[Umbrella] Develop a new cluster registration method based on TLS/SSL

[lonelyCZ]

What would you like to be added:

We will introduce bootstarp tokens registration method, refering https://kubernetes.io/docs/reference/access-authn-authz/bootstrap-tokens

Iterated task:

• Certificate generation normalization. Standardize the generation and management of certificates #2097 Standardize the generation of certificates for karmadactl init #2297
• Set open cluster-info to distribute root CA certificates. Set open cluster-info to distribute root CA certificates #2312
• Set the required ClusterRole and ClusterRoleBinding to enable the certificate signing request. Set the required RBAC to enable the certificate signing request #2357
• Develop the karmadactl token command to manage bootstrap tokens. Implement karmadactl token command to manage bootstrap tokens #2399
• Develop the karmadactl register command to support the use of token to register the PULL mode cluster. Implement karmdactl register for joining clusters with PULL mode #2388
• Print the new cluster register way after finishing karmadactl init. Optimize karmadactl init to output example #2409
• Add user guide about karmdactl register command. Introduces the new optional controllers website#142 Add a new way of registering cluster with PULL mode by CLI website#143
• Realize the certificate rotation function. Implement auto certificate rotation function for karmada-agent #2596

Why is this needed:

Currently, to register a member cluster in PULL mode with the Karmada control plane, it is necessary to provide the administrator certificate of the Karmada control plane. This behavior brings a certain risk of certificate leakage, and it is impossible to distinguish the permissions of multiple cluster administrators from single cluster administrators. We hope to enhance Karmada's certificate management capability to achieve the following goals:

1、Implement the bootstrap token authentication mode to register member clusters and automatically issue certificates.

2、Realize automatic certificate rotation function for karmada-agent, reduce operation and maintenance pressure and enhance its security.

Relating issues #1363 #1648

[lonelyCZ]

/assign

[RainbowMango]

@lonelyCZ

Realize the certificate rotation function.

I have a question about the last task, does this task should be included in v1.3?