docs: add the governance and other improvements

GOVERNANCE.md

@@ -0,0 +1,161 @@
+# KubeFleet Project Governance
+
+The KubeFleet project is dedicated to solving the challenges stemming from running and managing cloud native applications
+on multi-clusters environment which includes multi-cloud and hybrid-cloud.  
+This governance explains how the project is run.
+
+- [Values](#values)
+- [Maintainers](#maintainers)
+- [Becoming a Maintainer](#becoming-a-maintainer)
+- [Meetings](#meetings)
+- [CNCF Resources](#cncf-resources)
+- [Code of Conduct Enforcement](#code-of-conduct)
+- [Security Response Team](#security-response-team)
+- [Voting](#voting)
+- [Modifications](#modifying-this-charter)
+
+## Values
+
+The KubeFleet and its leadership embrace the following values:
+
+* Openness: Communication and decision-making happens in the open and is discoverable for future
+  reference. As much as possible, all discussions and work take place in public
+  forums and open repositories.
+
+* Fairness: All stakeholders have the opportunity to provide feedback and submit
+  contributions, which will be considered on their merits.
+
+* Community over Product or Company: Sustaining and growing our community takes
+  priority over shipping code or sponsors' organizational goals.  Each
+  contributor participates in the project as an individual.
+
+* Inclusivity: We innovate through different perspectives and skill sets, which
+  can only be accomplished in a welcoming and respectful environment.
+
+* Participation: Responsibilities within the project are earned through
+  participation, and there is a clear path up the contributor ladder into leadership
+  positions.
+
+## Maintainers
+
+KubeFleet Maintainers have write access to the [project GitHub repository](https://github.com/kubefleet-dev/kubefleet).
+They can merge their own patches or patches from others. The current maintainers
+can be found in [MAINTAINERS.md](./MAINTAINERS.md).  Maintainers collectively manage the project's
+resources and contributors.
+
+This privilege is granted with some expectation of responsibility: maintainers
+are people who care about the KubeFleet project and want to help it grow and
+improve. A maintainer is not just someone who can make changes, but someone who
+has demonstrated their ability to collaborate with the team, get the most
+knowledgeable people to review code and docs, contribute high-quality code, and
+follow through to fix issues (in code or tests).
+
+A maintainer is a contributor to the project's success and a citizen helping
+the project succeed.
+
+The collective team of all Maintainers is known as the Maintainer Council, which
+is the governing body for the project.
+
+### Becoming a Maintainer
+
+To become a Maintainer you should be able to demonstrate the following:
+  * commitment to the project:
+    * participate in discussions, contributions, code and documentation reviews for 3 months or more,
+    * perform reviews for 5 non-trivial pull requests,
+    * contribute 5 non-trivial pull requests and have them merged,
+  * ability to write quality code and/or documentation,
+  * ability to collaborate with the team,
+  * understanding of how the team works (policies, processes for testing and code review, etc),
+  * understanding of the project's code base and coding and documentation style.
+
+A new Maintainer MUST be proposed by an existing maintainer by sending a message to the
+[developer mailing list](https://groups.google.com/g/kubefleet-dev). A simple majority vote of existing Maintainers
+approves the application.  Maintainers nominations will be evaluated without prejudice
+to employer or demographics.
+
+Maintainers who are selected will be granted the necessary GitHub rights,
+and invited to the [private maintainer mailing list](https://groups.google.com/g/kubefleet-dev-private).
+
+### Bootstrapping Maintainers
+
+To bootstrap the process, 3 maintainers are defined in the initial PR adding
+this to the repository that have been working in this project for the past three years. 
+
+
+### Size of the Maintainers
+
+We will keep the total number of maintainers to be equal or less than seven to make sure that all maintainers are actively contributing to the project's success.
+
+### Removing a Maintainer
+
+Maintainers may resign at any time if they feel that they will not be able to
+continue fulfilling their project duties.
+
+Maintainers may also be removed after being inactive, failure to fulfill their 
+Maintainer responsibilities, violating the Code of Conduct, or other reasons.
+Inactivity is defined as a period of very low or no activity in the project 
+for 6 months or more, with no definite schedule to return to full Maintainer 
+activity.
+
+A Maintainer may be removed at any time by a 2/3 vote of the remaining maintainers.
+
+Depending on the reason for removal, a Maintainer may be converted to Emeritus
+status.  Emeritus Maintainers will still be consulted on some project matters,
+and can be rapidly returned to Maintainer status if their availability changes.
+
+## Meetings
+
+Time zones permitting, Maintainers are expected to participate in the public
+developer meeting, which occurs weekly. The meeting is open to all community.
+
+Maintainers will also have closed meetings in order to discuss security reports
+or Code of Conduct violations.  Such meetings should be scheduled by any
+Maintainer on receipt of a security issue or CoC report.  All current Maintainers
+must be invited to such closed meetings, except for any Maintainer who is
+accused of a CoC violation.
+
+## CNCF Resources
+
+Any Maintainer may suggest a request for CNCF resources, either in the
+[mailing list](https://groups.google.com/g/kubefleet-dev), or during a
+meeting.  A simple majority of Maintainers approves the request.  The Maintainers
+may also choose to delegate working with the CNCF to non-Maintainer community
+members, who will then be added to the [CNCF's Maintainer List](https://github.com/cncf/foundation/blob/main/project-maintainers.csv)
+for that purpose.
+
+## Code of Conduct
+
+[Code of Conduct](./CODE_OF_CONDUCT.md)
+violations by community members will be discussed and resolved
+on the [private Maintainer mailing list](https://groups.google.com/g/kubefleet-dev-private).  If a Maintainer is directly involved
+in the report, the Maintainers will instead designate two Maintainers to work
+with the CNCF Code of Conduct Committee in resolving it.
+
+## Security Response Team
+
+The Maintainers will appoint a Security Response Team to handle security reports.
+This committee may simply consist of the Maintainer Council themselves.  If this
+responsibility is delegated, the Maintainers will appoint a team of at least two 
+contributors to handle it.  The Maintainers will review who is assigned to this
+at least once a year.
+
+The Security Response Team is responsible for handling all reports of security
+holes and breaches according to the [security policy](SECURITY.md).
+
+## Voting
+
+While most business in KubeFleet is conducted by "[lazy consensus](https://community.apache.org/committers/lazyConsensus.html)", 
+periodically the Maintainers may need to vote on specific actions or changes.
+A vote can be taken on [the developer mailing list](https://groups.google.com/g/kubefleet-dev) or
+[the private Maintainer mailing list](https://groups.google.com/g/kubefleet-dev-private) for security or conduct matters.  
+Votes may also be taken at [the developer meeting](#meetings)..  Any Maintainer may
+demand a vote be taken.
+
+Most votes require a simple majority of all Maintainers to succeed, except where
+otherwise noted.  Two-thirds majority votes mean at least two-thirds of all 
+existing maintainers.
+
+## Modifying this Charter
+
+Changes to this Governance and its supporting documents MUST be approved by 
+a 2/3 vote of the Maintainers.

MAINTAINERS.md

@@ -1,11 +1,7 @@
 # The KubeFleet Maintainers
 
-| Maintainer               | GitHub Username                                     | 
-|--------------------------|-----------------------------------------------------|
-| Ryan Zhang               | [@ryanzhang-oss](https://github.com/ryanzhang-oss)  | 
-| Liqian Luo               | [@circy9](https://github.com/circy9)                | 
-| Zhiying Lin              | [@zhiying-lin](https://github.com/zhiying-lin)      | 
-| Chen Yu                  | [@michaelawyu](https://github.com/michaelawyu)      | 
-| Arvind Thirumurugan      | [@arvindthiru](https://github.com/Arvindthiru)      | 
-| Wantong Jiang            | [@jwtty](https://github.com/jwtty)                  | 
-| Britania Rodriguez Reyes | [@britaniar](https://github.com/britaniar)          | 
+| Maintainer  | Organization | GitHub Username                                       | 
+|-------------|--------------|-------------------------------------------------------|
+| Ryan Zhang  | Microsoft    | [@ryanzhang-oss](https://github.com/ryanzhang-oss)    | 
+| Zhiying Lin | Microsoft    | [@zhiying-lin](https://github.com/zhiying-lin)        | 
+| Chen Yu     | Microsoft    | [@michaelawyu](https://github.com/michaelawyu)        |

README.md

@@ -4,85 +4,13 @@
 [![Go Report Card][2]][3]
 ![Build Status][4]
 ![GitHub go.mod Go version][5]
-[![codecov][6]][7]
+[![Slack](https://img.shields.io/badge/slack-join-brightgreen)](https://slack.cncf.io)
 
-KubeFleet is an open source solution that works on any Kubernetes cluster. We are a Cloud Native Computing Foundation sandbox project that is working towards the vision where we will eventually be able to treat each Kubernetes cluster as [cattle](https://cloudscaling.com/blog/cloud-computing/the-history-of-pets-vs-cattle/).
+![cncf_logo](screenshots/cncf-logo.png)
 
-* Join/Leave is a feature that allows a member cluster to join and leave a fleet by registering a custom resource on the fleet's control plane (the hub cluster).
-* Workload Orchestration is a feature that allows users to create resources on the hub cluster and then selectively propagate these resources to desired member clusters in the fleet.
+KubeFleet is a sandbox project of the [Cloud Native Computing Foundation](https://cncf.io/) (CNCF) that works on any Kubernetes cluster.
+We are working towards the vision where we will eventually be able to treat each Kubernetes cluster as a [cattle](https://cloudscaling.com/blog/cloud-computing/the-history-of-pets-vs-cattle/).
 
-## Concepts
-
-**Fleet:** A multi cluster solution that users use to manage Kubernetes clusters.
-
-**Hub cluster:** A Kubernetes cluster that hosts the control plane of the fleet.
-
-**Member cluster:** A Kubernetes cluster that is part of the fleet.
-
-**Fleet-system Namespace:** A reserved namespace in all clusters for running Fleet networking controllers and putting internal resources.
-
-## Quick Start
-
-This section provides a tutorial which explains how to setup and make use of the capabilities provided by fleet
-
-### Prerequisites
-
-- [Docker](https://docs.docker.com/get-docker/)
-- [Helm](https://github.com/helm/helm#install)
-- [Go](https://golang.org/)
-- [kubectl](https://kubernetes.io/docs/tasks/tools/install-kubectl/)
-- [kind](https://kind.sigs.k8s.io/)
-
-## Steps to run agents on Kind clusters
-
-export this variable which specifies the number of member clusters that will be created.
-
-```shell
-export MEMBER_CLUSTER_COUNT=1
-```
-
-from the root directory of the repo run the following command, by default a hub cluster gets created which is the control plane for fleet (**The makefile uses kindest/node:v1.31.0**)
-
-```shell
-make setup-clusters
-```
-
-then switch context to the hub cluster, 
-
-```shell
-kubectl config use-context kind-hub  
-```
-
-create a member cluster CR on the hub cluster which allows the member cluster created on the setup step to join the fleet,
-
-```
-apiVersion: cluster.kubernetes-fleet.io/v1beta1
-kind: MemberCluster
-metadata:
-  name: kind-cluster-1
-spec:
-  identity:
-    name: fleet-member-agent-cluster-1
-    kind: ServiceAccount
-    namespace: fleet-system
-    apiGroup: ""
-```
-
-get the membercluster to see if it has joined the fleet,
-
-```shell
-kubectl get memberclusters -A      
-```
-
-output is supposed to look like,
-
-```shell
-NAME             JOINED   AGE
-kind-cluster-1   True     25m
-```
-
-Now we can go ahead and use the workload orchestration capabilities offered by fleet, please start with the [concept](https://github.com/Azure/fleet/tree/main/docs/concepts/README.md) to 
-understand the details of various features offered by fleet.
 
 ## Code of Conduct
 
@@ -95,13 +23,19 @@ The [contribution guide](CONTRIBUTING.md) covers everything you need to know abo
 ## Support
 For more information, see [SUPPORT.md](SUPPORT.md).
 
+## Contact
+
+If you have questions, feel free to reach out to us in the following ways:
+
+- [mailing list](https://groups.google.com/g/kubefleet-dev)
+- [slack](https://cloud-native.slack.com/archives/C08KR7589R8) | [Join](https://slack.cncf.io/)
+
+
 [1]:  https://img.shields.io/github/v/release/Azure/fleet
 [2]:  https://goreportcard.com/badge/go.goms.io/fleet
 [3]:  https://goreportcard.com/report/go.goms.io/fleet
 [4]:  https://codecov.io/gh/Azure/fleet/branch/main/graph/badge.svg?token=D3mtbzACjC
 [5]:  https://img.shields.io/github/go-mod/go-version/Azure/fleet
-[6]: https://opensource.microsoft.com/codeofconduct/
-[7]: https://opensource.microsoft.com/codeofconduct/faq
 
 Copyright The KubeFleet Authors.
 The Linux Foundation® (TLF) has registered trademarks and uses trademarks. For a list of TLF trademarks, see [Trademark Usage](https://www.linuxfoundation.org/trademark-usage/).

ROADMAP.md

@@ -13,12 +13,13 @@
 ## Support scheduling for namespaced resources (heterogeneous namespace)
 - Support independent scheduling policy for namespaced resources
   - e.g. The application admin can pick one workload in a namespace to cluster A while the other workload in the same namespace to cluster B.
+
+## Support Job dispatching
+- Support the use case to use the fleet as a super computer to run hyper scale applications
 
 ## Dynamic scheduling
 - De-scheduler for the fleet
   - The de-scheduler would move the workload to the right cluster if the cluster is not the best fit for the workload anymore.
-- Cordon a cluster
-  - The fleet admin can cordon a cluster to move all the workloads off the cluster.
 - Rebalance the workload
   - The application admin can rebalance the workload to make sure the workload is spread evenly across the clusters.
 
@@ -34,3 +35,6 @@
 ## Support Spread mode for workload
 - The application admin can specify a spread mode for their workload.
     - The move between clusters would follow the max-unavailable/min-available pods rule.
+
+## Support identity federation
+- The member agent can assume the identity of the operator on the hub cluster and not using admin privilege when applying the resources.