
index eb86399afc..efeab91cd0 100644
--- a/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
+++ b/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
@@ -21,8 +21,6 @@ const mockUseAuthReturnValue: AuthContextType = {
   sessionId: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   userDetails: undefined,
   isConcurrentSession: false,
   cognitoSignIn: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/userInfo.test.tsx b/packages/cpt-ui/__tests__/userInfo.test.tsx
index 89d5e53a80..902e50d3f8 100644
--- a/packages/cpt-ui/__tests__/userInfo.test.tsx
+++ b/packages/cpt-ui/__tests__/userInfo.test.tsx
@@ -5,8 +5,6 @@ jest.mock("@/helpers/axios")
 const mockedAxios = axios as jest.Mocked<typeof axios>
 
 type ExpectedResult = {
-  hasNoAccess: boolean,
-  hasSingleRoleAccess: boolean,
   numberOfCallsToUpdateSelectedRole: number
 }
 type TestCase = {
@@ -48,8 +46,6 @@ describe("getTrackerUserInfo", () => {
         given_name: "GIVEN"
       },
       expected: {
-        hasNoAccess: false,
-        hasSingleRoleAccess: true,
         numberOfCallsToUpdateSelectedRole: 0
       }
     },
@@ -71,8 +67,6 @@ describe("getTrackerUserInfo", () => {
         given_name: "JOHN"
       },
       expected: {
-        hasNoAccess: true,
-        hasSingleRoleAccess: false,
         numberOfCallsToUpdateSelectedRole: 0
       }
     },
@@ -107,8 +101,6 @@ describe("getTrackerUserInfo", () => {
         given_name: "ANNA"
       },
       expected: {
-        hasNoAccess: false,
-        hasSingleRoleAccess: false,
         numberOfCallsToUpdateSelectedRole: 0
       }
     }
@@ -141,15 +133,13 @@ describe("getTrackerUserInfo", () => {
       expect(result.rolesWithAccess).toStrictEqual(rolesWithAccess)
       expect(result.rolesWithoutAccess).toStrictEqual(rolesWithoutAccess)
       expect(result.userDetails).toStrictEqual(userDetails)
-      expect(result.hasNoAccess).toBe(expected.hasNoAccess)
-      expect(result.hasSingleRoleAccess).toBe(expected.hasSingleRoleAccess)
       expect(result.error).toBeNull()
       expect(mockedAxios.put).toHaveBeenCalledTimes(expected.numberOfCallsToUpdateSelectedRole)
     }
   )
 
   describe("updateRemoteSelectedRole", () => {
-    it("should successfully update selected role and return rolesWithAccess", async () => {
+    it("should successfully update selected role and return currentlySelectedRole", async () => {
       const newRole = {
         role_id: "ROLE456",
         role_name: "Admin",
@@ -158,28 +148,18 @@ describe("getTrackerUserInfo", () => {
         site_address: "456 Admin Street"
       }
 
-      const expectedRolesWithAccess = [
-        {
-          role_id: "ROLE456",
-          role_name: "Admin",
-          org_name: "Admin Org",
-          org_code: "ORG456",
-          site_address: "456 Admin Street"
-        }
-      ]
-
       mockedAxios.put.mockResolvedValue({
         status: 200,
         data: {
           userInfo: {
-            rolesWithAccess: expectedRolesWithAccess
+            currentlySelectedRole: newRole
           }
         }
       })
 
       const result = await updateRemoteSelectedRole(newRole)
 
-      expect(result.rolesWithAccess).toEqual(expectedRolesWithAccess)
+      expect(result.currentlySelectedRole).toEqual(newRole)
     })
 
     it("should throw error when server returns non-200 status", async () => {
diff --git a/packages/cpt-ui/src/components/EpsHeader.tsx b/packages/cpt-ui/src/components/EpsHeader.tsx
index 3eaa3df41d..418adafc4a 100644
--- a/packages/cpt-ui/src/components/EpsHeader.tsx
+++ b/packages/cpt-ui/src/components/EpsHeader.tsx
@@ -60,7 +60,6 @@ export default function EpsHeader() {
       path !== FRONTEND_PATHS.LOGOUT &&
       path !== FRONTEND_PATHS.SESSION_LOGGED_OUT &&
       isSignedIn &&
-      !authContext.hasSingleRoleAccess &&
       !authContext.selectedRole
     )
 
@@ -71,7 +70,6 @@ export default function EpsHeader() {
       path !== FRONTEND_PATHS.CHANGE_YOUR_ROLE &&
       path !== FRONTEND_PATHS.LOGOUT &&
       isSignedIn &&
-      !authContext.hasSingleRoleAccess &&
       authContext.selectedRole !== undefined
     )
 
@@ -81,7 +79,7 @@ export default function EpsHeader() {
     // Show the "Exit" button under these conditions
     setShouldShowExitButton(
       (path === FRONTEND_PATHS.LOGOUT && !auth?.isSignedIn) ||
-      (path === FRONTEND_PATHS.SELECT_YOUR_ROLE && authContext.hasNoAccess) ||
+      (path === FRONTEND_PATHS.SELECT_YOUR_ROLE && authContext.rolesWithAccess.length === 0) ||
       (path === "/notfound")
     )
   }, [location, auth, authContext])
diff --git a/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx b/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
index 838692ad7f..6b8bd402e8 100644
--- a/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
+++ b/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
@@ -1,4 +1,4 @@
-import React, {useState, useEffect, useRef} from "react"
+import React from "react"
 import {useNavigate} from "react-router-dom"
 import {
   Container,
@@ -84,22 +84,49 @@ export default function RoleSelectionPage({
   } = contentText
 
   const auth = useAuth()
-
-  const [loginInfoMessage, setLoginInfoMessage] = useState<string | null>(null)
   const navigate = useNavigate()
-  const redirecting = useRef(false)
 
-  const [roleCardPropsWithAccess, setRoleCardPropsWithAccess] = useState<Array<RolesWithAccessProps>>([])
-  const [roleCardPropsWithoutAccess, setRoleCardPropsWithoutAccess] = useState<Array<RolesWithoutAccessProps>>([])
+  if (auth.isSigningIn) {
+    const {codeParams, stateParams} = getSearchParams(window)
+    if (codeParams && stateParams) {
+      // we are in a redirect from login flow so show spinner
+      return (
+        <main id="main-content" className="nhsuk-main-wrapper">
+          <Container>
+            <Row>
+              <Col width="full">
+                <EpsSpinner />
+              </Col>
+            </Row>
+          </Container>
+        </main>
+      )
+    } else {
+      // something has gone wrong so go back to login
+      auth.clearAuthState()
+      navigate(FRONTEND_PATHS.LOGIN)
+      return
+    }
+  }
+
+  // Handle auto-redirect for single role
+  if (auth.rolesWithAccess.length === 1
+    && auth.rolesWithoutAccess.length === 0
+    && auth.isSignedIn
+    && auth.selectedRole !== undefined
+  ) {
+    navigate(FRONTEND_PATHS.SEARCH_BY_PRESCRIPTION_ID)
+    return
+  }
 
   const handleSetSelectedRole = async (
     e: React.MouseEvent | React.KeyboardEvent,
-    roleCardProps: RolesWithAccessProps
+    role: RoleDetails
   ) => {
     e.preventDefault()
     try {
-      await auth.updateSelectedRole(roleCardProps.role)
-      navigate(roleCardProps.link)
+      await auth.updateSelectedRole(role)
+      navigate(FRONTEND_PATHS.YOUR_SELECTED_ROLE)
     } catch (err) {
       if (axios.isAxiosError(err) && (err.response?.status === 401)) {
         const invalidSessionCause = err.response?.data?.invalidSessionCause
@@ -110,76 +137,6 @@ export default function RoleSelectionPage({
     }
   }
 
-  useEffect(() => {
-    // Transform roles data for display
-    setRoleCardPropsWithAccess((!auth.hasNoAccess)
-      ? auth.rolesWithAccess.map((role: RoleDetails, index) => ({
-        uuid: `role_with_access_${index}`,
-        role,
-        link: FRONTEND_PATHS.YOUR_SELECTED_ROLE
-      }))
-      : []
-    )
-
-    setRoleCardPropsWithoutAccess(auth.rolesWithoutAccess.map((role, index) => ({
-      uuid: `role_without_access_${index}`,
-      roleName: role.role_name || noRoleName,
-      orgName: role.org_name || noOrgName,
-      odsCode: role.org_code || noODSCode
-    })))
-
-    logger.warn("RoleCardPropsWithAccess length: ", {roleCardPropsWithAccess, error: auth.error})
-  }, [auth.rolesWithAccess, auth.rolesWithoutAccess])
-
-  // Handle auto-redirect for single role
-  useEffect(() => {
-    if (auth.isSigningIn) {
-      const {codeParams, stateParams} = getSearchParams(window)
-      if (codeParams && stateParams) {
-        // we are in a redirect from login flow so carry on
-        redirecting.current = true
-        return
-      } else {
-        // something has gone wrong so go back to login
-        auth.clearAuthState()
-        navigate(FRONTEND_PATHS.LOGIN)
-      }
-    } else {
-      redirecting.current = false
-    }
-  }, [auth.isSigningIn])
-
-  useEffect(() => {
-    if (auth.hasSingleRoleAccess && auth.isSignedIn) {
-      navigate(FRONTEND_PATHS.SEARCH_BY_PRESCRIPTION_ID)
-    }
-  }, [auth.hasSingleRoleAccess, auth.isSignedIn])
-
-  // Set login message when selected role is available
-  useEffect(() => {
-    if (!loginInfoMessage && auth.selectedRole) {
-      setLoginInfoMessage(
-        `You are currently logged in at ${auth.selectedRole.org_name || noOrgName} ` +
-        `(ODS: ${auth.selectedRole.org_code || noODSCode}) with ${auth.selectedRole.role_name || noRoleName}.`
-      )
-    }
-  }, [auth.selectedRole, loginInfoMessage])
-
-  // Show spinner while loading or redirecting
-  if (redirecting.current) {
-    return (
-      <main id="main-content" className="nhsuk-main-wrapper">
-        <Container>
-          <Row>
-            <Col width="full">
-              <EpsSpinner />
-            </Col>
-          </Row>
-        </Container>
-      </main>
-    )
-  }
-
   // Show error if present
   if (auth.error) {
     return (
@@ -206,6 +163,11 @@ export default function RoleSelectionPage({
     )
   }
 
+  const hasNoAccess = auth.rolesWithAccess.length === 0
+  const unselectedRolesWithAccess = auth.rolesWithAccess.filter(
+    (role) => role.role_id !== auth.selectedRole?.role_id
+  )
+
   return (
     <main
       id="main-content"
@@ -218,27 +180,27 @@ export default function RoleSelectionPage({
             <h1 className="nhsuk-heading-xl">
               <span role="text" data-testid="eps_header_selectYourRole">
                 <span className="nhsuk-title">
-                  {auth.hasNoAccess ? titleNoAccess : title}
+                  {hasNoAccess ? titleNoAccess : title}
                 </span>
                 <span className="nhsuk-caption-l nhsuk-caption--bottom">
                   <span className="nhsuk-u-visually-hidden"> - </span>
-                  {(!auth.hasNoAccess) && caption}
+                  {(!hasNoAccess) && caption}
                 </span>
               </span>
             </h1>
 
-            {auth.hasNoAccess && <p>{captionNoAccess}</p>}
+            {hasNoAccess && <p>{captionNoAccess}</p>}
             {auth.selectedRole && (
               <section aria-label="Login Information">
                 <InsetText data-testid="eps_select_your_role_pre_role_selected">
                   <span className="nhsuk-u-visually-hidden">
                     {insetText.visuallyHidden}
                   </span>
-                  {loginInfoMessage && (
-                    <p
-                      dangerouslySetInnerHTML={{__html: loginInfoMessage}}
-                    ></p>
-                  )}
+                  <p>
+                    You are currently logged in at {auth.selectedRole.org_name || noOrgName}
+                    (ODS: {auth.selectedRole.org_code || noODSCode})
+                    with {auth.selectedRole.role_name || noRoleName}.
+                  </p>
                 </InsetText>
                 <Button
                   to={confirmButton.link}
@@ -251,14 +213,13 @@ export default function RoleSelectionPage({
             )}
           </Col>
 
-          {(!auth.hasNoAccess) && (roleCardPropsWithAccess.length > 0) && (
+          {(unselectedRolesWithAccess.length > 0) && (
             <Col width="two-thirds">
               <div className="section">
-                {roleCardPropsWithAccess
-                  .filter((duplicateRole) => duplicateRole.role.role_id !== auth.selectedRole?.role_id)
-                  .map((roleCardProps: RolesWithAccessProps) => (
+                {unselectedRolesWithAccess
+                  .map(role => (
                     <Card
-                      key={roleCardProps.uuid}
+                      key={`role_with_access_${role.role_id}`}
                       data-testid="eps-card"
                       className="nhsuk-card nhsuk-card--primary nhsuk-u-margin-bottom-4"
                     >
@@ -271,27 +232,27 @@ export default function RoleSelectionPage({
                               onKeyDown={(e) => {
                                 if (e.key === "Enter" || e.key === " ") {
                                   e.preventDefault()
-                                  handleSetSelectedRole(e, roleCardProps)
+                                  handleSetSelectedRole(e, role)
                                 }
                               }}
                               onClick={(e) => {
                                 e.preventDefault()
-                                handleSetSelectedRole(e, roleCardProps)
+                                handleSetSelectedRole(e, role)
                               }}
                             >
                               <Card.Heading className="nhsuk-heading-s eps-card__org-name">
-                                {roleCardProps.role.org_name || noOrgName}
+                                {role.org_name || noOrgName}
                                 <br />
-                                (ODS: {roleCardProps.role.org_code || noODSCode})
+                                (ODS: {role.org_code || noODSCode})
                               </Card.Heading>
                             </div>
                             <Card.Description className="nhsuk-u-margin-top-2">
-                              {roleCardProps.role.role_name || noRoleName}
+                              {role.role_name || noRoleName}
                             </Card.Description>
                           </div>
                           <div className="eps-card__address">
                             <Card.Description>
-                              {(roleCardProps.role.site_address || contentText.noAddress)
+                              {(role.site_address || contentText.noAddress)
                                 .split("\n")
                                 .map((line: string, index: number) => (
                                   <span key={index}>
@@ -324,14 +285,14 @@ export default function RoleSelectionPage({
                     </Table.Row>
                   </Table.Head>
                   <Table.Body>
-                    {roleCardPropsWithoutAccess.map(
-                      (roleItem: RolesWithoutAccessProps) => (
-                        <Table.Row key={roleItem.uuid}>
+                    {auth.rolesWithoutAccess.map(
+                      role => (
+                        <Table.Row key={`role_without_access_${role.role_id}`}>
                           <Table.Cell data-testid="change-role-name-cell">
-                            {roleItem.orgName} (ODS: {roleItem.odsCode})
+                            {role.org_name || noOrgName} (ODS: {role.org_code || noODSCode})
                           </Table.Cell>
                           <Table.Cell data-testid="change-role-role-cell">
-                            {roleItem.roleName}
+                            {role.role_name || noRoleName}
                           </Table.Cell>
                         </Table.Row>
                       )
diff --git a/packages/cpt-ui/src/context/AuthProvider.tsx b/packages/cpt-ui/src/context/AuthProvider.tsx
index ef92a5e84c..1d022e1211 100644
--- a/packages/cpt-ui/src/context/AuthProvider.tsx
+++ b/packages/cpt-ui/src/context/AuthProvider.tsx
@@ -30,8 +30,6 @@ export interface AuthContextType {
   sessionId: string | undefined
   rolesWithAccess: Array<RoleDetails>
   rolesWithoutAccess: Array<RoleDetails>
-  hasNoAccess: boolean
-  hasSingleRoleAccess: boolean
   selectedRole: RoleDetails | undefined
   userDetails: UserDetails | undefined
   cognitoSignIn: (input?: SignInWithRedirectInput) => Promise<void>
@@ -64,11 +62,6 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
     "rolesWithoutAccess",
     "rolesWithoutAccess",
     [])
-  const [hasNoAccess, setHasNoAccess] = useLocalStorageState<boolean>(
-    "noAccess",
-    "noAccess",
-    true
-  )
   const [selectedRole, setSelectedRole] = useLocalStorageState<RoleDetails | undefined>(
     "selectedRole",
     "selectedRole",
@@ -79,18 +72,11 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
     "userDetails",
     undefined
   )
-  const [hasSingleRoleAccess, setHasSingleRoleAccess] = useLocalStorageState<boolean>(
-    "singleAccess",
-    "singleAccess",
-    false
-  )
   /**
    * Fetch and update the auth tokens
    */
 
   const clearAuthState = () => {
-    setHasNoAccess(true)
-    setHasSingleRoleAccess(false)
     setSelectedRole(undefined)
     setUserDetails(undefined)
     setRolesWithAccess([])
@@ -106,10 +92,8 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
     const trackerUserInfo = await getTrackerUserInfo()
     setRolesWithAccess(trackerUserInfo.rolesWithAccess)
     setRolesWithoutAccess(trackerUserInfo.rolesWithoutAccess)
-    setHasNoAccess(trackerUserInfo.hasNoAccess)
     setSelectedRole(trackerUserInfo.selectedRole)
     setUserDetails(trackerUserInfo.userDetails)
-    setHasSingleRoleAccess(trackerUserInfo.hasSingleRoleAccess)
     setError(trackerUserInfo.error)
     setIsConcurrentSession(trackerUserInfo.isConcurrentSession)
     setInvalidSessionCause(trackerUserInfo.invalidSessionCause)
@@ -223,8 +207,7 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
 
   const updateSelectedRole = async (newRole: RoleDetails) => {
     const selectedRole = await updateRemoteSelectedRole(newRole)
-    setRolesWithAccess(selectedRole.rolesWithAccess)
-    setSelectedRole(newRole)
+    setSelectedRole(selectedRole.currentlySelectedRole)
   }
 
   const updateInvalidSessionCause = (cause: string | undefined) => {
@@ -240,8 +223,6 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
       isSigningOut,
       rolesWithAccess,
       rolesWithoutAccess,
-      hasNoAccess,
-      hasSingleRoleAccess,
       selectedRole,
       userDetails,
       isConcurrentSession,
diff --git a/packages/cpt-ui/src/helpers/userInfo.tsx b/packages/cpt-ui/src/helpers/userInfo.tsx
index 7b00228ee9..51b2dd0629 100644
--- a/packages/cpt-ui/src/helpers/userInfo.tsx
+++ b/packages/cpt-ui/src/helpers/userInfo.tsx
@@ -18,10 +18,8 @@ type AuthErrorResponse = {
 export const getTrackerUserInfo = async (): Promise<TrackerUserInfoResult> => {
   let rolesWithAccess: Array<RoleDetails> = []
   let rolesWithoutAccess: Array<RoleDetails> = []
-  let hasNoAccess: boolean = true
   let selectedRole: RoleDetails | undefined = undefined
   let userDetails: UserDetails | undefined = undefined
-  let hasSingleRoleAccess: boolean = false
   let isConcurrentSession: boolean = false
   let invalidSessionCause: string | undefined = undefined
   let error: string | null = null
@@ -56,11 +54,9 @@ export const getTrackerUserInfo = async (): Promise<TrackerUserInfoResult> => {
       currentlySelectedRole = undefined
     }
 
-    hasNoAccess = userInfo.roles_with_access.length === 0 && !currentlySelectedRole
     rolesWithoutAccess = userInfo.roles_without_access || []
     selectedRole = currentlySelectedRole
     userDetails = userInfo.user_details
-    hasSingleRoleAccess = userInfo.roles_with_access.length === 1 && userInfo.roles_without_access.length === 0
 
     isConcurrentSession = userInfo.is_concurrent_session || false
     sessionId = userInfo.sessionId
@@ -91,10 +87,8 @@ export const getTrackerUserInfo = async (): Promise<TrackerUserInfoResult> => {
   return {
     rolesWithAccess,
     rolesWithoutAccess,
-    hasNoAccess,
     selectedRole,
     userDetails,
-    hasSingleRoleAccess,
     isConcurrentSession,
     invalidSessionCause,
     sessionId,
@@ -115,6 +109,6 @@ export const updateRemoteSelectedRole = async (newRole: RoleDetails) => {
   }
 
   return {
-    rolesWithAccess: response.data.userInfo.rolesWithAccess || []
+    currentlySelectedRole: response.data.userInfo.currentlySelectedRole
   }
 }
diff --git a/packages/selectedRoleLambda/src/handler.ts b/packages/selectedRoleLambda/src/handler.ts
index 1bc01c5be3..39aad3b0cc 100644
--- a/packages/selectedRoleLambda/src/handler.ts
+++ b/packages/selectedRoleLambda/src/handler.ts
@@ -73,75 +73,14 @@ const lambdaHandler = async (event: APIGatewayProxyEventBase<AuthResult>): Promi
 
   // Extract rolesWithAccess and currentlySelectedRole from the DynamoDB response
   const rolesWithAccess = tokenMappingItem?.rolesWithAccess || []
-  const currentSelectedRole = tokenMappingItem?.currentlySelectedRole // Could be undefined
 
   // Identify the new selected role from request
   const userSelectedRoleId = userInfoSelectedRole.currently_selected_role?.role_id
   const newSelectedRole = rolesWithAccess.find(role => role.role_id === userSelectedRoleId)
 
-  // Log extracted role details
-  logger.debug("Extracted role data", {
-    username: username,
-    rolesWithAccessCount: rolesWithAccess.length,
-    rolesWithAccess: rolesWithAccess.map(role => ({
-      role_id: role.role_id,
-      role_name: role.role_name,
-      org_code: role.org_code
-    })),
-    previousSelectedRole: currentSelectedRole
-      ? {
-        role_id: currentSelectedRole.role_id,
-        role_name: currentSelectedRole.role_name,
-        org_code: currentSelectedRole.org_code
-      }
-      : "No previous role selected",
-    newSelectedRole: newSelectedRole
-      ? {
-        role_id: newSelectedRole.role_id,
-        role_name: newSelectedRole.role_name,
-        org_code: newSelectedRole.org_code
-      }
-      : "Role not found in rolesWithAccess"
-  })
-
-  // Construct updated roles list
-  const updatedRolesWithAccess = [
-    ...rolesWithAccess.filter(role => role.role_id !== userSelectedRoleId), // Remove the new selected role
-
-    // Move the previously selected role back into rolesWithAccess, but only if it was set
-    ...(currentSelectedRole && Object.keys(currentSelectedRole).length > 0
-      ? [currentSelectedRole]
-      : [])
-  ]
-
-  logger.debug("Updated roles list before database update", {
-    username: username,
-    newSelectedRole: newSelectedRole
-      ? {
-        role_id: newSelectedRole.role_id,
-        role_name: newSelectedRole.role_name,
-        org_code: newSelectedRole.org_code
-      }
-      : "No role selected",
-    returningRoleToAccessList: currentSelectedRole
-      ? {
-        role_id: currentSelectedRole.role_id,
-        role_name: currentSelectedRole.role_name,
-        org_code: currentSelectedRole.org_code
-      }
-      : "No previous role to return",
-    updatedRolesWithAccessCount: updatedRolesWithAccess.length,
-    updatedRolesWithAccess: updatedRolesWithAccess.map(role => ({
-      role_id: role.role_id,
-      role_name: role.role_name,
-      org_code: role.org_code
-    }))
-  })
-
   // Prepare the updated user info to be stored in DynamoDB
   const updatedUserInfo = {
     currentlySelectedRole: newSelectedRole || undefined, // If no role is found, store `undefined`
-    rolesWithAccess: updatedRolesWithAccess,
     selectedRoleId: userSelectedRoleId
   }
 
@@ -154,7 +93,6 @@ const lambdaHandler = async (event: APIGatewayProxyEventBase<AuthResult>): Promi
   const item = {
     username: username,
     currentlySelectedRole: updatedUserInfo.currentlySelectedRole || {},
-    rolesWithAccess: updatedUserInfo.rolesWithAccess || [],
     selectedRoleId: updatedUserInfo.selectedRoleId || "",
     lastActivityTime: Date.now()
   }
diff --git a/packages/selectedRoleLambda/tests/test_handler.test.ts b/packages/selectedRoleLambda/tests/test_handler.test.ts
index c27eab4e64..8abcee40d8 100644
--- a/packages/selectedRoleLambda/tests/test_handler.test.ts
+++ b/packages/selectedRoleLambda/tests/test_handler.test.ts
@@ -30,8 +30,8 @@ describe("Lambda Handler Tests", () => {
     body: JSON.stringify({
       currently_selected_role: {
         role_id: "123",
-        org_code: "XYZ",
-        role_name: "MockRole_1"
+        org_code: "WRONG", // org code and role name should be ignored in favor of DynamoDB values
+        role_name: "wrongRoleName"
       }
     })
   }
@@ -41,278 +41,51 @@ describe("Lambda Handler Tests", () => {
     jest.resetAllMocks()
   })
 
-  it("should return a successful response when called", async () => {
+  it("should call updateDynamoTable with currentlySelectedRole and return success", async () => {
     event.requestContext.authorizer = {
-      username: "JoeBlogs"
+      username: "Mock_JoeBloggs"
     }
-    const response = await handler(event, context)
-    expect(mockUpdateTokenMapping).toHaveBeenCalled()
-
-    expect(response).toBeDefined()
-    expect(response).toHaveProperty("statusCode", 200)
-    expect(response).toHaveProperty("body")
-
-    const body = JSON.parse(response.body)
-    expect(body).toHaveProperty("message", "Selected role data has been updated successfully")
-    expect(body).toHaveProperty("userInfo")
-  })
-
-  it(
-    "should call updateDynamoTable and move the selected role from rolesWithAccess to currentlySelectedRole",
-    async () => {
-      event.requestContext.authorizer = {
-        username: "Mock_JoeBloggs"
-      }
-      mockGetTokenMapping.mockImplementation(() => {
-        return {
-          rolesWithAccess:  [
-            {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"},
-            {role_id: "456", org_code: "ABC", role_name: "MockRole_2"}
-          ],
-          currentlySelectedRole: undefined // Initially no role is selected
-        }
-      })
-      const testUsername = "Mock_JoeBloggs"
-      const currentlySelectedRole = {
-        role_id: "123",
-        org_code: "XYZ",
-        role_name: "MockRole_1"
-      }
-      const rolesWithAccess = [
-        {
-          role_id: "456",
-          org_code: "ABC",
-          role_name: "MockRole_2"
-        }
-      ]
-      const selectedRoleId = "123"
-
-      const response = await handler(event, context)
-
-      expect(mockUpdateTokenMapping).toHaveBeenCalledWith(
-        expect.anything(),
-        expect.anything(),
-        {
-          username: testUsername,
-          currentlySelectedRole,
-          rolesWithAccess,
-          selectedRoleId,
-          lastActivityTime: expect.any(Number)
-        },
-        expect.anything()
-      )
-      expect(response).toEqual({
-        statusCode: 200,
-        body: JSON.stringify({
-          message: "Selected role data has been updated successfully",
-          userInfo: {
-            currentlySelectedRole: {
-              role_id: "123",
-              org_code: "XYZ",
-              role_name: "MockRole_1"
-            },
-            rolesWithAccess: [
-              {
-                role_id: "456",
-                org_code: "ABC",
-                role_name: "MockRole_2"
-              }
-            ],
-            selectedRoleId: "123"
-          }
-        })
-      })
-    })
-
-  it(
-    "should swap currentlySelectedRole with the new selected role and move the old one back to rolesWithAccess",
-    async () => {
-      // Initial rolesWithAccess contains multiple roles, currentlySelectedRole is undefined
-      mockGetTokenMapping.mockImplementation(() => {
-        return {
-          rolesWithAccess: [
-            {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"},
-            {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-            {role_id: "789", org_code: "DEF", role_name: "MockRole_3"}
-          ],
-          currentlySelectedRole: undefined // Initially no role is selected
-        }
-      })
-
-      // User selects "MockRole_1" (role_id: 123)
-      let event = {
-        ...mockAPIGatewayProxyEvent,
-        body: JSON.stringify({
-          currently_selected_role: {
-            role_id: "123",
-            org_code: "XYZ",
-            role_name: "MockRole_1"
-          }
-        }),
-        requestContext: {
-          authorizer: {
-            username: "Mock_JoeBloggs"
-          }
-        }
-      }
-
-      let response = await handler(event, mockContext)
-      let firstResponseBody = JSON.parse(response.body)
-
-      expect(firstResponseBody.userInfo).toEqual({
-        currentlySelectedRole: {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"},
-        rolesWithAccess: [
-          {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-          {role_id: "789", org_code: "DEF", role_name: "MockRole_3"}
-        ],
-        selectedRoleId: "123"
-      })
-
-      // User selects "MockRole_2" (role_id: 456)
-      event = {
-        ...event,
-        body: JSON.stringify({
-          currently_selected_role: {
-            role_id: "456",
-            org_code: "ABC",
-            role_name: "MockRole_2"
-          }
-        })
-      }
-
-      response = await handler(event, mockContext)
-      let secondResponseBody = JSON.parse(response.body)
-
-      expect(secondResponseBody.userInfo).toEqual({
-        currentlySelectedRole: {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-        rolesWithAccess: [
-          {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"}, // Previously selected role moved back
-          {role_id: "789", org_code: "DEF", role_name: "MockRole_3"}
-        ],
-        selectedRoleId: "456"
-      })
-
-      // User selects "MockRole_3" (role_id: 789)
-      event = {
-        ...event,
-        body: JSON.stringify({
-          currently_selected_role: {
-            role_id: "789",
-            org_code: "DEF",
-            role_name: "MockRole_3"
-          }
-        })
-      }
-
-      response = await handler(event, mockContext)
-      let thirdResponseBody = JSON.parse(response.body)
-
-      expect(thirdResponseBody.userInfo).toEqual({
-        currentlySelectedRole: {role_id: "789", org_code: "DEF", role_name: "MockRole_3"},
+    mockGetTokenMapping.mockImplementation(() => {
+      return {
         rolesWithAccess: [
           {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"},
-          {role_id: "456", org_code: "ABC", role_name: "MockRole_2"} // Previously selected role moved back
+          {role_id: "456", org_code: "ABC", role_name: "MockRole_2"}
         ],
-        selectedRoleId: "789"
-      })
-    }
-  )
-
-  it(
-    "should swap initially selected role with the new selected role and move the old one back to rolesWithAccess",
-    async () => {
-      // Initial database state with a previously selected role
-      mockGetTokenMapping.mockImplementation(() => {
-        return {
-          rolesWithAccess: [
-            {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"},
-            {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-            {role_id: "789", org_code: "DEF", role_name: "MockRole_3"}
-          ],
-          currentlySelectedRole: {role_id: "555", org_code: "GHI", role_name: "MockRole_4"} // Initially selected role
-        }
-      })
-
-      // First role selection: Change to "MockRole_1"
-      const firstEvent = {
-        ...mockAPIGatewayProxyEvent,
-        body: JSON.stringify({
-          currently_selected_role: {
-            role_id: "123",
-            org_code: "XYZ",
-            role_name: "MockRole_1"
-          }
-        }),
-        requestContext: {
-          authorizer: {
-            username: "Mock_JoeBloggs"
-          }
-        }
-      }
-
-      const firstResponse = await handler(firstEvent, mockContext)
-      const firstResponseBody = JSON.parse(firstResponse.body)
-
-      expect(mockUpdateTokenMapping).toHaveBeenCalledWith(
-        expect.anything(),
-        expect.anything(),
-        {
-          username: "Mock_JoeBloggs",
-          currentlySelectedRole: {
-            role_id: "123",
-            org_code: "XYZ",
-            role_name: "MockRole_1"
-          },
-          rolesWithAccess: [
-            {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-            {role_id: "789", org_code: "DEF", role_name: "MockRole_3"},
-            {role_id: "555", org_code: "GHI", role_name: "MockRole_4"} // Old role moved back
-          ],
-          selectedRoleId: "123",
-          lastActivityTime: expect.any(Number)
-        },
-        expect.anything()
-      )
-
-      // Now simulate switching to another role
-      mockGetTokenMapping.mockImplementation(() => firstResponseBody.userInfo)
-
-      const secondEvent = {
-        ...mockAPIGatewayProxyEvent,
-        body: JSON.stringify({
-          currently_selected_role: {
-            role_id: "789",
-            org_code: "DEF",
-            role_name: "MockRole_3"
-          }
-        }),
-        requestContext: {
-          authorizer: {
-            username: "Mock_JoeBloggs"
-          }
-        }
+        currentlySelectedRole: undefined // Initially no role is selected
       }
+    })
+    const testUsername = "Mock_JoeBloggs"
+    const currentlySelectedRole = {
+      role_id: "123",
+      org_code: "XYZ",
+      role_name: "MockRole_1"
+    }
+    const selectedRoleId = "123"
 
-      const secondResponse = await handler(secondEvent, mockContext)
-      const secondResponseBody = JSON.parse(secondResponse.body)
+    const response = await handler(event, context)
 
-      expect(secondResponseBody).toEqual({
+    expect(mockUpdateTokenMapping).toHaveBeenCalledWith(
+      expect.anything(),
+      expect.anything(),
+      {
+        username: testUsername,
+        currentlySelectedRole,
+        selectedRoleId,
+        lastActivityTime: expect.any(Number)
+      },
+      expect.anything()
+    )
+    expect(response).toEqual({
+      statusCode: 200,
+      body: JSON.stringify({
         message: "Selected role data has been updated successfully",
         userInfo: {
-          currentlySelectedRole: {
-            role_id: "789",
-            org_code: "DEF",
-            role_name: "MockRole_3"
-          },
-          rolesWithAccess: [
-            {role_id: "456", org_code: "ABC", role_name: "MockRole_2"},
-            {role_id: "555", org_code: "GHI", role_name: "MockRole_4"},
-            {role_id: "123", org_code: "XYZ", role_name: "MockRole_1"} // Previously selected role moved back
-          ],
-          selectedRoleId: "789"
+          currentlySelectedRole,
+          selectedRoleId: "123"
         }
       })
     })
+  })
 
   it("should return 500 and log error when updateDynamoTable throws an error", async () => {
     const error = new Error("Dynamo update failed")

From 38df20767cd13d454dc5c81c75cb8edf67fde794 Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Fri, 19 Dec 2025 10:50:04 +0000
Subject: [PATCH 2/6] Fixed hiding of change role link for single role access

---
 packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx       | 1 +
 .../cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx | 1 +
 packages/cpt-ui/__tests__/EpsHeader.test.tsx                | 1 +
 packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx      | 1 +
 .../cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx     | 1 +
 packages/cpt-ui/__tests__/LoginPage.test.tsx                | 1 +
 packages/cpt-ui/__tests__/LogoutPage.test.tsx               | 1 +
 packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx  | 1 +
 packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx     | 1 +
 packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx     | 1 +
 packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx     | 1 +
 packages/cpt-ui/__tests__/YourSelectedRole.test.tsx         | 1 +
 packages/cpt-ui/src/components/EpsHeader.tsx                | 2 ++
 packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx     | 6 +-----
 packages/cpt-ui/src/context/AuthProvider.tsx                | 6 ++++++
 15 files changed, 21 insertions(+), 5 deletions(-)

diff --git a/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx b/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
index eb00c86420..c2318aaebe 100644
--- a/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
+++ b/packages/cpt-ui/__tests__/BasicDetailsSearch.test.tsx
@@ -52,6 +52,7 @@ const signedInAuthState: AuthContextType = {
   cognitoSignIn: mockCognitoSignIn,
   cognitoSignOut: mockCognitoSignOut,
   clearAuthState: mockClearAuthState,
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx b/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
index b99a374f9b..5f28d981e2 100644
--- a/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
+++ b/packages/cpt-ui/__tests__/BasicDetailsSearchResultsPage.test.tsx
@@ -57,6 +57,7 @@ const mockAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/EpsHeader.test.tsx b/packages/cpt-ui/__tests__/EpsHeader.test.tsx
index 33124da518..a62ad7b3b8 100644
--- a/packages/cpt-ui/__tests__/EpsHeader.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsHeader.test.tsx
@@ -61,6 +61,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx b/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
index fc1f7b075e..1d38d5bdc1 100644
--- a/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsPrescriptionList.test.tsx
@@ -144,6 +144,7 @@ const signedInAuthState: AuthContextType = {
   cognitoSignIn: mockCognitoSignIn,
   cognitoSignOut: mockCognitoSignOut,
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx b/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
index f38e6e6199..6e1bcd118b 100644
--- a/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsSearchForAPrescription.test.tsx
@@ -24,6 +24,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/LoginPage.test.tsx b/packages/cpt-ui/__tests__/LoginPage.test.tsx
index 736ffe6fd5..05a7b04525 100644
--- a/packages/cpt-ui/__tests__/LoginPage.test.tsx
+++ b/packages/cpt-ui/__tests__/LoginPage.test.tsx
@@ -96,6 +96,7 @@ const defaultAuthState: AuthContextType = {
   cognitoSignIn: mockCognitoSignIn,
   cognitoSignOut: mockCognitoSignOut,
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/LogoutPage.test.tsx b/packages/cpt-ui/__tests__/LogoutPage.test.tsx
index 567176f043..63808be658 100644
--- a/packages/cpt-ui/__tests__/LogoutPage.test.tsx
+++ b/packages/cpt-ui/__tests__/LogoutPage.test.tsx
@@ -76,6 +76,7 @@ const MockAuthProvider = ({
     cognitoSignIn: jest.fn(),
     cognitoSignOut: mockCognitoSignOut,
     clearAuthState: jest.fn(),
+    hasSingleRoleAccess: jest.fn().mockReturnValue(false),
     updateSelectedRole: jest.fn(),
     updateTrackerUserInfo: jest.fn(),
     updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx b/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
index bcced788a1..94a0992d7d 100644
--- a/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
+++ b/packages/cpt-ui/__tests__/PrescriptionDetailsPage.test.tsx
@@ -34,6 +34,7 @@ const defaultAuthState: AuthContextType = {
   cognitoSignIn: jest.fn().mockName("cognitoSignIn"),
   cognitoSignOut: jest.fn().mockName("cognitoSignOut"),
   clearAuthState: jest.fn().mockName("clearAuthState"),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn().mockName("updateSelectedRole"),
   updateTrackerUserInfo: jest.fn().mockName("updateTrackerUserInfo"),
   updateInvalidSessionCause: jest.fn().mockName("updateInvalidSessionCause"),
diff --git a/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx b/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
index b2f6a2941f..4a8f57b9bb 100644
--- a/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
+++ b/packages/cpt-ui/__tests__/PrescriptionIdSearch.test.tsx
@@ -47,6 +47,7 @@ const mockAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx b/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
index 1b4dcbe42a..55125a40ef 100644
--- a/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
+++ b/packages/cpt-ui/__tests__/SessionLoggedOutPage.test.tsx
@@ -51,6 +51,7 @@ export const defaultAuthState: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: mockUpdateTrackerUserInfo,
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx b/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
index 8e2264b418..3cb49b0996 100644
--- a/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
+++ b/packages/cpt-ui/__tests__/SessionSelectionPage.test.tsx
@@ -65,6 +65,7 @@ export const defaultAuthState: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
   updateTrackerUserInfo: mockUpdateTrackerUserInfo,
diff --git a/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx b/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
index efeab91cd0..420a08aa47 100644
--- a/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
+++ b/packages/cpt-ui/__tests__/YourSelectedRole.test.tsx
@@ -26,6 +26,7 @@ const mockUseAuthReturnValue: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/src/components/EpsHeader.tsx b/packages/cpt-ui/src/components/EpsHeader.tsx
index 418adafc4a..9f3b0e3094 100644
--- a/packages/cpt-ui/src/components/EpsHeader.tsx
+++ b/packages/cpt-ui/src/components/EpsHeader.tsx
@@ -60,6 +60,7 @@ export default function EpsHeader() {
       path !== FRONTEND_PATHS.LOGOUT &&
       path !== FRONTEND_PATHS.SESSION_LOGGED_OUT &&
       isSignedIn &&
+      !authContext.hasSingleRoleAccess() &&
       !authContext.selectedRole
     )
 
@@ -70,6 +71,7 @@ export default function EpsHeader() {
       path !== FRONTEND_PATHS.CHANGE_YOUR_ROLE &&
       path !== FRONTEND_PATHS.LOGOUT &&
       isSignedIn &&
+      !authContext.hasSingleRoleAccess() &&
       authContext.selectedRole !== undefined
     )
 
diff --git a/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx b/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
index 6b8bd402e8..f9f08536a5 100644
--- a/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
+++ b/packages/cpt-ui/src/components/EpsRoleSelectionPage.tsx
@@ -110,11 +110,7 @@ export default function RoleSelectionPage({
   }
 
   // Handle auto-redirect for single role
-  if (auth.rolesWithAccess.length === 1
-    && auth.rolesWithoutAccess.length === 0
-    && auth.isSignedIn
-    && auth.selectedRole !== undefined
-  ) {
+  if (auth.hasSingleRoleAccess() && auth.isSignedIn && auth.selectedRole !== undefined) {
     navigate(FRONTEND_PATHS.SEARCH_BY_PRESCRIPTION_ID)
     return
   }
diff --git a/packages/cpt-ui/src/context/AuthProvider.tsx b/packages/cpt-ui/src/context/AuthProvider.tsx
index 1d022e1211..d2ac22614b 100644
--- a/packages/cpt-ui/src/context/AuthProvider.tsx
+++ b/packages/cpt-ui/src/context/AuthProvider.tsx
@@ -35,6 +35,7 @@ export interface AuthContextType {
   cognitoSignIn: (input?: SignInWithRedirectInput) => Promise<void>
   cognitoSignOut: (redirectUri?: string) => Promise<boolean>
   clearAuthState: () => void
+  hasSingleRoleAccess: () => boolean
   updateSelectedRole: (value: RoleDetails) => Promise<void>
   updateTrackerUserInfo: () => Promise<TrackerUserInfoResult>
   updateInvalidSessionCause: (cause: string) => void
@@ -214,6 +215,10 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
     setInvalidSessionCause(cause)
   }
 
+  const hasSingleRoleAccess = () => {
+    return rolesWithAccess.length === 1 && rolesWithoutAccess.length === 0
+  }
+
   return (
     <AuthContext.Provider value={{
       error,
@@ -231,6 +236,7 @@ export const AuthProvider = ({children}: { children: React.ReactNode }) => {
       cognitoSignIn,
       cognitoSignOut,
       clearAuthState,
+      hasSingleRoleAccess,
       updateSelectedRole,
       updateTrackerUserInfo,
       updateInvalidSessionCause,

From be568dc7d8a790055b80c3a092ccc05ebbb5d8be Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Fri, 19 Dec 2025 11:50:09 +0000
Subject: [PATCH 3/6] Fixed role selection page tests

---
 .../__tests__/EpsRoleSelectionPage.test.tsx   | 40 +++++++++++++------
 1 file changed, 27 insertions(+), 13 deletions(-)

diff --git a/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx b/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
index a6c9d968c1..ceef86cba0 100644
--- a/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
+++ b/packages/cpt-ui/__tests__/EpsRoleSelectionPage.test.tsx
@@ -93,7 +93,8 @@ describe("RoleSelectionPage", () => {
       rolesWithAccess: [],
       rolesWithoutAccess: [],
       error: null,
-      clearAuthState: jest.fn()
+      clearAuthState: jest.fn(),
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
     mockGetSearchParams.mockReturnValue({
       codeParams: "foo",
@@ -109,7 +110,8 @@ describe("RoleSelectionPage", () => {
       isSigningIn: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
-      error: "Something went wrong"
+      error: "Something went wrong",
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -122,7 +124,8 @@ describe("RoleSelectionPage", () => {
       isSigningIn: false,
       rolesWithAccess: [],
       rolesWithoutAccess: [],
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -141,7 +144,8 @@ describe("RoleSelectionPage", () => {
       rolesWithoutAccess: [],
       selectedRole: null,
       error: null,
-      clearAuthState: jest.fn()
+      clearAuthState: jest.fn(),
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
     mockGetSearchParams.mockReturnValue({
       codeParams: undefined,
@@ -170,7 +174,8 @@ describe("RoleSelectionPage", () => {
       ],
       rolesWithoutAccess: [],
       selectedRole: null,
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(true)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -189,7 +194,8 @@ describe("RoleSelectionPage", () => {
       },
       rolesWithAccess: [],
       rolesWithoutAccess: [],
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -209,7 +215,8 @@ describe("RoleSelectionPage", () => {
           org_code: "NO123"
         }
       ],
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -246,7 +253,8 @@ describe("RoleSelectionPage", () => {
         }
       ],
       rolesWithoutAccess: [],
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -270,7 +278,8 @@ describe("RoleSelectionPage", () => {
       },
       rolesWithAccess: [],
       rolesWithoutAccess: [],
-      error: null
+      error: null,
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     })
 
     render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -292,7 +301,8 @@ describe("RoleSelectionPage", () => {
       rolesWithoutAccess: [],
       selectedRole: undefined as RoleDetails | undefined,
       error: null,
-      clearAuthState: jest.fn()
+      clearAuthState: jest.fn(),
+      hasSingleRoleAccess: jest.fn().mockReturnValue(false)
     }
 
     mockUseAuth.mockReturnValue(authState)
@@ -320,6 +330,7 @@ describe("RoleSelectionPage", () => {
       authState.selectedRole = role
       authState.isSignedIn = true
       mockUseAuth.mockReturnValue(authState)
+      authState.hasSingleRoleAccess = jest.fn().mockReturnValue(true)
     })
 
     rerender(<RoleSelectionPage contentText={defaultContentText} />)
@@ -345,7 +356,8 @@ describe("RoleSelectionPage", () => {
         rolesWithAccess: [roleWithAccess],
         rolesWithoutAccess: [],
         error: null,
-        updateSelectedRole: mockUpdateSelectedRole
+        updateSelectedRole: mockUpdateSelectedRole,
+        hasSingleRoleAccess: jest.fn().mockReturnValue(false)
       })
     })
 
@@ -505,7 +517,8 @@ describe("RoleSelectionPage", () => {
         rolesWithAccess: [incompleteRole],
         rolesWithoutAccess: [],
         error: null,
-        updateSelectedRole: mockUpdateSelectedRole
+        updateSelectedRole: mockUpdateSelectedRole,
+        hasSingleRoleAccess: jest.fn().mockReturnValue(false)
       })
 
       render(<RoleSelectionPage contentText={defaultContentText} />)
@@ -531,7 +544,8 @@ describe("RoleSelectionPage", () => {
         rolesWithAccess: [selectedRole, roleWithAccess],
         rolesWithoutAccess: [],
         error: null,
-        updateSelectedRole: mockUpdateSelectedRole
+        updateSelectedRole: mockUpdateSelectedRole,
+        hasSingleRoleAccess: jest.fn().mockReturnValue(false)
       })
 
       render(<RoleSelectionPage contentText={defaultContentText} />)

From 54a6d88e050fd7ce08db4f27f44e4bb8344b0303 Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Mon, 22 Dec 2025 10:56:58 +0000
Subject: [PATCH 4/6] Updated to fixed regression test version

---
 .github/workflows/run_regression_tests.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/run_regression_tests.yml b/.github/workflows/run_regression_tests.yml
index 887707b812..5ebe62ab5a 100644
--- a/.github/workflows/run_regression_tests.yml
+++ b/.github/workflows/run_regression_tests.yml
@@ -73,8 +73,8 @@ jobs:
           GITHUB-TOKEN: ${{ steps.generate-token.outputs.token }}
         run: |
           if [[ "$TARGET_ENVIRONMENT" != "prod" && "$TARGET_ENVIRONMENT" != "ref" ]]; then
-            REGRESSION_TEST_REPO_TAG="v3.6.1" # This is the tag or branch of the regression test code to run, usually a version tag like v3.1.0 or a branch name
-            REGRESSION_TEST_WORKFLOW_TAG="v3.5.10" # This is the tag of the github workflow to run, usually the same as REGRESSION_TEST_REPO_TAG
+            REGRESSION_TEST_REPO_TAG="AEA-5965" # This is the tag or branch of the regression test code to run, usually a version tag like v3.1.0 or a branch name
+            REGRESSION_TEST_WORKFLOW_TAG="AEA-5965" # This is the tag of the github workflow to run, usually the same as REGRESSION_TEST_REPO_TAG
 
             if [[ -z "$REGRESSION_TEST_REPO_TAG" || -z "$REGRESSION_TEST_WORKFLOW_TAG" ]]; then
               echo "Error: One or both tag variables are not set" >&2

From de2a58f7ca454a17696fc5db61eb768a7f30605a Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Mon, 22 Dec 2025 11:33:05 +0000
Subject: [PATCH 5/6] Updated to fixed regression test version

---
 .github/workflows/run_regression_tests.yml | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/.github/workflows/run_regression_tests.yml b/.github/workflows/run_regression_tests.yml
index 5ebe62ab5a..61ff477e6c 100644
--- a/.github/workflows/run_regression_tests.yml
+++ b/.github/workflows/run_regression_tests.yml
@@ -73,8 +73,8 @@ jobs:
           GITHUB-TOKEN: ${{ steps.generate-token.outputs.token }}
         run: |
           if [[ "$TARGET_ENVIRONMENT" != "prod" && "$TARGET_ENVIRONMENT" != "ref" ]]; then
-            REGRESSION_TEST_REPO_TAG="AEA-5965" # This is the tag or branch of the regression test code to run, usually a version tag like v3.1.0 or a branch name
-            REGRESSION_TEST_WORKFLOW_TAG="AEA-5965" # This is the tag of the github workflow to run, usually the same as REGRESSION_TEST_REPO_TAG
+            REGRESSION_TEST_REPO_TAG="v3.7.5" # This is the tag or branch of the regression test code to run, usually a version tag like v3.1.0 or a branch name
+            REGRESSION_TEST_WORKFLOW_TAG="v3.7.5" # This is the tag of the github workflow to run, usually the same as REGRESSION_TEST_REPO_TAG
 
             if [[ -z "$REGRESSION_TEST_REPO_TAG" || -z "$REGRESSION_TEST_WORKFLOW_TAG" ]]; then
               echo "Error: One or both tag variables are not set" >&2

From cdd705819bce507a221da16ce0ba06177c821207 Mon Sep 17 00:00:00 2001
From: MatthewPopat-NHS <matthew.popat1@nhs.net>
Date: Tue, 6 Jan 2026 10:29:49 +0000
Subject: [PATCH 6/6] Fixed additional test for auth context field changes

---
 .../cpt-ui/__tests__/SearchPrescriptionPageCoverage.test.tsx   | 3 +--
 .../cpt-ui/__tests__/SearchPrescriptionPageEnhanced.test.tsx   | 3 +--
 .../__tests__/SearchPrescriptionPageInputDetection.test.tsx    | 3 +--
 .../cpt-ui/__tests__/SearchPrescriptionPageKeyboard.test.tsx   | 3 +--
 packages/cpt-ui/__tests__/SearchPrescriptionPagePaths.test.tsx | 3 +--
 5 files changed, 5 insertions(+), 10 deletions(-)

diff --git a/packages/cpt-ui/__tests__/SearchPrescriptionPageCoverage.test.tsx b/packages/cpt-ui/__tests__/SearchPrescriptionPageCoverage.test.tsx
index 0985895de2..d23c3c9c64 100644
--- a/packages/cpt-ui/__tests__/SearchPrescriptionPageCoverage.test.tsx
+++ b/packages/cpt-ui/__tests__/SearchPrescriptionPageCoverage.test.tsx
@@ -42,8 +42,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
@@ -51,6 +49,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SearchPrescriptionPageEnhanced.test.tsx b/packages/cpt-ui/__tests__/SearchPrescriptionPageEnhanced.test.tsx
index 132237bab3..225b1a2aff 100644
--- a/packages/cpt-ui/__tests__/SearchPrescriptionPageEnhanced.test.tsx
+++ b/packages/cpt-ui/__tests__/SearchPrescriptionPageEnhanced.test.tsx
@@ -36,8 +36,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
@@ -45,6 +43,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SearchPrescriptionPageInputDetection.test.tsx b/packages/cpt-ui/__tests__/SearchPrescriptionPageInputDetection.test.tsx
index efcc281aaf..d77764d35c 100644
--- a/packages/cpt-ui/__tests__/SearchPrescriptionPageInputDetection.test.tsx
+++ b/packages/cpt-ui/__tests__/SearchPrescriptionPageInputDetection.test.tsx
@@ -40,8 +40,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
@@ -49,6 +47,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SearchPrescriptionPageKeyboard.test.tsx b/packages/cpt-ui/__tests__/SearchPrescriptionPageKeyboard.test.tsx
index 85236ed97a..a10d435155 100644
--- a/packages/cpt-ui/__tests__/SearchPrescriptionPageKeyboard.test.tsx
+++ b/packages/cpt-ui/__tests__/SearchPrescriptionPageKeyboard.test.tsx
@@ -42,8 +42,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
@@ -51,6 +49,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),
diff --git a/packages/cpt-ui/__tests__/SearchPrescriptionPagePaths.test.tsx b/packages/cpt-ui/__tests__/SearchPrescriptionPagePaths.test.tsx
index 675b8b6371..e48bbd7208 100644
--- a/packages/cpt-ui/__tests__/SearchPrescriptionPagePaths.test.tsx
+++ b/packages/cpt-ui/__tests__/SearchPrescriptionPagePaths.test.tsx
@@ -40,8 +40,6 @@ const defaultAuthContext: AuthContextType = {
   invalidSessionCause: undefined,
   rolesWithAccess: [],
   rolesWithoutAccess: [],
-  hasNoAccess: false,
-  hasSingleRoleAccess: false,
   selectedRole: undefined,
   userDetails: undefined,
   isConcurrentSession: false,
@@ -49,6 +47,7 @@ const defaultAuthContext: AuthContextType = {
   cognitoSignIn: jest.fn(),
   cognitoSignOut: jest.fn(),
   clearAuthState: jest.fn(),
+  hasSingleRoleAccess: jest.fn().mockReturnValue(false),
   updateSelectedRole: jest.fn(),
   updateTrackerUserInfo: jest.fn(),
   updateInvalidSessionCause: jest.fn(),