Thanks for the advice.
at first,we found that user cannot get administrator authenticated thorw the code below,
which other companies will get throw successfully.
*****************************************************************************
String sessionedDomain = loginPso.getDomain();
LOGGER.info("change domain: " + sessionedDomain);
NamespaceManager.set(sessionedDomain);
if (service.isUserAdmin()) {
loginPso.setRole(Role.SYSTEM_ADMIN);
// license will not be check if it is the administrator
// administrator's profile will be synchronized
User systemAdmin = userLogic.selectContractor(email);
if (systemAdmin == null) {
return null;
}
*****************************************************************************
service.isUserAdmin is false in spite of the user is administrator.
the method "isUserAdmin" is ↓
*****************************************************************************
boolean com.google.appengine.api.users.UserService.isUserAdmin()
isUserAdmin
boolean isUserAdmin()
Returns true if the user making this request is an admin for this application, false otherwise.
Throws:
java.lang.IllegalStateException - If the current user is not logged in.
*****************************************************************************
then we check the page below ,found it can not be authenticated because of error 403
so we think may be this user can not get authenticated by Directory API.
Cheers.
2015年7月23日木曜日 0時28分13秒 UTC+9 Patrice (Cloud Platform Support):