diff --git a/sig-architecture/concepts-and-designs/access-control-zh.md b/sig-architecture/concepts-and-designs/access-control-zh.md
new file mode 100644
index 00000000..007d057b
--- /dev/null
+++ b/sig-architecture/concepts-and-designs/access-control-zh.md
@@ -0,0 +1,137 @@
+## 权限控制
+
+### RBAC
+
+https://kubernetes.io/docs/reference/access-authn-authz/rbac/
+
+![](../images/rbac-example.png)
+
+
+### KS中的租户与资源层级
+
+![](../images/resource-hierarchy.png)
+
+
+Platform: users、workspaces、clusters
+
+Cluster: nodes、workloads、namespaces
+
+Workspace: namespaces、apps
+
+Namesapce: workloads
+
+### API Pattern
+
+https://kubernetes.io/docs/reference/using-api/api-concepts/
+
+```
+# KS API
+/kapis/{apiGroup}/{apiVersion}/{resourcePlural}/{resourceName}/{subResource}
+
+# K8s 原生 API
+/apis/{apiGroup}/{apiVersion}/{resourcePlural}/{resourceName}/{subResource}
+/api/{apiGroup}/{apiVersion}/{resourcePlural}/{resourceName}/{subResource}
+
+# 多集群分发
+/apis/clusters/{cluster}/{apiGroup}/{apiVersion}/{resourcePlural}/{resourceName}/{subResource}
+/kapis/clusters/{cluster}/{apiGroup}/{apiVersion}/{resourcePlural}/{resourceName}/{subResource}
+```
+
+**API 示例**
+
+Platform Scope
+
+特殊的 CRD，这类资源被 host 集群管理，受到 GlobalRole 的限制
+
+```
+/kapis/iam.kubesphere.io/v1alpha2/users
+/kapis/resources.kubesphere.io/v1alpha3/clusters
+/kapis/tenant.kubesphere.io/v1alpha2/workspaces
+```
+
+Workspace Scope
+
+KS 中的资源层级，受到 WorkspaceRole 的限制
+
+```
+/kapis/openpitrix.kubesphere.io/v1/workspaces/{workspace}/apps
+/kapis/tenant.kubesphere.io/v1alpha2/workspaces/{workspace}/namespaces
+```
+
+Cluster Scope
+
+K8s 中的资源层级，收到 ClusterRole 的限制
+
+```
+/api/v1/nodes
+/apis/apps/v1/deployments
+```
+
+Namespace Scope
+
+```
+/apis/apps/v1/namespaces/{namespace}/deployments
+```
+
+### 插件的权限控制
+
+KubeSphere 2.x
+
+![](../images/rbac-2.x.png)
+
+
+KubeSphere 3.x
+
+![](./../images/rbac-3.x.png)
+
+KubeSphere 4.x
+
+在 3.x 的基础之上进一步细化
+
+通过授权项对强相关的资源授权规则进行聚合，这是粗粒度
+授权粒度分为创建(create)、查看(list、get、watch)、编辑(update、patch)、删除(delete)、管理(\*) 五个部分，这个是细粒度
+授权项、功能模块可以在不通的插件中进行声明，动态拓展
+
+** RoleTemplate **
+
+```yaml
+apiVersion: iam.kubesphere.io/v1
+kind: RoleTemplate
+metadata:
+  annotations:
+    iam.kubesphere.io/scope: Platform
+    iam.kubesphere.io/module: Access Control
+    iam.kubesphere.io/rules: '{"users": "view"}'
+  name: role-template-view-users
+
+rules:
+- apiGroups:
+  - '*'
+  resources:
+  - users
+  verbs:
+  - get
+  - list
+  - watch
+```
+
+```yaml
+apiVersion: iam.kubesphere.io/v1
+kind: RoleTemplate
+metadata:
+  annotations:
+    iam.kubesphere.io/scope: Namespaced
+    iam.kubesphere.io/module: Pipelines
+    iam.kubesphere.io/rules: '{"pipelines": "view"}'
+  name: role-template-view-pipelines
+
+rules:
+- apiGroups:
+  - 'devops.kubesphere.io'
+  resources:
+  - 'pipelines'
+  verbs:
+  - get
+  - list
+  - watch
+```
\ No newline at end of file
diff --git a/sig-architecture/concepts-and-designs/demo-plugin-zh.md b/sig-architecture/concepts-and-designs/demo-plugin-zh.md
new file mode 100644
index 00000000..593f083f
--- /dev/null
+++ b/sig-architecture/concepts-and-designs/demo-plugin-zh.md
@@ -0,0 +1,204 @@
+# 插件开发示例
+
+## 1. 部署 kubesphere v3.2.1
+
+最小化[安装 KubeSphere v3.2.1](https://kubesphere.com.cn/docs/quick-start/all-in-one-on-linux/)
+
+## 2. 更新 ks-apiserver 与 ks-controller-manager 的镜像
+
+镜像 `docker.io/wansir/ks-apiserver:experimental`、`docker.io/wansir/ks-controller-manager:experimental` 用于验证可插拔部分的架构设计
+
+代码分支 [https://github.com/wansir/kubesphere/tree/feat-pluggable](https://github.com/wansir/kubesphere/tree/feat-pluggable)
+
+```
+kubectl -n kubesphere-system set image deploy/ks-apiserver ks-apiserver=docker.io/wansir/ks-apiserver:experimental
+kubectl -n kubesphere-system set image deploy/ks-controller-manager ks-controller-manager=docker.io/wansir/ks-controller-manager:experimental
+```
+
+## 3. 对外暴露 ks-apiserver
+
+在前端本地开发的过程中，依赖 ks-apiserver 提供的 API，需要将 ks-apiserver.kubesphere-system.svc 暴露给开发环境。
+
+
+## 4. clone 前端代码到本地
+
+代码分支 [https://github.com/chenz24/console/tree/plugin-marketplace](https://github.com/chenz24/console/tree/plugin-marketplace) 用与验证可插拔部分的架构设计
+
+```
+git clone https://github.com/chenz24/console.git
+cd console && git checkout plugin-marketplace
+```
+
+## 5. 插件开发示例
+
+前端项目开发依赖 yarn、 node12
+
+### 5.1 目录结构
+
+`plugins/demo` 目录下是一个简单的插件示例
+
+```
+├── plugins                      # 插件目录：可包含多个插件
+│   ├── Dockerfile               # 将插件打包为 Helm Repo 通过 Docker Image 进行分发
+│   ├── demo                     # demo 插件目录
+│   │   ├── Chart.yaml           # 定义插件的基础信息
+│   │   ├── Dockerfile           # 打包插件所涉及的工作负载，用于提供 API 或静态资源
+│   │   ├── README.md
+│   │   ├── charts
+│   │   ├── dist
+│   │   │   └── index.js         # 通过 webpack 打包后的 js 文件
+│   │   ├── package-lock.json
+│   │   ├── package.json
+│   │   ├── server
+│   │   │   └── app.js
+│   │   ├── src                  # 插件源代码
+│   │   │   ├── App.jsx
+│   │   │   ├── index.js
+│   │   │   └── routes
+│   │   ├── templates            # 定义如何部署插件
+│   │   │   ├── NOTES.txt
+│   │   │   ├── _helpers.tpl
+│   │   │   ├── deployment.yaml  # 插件部署文件
+│   │   │   ├── extensions.yaml  # API注册、JSBundle注册
+│   │   │   ├── service.yaml     
+│   │   │   └── tests
+│   │   └── values.yaml
+│   └── entry.ts
+```
+
+插件中(`plugins/demo/src/routes/index.js`)注册了路径为 `/demo` 的页面路由
+
+```javascript
+import React from 'react';
+import App from '../App';
+
+export default [
+  {
+    path: '/demo',
+    element: <App />,
+  },
+];
+```
+
+一个简单的插件页面(`plugins/demo/src/App.jsx`)
+
+```javascript         
+import React from 'react';
+
+export default function App() {
+  return <h3 style={{ margin: '8rem auto', textAlign: 'center' }}>This is demo plugin</h3>;
+}
+```
+
+
+
+### 5.2 本地预览
+
+插件在开发时可以通过本地文件的方式进行加载，无需通过 ks-apiserver 进行远程加载。
+
+```
+yarn dev
+```
+
+访问 `http://localhost:8000/demo` 可以正常打开插件页面
+
+![demo](../images/demo.png)
+
+### 5.3 插件打包
+
+在本地验证插件可以正常显示之后，通过 Helm 对插件进行打包。
+
+```
+cd plugins/demo
+yarn build
+```
+
+插件打包完成会在 `dist` 目录下生成 `index.js`
+
+此时需要提供一个后端服务，提供打包之后 `index.js` 文件的下载路径，可以使用 nginx 或者 node 等提供一个静态资源访问地址。
+
+示例中通过一个简单的 node server 提供了 `index.js` 的访问地址：`/dist/demo.kubesphere.io/v1alpha2/index.js`
+
+将 `server/app.js` 与 `dist/index.js` 一起打包到一个镜像中，并创建出关联的 K8s 资源模板 `plugins/demo/templates/deployments.yaml`、`plugins/demo/templates/services.yaml`，部署该工作负载之后可以通 service 地址获取到 `index.js`
+
+```bash
+cd plugins/demo
+docker build -t <REPO>:<TAG> .
+docker push <REPO>:<TAG> .
+```
+
+`plugins/demo/templates/extensions.yaml` 文件中 `JSBundle` 声明了该插件以及 `index.js` 加载的路径
+
+```yaml
+apiVersion: extensions.kubesphere.io/v1alpha1
+kind: JSBundle
+metadata:
+  name: demo.kubesphere.io
+spec:
+  rawFrom:
+    url: http://{{ include "demo.fullname" . }}.{{ .Release.Namespace }}.svc # 部署之后的静态资源服务访问地址
+status:
+  enabled: true
+  link: /dist/demo.kubesphere.io/v1alpha2/index.js                           # 通过 ks-apiserver 代理之后 index.js 的加载地址（验证过程中需要手动指定，插件机制完善之后该地址会自动生成）
+```
+
+### 5.4 插件部署
+
+在完成对插件的 Helm 打包之后，可以通过以下命令在远程环境中部署该插件
+
+```bash
+helm upgrade demo demo --create-namespace -n kubesphere-plugins --install --set image.repository=<REPO> --set image.tag=<TAG>
+```
+
+完成安装之后可以通过一下命令来验证是否安装正确
+
+```bash
+$ kubectl get jsbundle
+NAME                 AGE
+demo.kubesphere.io   7m36s
+$ kubectl -n kubesphere-plugins get all
+NAME                        READY   STATUS             RESTARTS   AGE
+pod/demo-5cf6d76fc7-7594t   1/1     Running            0          3m54s
+
+NAME           TYPE        CLUSTER-IP      EXTERNAL-IP   PORT(S)   AGE
+service/demo   ClusterIP   10.233.18.102   <none>        80/TCP    8m2s
+
+NAME                   READY   UP-TO-DATE   AVAILABLE   AGE
+deployment.apps/demo   1/1     1            1           8m2s
+
+NAME                              DESIRED   CURRENT   READY   AGE
+replicaset.apps/demo-5cf6d76fc7   1         1         1       3m54s
+```
+
+可以观察到 jsbundle 资源和 demo 插件依赖的 workloads 及 service 都已经正常创建
+
+### 5.5 加载远程插件
+
+在完成插件的部署之后， ks-console 便可以通过 ks-apiserver 提供的 API 发现需要加载的插件
+
+通过一下方式可以在本地开发过程中加载远程环境中部署好的插件。
+
+创建本地配置文件 `cp config/config.yaml config/local_config.yaml` 并替换 `apiServer.url` 地址为开发环境中 ks-apiserver 的地址
+
+通过以下命令启动 ks-console
+
+```bash
+yarn build:dll
+yarn build
+yarn start
+```
+
+访问 demo 插件注册的路由地址 `http://localhost:8000/demo` 可以正常加载插件页面
+
+以下日志可以追踪插件的加载过程
+
+```bash
+Dashboard app running at port 8000
+  <-- GET /demo 2022/03/11T18:50:57.833
+  --> GET /demo 200 471ms 16.88kb 2022/03/11T18:50:58.303
+  <-- GET /pstatic/dist/demo.kubesphere.io/v1alpha2/index.js 2022/03/11T18:50:58.729
+GET /pstatic/dist/demo.kubesphere.io/v1alpha2/index.js -> http://139.198.13.78:30881/dist/demo.kubesphere.io/v1alpha2/index.js
+success:  GET /pstatic/dist/demo.kubesphere.io/v1alpha2/index.js -> http://139.198.13.78:30881/dist/demo.kubesphere.io/v1alpha2/index.js 200 103
+```
+
+
diff --git a/sig-architecture/concepts-and-designs/pluggable-architecture-zh.md b/sig-architecture/concepts-and-designs/pluggable-architecture-zh.md
index 30481d18..4ba87d85 100644
--- a/sig-architecture/concepts-and-designs/pluggable-architecture-zh.md
+++ b/sig-architecture/concepts-and-designs/pluggable-architecture-zh.md
@@ -27,7 +27,7 @@ TBD
 
 后端的插件化主要包含 API 的注册、静态资源的代理两个部分，可以把 ks-apiserver 看作一个可拓展的 API 网关，由 ks-apiserver 提供统一的 API 认证鉴权能力，支持动态的 API 拓展。
 
-![backend](../images/backend.svg)
+![backend](../images/pluggable-backend.svg)
 
 ### Plugin Model
 
@@ -83,7 +83,7 @@ status:
 
 #### ReverseProxy
 
-提供非资源型 API 的方向代理，可以用来代理一些静态的资源文件，支持路径的 Rewrite，支持请求头的注入。
+提供非资源型 API 的反向代理，可以用来代理一些静态的资源文件，支持路径的 Rewrite，支持请求头的注入等网关功能。
 
 API 的路径会在解析插件的时候就进行检查，避免冲突。
 
diff --git a/sig-architecture/concepts-and-designs/plugin-development-guide-zh.md b/sig-architecture/concepts-and-designs/plugin-development-guide-zh.md
index d202e2c3..29585d2c 100644
--- a/sig-architecture/concepts-and-designs/plugin-development-guide-zh.md
+++ b/sig-architecture/concepts-and-designs/plugin-development-guide-zh.md
@@ -27,7 +27,7 @@ TBD
 插件开发完成之后，需要与依赖组件一起打包为 Helm Chart。
 
 1. 一个插件打包为一个 Helm Chart
-2. 一组插件打包为 Docker Iamge 之后可以进行发布
+2. 一组插件打包为 Docker Image 之后可以进行发布
 
 ### Helm Chart 的目录结构
 
@@ -95,7 +95,7 @@ annotations:
   extensions.kubesphere.io/foo: bar # 额外的注释信息
 ```
 
-### 打包为 Docker Iamge 对插件进行分发
+### 打包为 Docker Image 对插件进行分发
 
 ```dockerfile
 FROM baseimage # Framwork 提供的 baseimage
diff --git a/sig-architecture/images/backend.svg b/sig-architecture/images/backend.svg
deleted file mode 100644
index c48d1663..00000000
--- a/sig-architecture/images/backend.svg
+++ /dev/null
@@ -1,4 +0,0 @@
-<?xml version="1.0" encoding="UTF-8"?>
-<!-- Do not edit this file with editors other than diagrams.net -->
-<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
-<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="1902px" height="852px" viewBox="-0.5 -0.5 1902 852" content="&lt;mxfile host=&quot;app.diagrams.net&quot; modified=&quot;2021-12-21T10:29:57.596Z&quot; agent=&quot;5.0 (Macintosh; Intel Mac OS X 10_15_7) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/96.0.4664.110 Safari/537.36&quot; etag=&quot;YaQbJi0Hb2oYkKbKYZ4o&quot; version=&quot;15.9.6&quot; type=&quot;google&quot;&gt;&lt;diagram id=&quot;vKN-n06WEtU0aiU7Nuyo&quot; name=&quot;第 1 页&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;" style="background-color: rgb(42, 42, 42);"><defs/><g><path d="M 690 511.7 L 800 511.7 L 800 546.7 L 790 561.7 L 690 561.7 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 800 511.7 L 1235 511.7 L 1235 795 L 690 795 L 690 561.7" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 108px; height: 1px; padding-top: 537px; margin-left: 691px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: normal; overflow-wrap: normal;"><font style="font-size: 8px">plugin-controller</font></div></div></div></foreignObject><text x="745" y="539" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">plugin-controller</text></switch></g><path d="M 690 93.75 L 800 93.75 L 800 128.75 L 790 143.75 L 690 143.75 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 800 93.75 L 1235 93.75 L 1235 455 L 690 455 L 690 143.75" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 108px; height: 1px; padding-top: 119px; margin-left: 691px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: normal; overflow-wrap: normal;"><font style="font-size: 8px">ks-apiserver</font></div></div></div></foreignObject><text x="745" y="121" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">ks-apiserver</text></switch></g><path d="M 715 155 L 775 155 L 775 170 L 765 185 L 715 185 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 775 155 L 1195 155 L 1195 445 L 715 445 L 715 185" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 58px; height: 1px; padding-top: 170px; margin-left: 716px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: normal; overflow-wrap: normal;">filters</div></div></div></foreignObject><text x="745" y="172" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">filters</text></switch></g><rect x="715" y="203.75" width="480" height="61.25" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 234px; margin-left: 955px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: nowrap;">RequestInfo</div></div></div></foreignObject><text x="955" y="237" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">RequestInfo</text></switch></g><path d="M 715 295 L 665 295 L 665 246 L 621.37 246" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 616.12 246 L 623.12 242.5 L 621.37 246 L 623.12 249.5 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><rect x="715" y="265" width="480" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 295px; margin-left: 955px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: nowrap;">Authentication</div></div></div></foreignObject><text x="955" y="297" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Authentication</text></switch></g><path d="M 1195 355 L 1308.63 355" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 1313.88 355 L 1306.88 358.5 L 1308.63 355 L 1306.88 351.5 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><rect x="715" y="325" width="480" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 355px; margin-left: 955px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; white-space: nowrap;">Authorization</div></div></div></foreignObject><text x="955" y="357" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Authorization</text></switch></g><path d="M 1195 234.38 L 1312.76 234.38" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 1300.88 240.88 L 1313.88 234.38 L 1300.88 227.88" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><rect x="1315" y="172.19" width="180" height="124.37" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe flex-start; width: 182px; height: 124px; padding-top: 172px; margin-left: 1315px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 180px; height: 124px; overflow: hidden;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 6px 0px 0px ; text-align: center"><b>RequestInfo</b></p><hr /><p style="margin: 0px 0px 0px 8px">+ API Group<br />+ API Version</p><p style="margin: 0px 0px 0px 8px">+ Resources</p><p style="margin: 0px 0px 0px 8px">+ Resource Name</p><p style="margin: 0px 0px 0px 8px">+ Path</p><p style="margin: 0px 0px 0px 8px">+ Scope</p></div></div></div></foreignObject><text x="1315" y="237" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px">RequestInfo...</text></switch></g><path d="M 1475 176.19 L 1491 176.19 L 1491 196.19 L 1475 196.19 L 1475 192.19 L 1471 192.19 L 1471 188.19 L 1475 188.19 L 1475 184.19 L 1471 184.19 L 1471 180.19 L 1475 180.19 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 1475 180.19 L 1479 180.19 L 1479 184.19 L 1475 184.19 M 1475 188.19 L 1479 188.19 L 1479 192.19 L 1475 192.19" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 321.37 255.06 L 350 255.1 L 385 255" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 316.12 255.05 L 323.12 251.56 L 321.37 255.06 L 323.11 258.56 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><rect x="135" y="209.75" width="180" height="90.6" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe flex-start; width: 182px; height: 91px; padding-top: 210px; margin-left: 135px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 180px; height: 91px; overflow: hidden;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: all; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 0px ; margin-top: 6px ; text-align: center"><b>UserInfo</b></p><hr /><p style="margin: 0px ; margin-left: 8px">+ Username<br />+ User Group</p><p style="margin: 0px ; margin-left: 8px">+ Extras</p><p style="margin: 0px ; margin-left: 8px"><br /></p></div></div></div></foreignObject><text x="135" y="257" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px">UserInfo...</text></switch></g><path d="M 295 213.75 L 311 213.75 L 311 233.75 L 295 233.75 L 295 229.75 L 291 229.75 L 291 225.75 L 295 225.75 L 295 221.75 L 291 221.75 L 291 217.75 L 295 217.75 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 295 217.75 L 299 217.75 L 299 221.75 L 295 221.75 M 295 225.75 L 299 225.75 L 299 229.75 L 295 229.75" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="all"/><path d="M 385 165 L 485 165 L 485 180 L 475 195 L 385 195 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 485 165 L 615 165 L 615 345.04 L 385 345.04 L 385 195" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 98px; height: 1px; padding-top: 180px; margin-left: 386px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;"><span style="font-size: 8px">Authenticators</span></div></div></div></foreignObject><text x="435" y="182" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Authenticators</text></switch></g><rect x="385" y="279.25" width="230" height="69.25" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 314px; margin-left: 500px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">Password Authenticator</div></div></div></foreignObject><text x="500" y="316" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Password Authenticator</text></switch></g><rect x="385" y="212.81" width="230" height="66.44" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 246px; margin-left: 500px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">OAuth Authenticator</div></div></div></foreignObject><text x="500" y="248" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">OAuth Authenticator</text></switch></g><path d="M 1495 355 L 1565 355 L 1565 284.3 L 1628.63 284.25" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 1633.88 284.25 L 1626.88 287.76 L 1628.63 284.25 L 1626.88 280.76 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 1495 355 L 1628.63 355" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 1633.88 355 L 1626.88 358.5 L 1628.63 355 L 1626.88 351.5 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="1315" y="325" width="180" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 178px; height: 1px; padding-top: 355px; margin-left: 1316px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;">RBAC Authorizer</div></div></div></foreignObject><text x="1405" y="357" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">RBAC Authorizer</text></switch></g><path d="M 1755 284.25 L 1805 284.3 L 1805 25 L 225 25 L 225 203.38" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 225 208.63 L 221.5 201.63 L 225 203.38 L 228.5 201.63 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="1635" y="254.25" width="120" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 118px; height: 1px; padding-top: 284px; margin-left: 1636px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;">User/Group</div></div></div></foreignObject><text x="1695" y="287" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">User/Group</text></switch></g><path d="M 1755 355 L 1755 360 L 1875 360 L 1875 213 L 1495 213 L 1495 228.01" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 1495 233.26 L 1491.5 226.26 L 1495 228.01 L 1498.5 226.26 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="1635" y="325" width="120" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 118px; height: 1px; padding-top: 355px; margin-left: 1636px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;">Role</div></div></div></foreignObject><text x="1695" y="357" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Role</text></switch></g><path d="M 715 415 L 665 415 L 665 469.5 L 621.37 469.46" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 616.12 469.45 L 623.12 465.96 L 621.37 469.46 L 623.11 472.96 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="715" y="385" width="480" height="60" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 415px; margin-left: 955px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">Dispatch</div></div></div></foreignObject><text x="955" y="417" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Dispatch</text></switch></g><path d="M 385 355 L 485 355 L 485 370 L 475 385 L 385 385 Z" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 485 355 L 615 355 L 615 573 L 385 573 L 385 385" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 98px; height: 1px; padding-top: 370px; margin-left: 386px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;"><span style="font-size: 8px">Dispatchers</span></div></div></div></foreignObject><text x="435" y="372" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">Dispatchers</text></switch></g><rect x="385" y="458.4" width="230" height="56.6" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 487px; margin-left: 500px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">APIServiceDispatcher</div></div></div></foreignObject><text x="500" y="489" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">APIServiceDispatcher</text></switch></g><rect x="385" y="401.79" width="230" height="56.6" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 430px; margin-left: 500px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">MultiClusterDispatcher</div></div></div></foreignObject><text x="500" y="432" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">MultiClusterDispatcher</text></switch></g><rect x="385" y="515" width="230" height="56.6" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 543px; margin-left: 500px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">StaticResourceDispatcher</div></div></div></foreignObject><text x="500" y="546" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">StaticResourceDispatcher</text></switch></g><rect x="55" y="405.09" width="260" height="50" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 430px; margin-left: 185px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">/kapis/clusters/{cluster}</div></div></div></foreignObject><text x="185" y="432" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">/kapis/clusters/{cluster}</text></switch></g><path d="M 385 430.09 L 321.37 430.09" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 316.12 430.09 L 323.12 426.59 L 321.37 430.09 L 323.12 433.59 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="55" y="461.7" width="260" height="50" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 258px; height: 1px; padding-top: 487px; margin-left: 56px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;">/kapis/group.klubesphere.io/v1alpha2</div></div></div></foreignObject><text x="185" y="489" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">/kapis/group.klubesphere.io/v1alpha2</text></switch></g><rect x="705" y="585" width="510" height="190" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-start; justify-content: unsafe flex-start; width: 512px; height: 190px; padding-top: 585px; margin-left: 705px;"><div data-drawio-colors="color: rgb(240, 240, 240); background-color: rgb(42, 42, 42); border-color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 510px; height: 190px; background-color: rgb(42, 42, 42); border: 1px solid rgb(240, 240, 240); overflow: hidden;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 0px ; margin-top: 4px ; text-align: center"><b>Plugin</b></p><hr size="1" /><div style="height: 2px"><div>apiVersion: extensions.kubesphere.io/v1alpha1</div><div>kind: Plugin</div><div>...</div></div></div></div></div></foreignObject><text x="705" y="597" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="12px">Plugin...</text></switch></g><path d="M 718.63 715 L 25 715 L 25 486.7 L 55 486.7" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 723.88 715 L 716.88 718.5 L 718.63 715 L 716.88 711.5 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="725" y="675" width="140" height="80" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-start; justify-content: unsafe flex-start; width: 142px; height: 80px; padding-top: 675px; margin-left: 725px;"><div data-drawio-colors="color: rgb(240, 240, 240); background-color: rgb(42, 42, 42); border-color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 140px; height: 80px; background-color: rgb(42, 42, 42); border: 1px solid rgb(240, 240, 240); overflow: hidden;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 0px ; margin-top: 4px ; text-align: center"><b>APIService</b></p><hr size="1" /><div style="height: 2px"><div>apiVersion: extensions.kubesphere.io/v1alpha1</div><div>kind: APIService</div><div>...</div></div></div></div></div></foreignObject><text x="725" y="687" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="12px">APIService...</text></switch></g><path d="M 960 761.37 L 960 825 L 185 825 L 185 568.3" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 960 756.12 L 963.5 763.12 L 960 761.37 L 956.5 763.12 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="890" y="675" width="140" height="80" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-start; justify-content: unsafe flex-start; width: 142px; height: 80px; padding-top: 675px; margin-left: 890px;"><div data-drawio-colors="color: rgb(240, 240, 240); background-color: rgb(42, 42, 42); border-color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 140px; height: 80px; background-color: rgb(42, 42, 42); border: 1px solid rgb(240, 240, 240); overflow: hidden;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 0px ; margin-top: 4px ; text-align: center"><b>JSBundle</b></p><hr size="1" /><div style="height: 2px"><div>apiVersion: extensions.kubesphere.io/v1alpha1</div><div>kind: JSBundle</div><div>...</div></div></div></div></div></foreignObject><text x="890" y="687" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="12px">JSBundle...</text></switch></g><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 455px; margin-left: 950px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 28px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: nowrap;">...</div></div></div></foreignObject><text x="950" y="463" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="28px" text-anchor="middle">...</text></switch></g><rect x="55" y="518.3" width="260" height="50" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 258px; height: 1px; padding-top: 543px; margin-left: 56px;"><div data-drawio-colors="color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: center;"><div style="display: inline-block; font-size: 8px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; white-space: normal; overflow-wrap: normal;">/dist/group.kubesphere.io/v1alpha2/index.js</div></div></div></foreignObject><text x="185" y="546" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="8px" text-anchor="middle">/dist/group.kubesphere.io/v1alpha2/index.js</text></switch></g><path d="M 385 486.7 L 321.37 486.7" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 316.12 486.7 L 323.12 483.2 L 321.37 486.7 L 323.12 490.2 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 385 543.3 L 321.37 543.3" fill="none" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><path d="M 316.12 543.3 L 323.12 539.8 L 321.37 543.3 L 323.12 546.8 Z" fill="rgb(240, 240, 240)" stroke="rgb(240, 240, 240)" stroke-miterlimit="10" pointer-events="none"/><rect x="1055" y="675" width="140" height="80" fill="rgb(42, 42, 42)" stroke="rgb(240, 240, 240)" pointer-events="none"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility" style="overflow: visible; text-align: left;"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-start; justify-content: unsafe flex-start; width: 142px; height: 80px; padding-top: 675px; margin-left: 1055px;"><div data-drawio-colors="color: rgb(240, 240, 240); background-color: rgb(42, 42, 42); border-color: rgb(240, 240, 240); " style="box-sizing: border-box; font-size: 0px; text-align: left; width: 140px; height: 80px; background-color: rgb(42, 42, 42); border: 1px solid rgb(240, 240, 240); overflow: hidden;"><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: rgb(240, 240, 240); line-height: 1.2; pointer-events: none; width: 100%; height: 100%; white-space: nowrap;"><p style="margin: 0px ; margin-top: 4px ; text-align: center"><b>ReverseProxy</b></p><hr size="1" /><div style="height: 2px"><div>apiVersion: extensions.kubesphere.io/v1alpha1</div><div>kind: ReverseProxy</div><div>...</div></div></div></div></div></foreignObject><text x="1055" y="687" fill="rgb(240, 240, 240)" font-family="Helvetica" font-size="12px">ReverseProxy...</text></switch></g></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://www.diagrams.net/doc/faq/svg-export-text-problems" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/sig-architecture/images/demo.png b/sig-architecture/images/demo.png
new file mode 100644
index 00000000..3e8638fc
Binary files /dev/null and b/sig-architecture/images/demo.png differ
diff --git a/sig-architecture/images/pluggable-backend.svg b/sig-architecture/images/pluggable-backend.svg
new file mode 100644
index 00000000..1ae3abb3
--- /dev/null
+++ b/sig-architecture/images/pluggable-backend.svg
@@ -0,0 +1,3 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 1.1//EN" "http://www.w3.org/Graphics/SVG/1.1/DTD/svg11.dtd">
+<svg xmlns="http://www.w3.org/2000/svg" xmlns:xlink="http://www.w3.org/1999/xlink" version="1.1" width="521px" height="857px" viewBox="-0.5 -0.5 521 857" content="&lt;mxfile host=&quot;Electron&quot; modified=&quot;2022-04-08T05:09:31.595Z&quot; agent=&quot;5.0 (Macintosh; Intel Mac OS X 10_16_0) AppleWebKit/537.36 (KHTML, like Gecko) draw.io/13.7.3 Chrome/85.0.4183.98 Electron/10.1.2 Safari/537.36&quot; etag=&quot;_4isdCXPU-zYPeVz_jno&quot; version=&quot;13.7.3&quot; type=&quot;device&quot;&gt;&lt;diagram id=&quot;OtH7p9zjudNHXbAB2Lh4&quot; name=&quot;第 1 页&quot;&gt;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&lt;/diagram&gt;&lt;/mxfile&gt;" style="background-color: rgb(255, 255, 255);"><defs/><g><rect x="16" y="365" width="480" height="320" fill="#ffffff" stroke="#70b8ff" stroke-width="2" stroke-dasharray="6 6" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe flex-end; justify-content: unsafe flex-start; width: 478px; height: 1px; padding-top: 682px; margin-left: 18px;"><div style="box-sizing: border-box; font-size: 0; text-align: left; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><b>Plugin A</b></div></div></div></foreignObject><text x="18" y="682" fill="#000000" font-family="Helvetica" font-size="12px">Plugin A</text></switch></g><path d="M 76 230 L 36 230 L 36 419 L 49.63 419" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 54.88 419 L 47.88 422.5 L 49.63 419 L 47.88 415.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 76 230 L 36 230 L 36 510 L 49.63 510" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 54.88 510 L 47.88 513.5 L 49.63 510 L 47.88 506.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 76 230 L 36 230 L 36 605 L 49.63 605" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 54.88 605 L 47.88 608.5 L 49.63 605 L 47.88 601.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 315px; margin-left: 34px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; background-color: #ffffff; white-space: nowrap; ">Proxy</div></div></div></foreignObject><text x="34" y="320" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">Proxy</text></switch></g><rect x="76" y="185" width="360" height="90" fill="#dae8fc" stroke="#6c8ebf" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 358px; height: 1px; padding-top: 230px; margin-left: 77px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">API Gateway</div></div></div></foreignObject><text x="256" y="234" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">API Gateway</text></switch></g><path d="M 456 405 L 476 405 L 476 230 L 442.37 230" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 437.12 230 L 444.12 226.5 L 442.37 230 L 444.12 233.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 246 405 L 216 405 L 216.04 738.63" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 216.04 743.88 L 212.54 736.88 L 216.04 738.63 L 219.54 736.88 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="246" y="375" width="210" height="60" rx="9" ry="9" fill="#ffe6cc" stroke="#d79b00" stroke-dasharray="3 3" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 208px; height: 1px; padding-top: 405px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><b>APIService</b></div></div></div></foreignObject><text x="351" y="409" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">APIService</text></switch></g><path d="M 456 510 L 476 510 L 476 230 L 442.37 230" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 437.12 230 L 444.12 226.5 L 442.37 230 L 444.12 233.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><path d="M 246 510 L 216 510 L 216 738.63" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 216 743.88 L 212.5 736.88 L 216 738.63 L 219.5 736.88 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="246" y="480" width="210" height="60" rx="9" ry="9" fill="#ffe6cc" stroke="#d79b00" stroke-dasharray="3 3" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 208px; height: 1px; padding-top: 510px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><b>JSBundle</b></div></div></div></foreignObject><text x="351" y="514" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">JSBundle</text></switch></g><path d="M 456 605 L 476 605 L 476 230 L 442.37 230" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 437.12 230 L 444.12 226.5 L 442.37 230 L 444.12 233.5 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 315px; margin-left: 473px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; background-color: #ffffff; white-space: nowrap; ">Register</div></div></div></foreignObject><text x="473" y="320" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">Register</text></switch></g><path d="M 246 605 L 216 605 L 216 738.63" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 216 743.88 L 212.5 736.88 L 216 738.63 L 219.5 736.88 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 1px; height: 1px; padding-top: 711px; margin-left: 216px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; background-color: #ffffff; white-space: nowrap; ">Reconcile</div></div></div></foreignObject><text x="216" y="715" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">Reconcile</text></switch></g><rect x="246" y="575" width="210" height="60" rx="9" ry="9" fill="#ffe6cc" stroke="#d79b00" stroke-dasharray="3 3" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 208px; height: 1px; padding-top: 605px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; "><strong>ReverseProxy</strong></div></div></div></foreignObject><text x="351" y="609" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">ReverseProxy</text></switch></g><rect x="56" y="389" width="120" height="60" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 118px; height: 1px; padding-top: 419px; margin-left: 57px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #333333; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">Backend</div></div></div></foreignObject><text x="116" y="423" fill="#333333" font-family="Helvetica" font-size="12px" text-anchor="middle">Backend</text></switch></g><rect x="56" y="480" width="120" height="60" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 118px; height: 1px; padding-top: 510px; margin-left: 57px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #333333; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">Frontend</div></div></div></foreignObject><text x="116" y="514" fill="#333333" font-family="Helvetica" font-size="12px" text-anchor="middle">Frontend</text></switch></g><rect x="56" y="575" width="120" height="60" fill="#f5f5f5" stroke="#666666" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 118px; height: 1px; padding-top: 605px; margin-left: 57px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #333333; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">Resource</div></div></div></foreignObject><text x="116" y="609" fill="#333333" font-family="Helvetica" font-size="12px" text-anchor="middle">Resource</text></switch></g><rect x="76" y="745" width="360" height="90" fill="#dae8fc" stroke="#6c8ebf" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 358px; height: 1px; padding-top: 790px; margin-left: 77px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">Plugin Controller Manager</div></div></div></foreignObject><text x="256" y="794" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">Plugin Controller Manager</text></switch></g><path d="M 256 105 L 256 178.63" fill="none" stroke="#000000" stroke-miterlimit="10" pointer-events="stroke"/><path d="M 256 183.88 L 252.5 176.88 L 256 178.63 L 259.5 176.88 Z" fill="#000000" stroke="#000000" stroke-miterlimit="10" pointer-events="all"/><rect x="76" y="15" width="360" height="90" fill="#fff2cc" stroke="#d6b656" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 358px; height: 1px; padding-top: 60px; margin-left: 77px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 12px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">Pluggable Frontend Framwork</div></div></div></foreignObject><text x="256" y="64" fill="#000000" font-family="Helvetica" font-size="12px" text-anchor="middle">Pluggable Frontend Framwork</text></switch></g><rect x="246" y="415" width="40" height="20" fill="none" stroke="none" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 38px; height: 1px; padding-top: 425px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">CR</div></div></div></foreignObject><text x="266" y="429" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">CR</text></switch></g><rect x="246" y="520" width="40" height="20" fill="none" stroke="none" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 38px; height: 1px; padding-top: 530px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">CR</div></div></div></foreignObject><text x="266" y="534" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">CR</text></switch></g><rect x="246" y="615" width="40" height="20" fill="none" stroke="none" pointer-events="all"/><g transform="translate(-0.5 -0.5)"><switch><foreignObject style="overflow: visible; text-align: left;" pointer-events="none" width="100%" height="100%" requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"><div xmlns="http://www.w3.org/1999/xhtml" style="display: flex; align-items: unsafe center; justify-content: unsafe center; width: 38px; height: 1px; padding-top: 625px; margin-left: 247px;"><div style="box-sizing: border-box; font-size: 0; text-align: center; "><div style="display: inline-block; font-size: 14px; font-family: Helvetica; color: #000000; line-height: 1.2; pointer-events: all; white-space: normal; word-wrap: normal; ">CR</div></div></div></foreignObject><text x="266" y="629" fill="#000000" font-family="Helvetica" font-size="14px" text-anchor="middle">CR</text></switch></g></g><switch><g requiredFeatures="http://www.w3.org/TR/SVG11/feature#Extensibility"/><a transform="translate(0,-5)" xlink:href="https://desk.draw.io/support/solutions/articles/16000042487" target="_blank"><text text-anchor="middle" font-size="10px" x="50%" y="100%">Viewer does not support full SVG 1.1</text></a></switch></svg>
\ No newline at end of file
diff --git a/sig-architecture/images/rbac-2.x.png b/sig-architecture/images/rbac-2.x.png
new file mode 100644
index 00000000..c965d015
Binary files /dev/null and b/sig-architecture/images/rbac-2.x.png differ
diff --git a/sig-architecture/images/rbac-3.x.png b/sig-architecture/images/rbac-3.x.png
new file mode 100644
index 00000000..4e32c394
Binary files /dev/null and b/sig-architecture/images/rbac-3.x.png differ
diff --git a/sig-architecture/images/rbac-example.png b/sig-architecture/images/rbac-example.png
new file mode 100644
index 00000000..5ac16ef8
Binary files /dev/null and b/sig-architecture/images/rbac-example.png differ
diff --git a/sig-architecture/images/resource-hierarchy.png b/sig-architecture/images/resource-hierarchy.png
new file mode 100644
index 00000000..a608f9c5
Binary files /dev/null and b/sig-architecture/images/resource-hierarchy.png differ