Please make your security provider a global option:
then use the identify step:
and use this identify step in the query filters.
Remove the security provider step form the server action as well. Security provider should no longer be used as a step in your server action.
Right, but it saves you a lot of additional steps. You only define the provider and the identify steps and they are available in all the server actions.