There could be benefits to sync/import, but we don't see these even in the current implementation:
* Migration - users may want to migrate away from LDAP gradually. We should support some mechanism of permanently migrating all users from a provider to the internal Keycloak DB (or even another provider).
* Scaling - if users in an LDAP server are more or less read-only then you would only have to load users from the Keycloak DB. This may be useful if the LDAP server is overloaded and you want to scale. However, that could possibly also be solved by more aggressive caching.
Can you elaborate a bit on why you think the current sync/import is really really bad?
With the new model there's a few things I'm a bit unsure about:
* Will there always be a representation of a user in Keycloak DB? For the UUID as well as other items that can't be stored in the provider. Or will we have the option of not having anything in the KC DB about a user, only in-mem?
* By supporting the old UserFederationProvider will those have exactly the same behavior? For example with regards to sync/import?