/file` request is placed to upload image data to a temporary staging area, ideally at the default staging location (If default directory changed, then check the custom location) `/var/lib/glance/os_glance_staging_store/`.
INFO glance.location [None [REQ-ID] [USER_ID] [TENANT_ID] - - default default] Image format matched and virtual size computed: 41126400
INFO eventlet.wsgi.server [None [REQ-ID] [USER_ID] [TENANT_ID] - - default default] 127.0.0.1 - - [..] "PUT /v2/images/[IMAGE_UUID]/file HTTP/1.0" 204 468 2.400140
4. **Glance API to Registry:** The API service then communicates with the **Glance Registry**, which creates a new entry for the image in the Glance database. The status is set to `queued`.
5. **Glance Service:** The Glance API hands off the request to the **pf9-glance-api** service, which moves the image data from the staging area to the backend storage (e.g., Swift, Ceph, or a local file system) default image file storage location `/var/opt/imagelibrary/data/glance/`.
6. **Status Update:** Once the image is successfully stored, the Glance Store service updates the image's status in the database from `queued` to `active`. The image is now ready for use. The host glance audit logs (`/var/log/pf9/glance-audit.log`) show information about the request Username, Image UUID, outcome, etc.
INFO oslo.messaging.notification.audit.http.response [None [REQ-ID] [USER_ID] [TENANT_ID] - - default default] {"message_id": "[Audit_Message_ID]", "publisher_id": "glance-api", "event_type": "audit.http.response", "priority": "INFO", "payload": {"typeURI": "http://schemas.dmtf.org/cloud/audit/1.0/event", "eventType": "activity", "id": "[Activity_ID]", "eventTime": "[..]", "action": "update", "outcome": "success", "observer": {"id": "target"}, "initiator": {"id": "[..]", "typeURI": "service/security/account/user", "name": "[USER_NAME]", "credential": {"token": "***", "identity_status": "Confirmed"}, "host": {"address": "127.0.0.1", "agent": "Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/139.0.0.0 Safari/537.36"}, "project_id": "[PROJECT_UUID]"}, "target": {"id": "unknown", "typeURI": "unknown", "name": "unknown"}, "requestPath": "/v2/images/[IMAGE_UUID]/file", "tags": ["correlation_id?value=[..]"], "reason": {"reasonType": "HTTP", "reasonCode": "204"}, "reporterchain": [{"role": "modifier", "reporterTime": "[..]", "reporter": {"id": "target"}}]}, "timestamp": "[..]"}
***
### Image Deletion Flow
The deletion process also uses the Glance services to remove the image's data and its database entry.
1. **User Request:** A user sends a deletion request via the OpenStack CLI, space.vars.product\_name dashboard, or direct API call. The request includes the image information (e.g Image ID or Name).
2. **API Service:** The **Glance API** service receives the request, validates the user's authentication token with **Keystone**, and performs a permission check, and changes the image's status in the database to `deleting`. Below Glance API logs show the token is being used.
INFO glance.api.v2.image_data [None [REQ-ID] [USER_ID] [TENANT_ID] - - default default] Unable to create trust: no such option collect_timing in group [keystone_authtoken] Use the existing user token.
3. **Glance Service:** The **pf9-glance-api** service receives a message to delete the image from the backend storage. The Glance API hands off the request to the **pf9-glance-api** service, which moves the image data from backend storage (e.g., Swift, Ceph, or a local file system) default image file storage location `/var/opt/imagelibrary/data/glance/`. This is a crucial step that frees up disk space.
INFO eventlet.wsgi.server [None [REQ-ID] [USER_ID] [TENANT_ID] - - default default] 127.0.0.1 - - [..] "DELETE /v2/images/[IMAGE_UUID] HTTP/1.0" 204 468 1.924124
4. **Final Status Update:** Once the data is confirmed to be deleted from the backend store, the Glance API removes the image's database entry, completing the deletion process.
## Procedure
The following steps outline how to troubleshoot the image issue.
1. Review image details like status, any errors using the command below:
$ openstack image show <IMAGE_UUID>
2. Validate if the glance image endpoints are available and the public endpoint is responding using a curl request. This curl request should return the glance information.
$ openstack endpoint list --service glance
$ openstack endpoint list --service glance-cluster
$ curl -s https://<FQDN>/glance/
3. Check if the image service is enabled.
$ openstack service list | grep -i image
$ openstack service show <GLANCE/GLANCE_CLUSTER_UUID>
4. The management plane has a **glance-api** pod to provide the image service. Check if the glance-api pod is running in the workload region namespace. Review this pod:
{% hint style="warning" %}
**NOTE**
Step 4 is applicable only for Self-Hosted Private Cloud Director
{% endhint %}
* Check if they are in "`CrashLoopBackOff/OOMkilled/Pending/Error/Init`" state.
* Also, verify if all containers in the pods are Running.
* See the events section in pod describe output.
* Review pods logs using `REQ_ID` or `VM_UUID` for relevant details.
$ kubectl get pods -o wide -n <WORKLOAD_REGION> | grep -i "glance"
$ kubectl describe -n <WORKLOAD_REGION> <GLANCE_API_POD>
$ kubectl logs -n <WORKLOAD_REGION> <GLANCE_API_POD>
5. Validate if the **pf9-glance-api** service is running on the host where glance role is applied.
$ sudo systemctl status pf9-glance-api
6. On the host, review the `/var/log/pf9/glance-api.log` to track the relevant events against a specific image ID.
7. If these steps prove insufficient to resolve the issue, kindly reach out to the [Platform9 Support Team](https://support.platform9.com/hc/en-us) for additional assistance.
## Most common causes
* Ensure that the glance [Pre-Requisites](https://platform9.com/docs/private-cloud-director/private-cloud-director/image-library---images#prerequisites) are met.
* While uploading an image `admin.rc` file does not have the `OS_INTERFACE` variable set to the `admin`.
* Incorrect image format. Ref - [Supported Image Format](https://platform9.com/docs/private-cloud-director/private-cloud-director/image-library---images#image-formats).
* The `pf9-glance-api` service is down on the underlying host.
* In the case of Self-Hosted PCD, the `--insecure` flag was not used while using the OpenStack command, as the image hosts uses self-signed certificates.