Input data: OpenStack Icehouse, glance with swift backend. Admin username and password for swift service were changed. After this requests to download some images started to fail.
returns 500 error for some image_ids and works for other.
in glance-api service log I see that for some reason previous user/password is still in use:
1 2 3 4 5 6 7 8 9 10 11
Was unable to find old credentials in keystone/glance/swift configuration – automation system updated configs properly.
The problem is that glance stores links to images in its database. Link is created upon image creation and never updated so if you store images in swift after changing admin username/password you need to update entries in database manually. Some images may be cached by glance and can be downloaded bypassing authentication. That is why you may recieve 500s for some images and 200s for other.
Log into database (assuming MySQL backend)
check if there are still entries with incorrect credentials:
If the list is empty or does not include links to swift you’re all set. Try to fetch image once againg.
Should return 200 and fetch image to ‘image_store_to’ file.