Before reporting an issue

• I have searched existing issues
• I have reproduced the issue with the latest nightly release

Area

admin/ui

Describe the bug

I´ve created a realm-role in master-realm that should allow User-Admins to manage all users of the a specific realm.
The following roles are associated with the realm-role: REALMNAME-realm - view-users, REALMNAME-realm - query-users and REALMNAME-realm - manage-users.

When testing the permissions, all users show up, but only users that have been created locally in keycloak, can be managed. When klicking on a user from a federated ldap provider, the error "Missing ":providerId" param" is displayed to the User-Admin.

Version

22.0.1

Expected behavior

User-Admins with roles "view-users", "manage-users" and "query-users" are able to view, modify ALL users.

Actual behavior

User-Admins with roles "view-users", "manage-users" and "query-users" are able to view, modify only local users, but not users from federated providers.

How to Reproduce?

1. Create a new realm REALMNAME.
2. Add an LDAP federated provider to the new realm REALMNAME.
3. Create a new realm-role in the master-realm and associate the follwing roles with the newly created realm-role: REALMNAME-realm - view-users, REALMNAME-realm - query-users and REALMNAME-realm - manage-users.
4. Assign the realm-role to a user.
5. Login with the user and switch to the new realm.
6. Go to "users" and click on a user from the federated provider.

Anything else?

No response