From 65d5e2a47b417218bea151529639190d01a04c0b Mon Sep 17 00:00:00 2001
From: wackxu <xushiwei5@huawei.com>
Date: Thu, 7 Dec 2017 20:41:26 +0800
Subject: [PATCH 1/4] Refactor crinit util package into multiple packages

---
 .idea/workspace.xml           | 337 +++++++++++++
 pkg/crinit/common/common.go   | 456 ++++++++++++++++++
 pkg/crinit/options/options.go | 391 +++++++++++++++
 pkg/crinit/util/util.go       | 868 ++--------------------------------
 4 files changed, 1216 insertions(+), 836 deletions(-)
 create mode 100644 .idea/workspace.xml
 create mode 100644 pkg/crinit/common/common.go
 create mode 100644 pkg/crinit/options/options.go

diff --git a/.idea/workspace.xml b/.idea/workspace.xml
new file mode 100644
index 00000000..72eb0b42
--- /dev/null
+++ b/.idea/workspace.xml
@@ -0,0 +1,337 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<project version="4">
+  <component name="ChangeListManager">
+    <list default="true" id="d8769e67-1d9f-419c-856d-87ff6eb36d18" name="Default" comment="">
+      <change beforePath="" afterPath="$PROJECT_DIR$/pkg/crinit/common/common.go" />
+      <change beforePath="" afterPath="$PROJECT_DIR$/pkg/crinit/options/options.go" />
+      <change beforePath="$PROJECT_DIR$/pkg/crinit/util/util.go" afterPath="$PROJECT_DIR$/pkg/crinit/util/util.go" />
+    </list>
+    <option name="EXCLUDED_CONVERTED_TO_IGNORED" value="true" />
+    <option name="TRACKING_ENABLED" value="true" />
+    <option name="SHOW_DIALOG" value="false" />
+    <option name="HIGHLIGHT_CONFLICTS" value="true" />
+    <option name="HIGHLIGHT_NON_ACTIVE_CHANGELIST" value="false" />
+    <option name="LAST_RESOLUTION" value="IGNORE" />
+  </component>
+  <component name="FileEditorManager">
+    <leaf>
+      <file leaf-file-name="register.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/register.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="-674">
+              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="zz_generated.conversion.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.conversion.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="0">
+              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="zz_generated.openapi.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.openapi.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="-42299">
+              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="util.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/crinit/util/util.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="347">
+              <caret line="17" column="12" lean-forward="true" selection-start-line="17" selection-start-column="12" selection-end-line="17" selection-end-column="12" />
+              <folding>
+                <element signature="e#657#1006#0" expanded="true" />
+              </folding>
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="options.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/crinit/options/options.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="274">
+              <caret line="299" column="56" lean-forward="true" selection-start-line="299" selection-start-column="56" selection-end-line="299" selection-end-column="56" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="common.go" pinned="false" current-in-tab="false">
+        <entry file="file://$PROJECT_DIR$/pkg/crinit/common/common.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="274">
+              <caret line="283" column="5" lean-forward="false" selection-start-line="283" selection-start-column="5" selection-end-line="283" selection-end-column="5" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+      <file leaf-file-name="aggregated.go" pinned="false" current-in-tab="true">
+        <entry file="file://$PROJECT_DIR$/pkg/crinit/aggregated/aggregated.go">
+          <provider selected="true" editor-type-id="text-editor">
+            <state relative-caret-position="-989">
+              <caret line="55" column="0" lean-forward="true" selection-start-line="55" selection-start-column="0" selection-end-line="55" selection-end-column="0" />
+              <folding />
+            </state>
+          </provider>
+        </entry>
+      </file>
+    </leaf>
+  </component>
+  <component name="FindInProjectRecents">
+    <findStrings>
+      <find>createAPIServer</find>
+    </findStrings>
+  </component>
+  <component name="GOROOT" path="E:/software/go" />
+  <component name="Git.Settings">
+    <option name="RECENT_GIT_ROOT_PATH" value="$PROJECT_DIR$" />
+  </component>
+  <component name="IdeDocumentHistory">
+    <option name="CHANGED_PATHS">
+      <list>
+        <option value="$PROJECT_DIR$/pkg/crinit/util/util.go" />
+        <option value="$PROJECT_DIR$/pkg/crinit/common/common.go" />
+      </list>
+    </option>
+  </component>
+  <component name="JsBuildToolGruntFileManager" detection-done="true" sorting="DEFINITION_ORDER" />
+  <component name="JsBuildToolPackageJson" detection-done="true" sorting="DEFINITION_ORDER" />
+  <component name="JsGulpfileManager">
+    <detection-done>true</detection-done>
+    <sorting>DEFINITION_ORDER</sorting>
+  </component>
+  <component name="ProjectFrameBounds" extendedState="6">
+    <option name="x" value="1912" />
+    <option name="y" value="-8" />
+    <option name="width" value="1696" />
+    <option name="height" value="1066" />
+  </component>
+  <component name="ProjectInspectionProfilesVisibleTreeState">
+    <entry key="Project Default">
+      <profile-state>
+        <expanded-state>
+          <State>
+            <id />
+          </State>
+        </expanded-state>
+        <selected-state>
+          <State>
+            <id>CSS</id>
+          </State>
+        </selected-state>
+      </profile-state>
+    </entry>
+  </component>
+  <component name="ProjectView">
+    <navigator currentView="ProjectPane" proportions="" version="1">
+      <flattenPackages />
+      <showMembers />
+      <showModules />
+      <showLibraryContents />
+      <hideEmptyPackages />
+      <abbreviatePackageNames />
+      <autoscrollToSource />
+      <autoscrollFromSource />
+      <sortByType />
+      <manualOrder />
+      <foldersAlwaysOnTop value="true" />
+    </navigator>
+    <panes>
+      <pane id="Scope" />
+      <pane id="ProjectPane">
+        <subPane>
+          <expand>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+              <item name="crinit" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+              <item name="crinit" type="462c0819:PsiDirectoryNode" />
+              <item name="aggregated" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+              <item name="crinit" type="462c0819:PsiDirectoryNode" />
+              <item name="common" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+              <item name="crinit" type="462c0819:PsiDirectoryNode" />
+              <item name="options" type="462c0819:PsiDirectoryNode" />
+            </path>
+            <path>
+              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
+              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
+              <item name="pkg" type="462c0819:PsiDirectoryNode" />
+              <item name="crinit" type="462c0819:PsiDirectoryNode" />
+              <item name="util" type="462c0819:PsiDirectoryNode" />
+            </path>
+          </expand>
+          <select />
+        </subPane>
+      </pane>
+      <pane id="Scratches" />
+    </panes>
+  </component>
+  <component name="PropertiesComponent">
+    <property name="settings.editor.selected.configurable" value="configurable.group.language" />
+    <property name="configurable.Global.GOPATH.is.expanded" value="true" />
+    <property name="configurable.Project.GOPATH.is.expanded" value="true" />
+    <property name="go.sdk.automatically.set" value="true" />
+    <property name="last_opened_file_path" value="$PROJECT_DIR$" />
+    <property name="go.vendoring.notification.had.been.shown" value="true" />
+  </component>
+  <component name="RunDashboard">
+    <option name="ruleStates">
+      <list>
+        <RuleState>
+          <option name="name" value="ConfigurationTypeDashboardGroupingRule" />
+        </RuleState>
+        <RuleState>
+          <option name="name" value="StatusDashboardGroupingRule" />
+        </RuleState>
+      </list>
+    </option>
+  </component>
+  <component name="ShelveChangesManager" show_recycled="false">
+    <option name="remove_strategy" value="false" />
+  </component>
+  <component name="ToolWindowManager">
+    <frame x="1912" y="-8" width="1696" height="1066" extended-state="6" />
+    <editor active="true" />
+    <layout>
+      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.17364532" sideWeight="0.5" order="0" side_tool="false" content_ui="combo" x="646" y="149" width="388" height="712" />
+      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
+      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.2008879" sideWeight="0.5" order="7" side_tool="true" content_ui="tabs" />
+      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
+      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
+      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="8" side_tool="false" content_ui="tabs" />
+      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="9" side_tool="false" content_ui="tabs" />
+      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
+      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="true" content_ui="tabs" />
+      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
+      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
+      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
+      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
+      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="combo" />
+      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.47025815" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
+    </layout>
+  </component>
+  <component name="TypeScriptGeneratedFilesManager">
+    <option name="version" value="1" />
+  </component>
+  <component name="VcsContentAnnotationSettings">
+    <option name="myLimit" value="2678400000" />
+  </component>
+  <component name="XDebuggerManager">
+    <breakpoint-manager />
+    <watches-manager />
+  </component>
+  <component name="editorHistoryManager">
+    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/register.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="-674">
+          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.conversion.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="0">
+          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.openapi.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="-42299">
+          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/crinit/util/util.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="347">
+          <caret line="17" column="12" lean-forward="true" selection-start-line="17" selection-start-column="12" selection-end-line="17" selection-end-column="12" />
+          <folding>
+            <element signature="e#657#1006#0" expanded="true" />
+          </folding>
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/crinit/options/options.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="274">
+          <caret line="299" column="56" lean-forward="true" selection-start-line="299" selection-start-column="56" selection-end-line="299" selection-end-column="56" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/crinit/common/common.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="274">
+          <caret line="283" column="5" lean-forward="false" selection-start-line="283" selection-start-column="5" selection-end-line="283" selection-end-column="5" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+    <entry file="file://$PROJECT_DIR$/pkg/crinit/aggregated/aggregated.go">
+      <provider selected="true" editor-type-id="text-editor">
+        <state relative-caret-position="-989">
+          <caret line="55" column="0" lean-forward="true" selection-start-line="55" selection-start-column="0" selection-end-line="55" selection-end-column="0" />
+          <folding />
+        </state>
+      </provider>
+    </entry>
+  </component>
+  <component name="masterDetails">
+    <states>
+      <state key="ScopeChooserConfigurable.UI">
+        <settings>
+          <splitter-proportions>
+            <option name="proportions">
+              <list>
+                <option value="0.2" />
+              </list>
+            </option>
+          </splitter-proportions>
+        </settings>
+      </state>
+    </states>
+  </component>
+</project>
\ No newline at end of file
diff --git a/pkg/crinit/common/common.go b/pkg/crinit/common/common.go
new file mode 100644
index 00000000..7bf83c5c
--- /dev/null
+++ b/pkg/crinit/common/common.go
@@ -0,0 +1,456 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package common
+
+import (
+	"fmt"
+	"io"
+	"strings"
+	"time"
+
+	appsv1beta1 "k8s.io/api/apps/v1beta1"
+	"k8s.io/api/core/v1"
+	"k8s.io/apimachinery/pkg/api/resource"
+	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
+	"k8s.io/apimachinery/pkg/util/intstr"
+	"k8s.io/apimachinery/pkg/util/wait"
+	client "k8s.io/client-go/kubernetes"
+
+	certutil "k8s.io/client-go/util/cert"
+	"k8s.io/cluster-registry/pkg/crinit/util"
+	"k8s.io/client-go/util/cert/triple"
+)
+
+const (
+	lbAddrRetryInterval = 5 * time.Second
+	podWaitInterval     = 2 * time.Second
+
+	apiServerSecurePortName = "https"
+	// Set the secure port to 8443 to avoid requiring root privileges
+	// to bind to port < 1000.  The apiserver's service will still
+	// expose on port 443.
+	apiServerSecurePort = 8443
+)
+
+var (
+	apiserverPodLabels = map[string]string{
+		"app":    "clusterregistry",
+		"module": "clusterregistry-apiserver",
+	}
+
+	ComponentLabel = map[string]string{
+		"app": "clusterregistry",
+	}
+
+	apiserverSvcSelector = map[string]string{
+		"app":    "clusterregistry",
+		"module": "clusterregistry-apiserver",
+	}
+)
+
+type EntityKeyPairs struct {
+	Ca     *triple.KeyPair
+	Server *triple.KeyPair
+	Admin  *triple.KeyPair
+}
+
+type Credentials struct {
+	Username        string
+	Password        string
+	Token           string
+	CertEntKeyPairs *EntityKeyPairs
+}
+
+// CreateNamespace helper to create the cluster registry namespace object and return
+// the object.
+func CreateNamespace(clientset client.Interface, namespace string,
+	dryRun bool) (*v1.Namespace, error) {
+	ns := &v1.Namespace{
+		ObjectMeta: metav1.ObjectMeta{
+			Name: namespace,
+		},
+	}
+
+	if dryRun {
+		return ns, nil
+	}
+
+	return clientset.CoreV1().Namespaces().Create(ns)
+}
+
+// CreateService helper to create the cluster registry apiserver service object
+// and return the object. If service type is load balancer, will wait for load
+// balancer IP and return it and hostnames.
+func CreateService(cmdOut io.Writer, clientset client.Interface, namespace,
+svcName, apiserverAdvertiseAddress string, apiserverPort *int32,
+	apiserverServiceType v1.ServiceType,
+	dryRun bool) (*v1.Service, []string, []string, error) {
+
+	port := v1.ServicePort{
+		Name:       "https",
+		Protocol:   "TCP",
+		Port:       443,
+		TargetPort: intstr.FromString(apiServerSecurePortName),
+	}
+
+	if apiserverServiceType == v1.ServiceTypeNodePort && apiserverPort != nil {
+		port.NodePort = *apiserverPort
+	}
+
+	svc := &v1.Service{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      svcName,
+			Namespace: namespace,
+			Labels:    ComponentLabel,
+		},
+		Spec: v1.ServiceSpec{
+			Type:     v1.ServiceType(apiserverServiceType),
+			Selector: apiserverSvcSelector,
+			Ports:    []v1.ServicePort{port},
+		},
+	}
+
+	if dryRun {
+		return svc, nil, nil, nil
+	}
+
+	var err error
+	svc, err = clientset.CoreV1().Services(namespace).Create(svc)
+	if err != nil {
+		return nil, nil, nil, err
+	}
+
+	ips := []string{}
+	hostnames := []string{}
+	if apiserverServiceType == v1.ServiceTypeLoadBalancer {
+		ips, hostnames, err = WaitForLoadBalancerAddress(cmdOut, clientset, svc, dryRun)
+	} else {
+		if apiserverAdvertiseAddress != "" {
+			ips = append(ips, apiserverAdvertiseAddress)
+		} else {
+			ips, err = GetClusterNodeIPs(clientset)
+		}
+	}
+	if err != nil {
+		return nil, nil, nil, err
+	}
+
+	return svc, ips, hostnames, err
+}
+
+// GetClusterNodeIPs returns a list of the IP addresses of nodes in the cluster,
+// with a preference for external IP addresses.
+func GetClusterNodeIPs(clientset client.Interface) ([]string, error) {
+	preferredAddressTypes := []v1.NodeAddressType{
+		v1.NodeExternalIP,
+		v1.NodeInternalIP,
+	}
+	nodeList, err := clientset.CoreV1().Nodes().List(metav1.ListOptions{})
+	if err != nil {
+		return nil, err
+	}
+	nodeAddresses := []string{}
+	for _, node := range nodeList.Items {
+	OuterLoop:
+		for _, addressType := range preferredAddressTypes {
+			for _, address := range node.Status.Addresses {
+				if address.Type == addressType {
+					nodeAddresses = append(nodeAddresses, address.Address)
+					break OuterLoop
+				}
+			}
+		}
+	}
+
+	return nodeAddresses, nil
+}
+
+// CreateAPIServerCredentialsSecret helper to create secret object and return
+// the object.
+func CreateAPIServerCredentialsSecret(clientset client.Interface, namespace,
+credentialsName string, credentials Credentials, dryRun bool) (*v1.Secret, error) {
+	// Build the secret object with API server credentials.
+	data := map[string][]byte{
+		"ca.crt":     certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Ca.Cert),
+		"server.crt": certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Server.Cert),
+		"server.key": certutil.EncodePrivateKeyPEM(credentials.CertEntKeyPairs.Server.Key),
+	}
+	if credentials.Password != "" {
+		data["basicauth.csv"] = util.AuthFileContents(credentials.Username, credentials.Password)
+	}
+	if credentials.Token != "" {
+		data["token.csv"] = util.AuthFileContents(credentials.Username, credentials.Token)
+	}
+
+	secret := &v1.Secret{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      credentialsName,
+			Namespace: namespace,
+		},
+		Data: data,
+	}
+
+	if dryRun {
+		return secret, nil
+	}
+
+	return clientset.CoreV1().Secrets(namespace).Create(secret)
+}
+
+// CreatePVC helper to create the persistent volume claim object and
+// return the object.
+func CreatePVC(clientset client.Interface, namespace, svcName, etcdPVCapacity,
+etcdPVStorageClass string, dryRun bool) (*v1.PersistentVolumeClaim, error) {
+	capacity, err := resource.ParseQuantity(etcdPVCapacity)
+	if err != nil {
+		return nil, err
+	}
+
+	var storageClassName *string
+	if len(etcdPVStorageClass) > 0 {
+		storageClassName = &etcdPVStorageClass
+	}
+
+	pvc := &v1.PersistentVolumeClaim{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      fmt.Sprintf("%s-etcd-claim", svcName),
+			Namespace: namespace,
+			Labels:    ComponentLabel,
+		},
+		Spec: v1.PersistentVolumeClaimSpec{
+			AccessModes: []v1.PersistentVolumeAccessMode{
+				v1.ReadWriteOnce,
+			},
+			Resources: v1.ResourceRequirements{
+				Requests: v1.ResourceList{
+					v1.ResourceStorage: capacity,
+				},
+			},
+			StorageClassName: storageClassName,
+		},
+	}
+
+	if dryRun {
+		return pvc, nil
+	}
+
+	return clientset.CoreV1().PersistentVolumeClaims(namespace).Create(pvc)
+}
+
+// createAPIServer helper to create the apiserver deployment object and
+// return the object.
+func CreateAPIServer(clientset client.Interface, namespace, name, serverImage,
+etcdImage, advertiseAddress, credentialsName, serviceAccountName string, hasHTTPBasicAuthFile,
+hasTokenAuthFile bool, argOverrides map[string]string,
+	pvc *v1.PersistentVolumeClaim, aggregated, dryRun bool) (*appsv1beta1.Deployment, error) {
+
+	command := []string{"./clusterregistry"}
+	argsMap := map[string]string{
+		"--bind-address":         "0.0.0.0",
+		"--etcd-servers":         "http://localhost:2379",
+		"--secure-port":          fmt.Sprintf("%d", apiServerSecurePort),
+		"--client-ca-file":       "/etc/clusterregistry/apiserver/ca.crt",
+		"--tls-cert-file":        "/etc/clusterregistry/apiserver/server.crt",
+		"--tls-private-key-file": "/etc/clusterregistry/apiserver/server.key",
+	}
+
+	if advertiseAddress != "" {
+		argsMap["--advertise-address"] = advertiseAddress
+	}
+	if hasHTTPBasicAuthFile {
+		argsMap["--basic-auth-file"] = "/etc/clusterregistry/apiserver/basicauth.csv"
+	}
+	if hasTokenAuthFile {
+		argsMap["--token-auth-file"] = "/etc/clusterregistry/apiserver/token.csv"
+	}
+
+	args := util.ArgMapsToArgStrings(argsMap, argOverrides)
+	if aggregated {
+		command = append(command, "aggregated")
+	}
+	command = append(command, args...)
+
+	replicas := int32(1)
+	dep := &appsv1beta1.Deployment{
+		ObjectMeta: metav1.ObjectMeta{
+			Name:      name,
+			Namespace: namespace,
+			Labels:    ComponentLabel,
+		},
+		Spec: appsv1beta1.DeploymentSpec{
+			Replicas: &replicas,
+			Template: v1.PodTemplateSpec{
+				ObjectMeta: metav1.ObjectMeta{
+					Name:   name,
+					Labels: apiserverPodLabels,
+				},
+				Spec: v1.PodSpec{
+					Containers: []v1.Container{
+						{
+							Name:            "clusterregistry",
+							Image:           serverImage,
+							ImagePullPolicy: v1.PullAlways,
+							Command:         command,
+							Ports: []v1.ContainerPort{
+								{
+									Name:          apiServerSecurePortName,
+									ContainerPort: apiServerSecurePort,
+								},
+							},
+							VolumeMounts: []v1.VolumeMount{
+								{
+									Name:      credentialsName,
+									MountPath: "/etc/clusterregistry/apiserver",
+									ReadOnly:  true,
+								},
+							},
+						},
+						{
+							Name:  "etcd",
+							Image: etcdImage,
+							Command: []string{
+								"/usr/local/bin/etcd",
+								"--data-dir",
+								"/var/etcd/data",
+							},
+						},
+					},
+					Volumes: []v1.Volume{
+						{
+							Name: credentialsName,
+							VolumeSource: v1.VolumeSource{
+								Secret: &v1.SecretVolumeSource{
+									SecretName: credentialsName,
+								},
+							},
+						},
+					},
+				},
+			},
+		},
+	}
+
+	if pvc != nil {
+		dataVolumeName := "etcddata"
+		etcdVolume := v1.Volume{
+			Name: dataVolumeName,
+			VolumeSource: v1.VolumeSource{
+				PersistentVolumeClaim: &v1.PersistentVolumeClaimVolumeSource{
+					ClaimName: pvc.Name,
+				},
+			},
+		}
+		etcdVolumeMount := v1.VolumeMount{
+			Name:      dataVolumeName,
+			MountPath: "/var/etcd",
+		}
+
+		dep.Spec.Template.Spec.Volumes = append(dep.Spec.Template.Spec.Volumes, etcdVolume)
+		for i, container := range dep.Spec.Template.Spec.Containers {
+			if container.Name == "etcd" {
+				dep.Spec.Template.Spec.Containers[i].VolumeMounts = append(dep.Spec.Template.Spec.Containers[i].VolumeMounts, etcdVolumeMount)
+			}
+		}
+	}
+
+	if len(serviceAccountName) > 0 {
+		dep.Spec.Template.Spec.ServiceAccountName = serviceAccountName
+	}
+
+	if dryRun {
+		return dep, nil
+	}
+
+	return clientset.AppsV1beta1().Deployments(namespace).Create(dep)
+}
+
+// WaitForLoadBalancerAddress polls the apiserver for load balancer status
+// to retrieve IPs and hostnames for it.
+func WaitForLoadBalancerAddress(cmdOut io.Writer, clientset client.Interface, svc *v1.Service, dryRun bool) ([]string, []string, error) {
+	ips := []string{}
+	hostnames := []string{}
+
+	if dryRun {
+		return ips, hostnames, nil
+	}
+
+	err := wait.PollImmediateInfinite(lbAddrRetryInterval, func() (bool, error) {
+		fmt.Fprint(cmdOut, ".")
+		pollSvc, err := clientset.CoreV1().Services(svc.Namespace).Get(svc.Name, metav1.GetOptions{})
+		if err != nil {
+			return false, nil
+		}
+		if ings := pollSvc.Status.LoadBalancer.Ingress; len(ings) > 0 {
+			for _, ing := range ings {
+				if len(ing.IP) > 0 {
+					ips = append(ips, ing.IP)
+				}
+				if len(ing.Hostname) > 0 {
+					hostnames = append(hostnames, ing.Hostname)
+				}
+			}
+			if len(ips) > 0 || len(hostnames) > 0 {
+				return true, nil
+			}
+		}
+		return false, nil
+	})
+	if err != nil {
+		return nil, nil, err
+	}
+
+	return ips, hostnames, nil
+}
+
+func WaitForPods(cmdOut io.Writer, clientset client.Interface, pods []string, namespace string) error {
+	err := wait.PollInfinite(podWaitInterval, func() (bool, error) {
+		fmt.Fprint(cmdOut, ".")
+		podCheck := len(pods)
+		podList, err := clientset.CoreV1().Pods(namespace).List(metav1.ListOptions{})
+		if err != nil {
+			return false, nil
+		}
+		for _, pod := range podList.Items {
+			for _, fedPod := range pods {
+				if strings.HasPrefix(pod.Name, fedPod) && pod.Status.Phase == "Running" {
+					podCheck -= 1
+				}
+			}
+			// ensure that all pods are in running state or keep waiting
+			if podCheck == 0 {
+				return true, nil
+			}
+		}
+		return false, nil
+	})
+	return err
+}
+
+func WaitSrvHealthy(cmdOut io.Writer, crClientset client.Interface) error {
+	discoveryClient := crClientset.Discovery()
+	return wait.PollInfinite(podWaitInterval, func() (bool, error) {
+		fmt.Fprint(cmdOut, ".")
+		body, err := discoveryClient.RESTClient().Get().AbsPath("/healthz").Do().Raw()
+		if err != nil {
+			return false, nil
+		}
+		if strings.EqualFold(string(body), "ok") {
+			return true, nil
+		}
+		return false, nil
+	})
+}
diff --git a/pkg/crinit/options/options.go b/pkg/crinit/options/options.go
new file mode 100644
index 00000000..07e5c73b
--- /dev/null
+++ b/pkg/crinit/options/options.go
@@ -0,0 +1,391 @@
+/*
+Copyright 2017 The Kubernetes Authors.
+
+Licensed under the Apache License, Version 2.0 (the "License");
+you may not use this file except in compliance with the License.
+You may obtain a copy of the License at
+
+    http://www.apache.org/licenses/LICENSE-2.0
+
+Unless required by applicable law or agreed to in writing, software
+distributed under the License is distributed on an "AS IS" BASIS,
+WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+See the License for the specific language governing permissions and
+limitations under the License.
+*/
+
+package options
+
+import (
+	"net"
+	"io"
+	"strings"
+	"fmt"
+	"github.com/golang/glog"
+	"github.com/spf13/pflag"
+	"strconv"
+	"k8s.io/api/core/v1"
+
+	client "k8s.io/client-go/kubernetes"
+	"k8s.io/client-go/tools/clientcmd"
+	"k8s.io/cluster-registry/pkg/crinit/common"
+	"k8s.io/cluster-registry/pkg/crinit/util"
+
+)
+
+const (
+	// DefaultClusterRegistryNamespace is the default namespace in which
+	// cluster registry components are hosted.
+	DefaultClusterRegistryNamespace = "clusterregistry"
+
+	HostClusterLocalDNSZoneName     = "cluster.local."
+	APIServerNameSuffix             = "apiserver"
+	CredentialSuffix                = "credentials"
+
+	apiserverAdvertiseAddressFlag = "api-server-advertise-address"
+	APIServerServiceTypeFlag      = "api-server-service-type"
+	apiserverPortFlag             = "api-server-port"
+)
+
+var (
+	serverName     string
+	serverCredName string
+)
+
+// SubcommandOptions holds the configuration required by the subcommands of
+// `clusterregistry`.
+type SubcommandOptions struct {
+	Name                      string
+	Host                      string
+	ClusterRegistryNamespace  string
+	Kubeconfig                string
+	ServerImage               string
+	EtcdImage                 string
+	EtcdPVCapacity            string
+	EtcdPVStorageClass        string
+	EtcdPersistentStorage     bool
+	DryRun                    bool
+	ApiServerOverridesString  string
+	ApiServerOverrides        map[string]string
+	ApiServerServiceType      v1.ServiceType
+	ApiServerAdvertiseAddress string
+	ApiServerNodePortPort     int32
+	ApiServerNodePortPortPtr  *int32
+}
+
+// BindCommon adds the common options that are shared by different
+// sub-commands to the list of flags.
+func (o *SubcommandOptions) BindCommon(flags *pflag.FlagSet, defaultServerImage, defaultEtcdImage string) {
+	flags.StringVar(&o.Kubeconfig, "kubeconfig", "",
+		"Path to the kubeconfig file to use for CLI requests.")
+	flags.StringVar(&o.Host, "host-cluster-context", "",
+		"Context of the cluster in which to host the cluster registry.")
+	flags.StringVar(&o.ClusterRegistryNamespace, "cluster-registry-namespace",
+		DefaultClusterRegistryNamespace,
+		"Namespace in the host cluster where the cluster registry components are installed")
+	flags.StringVar(&o.ServerImage, "image", defaultServerImage,
+		"Image to use for the cluster registry API server binary.")
+	flags.StringVar(&o.EtcdImage, "etcd-image", defaultEtcdImage,
+		"Image to use for the etcd server binary.")
+	flags.StringVar(&o.EtcdPVCapacity, "etcd-pv-capacity", "10Gi",
+		"Size of the persistent volume claim to be used for etcd.")
+	flags.StringVar(&o.EtcdPVStorageClass, "etcd-pv-storage-class", "",
+		"The storage class of the persistent volume claim used for etcd. Must be provided if a default storage class is not enabled for the host cluster.")
+	flags.BoolVar(&o.EtcdPersistentStorage, "etcd-persistent-storage", true,
+		"Use a persistent volume for etcd. Defaults to 'true'.")
+	flags.BoolVar(&o.DryRun, "dry-run", false,
+		"Run the command in dry-run mode, without making any server requests.")
+	flags.StringVar(&o.ApiServerOverridesString, "apiserver-arg-overrides", "",
+		"Comma-separated list of cluster registry API server arguments to override, e.g., \"--arg1=value1,--arg2=value2...\"")
+	flags.StringVar(&o.ApiServerAdvertiseAddress, apiserverAdvertiseAddressFlag, "",
+		"Preferred address at which to advertise the cluster registry API server NodePort service. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
+	flags.Int32Var(&o.ApiServerNodePortPort, apiserverPortFlag, 0,
+		"Preferred port to use for the cluster registry API server NodePort service. Set to 0 to randomly assign a port. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
+}
+
+// SetName sets the name of the cluster registry.
+func (o *SubcommandOptions) SetName(args []string) error {
+	if len(args) == 0 {
+		return fmt.Errorf("NAME is required")
+	}
+	o.Name = args[0]
+	return nil
+}
+
+// ValidateCommonOptions validates the options that are shared across
+// different sub-commands.
+func (o *SubcommandOptions) ValidateCommonOptions() error {
+	serverName = fmt.Sprintf("%s-%s", o.Name, APIServerNameSuffix)
+	serverCredName = fmt.Sprintf("%s-%s", serverName, CredentialSuffix)
+
+	if o.ApiServerServiceType != v1.ServiceTypeLoadBalancer &&
+		o.ApiServerServiceType != v1.ServiceTypeNodePort {
+		return fmt.Errorf("invalid %s: %s, should be either %s or %s",
+			APIServerServiceTypeFlag, o.ApiServerServiceType,
+			v1.ServiceTypeLoadBalancer, v1.ServiceTypeNodePort)
+	}
+
+	if o.ApiServerAdvertiseAddress != "" {
+		ip := net.ParseIP(o.ApiServerAdvertiseAddress)
+		if ip == nil {
+			return fmt.Errorf("invalid %s: %s, should be a valid ip address",
+				apiserverAdvertiseAddressFlag, o.ApiServerAdvertiseAddress)
+		}
+		if o.ApiServerServiceType != v1.ServiceTypeNodePort {
+			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
+				apiserverAdvertiseAddressFlag, APIServerServiceTypeFlag)
+		}
+	}
+
+	if o.ApiServerNodePortPort != 0 {
+		if o.ApiServerServiceType != v1.ServiceTypeNodePort {
+			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
+				apiserverPortFlag, APIServerServiceTypeFlag)
+		}
+		o.ApiServerNodePortPortPtr = &o.ApiServerNodePortPort
+	} else {
+		o.ApiServerNodePortPortPtr = nil
+	}
+
+	if o.ApiServerNodePortPort < 0 || o.ApiServerNodePortPort > 65535 {
+		return fmt.Errorf("Please provide a valid port number for %s", apiserverPortFlag)
+	}
+
+	return nil
+}
+
+// marshalOptions marshals options if necessary.
+func (o *SubcommandOptions) MarshalOptions() error {
+	if o.ApiServerOverridesString == "" {
+		return nil
+	}
+
+	argsMap := make(map[string]string)
+	overrideArgs := strings.Split(o.ApiServerOverridesString, ",")
+	for _, overrideArg := range overrideArgs {
+		splitArg := strings.SplitN(overrideArg, "=", 2)
+		if len(splitArg) != 2 {
+			return fmt.Errorf("wrong format for override arg: %s", overrideArg)
+		}
+		key := strings.TrimSpace(splitArg[0])
+		val := strings.TrimSpace(splitArg[1])
+		if len(key) == 0 {
+			return fmt.Errorf("wrong format for override arg: %s, arg name cannot be empty", overrideArg)
+		}
+		argsMap[key] = val
+	}
+
+	o.ApiServerOverrides = argsMap
+
+	return nil
+}
+
+// CreateNamespace creates the cluster registry namespace.
+func (o *SubcommandOptions) CreateNamespace(cmdOut io.Writer,
+	clientset client.Interface) error {
+
+	fmt.Fprintf(cmdOut, "Creating a namespace %s for the cluster registry...",
+		o.ClusterRegistryNamespace)
+	glog.V(4).Infof("Creating a namespace %s for the cluster registry",
+		o.ClusterRegistryNamespace)
+
+	_, err := common.CreateNamespace(clientset, o.ClusterRegistryNamespace, o.DryRun)
+
+	if err != nil {
+		return err
+	}
+
+	fmt.Fprintln(cmdOut, " done")
+	return err
+}
+
+
+// CreateService creates the cluster registry apiserver service.
+func (o *SubcommandOptions) CreateService(cmdOut io.Writer,
+	clientset client.Interface) (*v1.Service, []string, []string, error) {
+
+	fmt.Fprint(cmdOut, "Creating cluster registry API server service...")
+	glog.V(4).Info("Creating cluster registry API server service")
+
+	svc, ips, hostnames, err := common.CreateService(cmdOut, clientset,
+		o.ClusterRegistryNamespace, o.Name, o.ApiServerAdvertiseAddress,
+		o.ApiServerNodePortPortPtr, o.ApiServerServiceType, o.DryRun)
+
+	if err != nil {
+		return nil, nil, nil, err
+	}
+
+	fmt.Fprintln(cmdOut, " done")
+	glog.V(4).Infof("Created service named %s with IP addresses %v, hostnames %v",
+		svc.Name, ips, hostnames)
+
+	return svc, ips, hostnames, err
+}
+
+// GenerateCredentials creates the credentials for apiserver secret.
+func (o *SubcommandOptions) GenerateCredentials(cmdOut io.Writer, svcName string,
+	ips, hostnames []string, apiServerEnableHTTPBasicAuth,
+	apiServerEnableTokenAuth bool) (*common.Credentials, error) {
+
+	fmt.Fprint(cmdOut,
+		"Creating cluster registry objects (credentials, persistent volume claim)...")
+	glog.V(4).Info("Generating TLS certificates and credentials for communicating with the cluster registry API server")
+
+	credentials, err := util.GenerateCredentials(o.ClusterRegistryNamespace, o.Name,
+		svcName, HostClusterLocalDNSZoneName, ips, hostnames,
+		apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth)
+
+	if err != nil {
+		return nil, err
+	}
+
+	return credentials, nil
+}
+
+// CreateAPIServerCredentialsSecret creates the secret containing the
+// apiserver credentials passed in.
+func (o *SubcommandOptions) CreateAPIServerCredentialsSecret(clientset client.Interface,
+	credentials common.Credentials) error {
+
+	_, err := common.CreateAPIServerCredentialsSecret(clientset,
+		o.ClusterRegistryNamespace, serverCredName, credentials, o.DryRun)
+
+	if err != nil {
+		return err
+	}
+
+	glog.V(4).Info("Certificates and credentials generated")
+	return nil
+}
+
+func (o *SubcommandOptions) CreatePVC(cmdOut io.Writer,
+	clientset client.Interface, svcName string) (*v1.PersistentVolumeClaim, error) {
+
+	if !o.EtcdPersistentStorage {
+		return nil, nil
+	}
+
+	glog.V(4).Info("Creating a persistent volume and a claim to store the cluster registry API server's state, including etcd data")
+
+	pvc, err := common.CreatePVC(clientset, o.ClusterRegistryNamespace, svcName,
+		o.EtcdPVCapacity, o.EtcdPVStorageClass, o.DryRun)
+
+	if err != nil {
+		return nil, err
+	}
+
+	glog.V(4).Info("Persistent volume and claim created")
+	fmt.Fprintln(cmdOut, " done")
+
+	return pvc, nil
+}
+
+func (o *SubcommandOptions) CreateAPIServer(cmdOut io.Writer, clientset client.Interface,
+	apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth, aggregated bool, ips []string,
+	pvc *v1.PersistentVolumeClaim, serviceAccountName string) error {
+	// Since only one IP address can be specified as advertise address,
+	// we arbitrarily pick the first available IP address.
+	// Pick user provided apiserverAdvertiseAddress over other available IP addresses.
+	advertiseAddress := o.ApiServerAdvertiseAddress
+	if advertiseAddress == "" && len(ips) > 0 {
+		advertiseAddress = ips[0]
+	}
+
+	fmt.Fprint(cmdOut, "Creating cluster registry deployment...")
+	glog.V(4).Info("Creating cluster registry deployment")
+
+	_, err := common.CreateAPIServer(clientset, o.ClusterRegistryNamespace,
+		serverName, o.ServerImage, o.EtcdImage, advertiseAddress, serverCredName,
+		serviceAccountName, apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth,
+		o.ApiServerOverrides, pvc, aggregated, o.DryRun)
+
+	if err != nil {
+		glog.V(4).Infof("Failed to create API server: %v", err)
+		return err
+	}
+
+	fmt.Fprintln(cmdOut, " done")
+	glog.V(4).Info("Successfully created cluster registry deployment")
+
+	return nil
+}
+
+// UpdateKubeconfig handles updating the kubeconfig by building up the endpoint
+// while printing and logging progress.
+func (o *SubcommandOptions) UpdateKubeconfig(cmdOut io.Writer,
+	pathOptions *clientcmd.PathOptions, svc *v1.Service, ips, hostnames []string,
+	credentials *common.Credentials) error {
+
+	fmt.Fprint(cmdOut, "Updating kubeconfig...")
+	glog.V(4).Info("Updating kubeconfig")
+
+	// Pick the first ip/hostname to update the api server endpoint in kubeconfig
+	// and also to give information to user.
+	// In case of NodePort Service for api server, ips are node external ips.
+	endpoint := ""
+	if len(ips) > 0 {
+		endpoint = ips[0]
+	} else if len(hostnames) > 0 {
+		endpoint = hostnames[0]
+	}
+
+	// If the service is nodeport, need to append the port to endpoint as it is
+	// non-standard port.
+	if o.ApiServerServiceType == v1.ServiceTypeNodePort {
+		endpoint = endpoint + ":" + strconv.Itoa(int(svc.Spec.Ports[0].NodePort))
+	}
+
+	err := util.UpdateKubeconfig(pathOptions, o.Name, endpoint, o.Kubeconfig,
+		credentials, o.DryRun)
+
+	if err != nil {
+		glog.V(4).Infof("Failed to update kubeconfig: %v", err)
+		return err
+	}
+
+	fmt.Fprintln(cmdOut, " done")
+	glog.V(4).Info("Successfully updated kubeconfig")
+	return nil
+}
+
+func (o *SubcommandOptions) WaitForAPIServer(cmdOut io.Writer,
+	clientset client.Interface, pathOptions *clientcmd.PathOptions,
+	ips, hostnames []string, svc *v1.Service) error {
+
+	if o.DryRun {
+		_, err := fmt.Fprintln(cmdOut, "Cluster registry can be run (dry run)")
+		glog.V(4).Info("Cluster registry can be run (dry run)")
+		return err
+	}
+
+	fmt.Fprint(cmdOut, "Waiting for the cluster registry API server to come up...")
+	glog.V(4).Info("Waiting for the cluster registry API server to come up")
+
+	err := common.WaitForPods(cmdOut, clientset, []string{serverName},
+		o.ClusterRegistryNamespace)
+
+	if err != nil {
+		return err
+	}
+
+	crConfig, err := util.GetClientConfig(pathOptions, o.Name, o.Kubeconfig).ClientConfig()
+
+	if err != nil {
+		return err
+	}
+	crClientset, err := client.NewForConfig(crConfig)
+
+	if err != nil {
+		return err
+	}
+
+	err = common.WaitSrvHealthy(cmdOut, crClientset)
+
+	if err != nil {
+		return err
+	}
+
+	glog.V(4).Info("Cluster registry running")
+	fmt.Fprintln(cmdOut, " done")
+	return util.PrintSuccess(cmdOut, ips, hostnames, svc)
+}
\ No newline at end of file
diff --git a/pkg/crinit/util/util.go b/pkg/crinit/util/util.go
index bd81b4f6..bb409c17 100644
--- a/pkg/crinit/util/util.go
+++ b/pkg/crinit/util/util.go
@@ -20,461 +20,49 @@ package util
 import (
 	"fmt"
 	"io"
-	"net"
 	"sort"
 	"strconv"
 	"strings"
-	"time"
 
-	appsv1beta1 "k8s.io/api/apps/v1beta1"
 	"k8s.io/api/core/v1"
-	"k8s.io/apimachinery/pkg/api/resource"
-	metav1 "k8s.io/apimachinery/pkg/apis/meta/v1"
-	"k8s.io/apimachinery/pkg/util/intstr"
 	"k8s.io/apimachinery/pkg/util/uuid"
-	"k8s.io/apimachinery/pkg/util/wait"
-	client "k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/tools/clientcmd"
 	clientcmdapi "k8s.io/client-go/tools/clientcmd/api"
 	certutil "k8s.io/client-go/util/cert"
 	"k8s.io/client-go/util/cert/triple"
-
+	"k8s.io/cluster-registry/pkg/crinit/common"
 	"github.com/golang/glog"
-	"github.com/spf13/pflag"
 )
 
 const (
-	// DefaultClusterRegistryNamespace is the default namespace in which
-	// cluster registry components are hosted.
-	DefaultClusterRegistryNamespace = "clusterregistry"
-
-	// APIServerCN is the Common Name used in the clusterregistry TLS cert.
 	APIServerCN = "clusterregistry"
-
-	// AdminCN is the Common Name used in the cluster registry client cert.
-	AdminCN = "admin"
-
-	// HostClusterLocalDNSZoneName is the DNS zone name of cluster local
-	// DNS names.
-	HostClusterLocalDNSZoneName = "cluster.local."
-
-	// APIServerNameSuffix is the suffix appended to the provided cluster registry
-	// name to derive the API server Deployment name.
-	APIServerNameSuffix = "apiserver"
-
-	// CredentialSuffix is the string appended to the provided cluste registry
-	// name to derive the name of the Secret that contains the API server
-	// certificates and keys.
-	CredentialSuffix = "credentials"
-
-	lbAddrRetryInterval = 5 * time.Second
-	podWaitInterval     = 2 * time.Second
-
-	apiserverAdvertiseAddressFlag = "api-server-advertise-address"
-
-	// APIServerServiceTypeFlag is the name of the flag used to set the service
-	// type used for the k8s Service that exposes the cluster registry.
-	APIServerServiceTypeFlag = "api-server-service-type"
-	apiserverPortFlag        = "api-server-port"
-
-	apiServerSecurePortName = "https"
-	// Set the secure port to 8443 to avoid requiring root privileges
-	// to bind to port < 1000.  The apiserver's service will still
-	// expose on port 443.
-	apiServerSecurePort = 8443
-)
-
-var (
-	serverName     string
-	serverCredName string
-
-	// ComponentLabel is the label applied to resources created in the host
-	// cluster.
-	ComponentLabel = map[string]string{
-		"app": "clusterregistry",
-	}
-
-	apiserverSvcSelector = map[string]string{
-		"app":    "clusterregistry",
-		"module": "clusterregistry-apiserver",
-	}
-
-	apiserverPodLabels = map[string]string{
-		"app":    "clusterregistry",
-		"module": "clusterregistry-apiserver",
-	}
+	AdminCN     = "admin"
 )
 
-// SubcommandOptions holds the configuration required by the subcommands of
-// `clusterregistry`.
-type SubcommandOptions struct {
-	Name                      string
-	Host                      string
-	ClusterRegistryNamespace  string
-	Kubeconfig                string
-	ServerImage               string
-	EtcdImage                 string
-	EtcdPVCapacity            string
-	EtcdPVStorageClass        string
-	EtcdPersistentStorage     bool
-	DryRun                    bool
-	APIServerOverridesString  string
-	APIServerOverrides        map[string]string
-	APIServerServiceType      v1.ServiceType
-	APIServerAdvertiseAddress string
-	APIServerNodePortPort     int32
-	APIServerNodePortPortPtr  *int32
-}
-
-type entityKeyPairs struct {
-	ca     *triple.KeyPair
-	server *triple.KeyPair
-	admin  *triple.KeyPair
-}
-
-// Credentials is the set of credentials and certificates that are
-// used by a cluster registry.
-type Credentials struct {
-	username        string
-	password        string
-	token           string
-	certEntKeyPairs *entityKeyPairs
-}
-
-// BindCommon adds the common options that are shared by different
-// sub-commands to the list of flags.
-func (o *SubcommandOptions) BindCommon(flags *pflag.FlagSet, defaultServerImage, defaultEtcdImage string) {
-	flags.StringVar(&o.Kubeconfig, "kubeconfig", "",
-		"Path to the kubeconfig file to use for CLI requests.")
-	flags.StringVar(&o.Host, "host-cluster-context", "",
-		"Context of the cluster in which to host the cluster registry.")
-	flags.StringVar(&o.ClusterRegistryNamespace, "cluster-registry-namespace",
-		DefaultClusterRegistryNamespace,
-		"Namespace in the host cluster where the cluster registry components are installed")
-	flags.StringVar(&o.ServerImage, "image", defaultServerImage,
-		"Image to use for the cluster registry API server binary.")
-	flags.StringVar(&o.EtcdImage, "etcd-image", defaultEtcdImage,
-		"Image to use for the etcd server binary.")
-	flags.StringVar(&o.EtcdPVCapacity, "etcd-pv-capacity", "10Gi",
-		"Size of the persistent volume claim to be used for etcd.")
-	flags.StringVar(&o.EtcdPVStorageClass, "etcd-pv-storage-class", "",
-		"The storage class of the persistent volume claim used for etcd. Must be provided if a default storage class is not enabled for the host cluster.")
-	flags.BoolVar(&o.EtcdPersistentStorage, "etcd-persistent-storage", true,
-		"Use a persistent volume for etcd. Defaults to 'true'.")
-	flags.BoolVar(&o.DryRun, "dry-run", false,
-		"Run the command in dry-run mode, without making any server requests.")
-	flags.StringVar(&o.APIServerOverridesString, "apiserver-arg-overrides", "",
-		"Comma-separated list of cluster registry API server arguments to override, e.g., \"--arg1=value1,--arg2=value2...\"")
-	flags.StringVar(&o.APIServerAdvertiseAddress, apiserverAdvertiseAddressFlag, "",
-		"Preferred address at which to advertise the cluster registry API server NodePort service. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
-	flags.Int32Var(&o.APIServerNodePortPort, apiserverPortFlag, 0,
-		"Preferred port to use for the cluster registry API server NodePort service. Set to 0 to randomly assign a port. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
-}
-
-// SetName sets the name of the cluster registry.
-func (o *SubcommandOptions) SetName(args []string) error {
-	if len(args) == 0 {
-		return fmt.Errorf("NAME is required")
-	}
-	o.Name = args[0]
-	return nil
-}
-
-// ValidateCommonOptions validates the options that are shared across
-// different sub-commands.
-func (o *SubcommandOptions) ValidateCommonOptions() error {
-	serverName = fmt.Sprintf("%s-%s", o.Name, APIServerNameSuffix)
-	serverCredName = fmt.Sprintf("%s-%s", serverName, CredentialSuffix)
-
-	if o.APIServerServiceType != v1.ServiceTypeLoadBalancer &&
-		o.APIServerServiceType != v1.ServiceTypeNodePort {
-		return fmt.Errorf("invalid %s: %s, should be either %s or %s",
-			APIServerServiceTypeFlag, o.APIServerServiceType,
-			v1.ServiceTypeLoadBalancer, v1.ServiceTypeNodePort)
-	}
-
-	if o.APIServerAdvertiseAddress != "" {
-		ip := net.ParseIP(o.APIServerAdvertiseAddress)
-		if ip == nil {
-			return fmt.Errorf("invalid %s: %s, should be a valid ip address",
-				apiserverAdvertiseAddressFlag, o.APIServerAdvertiseAddress)
-		}
-		if o.APIServerServiceType != v1.ServiceTypeNodePort {
-			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
-				apiserverAdvertiseAddressFlag, APIServerServiceTypeFlag)
-		}
-	}
-
-	if o.APIServerNodePortPort != 0 {
-		if o.APIServerServiceType != v1.ServiceTypeNodePort {
-			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
-				apiserverPortFlag, APIServerServiceTypeFlag)
-		}
-		o.APIServerNodePortPortPtr = &o.APIServerNodePortPort
-	} else {
-		o.APIServerNodePortPortPtr = nil
-	}
-
-	if o.APIServerNodePortPort < 0 || o.APIServerNodePortPort > 65535 {
-		return fmt.Errorf("Please provide a valid port number for %s", apiserverPortFlag)
-	}
-
-	return nil
-}
-
-// MarshalOptions marshals options if necessary.
-func (o *SubcommandOptions) MarshalOptions() error {
-	if o.APIServerOverridesString == "" {
-		return nil
-	}
-
-	argsMap := make(map[string]string)
-	overrideArgs := strings.Split(o.APIServerOverridesString, ",")
-	for _, overrideArg := range overrideArgs {
-		splitArg := strings.SplitN(overrideArg, "=", 2)
-		if len(splitArg) != 2 {
-			return fmt.Errorf("wrong format for override arg: %s", overrideArg)
-		}
-		key := strings.TrimSpace(splitArg[0])
-		val := strings.TrimSpace(splitArg[1])
-		if len(key) == 0 {
-			return fmt.Errorf("wrong format for override arg: %s, arg name cannot be empty", overrideArg)
-		}
-		argsMap[key] = val
-	}
-
-	o.APIServerOverrides = argsMap
-
-	return nil
-}
-
-// CreateNamespace creates the cluster registry namespace.
-func (o *SubcommandOptions) CreateNamespace(cmdOut io.Writer,
-	clientset client.Interface) error {
-
-	fmt.Fprintf(cmdOut, "Creating a namespace %s for the cluster registry...",
-		o.ClusterRegistryNamespace)
-	glog.V(4).Infof("Creating a namespace %s for the cluster registry",
-		o.ClusterRegistryNamespace)
-
-	_, err := CreateNamespace(clientset, o.ClusterRegistryNamespace, o.DryRun)
-
-	if err != nil {
-		return err
-	}
-
-	fmt.Fprintln(cmdOut, " done")
-	return err
-}
-
-// CreateNamespace helper to create the cluster registry namespace object and return
-// the object.
-func CreateNamespace(clientset client.Interface, namespace string,
-	dryRun bool) (*v1.Namespace, error) {
-	ns := &v1.Namespace{
-		ObjectMeta: metav1.ObjectMeta{
-			Name: namespace,
-		},
-	}
-
-	if dryRun {
-		return ns, nil
-	}
-
-	return clientset.CoreV1().Namespaces().Create(ns)
-}
-
-// CreateService creates the cluster registry apiserver service.
-func (o *SubcommandOptions) CreateService(cmdOut io.Writer,
-	clientset client.Interface) (*v1.Service, []string, []string, error) {
-
-	fmt.Fprint(cmdOut, "Creating cluster registry API server service...")
-	glog.V(4).Info("Creating cluster registry API server service")
-
-	svc, ips, hostnames, err := CreateService(cmdOut, clientset,
-		o.ClusterRegistryNamespace, o.Name, o.APIServerAdvertiseAddress,
-		o.APIServerNodePortPortPtr, o.APIServerServiceType, o.DryRun)
-
-	if err != nil {
-		return nil, nil, nil, err
-	}
-
-	fmt.Fprintln(cmdOut, " done")
-	glog.V(4).Infof("Created service named %s with IP addresses %v, hostnames %v",
-		svc.Name, ips, hostnames)
-
-	return svc, ips, hostnames, err
-}
-
-// CreateService helper to create the cluster registry apiserver service object
-// and return the object. If service type is load balancer, will wait for load
-// balancer IP and return it and hostnames.
-func CreateService(cmdOut io.Writer, clientset client.Interface, namespace,
-	svcName, apiserverAdvertiseAddress string, apiserverPort *int32,
-	apiserverServiceType v1.ServiceType,
-	dryRun bool) (*v1.Service, []string, []string, error) {
-
-	port := v1.ServicePort{
-		Name:       "https",
-		Protocol:   "TCP",
-		Port:       443,
-		TargetPort: intstr.FromString(apiServerSecurePortName),
-	}
-
-	if apiserverServiceType == v1.ServiceTypeNodePort && apiserverPort != nil {
-		port.NodePort = *apiserverPort
-	}
-
-	svc := &v1.Service{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      svcName,
-			Namespace: namespace,
-			Labels:    ComponentLabel,
-		},
-		Spec: v1.ServiceSpec{
-			Type:     v1.ServiceType(apiserverServiceType),
-			Selector: apiserverSvcSelector,
-			Ports:    []v1.ServicePort{port},
-		},
-	}
-
-	if dryRun {
-		return svc, nil, nil, nil
-	}
-
-	var err error
-	svc, err = clientset.CoreV1().Services(namespace).Create(svc)
-	if err != nil {
-		return nil, nil, nil, err
-	}
-
-	ips := []string{}
-	hostnames := []string{}
-	if apiserverServiceType == v1.ServiceTypeLoadBalancer {
-		ips, hostnames, err = waitForLoadBalancerAddress(cmdOut, clientset, svc, dryRun)
-	} else {
-		if apiserverAdvertiseAddress != "" {
-			ips = append(ips, apiserverAdvertiseAddress)
-		} else {
-			ips, err = GetClusterNodeIPs(clientset)
-		}
-	}
-	if err != nil {
-		return nil, nil, nil, err
-	}
-
-	return svc, ips, hostnames, err
-}
-
-// GetClusterNodeIPs returns a list of the IP addresses of nodes in the cluster,
-// with a preference for external IP addresses.
-func GetClusterNodeIPs(clientset client.Interface) ([]string, error) {
-	preferredAddressTypes := []v1.NodeAddressType{
-		v1.NodeExternalIP,
-		v1.NodeInternalIP,
-	}
-	nodeList, err := clientset.CoreV1().Nodes().List(metav1.ListOptions{})
-	if err != nil {
-		return nil, err
-	}
-	nodeAddresses := []string{}
-	for _, node := range nodeList.Items {
-	OuterLoop:
-		for _, addressType := range preferredAddressTypes {
-			for _, address := range node.Status.Addresses {
-				if address.Type == addressType {
-					nodeAddresses = append(nodeAddresses, address.Address)
-					break OuterLoop
-				}
-			}
-		}
-	}
-
-	return nodeAddresses, nil
-}
-
-// waitForLoadBalancerAddress polls the apiserver for load balancer status
-// to retrieve IPs and hostnames for it.
-func waitForLoadBalancerAddress(cmdOut io.Writer, clientset client.Interface, svc *v1.Service, dryRun bool) ([]string, []string, error) {
-	ips := []string{}
-	hostnames := []string{}
-
-	if dryRun {
-		return ips, hostnames, nil
-	}
-
-	err := wait.PollImmediateInfinite(lbAddrRetryInterval, func() (bool, error) {
-		fmt.Fprint(cmdOut, ".")
-		pollSvc, err := clientset.CoreV1().Services(svc.Namespace).Get(svc.Name, metav1.GetOptions{})
-		if err != nil {
-			return false, nil
-		}
-		if ings := pollSvc.Status.LoadBalancer.Ingress; len(ings) > 0 {
-			for _, ing := range ings {
-				if len(ing.IP) > 0 {
-					ips = append(ips, ing.IP)
-				}
-				if len(ing.Hostname) > 0 {
-					hostnames = append(hostnames, ing.Hostname)
-				}
-			}
-			if len(ips) > 0 || len(hostnames) > 0 {
-				return true, nil
-			}
-		}
-		return false, nil
-	})
-	if err != nil {
-		return nil, nil, err
-	}
-
-	return ips, hostnames, nil
-}
-
-// GenerateCredentials creates the credentials for apiserver secret.
-func (o *SubcommandOptions) GenerateCredentials(cmdOut io.Writer, svcName string,
-	ips, hostnames []string, apiServerEnableHTTPBasicAuth,
-	apiServerEnableTokenAuth bool) (*Credentials, error) {
-
-	fmt.Fprint(cmdOut,
-		"Creating cluster registry objects (credentials, persistent volume claim)...")
-	glog.V(4).Info("Generating TLS certificates and credentials for communicating with the cluster registry API server")
-
-	credentials, err := generateCredentials(o.ClusterRegistryNamespace, o.Name,
-		svcName, HostClusterLocalDNSZoneName, ips, hostnames,
-		apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth)
-
-	if err != nil {
-		return nil, err
-	}
-
-	return credentials, nil
-}
-
 // generateCredentials helper to create the certs for the apiserver.
-func generateCredentials(svcNamespace, name, svcName, localDNSZoneName string,
-	ips, hostnames []string, enableHTTPBasicAuth, enableTokenAuth bool) (*Credentials, error) {
+func GenerateCredentials(svcNamespace, name, svcName, localDNSZoneName string,
+	ips, hostnames []string, enableHTTPBasicAuth, enableTokenAuth bool) (*common.Credentials, error) {
 
-	credentials := Credentials{
-		username: AdminCN,
+	credentials := common.Credentials{
+		Username: AdminCN,
 	}
 	if enableHTTPBasicAuth {
-		credentials.password = string(uuid.NewUUID())
+		credentials.Password = string(uuid.NewUUID())
 	}
 	if enableTokenAuth {
-		credentials.token = string(uuid.NewUUID())
+		credentials.Token = string(uuid.NewUUID())
 	}
 
-	entKeyPairs, err := genCerts(svcNamespace, name, svcName, localDNSZoneName, ips, hostnames)
+	entKeyPairs, err := GenCerts(svcNamespace, name, svcName, localDNSZoneName, ips, hostnames)
 	if err != nil {
 		return nil, err
 	}
-	credentials.certEntKeyPairs = entKeyPairs
+	credentials.CertEntKeyPairs = entKeyPairs
 	return &credentials, nil
 }
 
-func genCerts(svcNamespace, name, svcName, localDNSZoneName string,
-	ips, hostnames []string) (*entityKeyPairs, error) {
+func GenCerts(svcNamespace, name, svcName, localDNSZoneName string,
+	ips, hostnames []string) (*common.EntityKeyPairs, error) {
 	ca, err := triple.NewCA(name)
 
 	if err != nil {
@@ -488,286 +76,14 @@ func genCerts(svcNamespace, name, svcName, localDNSZoneName string,
 	if err != nil {
 		return nil, fmt.Errorf("failed to create client key and certificate for an admin: %v", err)
 	}
-	return &entityKeyPairs{
-		ca:     ca,
-		server: server,
-		admin:  admin,
+	return &common.EntityKeyPairs{
+		Ca:     ca,
+		Server: server,
+		Admin:  admin,
 	}, nil
 }
 
-// CreateAPIServerCredentialsSecret creates the secret containing the
-// apiserver credentials passed in.
-func (o *SubcommandOptions) CreateAPIServerCredentialsSecret(clientset client.Interface,
-	credentials *Credentials) error {
-
-	_, err := createAPIServerCredentialsSecret(clientset,
-		o.ClusterRegistryNamespace, serverCredName, credentials, o.DryRun)
-
-	if err != nil {
-		return err
-	}
-
-	glog.V(4).Info("Certificates and credentials generated")
-	return nil
-}
-
-// createAPIServerCredentialsSecret helper to create secret object and return
-// the object.
-func createAPIServerCredentialsSecret(clientset client.Interface, namespace,
-	credentialsName string, credentials *Credentials, dryRun bool) (*v1.Secret, error) {
-	// Build the secret object with API server credentials.
-	data := map[string][]byte{
-		"ca.crt":     certutil.EncodeCertPEM(credentials.certEntKeyPairs.ca.Cert),
-		"server.crt": certutil.EncodeCertPEM(credentials.certEntKeyPairs.server.Cert),
-		"server.key": certutil.EncodePrivateKeyPEM(credentials.certEntKeyPairs.server.Key),
-	}
-	if credentials.password != "" {
-		data["basicauth.csv"] = authFileContents(credentials.username, credentials.password)
-	}
-	if credentials.token != "" {
-		data["token.csv"] = authFileContents(credentials.username, credentials.token)
-	}
-
-	secret := &v1.Secret{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      credentialsName,
-			Namespace: namespace,
-		},
-		Data: data,
-	}
-
-	if dryRun {
-		return secret, nil
-	}
-
-	return clientset.CoreV1().Secrets(namespace).Create(secret)
-}
-
-// CreatePVC creates a PersistentVolumeClaim for the cluster registry.
-func (o *SubcommandOptions) CreatePVC(cmdOut io.Writer,
-	clientset client.Interface, svcName string) (*v1.PersistentVolumeClaim, error) {
-
-	if !o.EtcdPersistentStorage {
-		return nil, nil
-	}
-
-	glog.V(4).Info("Creating a persistent volume and a claim to store the cluster registry API server's state, including etcd data")
-
-	pvc, err := createPVC(clientset, o.ClusterRegistryNamespace, svcName,
-		o.EtcdPVCapacity, o.EtcdPVStorageClass, o.DryRun)
-
-	if err != nil {
-		return nil, err
-	}
-
-	glog.V(4).Info("Persistent volume and claim created")
-	fmt.Fprintln(cmdOut, " done")
-
-	return pvc, nil
-}
-
-// createPVC helper to create the persistent volume claim object and
-// return the object.
-func createPVC(clientset client.Interface, namespace, svcName, etcdPVCapacity,
-	etcdPVStorageClass string, dryRun bool) (*v1.PersistentVolumeClaim, error) {
-	capacity, err := resource.ParseQuantity(etcdPVCapacity)
-	if err != nil {
-		return nil, err
-	}
-
-	var storageClassName *string
-	if len(etcdPVStorageClass) > 0 {
-		storageClassName = &etcdPVStorageClass
-	}
-
-	pvc := &v1.PersistentVolumeClaim{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      fmt.Sprintf("%s-etcd-claim", svcName),
-			Namespace: namespace,
-			Labels:    ComponentLabel,
-		},
-		Spec: v1.PersistentVolumeClaimSpec{
-			AccessModes: []v1.PersistentVolumeAccessMode{
-				v1.ReadWriteOnce,
-			},
-			Resources: v1.ResourceRequirements{
-				Requests: v1.ResourceList{
-					v1.ResourceStorage: capacity,
-				},
-			},
-			StorageClassName: storageClassName,
-		},
-	}
-
-	if dryRun {
-		return pvc, nil
-	}
-
-	return clientset.CoreV1().PersistentVolumeClaims(namespace).Create(pvc)
-}
-
-// CreateAPIServer creates a Deployment for the clusterregistry and etcd.
-func (o *SubcommandOptions) CreateAPIServer(cmdOut io.Writer, clientset client.Interface,
-	apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth, aggregated bool, ips []string,
-	pvc *v1.PersistentVolumeClaim, serviceAccountName string) error {
-	// Since only one IP address can be specified as advertise address,
-	// we arbitrarily pick the first available IP address.
-	// Pick user provided apiserverAdvertiseAddress over other available IP addresses.
-	advertiseAddress := o.APIServerAdvertiseAddress
-	if advertiseAddress == "" && len(ips) > 0 {
-		advertiseAddress = ips[0]
-	}
-
-	fmt.Fprint(cmdOut, "Creating cluster registry deployment...")
-	glog.V(4).Info("Creating cluster registry deployment")
-
-	_, err := createAPIServer(clientset, o.ClusterRegistryNamespace,
-		serverName, o.ServerImage, o.EtcdImage, advertiseAddress, serverCredName,
-		serviceAccountName, apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth,
-		o.APIServerOverrides, pvc, aggregated, o.DryRun)
-
-	if err != nil {
-		glog.V(4).Infof("Failed to create API server: %v", err)
-		return err
-	}
-
-	fmt.Fprintln(cmdOut, " done")
-	glog.V(4).Info("Successfully created cluster registry deployment")
-
-	return nil
-}
-
-// createAPIServer helper to create the apiserver deployment object and
-// return the object.
-func createAPIServer(clientset client.Interface, namespace, name, serverImage,
-	etcdImage, advertiseAddress, credentialsName, serviceAccountName string, hasHTTPBasicAuthFile,
-	hasTokenAuthFile bool, argOverrides map[string]string,
-	pvc *v1.PersistentVolumeClaim, aggregated, dryRun bool) (*appsv1beta1.Deployment, error) {
-
-	command := []string{"./clusterregistry"}
-	argsMap := map[string]string{
-		"--bind-address":         "0.0.0.0",
-		"--etcd-servers":         "http://localhost:2379",
-		"--secure-port":          fmt.Sprintf("%d", apiServerSecurePort),
-		"--client-ca-file":       "/etc/clusterregistry/apiserver/ca.crt",
-		"--tls-cert-file":        "/etc/clusterregistry/apiserver/server.crt",
-		"--tls-private-key-file": "/etc/clusterregistry/apiserver/server.key",
-	}
-
-	if advertiseAddress != "" {
-		argsMap["--advertise-address"] = advertiseAddress
-	}
-	if hasHTTPBasicAuthFile {
-		argsMap["--basic-auth-file"] = "/etc/clusterregistry/apiserver/basicauth.csv"
-	}
-	if hasTokenAuthFile {
-		argsMap["--token-auth-file"] = "/etc/clusterregistry/apiserver/token.csv"
-	}
-
-	if aggregated {
-		command = append(command, "aggregated")
-	} else {
-		command = append(command, "standalone")
-	}
-
-	args := argMapsToArgStrings(argsMap, argOverrides)
-	command = append(command, args...)
-
-	replicas := int32(1)
-	dep := &appsv1beta1.Deployment{
-		ObjectMeta: metav1.ObjectMeta{
-			Name:      name,
-			Namespace: namespace,
-			Labels:    ComponentLabel,
-		},
-		Spec: appsv1beta1.DeploymentSpec{
-			Replicas: &replicas,
-			Template: v1.PodTemplateSpec{
-				ObjectMeta: metav1.ObjectMeta{
-					Name:   name,
-					Labels: apiserverPodLabels,
-				},
-				Spec: v1.PodSpec{
-					Containers: []v1.Container{
-						{
-							Name:            "clusterregistry",
-							Image:           serverImage,
-							ImagePullPolicy: v1.PullAlways,
-							Command:         command,
-							Ports: []v1.ContainerPort{
-								{
-									Name:          apiServerSecurePortName,
-									ContainerPort: apiServerSecurePort,
-								},
-							},
-							VolumeMounts: []v1.VolumeMount{
-								{
-									Name:      credentialsName,
-									MountPath: "/etc/clusterregistry/apiserver",
-									ReadOnly:  true,
-								},
-							},
-						},
-						{
-							Name:  "etcd",
-							Image: etcdImage,
-							Command: []string{
-								"/usr/local/bin/etcd",
-								"--data-dir",
-								"/var/etcd/data",
-							},
-						},
-					},
-					Volumes: []v1.Volume{
-						{
-							Name: credentialsName,
-							VolumeSource: v1.VolumeSource{
-								Secret: &v1.SecretVolumeSource{
-									SecretName: credentialsName,
-								},
-							},
-						},
-					},
-				},
-			},
-		},
-	}
-
-	if pvc != nil {
-		dataVolumeName := "etcddata"
-		etcdVolume := v1.Volume{
-			Name: dataVolumeName,
-			VolumeSource: v1.VolumeSource{
-				PersistentVolumeClaim: &v1.PersistentVolumeClaimVolumeSource{
-					ClaimName: pvc.Name,
-				},
-			},
-		}
-		etcdVolumeMount := v1.VolumeMount{
-			Name:      dataVolumeName,
-			MountPath: "/var/etcd",
-		}
-
-		dep.Spec.Template.Spec.Volumes = append(dep.Spec.Template.Spec.Volumes, etcdVolume)
-		for i, container := range dep.Spec.Template.Spec.Containers {
-			if container.Name == "etcd" {
-				dep.Spec.Template.Spec.Containers[i].VolumeMounts = append(dep.Spec.Template.Spec.Containers[i].VolumeMounts, etcdVolumeMount)
-			}
-		}
-	}
-
-	if len(serviceAccountName) > 0 {
-		dep.Spec.Template.Spec.ServiceAccountName = serviceAccountName
-	}
-
-	if dryRun {
-		return dep, nil
-	}
-
-	return clientset.AppsV1beta1().Deployments(namespace).Create(dep)
-}
-
-func argMapsToArgStrings(argsMap, overrides map[string]string) []string {
+func ArgMapsToArgStrings(argsMap, overrides map[string]string) []string {
 	for key, val := range overrides {
 		argsMap[key] = val
 	}
@@ -780,48 +96,10 @@ func argMapsToArgStrings(argsMap, overrides map[string]string) []string {
 	return args
 }
 
-// UpdateKubeconfig handles updating the kubeconfig by building up the endpoint
-// while printing and logging progress.
-func (o *SubcommandOptions) UpdateKubeconfig(cmdOut io.Writer,
-	pathOptions *clientcmd.PathOptions, svc *v1.Service, ips, hostnames []string,
-	credentials *Credentials) error {
-
-	fmt.Fprint(cmdOut, "Updating kubeconfig...")
-	glog.V(4).Info("Updating kubeconfig")
-
-	// Pick the first ip/hostname to update the api server endpoint in kubeconfig
-	// and also to give information to user.
-	// In case of NodePort Service for api server, ips are node external ips.
-	endpoint := ""
-	if len(ips) > 0 {
-		endpoint = ips[0]
-	} else if len(hostnames) > 0 {
-		endpoint = hostnames[0]
-	}
-
-	// If the service is nodeport, need to append the port to endpoint as it is
-	// non-standard port.
-	if o.APIServerServiceType == v1.ServiceTypeNodePort {
-		endpoint = endpoint + ":" + strconv.Itoa(int(svc.Spec.Ports[0].NodePort))
-	}
-
-	err := updateKubeconfig(pathOptions, o.Name, endpoint, o.Kubeconfig,
-		credentials, o.DryRun)
-
-	if err != nil {
-		glog.V(4).Infof("Failed to update kubeconfig: %v", err)
-		return err
-	}
-
-	fmt.Fprintln(cmdOut, " done")
-	glog.V(4).Info("Successfully updated kubeconfig")
-	return nil
-}
-
-// updateKubeconfig helper to update the kubeconfig file based on input
+// UpdateKubeconfig helper to update the kubeconfig file based on input
 // parameters.
-func updateKubeconfig(pathOptions *clientcmd.PathOptions, name, endpoint,
-	kubeConfigPath string, credentials *Credentials, dryRun bool) error {
+func UpdateKubeconfig(pathOptions *clientcmd.PathOptions, name, endpoint,
+kubeConfigPath string, credentials *common.Credentials, dryRun bool) error {
 
 	pathOptions.LoadingRules.ExplicitPath = kubeConfigPath
 	kubeconfig, err := pathOptions.GetStartingConfig()
@@ -838,20 +116,20 @@ func updateKubeconfig(pathOptions *clientcmd.PathOptions, name, endpoint,
 	}
 
 	cluster.Server = endpoint
-	cluster.CertificateAuthorityData = certutil.EncodeCertPEM(credentials.certEntKeyPairs.ca.Cert)
+	cluster.CertificateAuthorityData = certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Ca.Cert)
 
 	// Populate credentials.
 	authInfo := clientcmdapi.NewAuthInfo()
-	authInfo.ClientCertificateData = certutil.EncodeCertPEM(credentials.certEntKeyPairs.admin.Cert)
-	authInfo.ClientKeyData = certutil.EncodePrivateKeyPEM(credentials.certEntKeyPairs.admin.Key)
-	authInfo.Token = credentials.token
+	authInfo.ClientCertificateData = certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Admin.Cert)
+	authInfo.ClientKeyData = certutil.EncodePrivateKeyPEM(credentials.CertEntKeyPairs.Admin.Key)
+	authInfo.Token = credentials.Token
 
 	var httpBasicAuthInfo *clientcmdapi.AuthInfo
 
-	if credentials.password != "" {
+	if credentials.Password != "" {
 		httpBasicAuthInfo = clientcmdapi.NewAuthInfo()
-		httpBasicAuthInfo.Password = credentials.password
-		httpBasicAuthInfo.Username = credentials.username
+		httpBasicAuthInfo.Password = credentials.Password
+		httpBasicAuthInfo.Username = credentials.Username
 	}
 
 	// Populate context.
@@ -880,89 +158,7 @@ func updateKubeconfig(pathOptions *clientcmd.PathOptions, name, endpoint,
 	return nil
 }
 
-// WaitForAPIServer blocks until the clusterregistry API server to be healthy.
-func (o *SubcommandOptions) WaitForAPIServer(cmdOut io.Writer,
-	clientset client.Interface, pathOptions *clientcmd.PathOptions,
-	ips, hostnames []string, svc *v1.Service) error {
-
-	if o.DryRun {
-		_, err := fmt.Fprintln(cmdOut, "Cluster registry can be run (dry run)")
-		glog.V(4).Info("Cluster registry can be run (dry run)")
-		return err
-	}
-
-	fmt.Fprint(cmdOut, "Waiting for the cluster registry API server to come up...")
-	glog.V(4).Info("Waiting for the cluster registry API server to come up")
-
-	err := waitForPods(cmdOut, clientset, []string{serverName},
-		o.ClusterRegistryNamespace)
-
-	if err != nil {
-		return err
-	}
-
-	crConfig, err := GetClientConfig(pathOptions, o.Name, o.Kubeconfig).ClientConfig()
-
-	if err != nil {
-		return err
-	}
-	crClientset, err := client.NewForConfig(crConfig)
-
-	if err != nil {
-		return err
-	}
-
-	err = waitSrvHealthy(cmdOut, crClientset)
-
-	if err != nil {
-		return err
-	}
-
-	glog.V(4).Info("Cluster registry running")
-	fmt.Fprintln(cmdOut, " done")
-	return printSuccess(cmdOut, ips, hostnames, svc)
-}
-
-func waitForPods(cmdOut io.Writer, clientset client.Interface, pods []string, namespace string) error {
-	err := wait.PollInfinite(podWaitInterval, func() (bool, error) {
-		fmt.Fprint(cmdOut, ".")
-		podCheck := len(pods)
-		podList, err := clientset.CoreV1().Pods(namespace).List(metav1.ListOptions{})
-		if err != nil {
-			return false, nil
-		}
-		for _, pod := range podList.Items {
-			for _, fedPod := range pods {
-				if strings.HasPrefix(pod.Name, fedPod) && pod.Status.Phase == "Running" {
-					podCheck--
-				}
-			}
-			// ensure that all pods are in running state or keep waiting
-			if podCheck == 0 {
-				return true, nil
-			}
-		}
-		return false, nil
-	})
-	return err
-}
-
-func waitSrvHealthy(cmdOut io.Writer, crClientset client.Interface) error {
-	discoveryClient := crClientset.Discovery()
-	return wait.PollInfinite(podWaitInterval, func() (bool, error) {
-		fmt.Fprint(cmdOut, ".")
-		body, err := discoveryClient.RESTClient().Get().AbsPath("/healthz").Do().Raw()
-		if err != nil {
-			return false, nil
-		}
-		if strings.EqualFold(string(body), "ok") {
-			return true, nil
-		}
-		return false, nil
-	})
-}
-
-func printSuccess(cmdOut io.Writer, ips, hostnames []string, svc *v1.Service) error {
+func PrintSuccess(cmdOut io.Writer, ips, hostnames []string, svc *v1.Service) error {
 	svcEndpoints := append(ips, hostnames...)
 	endpoints := strings.Join(svcEndpoints, ", ")
 	if svc.Spec.Type == v1.ServiceTypeNodePort {
@@ -989,19 +185,19 @@ func GetClientConfig(pathOptions *clientcmd.PathOptions, context, kubeconfigPath
 	return clientcmd.NewNonInteractiveDeferredLoadingClientConfig(&loadingRules, overrides)
 }
 
-// authFileContents returns a CSV string containing the contents of an
+// AuthFileContents returns a CSV string containing the contents of an
 // authentication file in the format required by the cluster registry.
-func authFileContents(username, authSecret string) []byte {
+func AuthFileContents(username, authSecret string) []byte {
 	return []byte(fmt.Sprintf("%s,%s,%s\n", authSecret, username, uuid.NewUUID()))
 }
 
 // GetCAKeyPair retrieves the CA key pair stored in the internal credentials
 // structure.
-func GetCAKeyPair(credentials *Credentials) *triple.KeyPair {
+func GetCAKeyPair(credentials *common.Credentials) *triple.KeyPair {
 	if credentials == nil {
 		glog.V(4).Info("credentials argument is nil!")
 		return nil
 	}
 
-	return credentials.certEntKeyPairs.ca
+	return credentials.CertEntKeyPairs.Ca
 }

From a52d583a86a935cf0128d1fe8141ad3d8fc6d9dc Mon Sep 17 00:00:00 2001
From: wackxu <xushiwei5@huawei.com>
Date: Thu, 7 Dec 2017 21:04:05 +0800
Subject: [PATCH 2/4] update import

---
 .idea/workspace.xml                      | 337 -----------------------
 pkg/crinit/aggregated/aggregated.go      |  18 +-
 pkg/crinit/common/common.go              |   9 +-
 pkg/crinit/options/options.go            |  67 ++---
 pkg/crinit/standalone/standalone.go      |   5 +-
 pkg/crinit/standalone/standalone_test.go |  39 +--
 pkg/crinit/util/util.go                  |   6 +-
 7 files changed, 75 insertions(+), 406 deletions(-)
 delete mode 100644 .idea/workspace.xml

diff --git a/.idea/workspace.xml b/.idea/workspace.xml
deleted file mode 100644
index 72eb0b42..00000000
--- a/.idea/workspace.xml
+++ /dev/null
@@ -1,337 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<project version="4">
-  <component name="ChangeListManager">
-    <list default="true" id="d8769e67-1d9f-419c-856d-87ff6eb36d18" name="Default" comment="">
-      <change beforePath="" afterPath="$PROJECT_DIR$/pkg/crinit/common/common.go" />
-      <change beforePath="" afterPath="$PROJECT_DIR$/pkg/crinit/options/options.go" />
-      <change beforePath="$PROJECT_DIR$/pkg/crinit/util/util.go" afterPath="$PROJECT_DIR$/pkg/crinit/util/util.go" />
-    </list>
-    <option name="EXCLUDED_CONVERTED_TO_IGNORED" value="true" />
-    <option name="TRACKING_ENABLED" value="true" />
-    <option name="SHOW_DIALOG" value="false" />
-    <option name="HIGHLIGHT_CONFLICTS" value="true" />
-    <option name="HIGHLIGHT_NON_ACTIVE_CHANGELIST" value="false" />
-    <option name="LAST_RESOLUTION" value="IGNORE" />
-  </component>
-  <component name="FileEditorManager">
-    <leaf>
-      <file leaf-file-name="register.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/register.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="-674">
-              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="zz_generated.conversion.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.conversion.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="0">
-              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="zz_generated.openapi.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.openapi.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="-42299">
-              <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="util.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/crinit/util/util.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="347">
-              <caret line="17" column="12" lean-forward="true" selection-start-line="17" selection-start-column="12" selection-end-line="17" selection-end-column="12" />
-              <folding>
-                <element signature="e#657#1006#0" expanded="true" />
-              </folding>
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="options.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/crinit/options/options.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="274">
-              <caret line="299" column="56" lean-forward="true" selection-start-line="299" selection-start-column="56" selection-end-line="299" selection-end-column="56" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="common.go" pinned="false" current-in-tab="false">
-        <entry file="file://$PROJECT_DIR$/pkg/crinit/common/common.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="274">
-              <caret line="283" column="5" lean-forward="false" selection-start-line="283" selection-start-column="5" selection-end-line="283" selection-end-column="5" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-      <file leaf-file-name="aggregated.go" pinned="false" current-in-tab="true">
-        <entry file="file://$PROJECT_DIR$/pkg/crinit/aggregated/aggregated.go">
-          <provider selected="true" editor-type-id="text-editor">
-            <state relative-caret-position="-989">
-              <caret line="55" column="0" lean-forward="true" selection-start-line="55" selection-start-column="0" selection-end-line="55" selection-end-column="0" />
-              <folding />
-            </state>
-          </provider>
-        </entry>
-      </file>
-    </leaf>
-  </component>
-  <component name="FindInProjectRecents">
-    <findStrings>
-      <find>createAPIServer</find>
-    </findStrings>
-  </component>
-  <component name="GOROOT" path="E:/software/go" />
-  <component name="Git.Settings">
-    <option name="RECENT_GIT_ROOT_PATH" value="$PROJECT_DIR$" />
-  </component>
-  <component name="IdeDocumentHistory">
-    <option name="CHANGED_PATHS">
-      <list>
-        <option value="$PROJECT_DIR$/pkg/crinit/util/util.go" />
-        <option value="$PROJECT_DIR$/pkg/crinit/common/common.go" />
-      </list>
-    </option>
-  </component>
-  <component name="JsBuildToolGruntFileManager" detection-done="true" sorting="DEFINITION_ORDER" />
-  <component name="JsBuildToolPackageJson" detection-done="true" sorting="DEFINITION_ORDER" />
-  <component name="JsGulpfileManager">
-    <detection-done>true</detection-done>
-    <sorting>DEFINITION_ORDER</sorting>
-  </component>
-  <component name="ProjectFrameBounds" extendedState="6">
-    <option name="x" value="1912" />
-    <option name="y" value="-8" />
-    <option name="width" value="1696" />
-    <option name="height" value="1066" />
-  </component>
-  <component name="ProjectInspectionProfilesVisibleTreeState">
-    <entry key="Project Default">
-      <profile-state>
-        <expanded-state>
-          <State>
-            <id />
-          </State>
-        </expanded-state>
-        <selected-state>
-          <State>
-            <id>CSS</id>
-          </State>
-        </selected-state>
-      </profile-state>
-    </entry>
-  </component>
-  <component name="ProjectView">
-    <navigator currentView="ProjectPane" proportions="" version="1">
-      <flattenPackages />
-      <showMembers />
-      <showModules />
-      <showLibraryContents />
-      <hideEmptyPackages />
-      <abbreviatePackageNames />
-      <autoscrollToSource />
-      <autoscrollFromSource />
-      <sortByType />
-      <manualOrder />
-      <foldersAlwaysOnTop value="true" />
-    </navigator>
-    <panes>
-      <pane id="Scope" />
-      <pane id="ProjectPane">
-        <subPane>
-          <expand>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-              <item name="crinit" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-              <item name="crinit" type="462c0819:PsiDirectoryNode" />
-              <item name="aggregated" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-              <item name="crinit" type="462c0819:PsiDirectoryNode" />
-              <item name="common" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-              <item name="crinit" type="462c0819:PsiDirectoryNode" />
-              <item name="options" type="462c0819:PsiDirectoryNode" />
-            </path>
-            <path>
-              <item name="cluster-registry" type="b2602c69:ProjectViewProjectNode" />
-              <item name="cluster-registry" type="462c0819:PsiDirectoryNode" />
-              <item name="pkg" type="462c0819:PsiDirectoryNode" />
-              <item name="crinit" type="462c0819:PsiDirectoryNode" />
-              <item name="util" type="462c0819:PsiDirectoryNode" />
-            </path>
-          </expand>
-          <select />
-        </subPane>
-      </pane>
-      <pane id="Scratches" />
-    </panes>
-  </component>
-  <component name="PropertiesComponent">
-    <property name="settings.editor.selected.configurable" value="configurable.group.language" />
-    <property name="configurable.Global.GOPATH.is.expanded" value="true" />
-    <property name="configurable.Project.GOPATH.is.expanded" value="true" />
-    <property name="go.sdk.automatically.set" value="true" />
-    <property name="last_opened_file_path" value="$PROJECT_DIR$" />
-    <property name="go.vendoring.notification.had.been.shown" value="true" />
-  </component>
-  <component name="RunDashboard">
-    <option name="ruleStates">
-      <list>
-        <RuleState>
-          <option name="name" value="ConfigurationTypeDashboardGroupingRule" />
-        </RuleState>
-        <RuleState>
-          <option name="name" value="StatusDashboardGroupingRule" />
-        </RuleState>
-      </list>
-    </option>
-  </component>
-  <component name="ShelveChangesManager" show_recycled="false">
-    <option name="remove_strategy" value="false" />
-  </component>
-  <component name="ToolWindowManager">
-    <frame x="1912" y="-8" width="1696" height="1066" extended-state="6" />
-    <editor active="true" />
-    <layout>
-      <window_info id="Project" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.17364532" sideWeight="0.5" order="0" side_tool="false" content_ui="combo" x="646" y="149" width="388" height="712" />
-      <window_info id="TODO" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="6" side_tool="false" content_ui="tabs" />
-      <window_info id="Event Log" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="true" show_stripe_button="true" weight="0.2008879" sideWeight="0.5" order="7" side_tool="true" content_ui="tabs" />
-      <window_info id="Database" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
-      <window_info id="Run" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="false" content_ui="tabs" />
-      <window_info id="Version Control" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="8" side_tool="false" content_ui="tabs" />
-      <window_info id="Structure" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Terminal" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="9" side_tool="false" content_ui="tabs" />
-      <window_info id="Debug" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="3" side_tool="false" content_ui="tabs" />
-      <window_info id="Favorites" active="false" anchor="left" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="2" side_tool="true" content_ui="tabs" />
-      <window_info id="Cvs" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="4" side_tool="false" content_ui="tabs" />
-      <window_info id="Message" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.33" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Commander" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="0" side_tool="false" content_ui="tabs" />
-      <window_info id="Inspection" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.4" sideWeight="0.5" order="5" side_tool="false" content_ui="tabs" />
-      <window_info id="Hierarchy" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="2" side_tool="false" content_ui="combo" />
-      <window_info id="Find" active="false" anchor="bottom" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.47025815" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-      <window_info id="Ant Build" active="false" anchor="right" auto_hide="false" internal_type="DOCKED" type="DOCKED" visible="false" show_stripe_button="true" weight="0.25" sideWeight="0.5" order="1" side_tool="false" content_ui="tabs" />
-    </layout>
-  </component>
-  <component name="TypeScriptGeneratedFilesManager">
-    <option name="version" value="1" />
-  </component>
-  <component name="VcsContentAnnotationSettings">
-    <option name="myLimit" value="2678400000" />
-  </component>
-  <component name="XDebuggerManager">
-    <breakpoint-manager />
-    <watches-manager />
-  </component>
-  <component name="editorHistoryManager">
-    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/register.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="-674">
-          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.conversion.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="0">
-          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/apis/clusterregistry/v1alpha1/zz_generated.openapi.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="-42299">
-          <caret line="0" column="0" lean-forward="false" selection-start-line="0" selection-start-column="0" selection-end-line="0" selection-end-column="0" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/crinit/util/util.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="347">
-          <caret line="17" column="12" lean-forward="true" selection-start-line="17" selection-start-column="12" selection-end-line="17" selection-end-column="12" />
-          <folding>
-            <element signature="e#657#1006#0" expanded="true" />
-          </folding>
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/crinit/options/options.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="274">
-          <caret line="299" column="56" lean-forward="true" selection-start-line="299" selection-start-column="56" selection-end-line="299" selection-end-column="56" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/crinit/common/common.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="274">
-          <caret line="283" column="5" lean-forward="false" selection-start-line="283" selection-start-column="5" selection-end-line="283" selection-end-column="5" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-    <entry file="file://$PROJECT_DIR$/pkg/crinit/aggregated/aggregated.go">
-      <provider selected="true" editor-type-id="text-editor">
-        <state relative-caret-position="-989">
-          <caret line="55" column="0" lean-forward="true" selection-start-line="55" selection-start-column="0" selection-end-line="55" selection-end-column="0" />
-          <folding />
-        </state>
-      </provider>
-    </entry>
-  </component>
-  <component name="masterDetails">
-    <states>
-      <state key="ScopeChooserConfigurable.UI">
-        <settings>
-          <splitter-proportions>
-            <option name="proportions">
-              <list>
-                <option value="0.2" />
-              </list>
-            </option>
-          </splitter-proportions>
-        </settings>
-      </state>
-    </states>
-  </component>
-</project>
\ No newline at end of file
diff --git a/pkg/crinit/aggregated/aggregated.go b/pkg/crinit/aggregated/aggregated.go
index 740674d3..a61f973d 100644
--- a/pkg/crinit/aggregated/aggregated.go
+++ b/pkg/crinit/aggregated/aggregated.go
@@ -33,6 +33,8 @@ import (
 	"k8s.io/client-go/util/cert"
 	"k8s.io/cluster-registry/pkg/apis/clusterregistry/v1alpha1"
 	"k8s.io/cluster-registry/pkg/crinit/util"
+	"k8s.io/cluster-registry/pkg/crinit/options"
+	"k8s.io/cluster-registry/pkg/crinit/common"
 	apiregv1beta1 "k8s.io/kube-aggregator/pkg/apis/apiregistration/v1beta1"
 	apiregclient "k8s.io/kube-aggregator/pkg/client/clientset_generated/clientset"
 
@@ -97,12 +99,12 @@ var (
 )
 
 type aggregatedClusterRegistryOptions struct {
-	util.SubcommandOptions
+	options.SubcommandOptions
 	apiServerServiceTypeString string
 }
 
 func (o *aggregatedClusterRegistryOptions) Bind(flags *pflag.FlagSet) {
-	flags.StringVar(&o.apiServerServiceTypeString, util.APIServerServiceTypeFlag,
+	flags.StringVar(&o.apiServerServiceTypeString, options.APIServerServiceTypeFlag,
 		string(v1.ServiceTypeNodePort),
 		"The type of service to create for the cluster registry. Options: 'LoadBalancer', 'NodePort'.")
 }
@@ -299,7 +301,7 @@ func createServiceAccount(clientset client.Interface,
 		ObjectMeta: metav1.ObjectMeta{
 			Name:      serviceAccountName,
 			Namespace: namespace,
-			Labels:    util.ComponentLabel,
+			Labels:    common.ComponentLabel,
 		},
 	}
 
@@ -324,7 +326,7 @@ func createClusterRole(clientset client.Interface,
 	cr := &rbacv1.ClusterRole{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:   clusterRoleName,
-			Labels: util.ComponentLabel,
+			Labels: common.ComponentLabel,
 		},
 		Rules: []rbacv1.PolicyRule{rule},
 	}
@@ -345,7 +347,7 @@ func createClusterRoleBindings(clientset client.Interface,
 	// cluster role.
 	crb, err := createClusterRoleBindingObject(clientset, apiServerCRBName,
 		rbacv1.ServiceAccountKind, serviceAccountName, namespace, rbacv1.GroupName,
-		"ClusterRole", clusterRoleName, util.ComponentLabel, dryRun)
+		"ClusterRole", clusterRoleName, common.ComponentLabel, dryRun)
 
 	if err != nil {
 		glog.V(4).Infof("Failed to create cluster role binding %v: %v", crb, err)
@@ -355,7 +357,7 @@ func createClusterRoleBindings(clientset client.Interface,
 	// Create cluster role binding for the system:auth-delegator cluster role.
 	crb, err = createClusterRoleBindingObject(clientset, authDelegatorCRBName,
 		rbacv1.ServiceAccountKind, serviceAccountName, namespace, rbacv1.GroupName,
-		"ClusterRole", "system:auth-delegator", util.ComponentLabel, dryRun)
+		"ClusterRole", "system:auth-delegator", common.ComponentLabel, dryRun)
 
 	if err != nil {
 		glog.V(4).Infof("Failed to create cluster role binding %v: %v", crb, err)
@@ -404,7 +406,7 @@ func createExtensionAPIServerAuthenticationRoleBinding(clientset client.Interfac
 	rb := &rbacv1.RoleBinding{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:   name,
-			Labels: util.ComponentLabel,
+			Labels: common.ComponentLabel,
 		},
 		Subjects: []rbacv1.Subject{
 			{
@@ -462,7 +464,7 @@ func createAPIServiceObject(clientset apiregclient.Interface,
 	apiSvc := &apiregv1beta1.APIService{
 		ObjectMeta: metav1.ObjectMeta{
 			Name:   apiServiceName,
-			Labels: util.ComponentLabel,
+			Labels: common.ComponentLabel,
 		},
 		Spec: apiregv1beta1.APIServiceSpec{
 			Service: &apiregv1beta1.ServiceReference{
diff --git a/pkg/crinit/common/common.go b/pkg/crinit/common/common.go
index 7bf83c5c..9f6a10ac 100644
--- a/pkg/crinit/common/common.go
+++ b/pkg/crinit/common/common.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+// Package common contains code shared between the subcommands of crinit.
 package common
 
 import (
@@ -63,7 +64,7 @@ var (
 )
 
 type EntityKeyPairs struct {
-	Ca     *triple.KeyPair
+	CA     *triple.KeyPair
 	Server *triple.KeyPair
 	Admin  *triple.KeyPair
 }
@@ -182,10 +183,10 @@ func GetClusterNodeIPs(clientset client.Interface) ([]string, error) {
 // CreateAPIServerCredentialsSecret helper to create secret object and return
 // the object.
 func CreateAPIServerCredentialsSecret(clientset client.Interface, namespace,
-credentialsName string, credentials Credentials, dryRun bool) (*v1.Secret, error) {
+credentialsName string, credentials *Credentials, dryRun bool) (*v1.Secret, error) {
 	// Build the secret object with API server credentials.
 	data := map[string][]byte{
-		"ca.crt":     certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Ca.Cert),
+		"ca.crt":     certutil.EncodeCertPEM(credentials.CertEntKeyPairs.CA.Cert),
 		"server.crt": certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Server.Cert),
 		"server.key": certutil.EncodePrivateKeyPEM(credentials.CertEntKeyPairs.Server.Key),
 	}
@@ -251,7 +252,7 @@ etcdPVStorageClass string, dryRun bool) (*v1.PersistentVolumeClaim, error) {
 	return clientset.CoreV1().PersistentVolumeClaims(namespace).Create(pvc)
 }
 
-// createAPIServer helper to create the apiserver deployment object and
+// CreateAPIServer helper to create the apiserver deployment object and
 // return the object.
 func CreateAPIServer(clientset client.Interface, namespace, name, serverImage,
 etcdImage, advertiseAddress, credentialsName, serviceAccountName string, hasHTTPBasicAuthFile,
diff --git a/pkg/crinit/options/options.go b/pkg/crinit/options/options.go
index 07e5c73b..359893cc 100644
--- a/pkg/crinit/options/options.go
+++ b/pkg/crinit/options/options.go
@@ -14,6 +14,7 @@ See the License for the specific language governing permissions and
 limitations under the License.
 */
 
+// Package options contains implemention for SubcommandOptions.
 package options
 
 import (
@@ -42,7 +43,7 @@ const (
 	APIServerNameSuffix             = "apiserver"
 	CredentialSuffix                = "credentials"
 
-	apiserverAdvertiseAddressFlag = "api-server-advertise-address"
+	APIServerAdvertiseAddressFlag = "api-server-advertise-address"
 	APIServerServiceTypeFlag      = "api-server-service-type"
 	apiserverPortFlag             = "api-server-port"
 )
@@ -65,12 +66,12 @@ type SubcommandOptions struct {
 	EtcdPVStorageClass        string
 	EtcdPersistentStorage     bool
 	DryRun                    bool
-	ApiServerOverridesString  string
-	ApiServerOverrides        map[string]string
-	ApiServerServiceType      v1.ServiceType
-	ApiServerAdvertiseAddress string
-	ApiServerNodePortPort     int32
-	ApiServerNodePortPortPtr  *int32
+	APIServerOverridesString  string
+	APIServerOverrides        map[string]string
+	APIServerServiceType      v1.ServiceType
+	APIServerAdvertiseAddress string
+	APIServerNodePortPort     int32
+	APIServerNodePortPortPtr  *int32
 }
 
 // BindCommon adds the common options that are shared by different
@@ -95,11 +96,11 @@ func (o *SubcommandOptions) BindCommon(flags *pflag.FlagSet, defaultServerImage,
 		"Use a persistent volume for etcd. Defaults to 'true'.")
 	flags.BoolVar(&o.DryRun, "dry-run", false,
 		"Run the command in dry-run mode, without making any server requests.")
-	flags.StringVar(&o.ApiServerOverridesString, "apiserver-arg-overrides", "",
+	flags.StringVar(&o.APIServerOverridesString, "apiserver-arg-overrides", "",
 		"Comma-separated list of cluster registry API server arguments to override, e.g., \"--arg1=value1,--arg2=value2...\"")
-	flags.StringVar(&o.ApiServerAdvertiseAddress, apiserverAdvertiseAddressFlag, "",
+	flags.StringVar(&o.APIServerAdvertiseAddress, APIServerAdvertiseAddressFlag, "",
 		"Preferred address at which to advertise the cluster registry API server NodePort service. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
-	flags.Int32Var(&o.ApiServerNodePortPort, apiserverPortFlag, 0,
+	flags.Int32Var(&o.APIServerNodePortPort, apiserverPortFlag, 0,
 		"Preferred port to use for the cluster registry API server NodePort service. Set to 0 to randomly assign a port. Valid only if '"+APIServerServiceTypeFlag+"=NodePort'.")
 }
 
@@ -118,36 +119,36 @@ func (o *SubcommandOptions) ValidateCommonOptions() error {
 	serverName = fmt.Sprintf("%s-%s", o.Name, APIServerNameSuffix)
 	serverCredName = fmt.Sprintf("%s-%s", serverName, CredentialSuffix)
 
-	if o.ApiServerServiceType != v1.ServiceTypeLoadBalancer &&
-		o.ApiServerServiceType != v1.ServiceTypeNodePort {
+	if o.APIServerServiceType != v1.ServiceTypeLoadBalancer &&
+		o.APIServerServiceType != v1.ServiceTypeNodePort {
 		return fmt.Errorf("invalid %s: %s, should be either %s or %s",
-			APIServerServiceTypeFlag, o.ApiServerServiceType,
+			APIServerServiceTypeFlag, o.APIServerServiceType,
 			v1.ServiceTypeLoadBalancer, v1.ServiceTypeNodePort)
 	}
 
-	if o.ApiServerAdvertiseAddress != "" {
-		ip := net.ParseIP(o.ApiServerAdvertiseAddress)
+	if o.APIServerAdvertiseAddress != "" {
+		ip := net.ParseIP(o.APIServerAdvertiseAddress)
 		if ip == nil {
 			return fmt.Errorf("invalid %s: %s, should be a valid ip address",
-				apiserverAdvertiseAddressFlag, o.ApiServerAdvertiseAddress)
+				APIServerAdvertiseAddressFlag, o.APIServerAdvertiseAddress)
 		}
-		if o.ApiServerServiceType != v1.ServiceTypeNodePort {
+		if o.APIServerServiceType != v1.ServiceTypeNodePort {
 			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
-				apiserverAdvertiseAddressFlag, APIServerServiceTypeFlag)
+				APIServerAdvertiseAddressFlag, APIServerServiceTypeFlag)
 		}
 	}
 
-	if o.ApiServerNodePortPort != 0 {
-		if o.ApiServerServiceType != v1.ServiceTypeNodePort {
+	if o.APIServerNodePortPort != 0 {
+		if o.APIServerServiceType != v1.ServiceTypeNodePort {
 			return fmt.Errorf("%s should be passed only with '%s=NodePort'",
 				apiserverPortFlag, APIServerServiceTypeFlag)
 		}
-		o.ApiServerNodePortPortPtr = &o.ApiServerNodePortPort
+		o.APIServerNodePortPortPtr = &o.APIServerNodePortPort
 	} else {
-		o.ApiServerNodePortPortPtr = nil
+		o.APIServerNodePortPortPtr = nil
 	}
 
-	if o.ApiServerNodePortPort < 0 || o.ApiServerNodePortPort > 65535 {
+	if o.APIServerNodePortPort < 0 || o.APIServerNodePortPort > 65535 {
 		return fmt.Errorf("Please provide a valid port number for %s", apiserverPortFlag)
 	}
 
@@ -156,12 +157,12 @@ func (o *SubcommandOptions) ValidateCommonOptions() error {
 
 // marshalOptions marshals options if necessary.
 func (o *SubcommandOptions) MarshalOptions() error {
-	if o.ApiServerOverridesString == "" {
+	if o.APIServerOverridesString == "" {
 		return nil
 	}
 
 	argsMap := make(map[string]string)
-	overrideArgs := strings.Split(o.ApiServerOverridesString, ",")
+	overrideArgs := strings.Split(o.APIServerOverridesString, ",")
 	for _, overrideArg := range overrideArgs {
 		splitArg := strings.SplitN(overrideArg, "=", 2)
 		if len(splitArg) != 2 {
@@ -175,7 +176,7 @@ func (o *SubcommandOptions) MarshalOptions() error {
 		argsMap[key] = val
 	}
 
-	o.ApiServerOverrides = argsMap
+	o.APIServerOverrides = argsMap
 
 	return nil
 }
@@ -208,8 +209,8 @@ func (o *SubcommandOptions) CreateService(cmdOut io.Writer,
 	glog.V(4).Info("Creating cluster registry API server service")
 
 	svc, ips, hostnames, err := common.CreateService(cmdOut, clientset,
-		o.ClusterRegistryNamespace, o.Name, o.ApiServerAdvertiseAddress,
-		o.ApiServerNodePortPortPtr, o.ApiServerServiceType, o.DryRun)
+		o.ClusterRegistryNamespace, o.Name, o.APIServerAdvertiseAddress,
+		o.APIServerNodePortPortPtr, o.APIServerServiceType, o.DryRun)
 
 	if err != nil {
 		return nil, nil, nil, err
@@ -245,7 +246,7 @@ func (o *SubcommandOptions) GenerateCredentials(cmdOut io.Writer, svcName string
 // CreateAPIServerCredentialsSecret creates the secret containing the
 // apiserver credentials passed in.
 func (o *SubcommandOptions) CreateAPIServerCredentialsSecret(clientset client.Interface,
-	credentials common.Credentials) error {
+	credentials *common.Credentials) error {
 
 	_, err := common.CreateAPIServerCredentialsSecret(clientset,
 		o.ClusterRegistryNamespace, serverCredName, credentials, o.DryRun)
@@ -285,8 +286,8 @@ func (o *SubcommandOptions) CreateAPIServer(cmdOut io.Writer, clientset client.I
 	pvc *v1.PersistentVolumeClaim, serviceAccountName string) error {
 	// Since only one IP address can be specified as advertise address,
 	// we arbitrarily pick the first available IP address.
-	// Pick user provided apiserverAdvertiseAddress over other available IP addresses.
-	advertiseAddress := o.ApiServerAdvertiseAddress
+	// Pick user provided APIServerAdvertiseAddress over other available IP addresses.
+	advertiseAddress := o.APIServerAdvertiseAddress
 	if advertiseAddress == "" && len(ips) > 0 {
 		advertiseAddress = ips[0]
 	}
@@ -297,7 +298,7 @@ func (o *SubcommandOptions) CreateAPIServer(cmdOut io.Writer, clientset client.I
 	_, err := common.CreateAPIServer(clientset, o.ClusterRegistryNamespace,
 		serverName, o.ServerImage, o.EtcdImage, advertiseAddress, serverCredName,
 		serviceAccountName, apiServerEnableHTTPBasicAuth, apiServerEnableTokenAuth,
-		o.ApiServerOverrides, pvc, aggregated, o.DryRun)
+		o.APIServerOverrides, pvc, aggregated, o.DryRun)
 
 	if err != nil {
 		glog.V(4).Infof("Failed to create API server: %v", err)
@@ -331,7 +332,7 @@ func (o *SubcommandOptions) UpdateKubeconfig(cmdOut io.Writer,
 
 	// If the service is nodeport, need to append the port to endpoint as it is
 	// non-standard port.
-	if o.ApiServerServiceType == v1.ServiceTypeNodePort {
+	if o.APIServerServiceType == v1.ServiceTypeNodePort {
 		endpoint = endpoint + ":" + strconv.Itoa(int(svc.Spec.Ports[0].NodePort))
 	}
 
diff --git a/pkg/crinit/standalone/standalone.go b/pkg/crinit/standalone/standalone.go
index a7b67d15..305ddc3f 100644
--- a/pkg/crinit/standalone/standalone.go
+++ b/pkg/crinit/standalone/standalone.go
@@ -26,6 +26,7 @@ import (
 	client "k8s.io/client-go/kubernetes"
 	"k8s.io/client-go/tools/clientcmd"
 	"k8s.io/cluster-registry/pkg/crinit/util"
+	"k8s.io/cluster-registry/pkg/crinit/options"
 
 	"github.com/golang/glog"
 	"github.com/spf13/cobra"
@@ -48,14 +49,14 @@ var (
 )
 
 type standaloneClusterRegistryOptions struct {
-	util.SubcommandOptions
+	options.SubcommandOptions
 	apiServerServiceTypeString   string
 	apiServerEnableHTTPBasicAuth bool
 	apiServerEnableTokenAuth     bool
 }
 
 func (o *standaloneClusterRegistryOptions) Bind(flags *pflag.FlagSet) {
-	flags.StringVar(&o.apiServerServiceTypeString, util.APIServerServiceTypeFlag,
+	flags.StringVar(&o.apiServerServiceTypeString, options.APIServerServiceTypeFlag,
 		string(v1.ServiceTypeLoadBalancer),
 		"The type of service to create for the cluster registry. Options: 'LoadBalancer', 'NodePort'.")
 	flags.BoolVar(&o.apiServerEnableHTTPBasicAuth, "apiserver-enable-basic-auth", false,
diff --git a/pkg/crinit/standalone/standalone_test.go b/pkg/crinit/standalone/standalone_test.go
index c6b417c3..1df68277 100644
--- a/pkg/crinit/standalone/standalone_test.go
+++ b/pkg/crinit/standalone/standalone_test.go
@@ -28,7 +28,8 @@ import (
 	"k8s.io/apimachinery/pkg/runtime"
 	"k8s.io/client-go/kubernetes/fake"
 	clientgotesting "k8s.io/client-go/testing"
-	"k8s.io/cluster-registry/pkg/crinit/util"
+	"k8s.io/cluster-registry/pkg/crinit/options"
+	"k8s.io/cluster-registry/pkg/crinit/common"
 )
 
 func TestValidateOptions(t *testing.T) {
@@ -45,7 +46,7 @@ func TestValidateOptions(t *testing.T) {
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeLoadBalancer)},
 			finalOpts: &standaloneClusterRegistryOptions{
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerServiceType: v1.ServiceTypeLoadBalancer},
 				apiServerServiceTypeString: string(v1.ServiceTypeLoadBalancer)},
 			errExpected: false,
@@ -54,7 +55,7 @@ func TestValidateOptions(t *testing.T) {
 			desc:        "NodePort service type supported",
 			initialOpts: &standaloneClusterRegistryOptions{apiServerServiceTypeString: string(v1.ServiceTypeNodePort)},
 			finalOpts: &standaloneClusterRegistryOptions{
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerServiceType: v1.ServiceTypeNodePort},
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort)},
 			errExpected: false,
@@ -68,7 +69,7 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise address supported with NodePort service type",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort),
-				SubcommandOptions: util.SubcommandOptions{
+		SubcommandOptions: options.SubcommandOptions{
 					APIServerAdvertiseAddress: "10.0.0.1"}},
 			errExpected: false,
 		},
@@ -76,7 +77,7 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise address not supported with non-NodePort service type",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeLoadBalancer),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerAdvertiseAddress: "10.0.0.1"}},
 			errExpected: true,
 		},
@@ -84,7 +85,7 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise address validated",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerAdvertiseAddress: "notAValidIP"}},
 			errExpected: true,
 		},
@@ -92,11 +93,11 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise port supported with NodePort service type",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerNodePortPort: testNodePort}},
 			finalOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerServiceType:     v1.ServiceTypeNodePort,
 					APIServerNodePortPort:    testNodePort,
 					APIServerNodePortPortPtr: &testNodePort}},
@@ -106,7 +107,7 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise port rejected with non-NodePort service type",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeLoadBalancer),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerNodePortPort: testNodePort}},
 			errExpected: true,
 		},
@@ -114,7 +115,7 @@ func TestValidateOptions(t *testing.T) {
 			desc: "advertise port rejected if out of range",
 			initialOpts: &standaloneClusterRegistryOptions{
 				apiServerServiceTypeString: string(v1.ServiceTypeNodePort),
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerNodePortPort: 100000}},
 			errExpected: true,
 		},
@@ -187,7 +188,7 @@ func TestMarshalOptions(t *testing.T) {
 	for _, tc := range testCases {
 		t.Run(tc.desc, func(t *testing.T) {
 			options := standaloneClusterRegistryOptions{
-				SubcommandOptions: util.SubcommandOptions{
+				SubcommandOptions: options.SubcommandOptions{
 					APIServerOverridesString: tc.overrideParams}}
 			err := options.MarshalOptions()
 			if tc.expectedErr == "" {
@@ -210,7 +211,7 @@ func TestCreateNamespace(t *testing.T) {
 	t.Run("simple namespace creation", func(t *testing.T) {
 		name := "test"
 		client := fake.NewSimpleClientset()
-		ns, err := util.CreateNamespace(client, name, false)
+		ns, err := common.CreateNamespace(client, name, false)
 		if ns == nil {
 			t.Error("namespace not created")
 		}
@@ -228,7 +229,7 @@ func TestCreateNamespace(t *testing.T) {
 	t.Run("dry run should not create namespace on server", func(t *testing.T) {
 		name := "test2"
 		client := fake.NewSimpleClientset()
-		ns, _ := util.CreateNamespace(client, name, true)
+		ns, _ := common.CreateNamespace(client, name, true)
 		if ns == nil {
 			t.Error("namespace not returned")
 		}
@@ -246,7 +247,7 @@ func TestCreateNamespace(t *testing.T) {
 		client.AddReactor("create", "namespaces", func(action clientgotesting.Action) (bool, runtime.Object, error) {
 			return true, nil, errors.New("error")
 		})
-		ns, err := util.CreateNamespace(client, name, false)
+		ns, err := common.CreateNamespace(client, name, false)
 		if err == nil {
 			t.Error("expected error, got none")
 		}
@@ -261,7 +262,7 @@ func TestCreateService(t *testing.T) {
 		name := "test"
 		client := fake.NewSimpleClientset()
 		buffer := &bytes.Buffer{}
-		util.CreateService(buffer, client, "ns", name, "", nil, v1.ServiceTypeClusterIP, false)
+		common.CreateService(buffer, client, "ns", name, "", nil, v1.ServiceTypeClusterIP, false)
 		if serverSvc, _ := client.CoreV1().Services("ns").Get(name, metav1.GetOptions{}); serverSvc == nil {
 			t.Error("should create service")
 		}
@@ -271,7 +272,7 @@ func TestCreateService(t *testing.T) {
 		name := "test"
 		client := fake.NewSimpleClientset()
 		buffer := &bytes.Buffer{}
-		svc, ips, hostnames, err := util.CreateService(buffer, client, "ns", name, "", nil, v1.ServiceTypeClusterIP, true)
+		svc, ips, hostnames, err := common.CreateService(buffer, client, "ns", name, "", nil, v1.ServiceTypeClusterIP, true)
 		if svc == nil {
 			t.Error("service not returned")
 		}
@@ -360,7 +361,7 @@ func TestCreateService(t *testing.T) {
 			})
 
 			buffer := &bytes.Buffer{}
-			svc, ips, hostnames, _ := util.CreateService(buffer, client, tc.namespace, tc.name, tc.advertiseAddress, &tc.advertisePort, tc.serviceType, false)
+			svc, ips, hostnames, _ := common.CreateService(buffer, client, tc.namespace, tc.name, tc.advertiseAddress, &tc.advertisePort, tc.serviceType, false)
 
 			if svc == nil {
 				t.Error("service not returned")
@@ -410,7 +411,7 @@ func TestCreateService(t *testing.T) {
 				return true, nil, errors.New("error")
 			})
 			buffer := &bytes.Buffer{}
-			svc, ips, hostnames, err := util.CreateService(buffer, client, "ns", "test", "", nil, tc.serviceType, false)
+			svc, ips, hostnames, err := common.CreateService(buffer, client, "ns", "test", "", nil, tc.serviceType, false)
 			if err == nil {
 				t.Error("Expected error, got none")
 			}
@@ -503,7 +504,7 @@ func TestGetClusterNodeIPs(t *testing.T) {
 	for _, tc := range testCases {
 		t.Run(tc.desc, func(t *testing.T) {
 			client := fake.NewSimpleClientset(tc.nodes...)
-			got, _ := util.GetClusterNodeIPs(client)
+			got, _ := common.GetClusterNodeIPs(client)
 			want := tc.wantedIPs
 			sort.Strings(got)
 			sort.Strings(want)
diff --git a/pkg/crinit/util/util.go b/pkg/crinit/util/util.go
index bb409c17..18a5dac4 100644
--- a/pkg/crinit/util/util.go
+++ b/pkg/crinit/util/util.go
@@ -77,7 +77,7 @@ func GenCerts(svcNamespace, name, svcName, localDNSZoneName string,
 		return nil, fmt.Errorf("failed to create client key and certificate for an admin: %v", err)
 	}
 	return &common.EntityKeyPairs{
-		Ca:     ca,
+		CA:     ca,
 		Server: server,
 		Admin:  admin,
 	}, nil
@@ -116,7 +116,7 @@ kubeConfigPath string, credentials *common.Credentials, dryRun bool) error {
 	}
 
 	cluster.Server = endpoint
-	cluster.CertificateAuthorityData = certutil.EncodeCertPEM(credentials.CertEntKeyPairs.Ca.Cert)
+	cluster.CertificateAuthorityData = certutil.EncodeCertPEM(credentials.CertEntKeyPairs.CA.Cert)
 
 	// Populate credentials.
 	authInfo := clientcmdapi.NewAuthInfo()
@@ -199,5 +199,5 @@ func GetCAKeyPair(credentials *common.Credentials) *triple.KeyPair {
 		return nil
 	}
 
-	return credentials.CertEntKeyPairs.Ca
+	return credentials.CertEntKeyPairs.CA
 }

From cfa52a1cbeb80c6b979a8deb38d72b0609648c38 Mon Sep 17 00:00:00 2001
From: wackxu <xushiwei5@huawei.com>
Date: Wed, 10 Jan 2018 17:14:53 +0800
Subject: [PATCH 3/4] fix cycle in the dependency

---
 pkg/crinit/common/common.go   | 14 +-------------
 pkg/crinit/options/options.go |  6 +++---
 pkg/crinit/util/util.go       | 26 +++++++++++++++++++-------
 3 files changed, 23 insertions(+), 23 deletions(-)

diff --git a/pkg/crinit/common/common.go b/pkg/crinit/common/common.go
index 9f6a10ac..075234ca 100644
--- a/pkg/crinit/common/common.go
+++ b/pkg/crinit/common/common.go
@@ -33,7 +33,6 @@ import (
 
 	certutil "k8s.io/client-go/util/cert"
 	"k8s.io/cluster-registry/pkg/crinit/util"
-	"k8s.io/client-go/util/cert/triple"
 )
 
 const (
@@ -63,18 +62,7 @@ var (
 	}
 )
 
-type EntityKeyPairs struct {
-	CA     *triple.KeyPair
-	Server *triple.KeyPair
-	Admin  *triple.KeyPair
-}
 
-type Credentials struct {
-	Username        string
-	Password        string
-	Token           string
-	CertEntKeyPairs *EntityKeyPairs
-}
 
 // CreateNamespace helper to create the cluster registry namespace object and return
 // the object.
@@ -183,7 +171,7 @@ func GetClusterNodeIPs(clientset client.Interface) ([]string, error) {
 // CreateAPIServerCredentialsSecret helper to create secret object and return
 // the object.
 func CreateAPIServerCredentialsSecret(clientset client.Interface, namespace,
-credentialsName string, credentials *Credentials, dryRun bool) (*v1.Secret, error) {
+credentialsName string, credentials *util.Credentials, dryRun bool) (*v1.Secret, error) {
 	// Build the secret object with API server credentials.
 	data := map[string][]byte{
 		"ca.crt":     certutil.EncodeCertPEM(credentials.CertEntKeyPairs.CA.Cert),
diff --git a/pkg/crinit/options/options.go b/pkg/crinit/options/options.go
index 359893cc..fd4d7f51 100644
--- a/pkg/crinit/options/options.go
+++ b/pkg/crinit/options/options.go
@@ -226,7 +226,7 @@ func (o *SubcommandOptions) CreateService(cmdOut io.Writer,
 // GenerateCredentials creates the credentials for apiserver secret.
 func (o *SubcommandOptions) GenerateCredentials(cmdOut io.Writer, svcName string,
 	ips, hostnames []string, apiServerEnableHTTPBasicAuth,
-	apiServerEnableTokenAuth bool) (*common.Credentials, error) {
+	apiServerEnableTokenAuth bool) (*util.Credentials, error) {
 
 	fmt.Fprint(cmdOut,
 		"Creating cluster registry objects (credentials, persistent volume claim)...")
@@ -246,7 +246,7 @@ func (o *SubcommandOptions) GenerateCredentials(cmdOut io.Writer, svcName string
 // CreateAPIServerCredentialsSecret creates the secret containing the
 // apiserver credentials passed in.
 func (o *SubcommandOptions) CreateAPIServerCredentialsSecret(clientset client.Interface,
-	credentials *common.Credentials) error {
+	credentials *util.Credentials) error {
 
 	_, err := common.CreateAPIServerCredentialsSecret(clientset,
 		o.ClusterRegistryNamespace, serverCredName, credentials, o.DryRun)
@@ -315,7 +315,7 @@ func (o *SubcommandOptions) CreateAPIServer(cmdOut io.Writer, clientset client.I
 // while printing and logging progress.
 func (o *SubcommandOptions) UpdateKubeconfig(cmdOut io.Writer,
 	pathOptions *clientcmd.PathOptions, svc *v1.Service, ips, hostnames []string,
-	credentials *common.Credentials) error {
+	credentials *util.Credentials) error {
 
 	fmt.Fprint(cmdOut, "Updating kubeconfig...")
 	glog.V(4).Info("Updating kubeconfig")
diff --git a/pkg/crinit/util/util.go b/pkg/crinit/util/util.go
index 18a5dac4..33e188f6 100644
--- a/pkg/crinit/util/util.go
+++ b/pkg/crinit/util/util.go
@@ -30,7 +30,6 @@ import (
 	clientcmdapi "k8s.io/client-go/tools/clientcmd/api"
 	certutil "k8s.io/client-go/util/cert"
 	"k8s.io/client-go/util/cert/triple"
-	"k8s.io/cluster-registry/pkg/crinit/common"
 	"github.com/golang/glog"
 )
 
@@ -39,11 +38,24 @@ const (
 	AdminCN     = "admin"
 )
 
+type EntityKeyPairs struct {
+	CA     *triple.KeyPair
+	Server *triple.KeyPair
+	Admin  *triple.KeyPair
+}
+
+type Credentials struct {
+	Username        string
+	Password        string
+	Token           string
+	CertEntKeyPairs *EntityKeyPairs
+}
+
 // generateCredentials helper to create the certs for the apiserver.
 func GenerateCredentials(svcNamespace, name, svcName, localDNSZoneName string,
-	ips, hostnames []string, enableHTTPBasicAuth, enableTokenAuth bool) (*common.Credentials, error) {
+	ips, hostnames []string, enableHTTPBasicAuth, enableTokenAuth bool) (*Credentials, error) {
 
-	credentials := common.Credentials{
+	credentials := Credentials{
 		Username: AdminCN,
 	}
 	if enableHTTPBasicAuth {
@@ -62,7 +74,7 @@ func GenerateCredentials(svcNamespace, name, svcName, localDNSZoneName string,
 }
 
 func GenCerts(svcNamespace, name, svcName, localDNSZoneName string,
-	ips, hostnames []string) (*common.EntityKeyPairs, error) {
+	ips, hostnames []string) (*EntityKeyPairs, error) {
 	ca, err := triple.NewCA(name)
 
 	if err != nil {
@@ -76,7 +88,7 @@ func GenCerts(svcNamespace, name, svcName, localDNSZoneName string,
 	if err != nil {
 		return nil, fmt.Errorf("failed to create client key and certificate for an admin: %v", err)
 	}
-	return &common.EntityKeyPairs{
+	return &EntityKeyPairs{
 		CA:     ca,
 		Server: server,
 		Admin:  admin,
@@ -99,7 +111,7 @@ func ArgMapsToArgStrings(argsMap, overrides map[string]string) []string {
 // UpdateKubeconfig helper to update the kubeconfig file based on input
 // parameters.
 func UpdateKubeconfig(pathOptions *clientcmd.PathOptions, name, endpoint,
-kubeConfigPath string, credentials *common.Credentials, dryRun bool) error {
+kubeConfigPath string, credentials *Credentials, dryRun bool) error {
 
 	pathOptions.LoadingRules.ExplicitPath = kubeConfigPath
 	kubeconfig, err := pathOptions.GetStartingConfig()
@@ -193,7 +205,7 @@ func AuthFileContents(username, authSecret string) []byte {
 
 // GetCAKeyPair retrieves the CA key pair stored in the internal credentials
 // structure.
-func GetCAKeyPair(credentials *common.Credentials) *triple.KeyPair {
+func GetCAKeyPair(credentials *Credentials) *triple.KeyPair {
 	if credentials == nil {
 		glog.V(4).Info("credentials argument is nil!")
 		return nil

From 7e6530b589e8122af345078f634fe26a8d6c548f Mon Sep 17 00:00:00 2001
From: wackxu <xushiwei5@huawei.com>
Date: Thu, 11 Jan 2018 09:39:08 +0800
Subject: [PATCH 4/4] update bazel

---
 pkg/crinit/aggregated/BUILD.bazel |  2 ++
 pkg/crinit/common/BUILD.bazel     | 19 +++++++++++++++++++
 pkg/crinit/options/BUILD.bazel    | 17 +++++++++++++++++
 pkg/crinit/standalone/BUILD.bazel |  4 +++-
 pkg/crinit/util/BUILD.bazel       |  7 -------
 5 files changed, 41 insertions(+), 8 deletions(-)
 create mode 100644 pkg/crinit/common/BUILD.bazel
 create mode 100644 pkg/crinit/options/BUILD.bazel

diff --git a/pkg/crinit/aggregated/BUILD.bazel b/pkg/crinit/aggregated/BUILD.bazel
index 60755147..b68dc700 100644
--- a/pkg/crinit/aggregated/BUILD.bazel
+++ b/pkg/crinit/aggregated/BUILD.bazel
@@ -7,6 +7,8 @@ go_library(
     visibility = ["//visibility:public"],
     deps = [
         "//pkg/apis/clusterregistry/v1alpha1:go_default_library",
+        "//pkg/crinit/common:go_default_library",
+        "//pkg/crinit/options:go_default_library",
         "//pkg/crinit/util:go_default_library",
         "//vendor/github.com/golang/glog:go_default_library",
         "//vendor/github.com/spf13/cobra:go_default_library",
diff --git a/pkg/crinit/common/BUILD.bazel b/pkg/crinit/common/BUILD.bazel
new file mode 100644
index 00000000..a1b764d0
--- /dev/null
+++ b/pkg/crinit/common/BUILD.bazel
@@ -0,0 +1,19 @@
+load("@io_bazel_rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "go_default_library",
+    srcs = ["common.go"],
+    importpath = "k8s.io/cluster-registry/pkg/crinit/common",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/crinit/util:go_default_library",
+        "//vendor/k8s.io/api/apps/v1beta1:go_default_library",
+        "//vendor/k8s.io/api/core/v1:go_default_library",
+        "//vendor/k8s.io/apimachinery/pkg/api/resource:go_default_library",
+        "//vendor/k8s.io/apimachinery/pkg/apis/meta/v1:go_default_library",
+        "//vendor/k8s.io/apimachinery/pkg/util/intstr:go_default_library",
+        "//vendor/k8s.io/apimachinery/pkg/util/wait:go_default_library",
+        "//vendor/k8s.io/client-go/kubernetes:go_default_library",
+        "//vendor/k8s.io/client-go/util/cert:go_default_library",
+    ],
+)
diff --git a/pkg/crinit/options/BUILD.bazel b/pkg/crinit/options/BUILD.bazel
new file mode 100644
index 00000000..f1a0fc3d
--- /dev/null
+++ b/pkg/crinit/options/BUILD.bazel
@@ -0,0 +1,17 @@
+load("@io_bazel_rules_go//go:def.bzl", "go_library")
+
+go_library(
+    name = "go_default_library",
+    srcs = ["options.go"],
+    importpath = "k8s.io/cluster-registry/pkg/crinit/options",
+    visibility = ["//visibility:public"],
+    deps = [
+        "//pkg/crinit/common:go_default_library",
+        "//pkg/crinit/util:go_default_library",
+        "//vendor/github.com/golang/glog:go_default_library",
+        "//vendor/github.com/spf13/pflag:go_default_library",
+        "//vendor/k8s.io/api/core/v1:go_default_library",
+        "//vendor/k8s.io/client-go/kubernetes:go_default_library",
+        "//vendor/k8s.io/client-go/tools/clientcmd:go_default_library",
+    ],
+)
diff --git a/pkg/crinit/standalone/BUILD.bazel b/pkg/crinit/standalone/BUILD.bazel
index 592a42db..10110c94 100644
--- a/pkg/crinit/standalone/BUILD.bazel
+++ b/pkg/crinit/standalone/BUILD.bazel
@@ -6,6 +6,7 @@ go_library(
     importpath = "k8s.io/cluster-registry/pkg/crinit/standalone",
     visibility = ["//visibility:public"],
     deps = [
+        "//pkg/crinit/options:go_default_library",
         "//pkg/crinit/util:go_default_library",
         "//vendor/github.com/golang/glog:go_default_library",
         "//vendor/github.com/spf13/cobra:go_default_library",
@@ -22,7 +23,8 @@ go_test(
     importpath = "k8s.io/cluster-registry/pkg/crinit/standalone",
     library = ":go_default_library",
     deps = [
-        "//pkg/crinit/util:go_default_library",
+        "//pkg/crinit/common:go_default_library",
+        "//pkg/crinit/options:go_default_library",
         "//vendor/k8s.io/api/core/v1:go_default_library",
         "//vendor/k8s.io/apimachinery/pkg/apis/meta/v1:go_default_library",
         "//vendor/k8s.io/apimachinery/pkg/runtime:go_default_library",
diff --git a/pkg/crinit/util/BUILD.bazel b/pkg/crinit/util/BUILD.bazel
index dc4116ed..49d25559 100644
--- a/pkg/crinit/util/BUILD.bazel
+++ b/pkg/crinit/util/BUILD.bazel
@@ -7,15 +7,8 @@ go_library(
     visibility = ["//visibility:public"],
     deps = [
         "//vendor/github.com/golang/glog:go_default_library",
-        "//vendor/github.com/spf13/pflag:go_default_library",
-        "//vendor/k8s.io/api/apps/v1beta1:go_default_library",
         "//vendor/k8s.io/api/core/v1:go_default_library",
-        "//vendor/k8s.io/apimachinery/pkg/api/resource:go_default_library",
-        "//vendor/k8s.io/apimachinery/pkg/apis/meta/v1:go_default_library",
-        "//vendor/k8s.io/apimachinery/pkg/util/intstr:go_default_library",
         "//vendor/k8s.io/apimachinery/pkg/util/uuid:go_default_library",
-        "//vendor/k8s.io/apimachinery/pkg/util/wait:go_default_library",
-        "//vendor/k8s.io/client-go/kubernetes:go_default_library",
         "//vendor/k8s.io/client-go/tools/clientcmd:go_default_library",
         "//vendor/k8s.io/client-go/tools/clientcmd/api:go_default_library",
         "//vendor/k8s.io/client-go/util/cert:go_default_library",