From 6773454e9af9d7d60eeb353a1919233db97620a9 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Fri, 18 Oct 2019 09:17:01 +0200
Subject: [PATCH 01/12] Add application settings

Add new columns to projects and application settings

Add attributes to import specs

Import should ignore marked for deletion column

Remove unneeded differences

Remove unneeded differences

Add specs to model

Refactor specs to use specs helper

Add cr remarks

Add cr remarks

Add db changes

Add new columns to projects and application settings

Add attributes to import specs

Import should ignore marked for deletion column

Add application setting

With api entry and ui changes

Fix validations name

Remove unneeded differences

Add strings to the file

Add changelog entry

Change name in migration to the proper one

Remove unneeded differences

Remove parts of code that by error was brought back to old version

Add constant to application settings

Add constant to migration

Correct wording for more universal approach

Update changelog entry

Remove merge leftovers

Remove rubocop offence
---
 doc/api/settings.md                                      | 7 +++++--
 .../settings/visibility_and_access_controls.md           | 9 +++++++++
 .../ee/admin/application_settings_controller.rb          | 4 ++++
 ee/app/helpers/ee/application_settings_helper.rb         | 1 +
 ee/app/models/ee/application_setting.rb                  | 6 ++++++
 ...t_project_deletion_adjourned_period_setting.html.haml | 9 +++++++++
 ...-accidental-project-deletion-application-settings.yml | 5 +++++
 ee/lib/ee/api/entities.rb                                | 1 +
 ee/lib/ee/api/helpers/settings_helpers.rb                | 1 +
 ee/lib/ee/api/settings.rb                                | 4 ++++
 .../admin/application_settings_controller_spec.rb        | 7 +++++++
 ee/spec/models/project_spec.rb                           | 2 ++
 ee/spec/requests/api/settings_spec.rb                    | 7 +++++++
 locale/gitlab.pot                                        | 6 ++++++
 14 files changed, 67 insertions(+), 2 deletions(-)
 create mode 100644 ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
 create mode 100644 ee/changelogs/unreleased/32935-preventing-accidental-project-deletion-application-settings.yml

diff --git a/doc/api/settings.md b/doc/api/settings.md
index 185cce6353ee6d..33dd588f9efe66 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -72,14 +72,15 @@ Example response:
 ```
 
 Users on GitLab [Premium or Ultimate](https://about.gitlab.com/pricing/) may also see
-the `file_template_project_id` or the `geo_node_allowed_ips` parameters:
+the `file_template_project_id`, `deletion_adjourned_period` or the `geo_node_allowed_ips` parameters:
 
 ```json
 {
    "id" : 1,
    "signup_enabled" : true,
    "file_template_project_id": 1,
-   "geo_node_allowed_ips": "0.0.0.0/0, ::/0"
+   "geo_node_allowed_ips": "0.0.0.0/0, ::/0",
+   "deletion_adjourned_period": 7,
    ...
 }
 ```
@@ -162,6 +163,7 @@ these parameters:
 - `file_template_project_id`
 - `geo_node_allowed_ips`
 - `geo_status_timeout`
+- `deletion_adjourned_period`
 
 Example responses: **(PREMIUM ONLY)**
 
@@ -292,6 +294,7 @@ are listed in the descriptions of the relevant settings.
 | `plantuml_enabled`                       | boolean          | no                                   | (**If enabled, requires:** `plantuml_url`) Enable PlantUML integration. Default is `false`. |
 | `plantuml_url`                           | string           | required by: `plantuml_enabled`      | The PlantUML instance URL for integration. |
 | `polling_interval_multiplier`            | decimal          | no                                   | Interval multiplier used by endpoints that perform polling. Set to `0` to disable polling. |
+| `deletion_adjourned_period`      | integer          | no                                   | **(PREMIUM)** How many days after marking project for deletion it is actually removed. Value between 0 and 7.
 | `project_export_enabled`                 | boolean          | no                                   | Enable project export. |
 | `prometheus_metrics_enabled`             | boolean          | no                                   | Enable Prometheus metrics. |
 | `protected_ci_variables`                 | boolean          | no                                   | Environment variables are protected by default. |
diff --git a/doc/user/admin_area/settings/visibility_and_access_controls.md b/doc/user/admin_area/settings/visibility_and_access_controls.md
index 95e4c45e56c3b6..490f14241e17af 100644
--- a/doc/user/admin_area/settings/visibility_and_access_controls.md
+++ b/doc/user/admin_area/settings/visibility_and_access_controls.md
@@ -48,6 +48,15 @@ To ensure only admin users can delete projects:
 1. Check the **Default project deletion protection** checkbox.
 1. Click **Save changes**.
 
+## Project deletion adjourned period **(PREMIUM)**
+
+By default, project marked for deletion will be permanently removed after 7 days. This period may be changed.
+
+To change this period:
+
+1. Select the desired option.
+1. Click **Save changes**.
+
 ## Default project visibility
 
 To set the default visibility levels for new projects:
diff --git a/ee/app/controllers/ee/admin/application_settings_controller.rb b/ee/app/controllers/ee/admin/application_settings_controller.rb
index 5246fa77973f13..899a007c032635 100644
--- a/ee/app/controllers/ee/admin/application_settings_controller.rb
+++ b/ee/app/controllers/ee/admin/application_settings_controller.rb
@@ -38,6 +38,10 @@ def visible_application_setting_attributes
           attrs << :default_project_deletion_protection
         end
 
+        if License.feature_available?(:marking_project_for_deletion)
+          attrs << :deletion_adjourned_period
+        end
+
         if License.feature_available?(:required_ci_templates)
           attrs << :required_instance_ci_template
         end
diff --git a/ee/app/helpers/ee/application_settings_helper.rb b/ee/app/helpers/ee/application_settings_helper.rb
index 4e270f7354693b..de8a42714e89d9 100644
--- a/ee/app/helpers/ee/application_settings_helper.rb
+++ b/ee/app/helpers/ee/application_settings_helper.rb
@@ -76,6 +76,7 @@ def self.possible_licensed_attributes
         email_additional_text
         file_template_project_id
         default_project_deletion_protection
+        deletion_adjourned_period
       ]
     end
   end
diff --git a/ee/app/models/ee/application_setting.rb b/ee/app/models/ee/application_setting.rb
index 29a901211d0007..13977b100fd259 100644
--- a/ee/app/models/ee/application_setting.rb
+++ b/ee/app/models/ee/application_setting.rb
@@ -11,6 +11,7 @@ module ApplicationSetting
     prepended do
       EMAIL_ADDITIONAL_TEXT_CHARACTER_LIMIT = 10_000
       INSTANCE_REVIEW_MIN_USERS = 100
+      DEFAULT_NUMBER_OF_DAYS_BEFORE_REMOVAL = 7
 
       belongs_to :file_template_project, class_name: "Project"
 
@@ -39,6 +40,10 @@ module ApplicationSetting
                 presence: true,
                 numericality: { only_integer: true, greater_than: 0 }
 
+      validates :deletion_adjourned_period,
+                presence: true,
+                numericality: { only_integer: true, greater_than_or_equal_to: 0, less_than_or_equal_to: 7 }
+
       validates :elasticsearch_replicas,
                 presence: true,
                 numericality: { only_integer: true, greater_than: 0 }
@@ -87,6 +92,7 @@ def defaults
           mirror_capacity_threshold: Settings.gitlab['mirror_capacity_threshold'],
           mirror_max_capacity: Settings.gitlab['mirror_max_capacity'],
           mirror_max_delay: Settings.gitlab['mirror_max_delay'],
+          deletion_adjourned_period: DEFAULT_NUMBER_OF_DAYS_BEFORE_REMOVAL,
           pseudonymizer_enabled: false,
           repository_size_limit: 0,
           slack_app_enabled: false,
diff --git a/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml b/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
new file mode 100644
index 00000000000000..95719bacc1a4fe
--- /dev/null
+++ b/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
@@ -0,0 +1,9 @@
+- return unless License.feature_available?(:marking_project_for_deletion)
+
+- f = local_assigns.fetch(:form)
+
+.form-group
+  = f.label s_('Default deletion adjourned period'), class: 'label-bold'
+  = f.select :deletion_adjourned_period, options_for_select(0..7, @application_setting.deletion_adjourned_period), {}, class: 'form-control'
+  = f.label :deletion_adjourned_period, class: 'form-check-label' do
+    = _('How many days need to pass between marking entity for deletion and actual removing it.')
diff --git a/ee/changelogs/unreleased/32935-preventing-accidental-project-deletion-application-settings.yml b/ee/changelogs/unreleased/32935-preventing-accidental-project-deletion-application-settings.yml
new file mode 100644
index 00000000000000..3cd8e0d785e972
--- /dev/null
+++ b/ee/changelogs/unreleased/32935-preventing-accidental-project-deletion-application-settings.yml
@@ -0,0 +1,5 @@
+---
+title: Add application settings needed for soft-deletion
+merge_request: 18790
+author:
+type: added
diff --git a/ee/lib/ee/api/entities.rb b/ee/lib/ee/api/entities.rb
index 7b085495b3e5e1..fcdffbcda72748 100644
--- a/ee/lib/ee/api/entities.rb
+++ b/ee/lib/ee/api/entities.rb
@@ -202,6 +202,7 @@ module ApplicationSetting
           expose :email_additional_text, if: ->(_instance, _opts) { ::License.feature_available?(:email_additional_text) }
           expose :file_template_project_id, if: ->(_instance, _opts) { ::License.feature_available?(:custom_file_templates) }
           expose :default_project_deletion_protection, if: ->(_instance, _opts) { ::License.feature_available?(:default_project_deletion_protection) }
+          expose :deletion_adjourned_period, if: ->(_instance, _opts) { ::License.feature_available?(:marking_project_for_deletion) }
         end
       end
 
diff --git a/ee/lib/ee/api/helpers/settings_helpers.rb b/ee/lib/ee/api/helpers/settings_helpers.rb
index 5c128993de7c62..9be42c6818e407 100644
--- a/ee/lib/ee/api/helpers/settings_helpers.rb
+++ b/ee/lib/ee/api/helpers/settings_helpers.rb
@@ -31,6 +31,7 @@ module SettingsHelpers
 
             optional :email_additional_text, type: String, desc: 'Additional text added to the bottom of every email for legal/auditing/compliance reasons'
             optional :default_project_deletion_protection, type: Grape::API::Boolean, desc: 'Disable project owners ability to delete project'
+            optional :deletion_adjourned_period, type: Integer, desc: 'Number of days between marking project as deleted and actual removal'
             optional :help_text, type: String, desc: 'GitLab server administrator information'
             optional :repository_size_limit, type: Integer, desc: 'Size limit per repository (MB)'
             optional :file_template_project_id, type: Integer, desc: 'ID of project where instance-level file templates are stored.'
diff --git a/ee/lib/ee/api/settings.rb b/ee/lib/ee/api/settings.rb
index 12a4ee5cfa44d2..96e0d88de3c17a 100644
--- a/ee/lib/ee/api/settings.rb
+++ b/ee/lib/ee/api/settings.rb
@@ -27,6 +27,10 @@ def filter_attributes_using_license(attrs)
               attrs = attrs.except(:default_project_deletion_protection)
             end
 
+            unless License.feature_available?(:marking_project_for_deletion)
+              attrs = attrs.except(:deletion_adjourned_period)
+            end
+
             attrs
           end
         end
diff --git a/ee/spec/controllers/admin/application_settings_controller_spec.rb b/ee/spec/controllers/admin/application_settings_controller_spec.rb
index c5c82af3c21415..b2a16add23ace2 100644
--- a/ee/spec/controllers/admin/application_settings_controller_spec.rb
+++ b/ee/spec/controllers/admin/application_settings_controller_spec.rb
@@ -104,6 +104,13 @@
       it_behaves_like 'settings for licensed features'
     end
 
+    context 'project deletion adjourned period' do
+      let(:settings) { { deletion_adjourned_period: 6 } }
+      let(:feature) { :marking_project_for_deletion }
+
+      it_behaves_like 'settings for licensed features'
+    end
+
     context 'additional email footer' do
       let(:settings) { { email_additional_text: 'scary legal footer' } }
       let(:feature) { :email_additional_text }
diff --git a/ee/spec/models/project_spec.rb b/ee/spec/models/project_spec.rb
index 2fff009f2582e7..4d1e3428182456 100644
--- a/ee/spec/models/project_spec.rb
+++ b/ee/spec/models/project_spec.rb
@@ -2255,6 +2255,7 @@ def stub_default_url_options(host)
       context 'when number of days is set to more than 0' do
         it 'returns true' do
           stub_application_setting(deletion_adjourned_period: 1)
+
           expect(project.adjourned_deletion?).to eq(true)
         end
       end
@@ -2262,6 +2263,7 @@ def stub_default_url_options(host)
       context 'when number of days is set to 0' do
         it 'returns false' do
           stub_application_setting(deletion_adjourned_period: 0)
+
           expect(project.adjourned_deletion?).to eq(false)
         end
       end
diff --git a/ee/spec/requests/api/settings_spec.rb b/ee/spec/requests/api/settings_spec.rb
index f5384c63b31d8a..d283990d0d2434 100644
--- a/ee/spec/requests/api/settings_spec.rb
+++ b/ee/spec/requests/api/settings_spec.rb
@@ -143,6 +143,13 @@
     it_behaves_like 'settings for licensed features'
   end
 
+  context 'deletion adjourned period' do
+    let(:settings) { { deletion_adjourned_period: 5 } }
+    let(:feature) { :marking_project_for_deletion }
+
+    it_behaves_like 'settings for licensed features'
+  end
+
   context 'custom file template project' do
     let(:settings) { { file_template_project_id: project.id } }
     let(:feature) { :custom_file_templates }
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index d6e15fba348123..ed6c03b4563f3c 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -5509,6 +5509,9 @@ msgstr ""
 msgid "Default classification label"
 msgstr ""
 
+msgid "Default deletion adjourned period"
+msgstr ""
+
 msgid "Default description template for issues"
 msgstr ""
 
@@ -9291,6 +9294,9 @@ msgstr ""
 msgid "How it works"
 msgstr ""
 
+msgid "How many days need to pass between marking entity for deletion and actual removing it."
+msgstr ""
+
 msgid "How many replicas each Elasticsearch shard has."
 msgstr ""
 
-- 
GitLab


From 5069075af5a9014d2d60b2494dccbfb66d07f52a Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Thu, 7 Nov 2019 22:06:39 +0100
Subject: [PATCH 02/12] Add longer adjourned period possibility

---
 doc/api/settings.md                                             | 2 +-
 ee/app/models/ee/application_setting.rb                         | 2 +-
 ..._default_project_deletion_adjourned_period_setting.html.haml | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/doc/api/settings.md b/doc/api/settings.md
index 33dd588f9efe66..ad31edb37b1040 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -294,7 +294,7 @@ are listed in the descriptions of the relevant settings.
 | `plantuml_enabled`                       | boolean          | no                                   | (**If enabled, requires:** `plantuml_url`) Enable PlantUML integration. Default is `false`. |
 | `plantuml_url`                           | string           | required by: `plantuml_enabled`      | The PlantUML instance URL for integration. |
 | `polling_interval_multiplier`            | decimal          | no                                   | Interval multiplier used by endpoints that perform polling. Set to `0` to disable polling. |
-| `deletion_adjourned_period`      | integer          | no                                   | **(PREMIUM)** How many days after marking project for deletion it is actually removed. Value between 0 and 7.
+| `deletion_adjourned_period`      | integer          | no                                   | **(PREMIUM)** How many days after marking project for deletion it is actually removed. Value between 0 and 90.
 | `project_export_enabled`                 | boolean          | no                                   | Enable project export. |
 | `prometheus_metrics_enabled`             | boolean          | no                                   | Enable Prometheus metrics. |
 | `protected_ci_variables`                 | boolean          | no                                   | Environment variables are protected by default. |
diff --git a/ee/app/models/ee/application_setting.rb b/ee/app/models/ee/application_setting.rb
index 13977b100fd259..c926ea84fa908e 100644
--- a/ee/app/models/ee/application_setting.rb
+++ b/ee/app/models/ee/application_setting.rb
@@ -42,7 +42,7 @@ module ApplicationSetting
 
       validates :deletion_adjourned_period,
                 presence: true,
-                numericality: { only_integer: true, greater_than_or_equal_to: 0, less_than_or_equal_to: 7 }
+                numericality: { only_integer: true, greater_than_or_equal_to: 0, less_than_or_equal_to: 90 }
 
       validates :elasticsearch_replicas,
                 presence: true,
diff --git a/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml b/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
index 95719bacc1a4fe..3c9e7c335edbe7 100644
--- a/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
+++ b/ee/app/views/admin/application_settings/_default_project_deletion_adjourned_period_setting.html.haml
@@ -4,6 +4,6 @@
 
 .form-group
   = f.label s_('Default deletion adjourned period'), class: 'label-bold'
-  = f.select :deletion_adjourned_period, options_for_select(0..7, @application_setting.deletion_adjourned_period), {}, class: 'form-control'
+  = f.select :deletion_adjourned_period, options_for_select(0..90, @application_setting.deletion_adjourned_period), {}, class: 'form-control'
   = f.label :deletion_adjourned_period, class: 'form-check-label' do
     = _('How many days need to pass between marking entity for deletion and actual removing it.')
-- 
GitLab


From b1271076e87ecfa618198294608b7756c21062ef Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Fri, 8 Nov 2019 11:37:29 +0100
Subject: [PATCH 03/12] Add call to partial

---
 .../admin/application_settings/_visibility_and_access.html.haml  | 1 +
 1 file changed, 1 insertion(+)

diff --git a/app/views/admin/application_settings/_visibility_and_access.html.haml b/app/views/admin/application_settings/_visibility_and_access.html.haml
index be5f1f4f9a828a..50a375dabe0fcf 100644
--- a/app/views/admin/application_settings/_visibility_and_access.html.haml
+++ b/app/views/admin/application_settings/_visibility_and_access.html.haml
@@ -9,6 +9,7 @@
       = f.label s_('ProjectCreationLevel|Default project creation protection'), class: 'label-bold'
       = f.select :default_project_creation, options_for_select(Gitlab::Access.project_creation_options, @application_setting.default_project_creation), {}, class: 'form-control'
     = render_if_exists 'admin/application_settings/default_project_deletion_protection_setting', form: f
+    = render_if_exists 'admin/application_settings/default_project_deletion_adjourned_period_setting', form: f
     .form-group.visibility-level-setting
       = f.label :default_project_visibility, class: 'label-bold'
       = render('shared/visibility_radios', model_method: :default_project_visibility, form: f, selected_level: @application_setting.default_project_visibility, form_model: Project.new)
-- 
GitLab


From e1f2e329ae9c25b2294382d125021b2ccd01eadd Mon Sep 17 00:00:00 2001
From: Gosia Ksionek <mksionek@gitlab.com>
Date: Mon, 18 Nov 2019 10:58:57 +0000
Subject: [PATCH 04/12] Add services for marking projects for deletion

and restoring
---
 .../projects/mark_for_deletion_service.rb     | 36 ++++++++++
 ee/app/services/projects/restore_service.rb   | 34 +++++++++
 .../mark_for_deletion_service_spec.rb         | 69 +++++++++++++++++++
 .../services/projects/restore_service_spec.rb | 47 +++++++++++++
 locale/gitlab.pot                             |  3 +
 5 files changed, 189 insertions(+)
 create mode 100644 ee/app/services/projects/mark_for_deletion_service.rb
 create mode 100644 ee/app/services/projects/restore_service.rb
 create mode 100644 ee/spec/services/projects/mark_for_deletion_service_spec.rb
 create mode 100644 ee/spec/services/projects/restore_service_spec.rb

diff --git a/ee/app/services/projects/mark_for_deletion_service.rb b/ee/app/services/projects/mark_for_deletion_service.rb
new file mode 100644
index 00000000000000..18164cfe41c6f7
--- /dev/null
+++ b/ee/app/services/projects/mark_for_deletion_service.rb
@@ -0,0 +1,36 @@
+# frozen_string_literal: true
+
+module Projects
+  class MarkForDeletionService < BaseService
+    def execute
+      return if project.marked_for_deletion_at?
+      return unless project.feature_available?(:marking_project_for_deletion)
+
+      result = ::Projects::UpdateService.new(
+        project,
+        current_user,
+        { archived: true,
+          marked_for_deletion_at: Time.now.utc,
+          deleting_user: current_user }
+      ).execute
+      log_event if result[:status] == :success
+      log_error(result[:message]) if result[:status] == :error
+
+      result
+    end
+
+    def log_event
+      log_audit_event
+      log_info("User #{current_user.id} marked project #{project.full_path} for deletion")
+    end
+
+    def log_audit_event
+      ::AuditEventService.new(
+        current_user,
+        project,
+        action: :custom,
+        custom_message: "Project marked for deletion"
+      ).for_project.security_event
+    end
+  end
+end
diff --git a/ee/app/services/projects/restore_service.rb b/ee/app/services/projects/restore_service.rb
new file mode 100644
index 00000000000000..96dd738aa77271
--- /dev/null
+++ b/ee/app/services/projects/restore_service.rb
@@ -0,0 +1,34 @@
+# frozen_string_literal: true
+
+module Projects
+  class RestoreService < BaseService
+    def execute
+      return error(_('Project already deleted')) if project.pending_delete?
+
+      result = ::Projects::UpdateService.new(
+        project,
+        current_user,
+        { archived: false,
+          marked_for_deletion_at: nil,
+          deleting_user: nil }
+      ).execute
+      log_event if result[:status] == :success
+
+      result
+    end
+
+    def log_event
+      log_audit_event
+      log_info("User #{current_user.id} restored project #{project.full_path}")
+    end
+
+    def log_audit_event
+      ::AuditEventService.new(
+        current_user,
+        project,
+        action: :custom,
+        custom_message: "Project restored"
+      ).for_project.security_event
+    end
+  end
+end
diff --git a/ee/spec/services/projects/mark_for_deletion_service_spec.rb b/ee/spec/services/projects/mark_for_deletion_service_spec.rb
new file mode 100644
index 00000000000000..34283e3167f886
--- /dev/null
+++ b/ee/spec/services/projects/mark_for_deletion_service_spec.rb
@@ -0,0 +1,69 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe Projects::MarkForDeletionService do
+  let(:user) { create(:user) }
+  let(:marked_for_deletion_at) { nil }
+  let(:project) do
+    create(:project,
+      :repository,
+      namespace: user.namespace,
+      marked_for_deletion_at: marked_for_deletion_at)
+  end
+
+  context 'with soft-delete feature turned on' do
+    before do
+      stub_licensed_features(marking_project_for_deletion: true)
+    end
+
+    context 'marking project for deletion' do
+      before do
+        described_class.new(project, user).execute
+      end
+
+      it 'marks project as archived and marked for deletion' do
+        expect(Project.unscoped.all).to include(project)
+
+        expect(project.archived).to eq(true)
+        expect(project.marked_for_deletion_at).not_to be_nil
+        expect(project.deleting_user).to eq(user)
+      end
+    end
+
+    context 'marking project for deletion once again' do
+      let(:marked_for_deletion_at) { 2.days.ago }
+
+      before do
+        described_class.new(project, user).execute
+      end
+
+      it 'does not change original date' do
+        expect(project.marked_for_deletion_at).to eq(marked_for_deletion_at.to_date)
+      end
+    end
+
+    context 'audit events' do
+      it 'saves audit event' do
+        expect { described_class.new(project, user).execute }
+          .to change { AuditEvent.count }.by(1)
+      end
+    end
+  end
+
+  context 'with soft-delete feature turned off' do
+    context 'marking project for deletion' do
+      before do
+        described_class.new(project, user).execute
+      end
+
+      it 'does not change project attributes' do
+        expect(Project.all).to include(project)
+
+        expect(project.archived).to eq(false)
+        expect(project.marked_for_deletion_at).to be_nil
+        expect(project.deleting_user).to be_nil
+      end
+    end
+  end
+end
diff --git a/ee/spec/services/projects/restore_service_spec.rb b/ee/spec/services/projects/restore_service_spec.rb
new file mode 100644
index 00000000000000..acc85f32ecc9f3
--- /dev/null
+++ b/ee/spec/services/projects/restore_service_spec.rb
@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe Projects::RestoreService do
+  let(:user) { create(:user) }
+  let(:pending_delete) { nil }
+  let(:project) do
+    create(:project,
+      :repository,
+      namespace: user.namespace,
+      marked_for_deletion_at: 1.day.ago,
+      deleting_user: user,
+      archived: true,
+      pending_delete: pending_delete)
+  end
+
+  context 'restoring project' do
+    before do
+      described_class.new(project, user).execute
+    end
+
+    it 'marks project as unarchived and not marked for deletion' do
+      expect(Project.unscoped.all).to include(project)
+
+      expect(project.archived).to eq(false)
+      expect(project.marked_for_deletion_at).to be_nil
+      expect(project.deleting_user).to eq(nil)
+    end
+  end
+
+  context 'restoring project already in process of removal' do
+    let(:deletion_date) { 2.days.ago }
+    let(:pending_delete) { true }
+
+    it 'does not allow to restore' do
+      expect(described_class.new(project, user).execute).to include(status: :error)
+    end
+  end
+
+  context 'audit events' do
+    it 'saves audit event' do
+      expect { described_class.new(project, user).execute }
+        .to change { AuditEvent.count }.by(1)
+    end
+  end
+end
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index ed6c03b4563f3c..7e03a2c9f0d437 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -13613,6 +13613,9 @@ msgstr ""
 msgid "Project already created"
 msgstr ""
 
+msgid "Project already deleted"
+msgstr ""
+
 msgid "Project and wiki repositories"
 msgstr ""
 
-- 
GitLab


From 3cd061e50a1a8ea7b63f52c19cf5a1e807b60614 Mon Sep 17 00:00:00 2001
From: Gosia Ksionek <mksionek@gitlab.com>
Date: Tue, 10 Dec 2019 12:45:20 +0000
Subject: [PATCH 05/12] Add workers for deleting projects

Introduces workers used in soft-deletion of a project.
---
 config/initializers/1_settings.rb             |  3 ++
 config/sidekiq_queues.yml                     |  2 +-
 .../adjourned_project_deletion_worker.rb      | 19 ++++++++
 ...adjourned_projects_deletion_cron_worker.rb | 20 ++++++++
 ee/app/workers/all_queues.yml                 |  2 +
 .../adjourned_project_deletion_worker_spec.rb | 28 +++++++++++
 ...rned_projects_deletion_cron_worker_spec.rb | 47 +++++++++++++++++++
 7 files changed, 120 insertions(+), 1 deletion(-)
 create mode 100644 ee/app/workers/adjourned_project_deletion_worker.rb
 create mode 100644 ee/app/workers/adjourned_projects_deletion_cron_worker.rb
 create mode 100644 ee/spec/workers/adjourned_project_deletion_worker_spec.rb
 create mode 100644 ee/spec/workers/adjourned_projects_deletion_cron_worker_spec.rb

diff --git a/config/initializers/1_settings.rb b/config/initializers/1_settings.rb
index bb0c4696effd41..8e204c7a145e94 100644
--- a/config/initializers/1_settings.rb
+++ b/config/initializers/1_settings.rb
@@ -475,6 +475,9 @@
   Settings.cron_jobs['clear_shared_runners_minutes_worker'] ||= Settingslogic.new({})
   Settings.cron_jobs['clear_shared_runners_minutes_worker']['cron'] ||= '0 0 1 * *'
   Settings.cron_jobs['clear_shared_runners_minutes_worker']['job_class'] = 'ClearSharedRunnersMinutesWorker'
+  Settings.cron_jobs['adjourned_projects_deletion_cron_worker'] ||= Settingslogic.new({})
+  Settings.cron_jobs['adjourned_projects_deletion_cron_worker']['cron'] ||= '0 4 * * *'
+  Settings.cron_jobs['adjourned_projects_deletion_cron_worker']['job_class'] = 'AdjournedProjectsDeletionCronWorker'
   Settings.cron_jobs['geo_file_download_dispatch_worker'] ||= Settingslogic.new({})
   Settings.cron_jobs['geo_file_download_dispatch_worker']['cron'] ||= '*/1 * * * *'
   Settings.cron_jobs['geo_file_download_dispatch_worker']['job_class'] ||= 'Geo::FileDownloadDispatchWorker'
diff --git a/config/sidekiq_queues.yml b/config/sidekiq_queues.yml
index 063a3cc2b5b484..68ad819d48bf8f 100644
--- a/config/sidekiq_queues.yml
+++ b/config/sidekiq_queues.yml
@@ -124,4 +124,4 @@
   - [design_management_new_version, 1]
   - [epics, 2]
   - [personal_access_tokens, 1]
-
+  - [adjourned_project_deletion, 1]
diff --git a/ee/app/workers/adjourned_project_deletion_worker.rb b/ee/app/workers/adjourned_project_deletion_worker.rb
new file mode 100644
index 00000000000000..9513b95001a393
--- /dev/null
+++ b/ee/app/workers/adjourned_project_deletion_worker.rb
@@ -0,0 +1,19 @@
+# frozen_string_literal: true
+
+class AdjournedProjectDeletionWorker
+  include ApplicationWorker
+  include ExceptionBacktrace
+
+  feature_category :authentication_and_authorization
+
+  def perform(project_id)
+    project = Project.find(project_id)
+    user = project.deleting_user
+
+    return unless user
+
+    ::Projects::DestroyService.new(project, user).async_execute
+  rescue ActiveRecord::RecordNotFound => error
+    logger.error("Failed to delete project (#{project_id}): #{error.message}")
+  end
+end
diff --git a/ee/app/workers/adjourned_projects_deletion_cron_worker.rb b/ee/app/workers/adjourned_projects_deletion_cron_worker.rb
new file mode 100644
index 00000000000000..c82a35ae37c2ca
--- /dev/null
+++ b/ee/app/workers/adjourned_projects_deletion_cron_worker.rb
@@ -0,0 +1,20 @@
+# frozen_string_literal: true
+
+class AdjournedProjectsDeletionCronWorker
+  include ApplicationWorker
+  include CronjobQueue
+
+  INTERVAL = 5.minutes.to_i
+
+  feature_category :authentication_and_authorization
+
+  def perform
+    deletion_cutoff = Gitlab::CurrentSettings.deletion_adjourned_period.days.ago.to_date
+
+    Project.aimed_for_deletion(deletion_cutoff).find_each(batch_size: 100).with_index do |project, index| # rubocop: disable CodeReuse/ActiveRecord
+      delay = index * INTERVAL
+
+      AdjournedProjectDeletionWorker.perform_in(delay, project.id)
+    end
+  end
+end
diff --git a/ee/app/workers/all_queues.yml b/ee/app/workers/all_queues.yml
index 5869ccf9eee93e..136d7cfc5dc34b 100644
--- a/ee/app/workers/all_queues.yml
+++ b/ee/app/workers/all_queues.yml
@@ -21,6 +21,7 @@
 - cronjob:update_all_mirrors
 - cronjob:pseudonymizer
 - cronjob:update_max_seats_used_for_gitlab_com_subscriptions
+- cronjob:adjourned_projects_deletion_cron
 
 - gcp_cluster:cluster_update_app
 - gcp_cluster:cluster_wait_for_app_update
@@ -74,6 +75,7 @@
 - new_epic
 - project_import_schedule
 - project_update_repository_storage
+- adjourned_project_deletion
 - rebase
 - refresh_license_compliance_checks
 - repository_update_mirror
diff --git a/ee/spec/workers/adjourned_project_deletion_worker_spec.rb b/ee/spec/workers/adjourned_project_deletion_worker_spec.rb
new file mode 100644
index 00000000000000..cbe6f6b3d4b099
--- /dev/null
+++ b/ee/spec/workers/adjourned_project_deletion_worker_spec.rb
@@ -0,0 +1,28 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe AdjournedProjectDeletionWorker do
+  describe "#perform" do
+    subject(:worker) { described_class.new }
+
+    let(:user) { create(:user)}
+    let(:project) { create(:project, deleting_user: user) }
+    let(:service) { instance_double(Projects::DestroyService) }
+
+    it 'executes destroying project' do
+      expect(service).to receive(:async_execute)
+      expect(Projects::DestroyService).to receive(:new).with(project, user).and_return(service)
+
+      worker.perform(project.id)
+    end
+
+    it 'stops execution if user was deleted' do
+      project.update(deleting_user: nil)
+
+      expect(Projects::DestroyService).not_to receive(:new)
+
+      worker.perform(project.id)
+    end
+  end
+end
diff --git a/ee/spec/workers/adjourned_projects_deletion_cron_worker_spec.rb b/ee/spec/workers/adjourned_projects_deletion_cron_worker_spec.rb
new file mode 100644
index 00000000000000..dddbcaf6ec80a0
--- /dev/null
+++ b/ee/spec/workers/adjourned_projects_deletion_cron_worker_spec.rb
@@ -0,0 +1,47 @@
+# frozen_string_literal: true
+
+require 'spec_helper'
+
+describe AdjournedProjectsDeletionCronWorker do
+  describe "#perform" do
+    subject(:worker) { described_class.new }
+
+    let(:user) { create(:user)}
+    let(:marked_for_deletion_at) { 14.days.ago }
+    let!(:project_marked_for_deletion) { create(:project, marked_for_deletion_at: marked_for_deletion_at, deleting_user: user) }
+
+    before do
+      create(:project)
+      create(:project, marked_for_deletion_at: 3.days.ago)
+    end
+
+    it 'only schedules to delete projects marked for deletion before number of days from settings' do
+      expect(AdjournedProjectDeletionWorker).to receive(:perform_in).with(0, project_marked_for_deletion.id)
+
+      worker.perform
+    end
+
+    context 'marked for deletion exectly before number of days from settings' do
+      let(:marked_for_deletion_at) { 7.days.ago }
+
+      it 'schedules to delete project ' do
+        expect(AdjournedProjectDeletionWorker).to receive(:perform_in).with(0, project_marked_for_deletion.id)
+
+        worker.perform
+      end
+    end
+
+    context 'when settings are set to not-default number of days' do
+      before do
+        create(:project, marked_for_deletion_at: 5.days.ago)
+        allow(Gitlab::CurrentSettings).to receive(:deletion_adjourned_period).and_return(4)
+      end
+
+      it 'only schedules to delete projects marked for deletion before number of days from settings' do
+        expect(AdjournedProjectDeletionWorker).to receive(:perform_in).twice
+
+        worker.perform
+      end
+    end
+  end
+end
-- 
GitLab


From 153f7ef1bd7a7efc5f6d38612b0aec67033d1205 Mon Sep 17 00:00:00 2001
From: Gosia Ksionek <mksionek@gitlab.com>
Date: Tue, 10 Dec 2019 13:58:13 +0000
Subject: [PATCH 06/12] Add changes to api

Add all methods in api to use
new services responsible for marking for deletion
and restoring
---
 doc/api/projects.md                   |  15 ++++
 ee/lib/ee/api/entities.rb             |   1 +
 ee/lib/ee/api/projects.rb             |  32 ++++++++
 ee/spec/requests/api/projects_spec.rb | 106 ++++++++++++++++++++++++++
 lib/api/projects.rb                   |  14 ++--
 5 files changed, 163 insertions(+), 5 deletions(-)

diff --git a/doc/api/projects.md b/doc/api/projects.md
index f2b5ed65cdad9d..eb87bd54c63183 100644
--- a/doc/api/projects.md
+++ b/doc/api/projects.md
@@ -1722,6 +1722,21 @@ DELETE /projects/:id
 | --------- | ---- | -------- | ----------- |
 | `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) |
 
+On premium or higher tiers this endpoint marks project for deletion - actual removal happens
+after number of days specified in instance settings, default number of days is 7.
+
+## Restore project marked for deletion **(PREMIUM)**
+
+Restores project marked for deletion.
+
+```
+POST /projects/:id/restore
+```
+
+| Attribute | Type | Required | Description |
+| --------- | ---- | -------- | ----------- |
+| `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) |
+
 ## Upload a file
 
 Uploads a file to the specified project to be used in an issue or merge request description, or a comment.
diff --git a/ee/lib/ee/api/entities.rb b/ee/lib/ee/api/entities.rb
index fcdffbcda72748..be089c1fdd5a1b 100644
--- a/ee/lib/ee/api/entities.rb
+++ b/ee/lib/ee/api/entities.rb
@@ -50,6 +50,7 @@ module Project
           expose :packages_enabled, if: ->(project, _) { project.feature_available?(:packages) }
           expose :service_desk_enabled, if: ->(project, _) { project.feature_available?(:service_desk) }
           expose :service_desk_address, if: ->(project, _) { project.feature_available?(:service_desk) }
+          expose :marked_for_deletion_at, if: ->(project, _) { project.feature_available?(:marking_project_for_deletion) }
         end
       end
 
diff --git a/ee/lib/ee/api/projects.rb b/ee/lib/ee/api/projects.rb
index 91f900c8f3f6e4..c7a80006ec81c5 100644
--- a/ee/lib/ee/api/projects.rb
+++ b/ee/lib/ee/api/projects.rb
@@ -6,6 +6,23 @@ module Projects
       extend ActiveSupport::Concern
 
       prepended do
+        resource :projects do
+          desc 'Restore a project' do
+            success Entities::Project
+          end
+          post ':id/restore' do
+            authorize!(:remove_project, user_project)
+            break not_found! unless user_project.feature_available?(:marking_project_for_deletion)
+
+            result = ::Projects::RestoreService.new(user_project, current_user).execute
+            if result[:status] == :success
+              present user_project, with: ::API::Entities::Project, current_user: current_user
+            else
+              render_api_error!(result[:message], 400)
+            end
+          end
+        end
+
         helpers do
           extend ::Gitlab::Utils::Override
 
@@ -41,6 +58,21 @@ def verify_mirror_attrs!(project, attrs)
               attrs.delete(:import_data_attributes)
             end
           end
+
+          override :delete_project
+          def delete_project(user_project)
+            return super unless user_project.adjourned_deletion?
+
+            result = destroy_conditionally!(user_project) do
+              ::Projects::MarkForDeletionService.new(user_project, current_user, {}).execute
+            end
+
+            if result[:status] == :success
+              accepted!
+            else
+              render_api_error!(result[:message], 400)
+            end
+          end
         end
       end
     end
diff --git a/ee/spec/requests/api/projects_spec.rb b/ee/spec/requests/api/projects_spec.rb
index 378ecd0c49ff16..0a6457da5b9e43 100644
--- a/ee/spec/requests/api/projects_spec.rb
+++ b/ee/spec/requests/api/projects_spec.rb
@@ -180,6 +180,24 @@
       end
     end
 
+    describe 'marked_for_deletion attribute' do
+      it 'exposed when the feature is available' do
+        stub_licensed_features(marking_project_for_deletion: true)
+
+        get api("/projects/#{project.id}", user)
+
+        expect(json_response).to have_key 'marked_for_deletion_at'
+      end
+
+      it 'not exposed when the feature is not available' do
+        stub_licensed_features(marking_project_for_deletion: false)
+
+        get api("/projects/#{project.id}", user)
+
+        expect(json_response).not_to have_key 'marked_for_deletion_at'
+      end
+    end
+
     describe 'repository_storage attribute' do
       context 'when authenticated as an admin' do
         let(:admin) { create(:admin) }
@@ -632,4 +650,92 @@
       end
     end
   end
+
+  describe 'POST /projects/:id/restore' do
+    context 'feature is available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: true)
+      end
+
+      it 'restores project' do
+        project.update(archived: true, marked_for_deletion_at: 1.day.ago, deleting_user: user)
+
+        post api("/projects/#{project.id}/restore", user)
+
+        expect(response).to have_gitlab_http_status(201)
+        expect(json_response['archived']).to be_falsey
+        expect(json_response['marked_for_deletion_at']).to be_falsey
+      end
+
+      it 'returns error if project is already being deleted' do
+        message = 'Error'
+        expect(::Projects::RestoreService).to receive_message_chain(:new, :execute).and_return({ status: :error, message: message })
+
+        post api("/projects/#{project.id}/restore", user)
+
+        expect(response).to have_gitlab_http_status(400)
+        expect(json_response["message"]).to eq(message)
+      end
+    end
+
+    context 'feature is not available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: false)
+      end
+
+      it 'returns error' do
+        post api("/projects/#{project.id}/restore", user)
+
+        expect(response).to have_gitlab_http_status(404)
+      end
+    end
+  end
+
+  describe 'DELETE /projects/:id' do
+    context 'when feature is available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: true)
+      end
+
+      it 'marks project for deletion' do
+        delete api("/projects/#{project.id}", user)
+
+        expect(response).to have_gitlab_http_status(202)
+        expect(project.reload.marked_for_deletion?).to be_truthy
+      end
+
+      it 'returns error if project cannot be marked for deletion' do
+        message = 'Error'
+        expect(::Projects::MarkForDeletionService).to receive_message_chain(:new, :execute).and_return({ status: :error, message: message })
+
+        delete api("/projects/#{project.id}", user)
+
+        expect(response).to have_gitlab_http_status(400)
+        expect(json_response["message"]).to eq(message)
+      end
+
+      context 'when instance setting is set to 0 days' do
+        it 'deletes project right away' do
+          allow(Gitlab::CurrentSettings).to receive(:deletion_adjourned_period).and_return(0)
+          delete api("/projects/#{project.id}", user)
+
+          expect(response).to have_gitlab_http_status(202)
+          expect(project.reload.pending_delete).to eq(true)
+        end
+      end
+    end
+
+    context 'when feature is not available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: false)
+      end
+
+      it 'deletes project' do
+        delete api("/projects/#{project.id}", user)
+
+        expect(response).to have_gitlab_http_status(202)
+        expect(project.reload.pending_delete).to eq(true)
+      end
+    end
+  end
 end
diff --git a/lib/api/projects.rb b/lib/api/projects.rb
index a1fce9e8b20fc6..d1f99ea49ce1d1 100644
--- a/lib/api/projects.rb
+++ b/lib/api/projects.rb
@@ -26,6 +26,14 @@ def apply_filters(projects)
 
       def verify_update_project_attrs!(project, attrs)
       end
+
+      def delete_project(user_project)
+        destroy_conditionally!(user_project) do
+          ::Projects::DestroyService.new(user_project, current_user, {}).async_execute
+        end
+
+        accepted!
+      end
     end
 
     helpers do
@@ -404,11 +412,7 @@ def translate_params_for_compatibility(params)
       delete ":id" do
         authorize! :remove_project, user_project
 
-        destroy_conditionally!(user_project) do
-          ::Projects::DestroyService.new(user_project, current_user, {}).async_execute
-        end
-
-        accepted!
+        delete_project(user_project)
       end
 
       desc 'Mark this project as forked from another'
-- 
GitLab


From 4d40b8ad1167583baa1a3f393571c6cc3ca1ba4c Mon Sep 17 00:00:00 2001
From: Gosia Ksionek <mksionek@gitlab.com>
Date: Tue, 10 Dec 2019 14:47:07 +0000
Subject: [PATCH 07/12] Add ui changes

In routes, controllers and views

Fix method names

Add changelog entry

Move EE specific code

Move EE specific code

Add cr remarks

Remove obsolete variable

Add services for marking projects for deletion

and restoring
With specs

Fix specs

Fix service

Fix rubocop

Add strings

Add cr remarks

Add cr remarks

Regarding specs and logging
---
 .../groups/components/item_stats.vue          |  7 ++
 .../mixins/is_project_pending_removal.js      |  7 ++
 .../javascripts/groups/store/groups_store.js  |  1 +
 app/serializers/group_child_entity.rb         |  2 +
 .../_visibility_and_access.html.haml          |  1 +
 app/views/admin/projects/_archived.html.haml  |  3 +
 app/views/admin/projects/_projects.html.haml  |  3 +-
 app/views/projects/_archived_notice.html.haml |  5 +
 app/views/projects/_remove.html.haml          | 10 ++
 app/views/projects/edit.html.haml             | 27 +-----
 .../projects/settings/_archive.html.haml      | 18 ++++
 app/views/projects/show.html.haml             |  7 +-
 app/views/shared/projects/_archived.html.haml |  3 +
 app/views/shared/projects/_project.html.haml  |  3 +-
 .../mixins/is_project_pending_removal.js      |  9 ++
 ee/app/controllers/ee/projects_controller.rb  | 34 +++++++
 ee/app/helpers/ee/projects_helper.rb          | 13 +++
 ee/app/serializers/ee/group_child_entity.rb   | 13 +++
 .../views/admin/projects/_archived.html.haml  |  6 ++
 .../views/projects/_archived_notice.html.haml |  7 ++
 .../projects/_marked_for_deletion_notice.haml |  5 +
 ee/app/views/projects/_remove.html.haml       | 14 +++
 .../projects/settings/_archive.html.haml      |  2 +
 .../settings/_marked_for_removal.html.haml    |  8 ++
 .../projects/settings/_restore.html.haml      | 13 +++
 .../views/shared/projects/_archived.html.haml |  6 ++
 ee/config/routes/project.rb                   |  2 +
 .../controllers/projects_controller_spec.rb   | 92 +++++++++++++++++++
 locale/gitlab.pot                             | 43 ++++++++-
 qa/qa/page/project/settings/advanced.rb       |  3 +
 30 files changed, 331 insertions(+), 36 deletions(-)
 create mode 100644 app/assets/javascripts/groups/mixins/is_project_pending_removal.js
 create mode 100644 app/views/admin/projects/_archived.html.haml
 create mode 100644 app/views/projects/_archived_notice.html.haml
 create mode 100644 app/views/projects/_remove.html.haml
 create mode 100644 app/views/projects/settings/_archive.html.haml
 create mode 100644 app/views/shared/projects/_archived.html.haml
 create mode 100644 ee/app/assets/javascripts/groups/mixins/is_project_pending_removal.js
 create mode 100644 ee/app/serializers/ee/group_child_entity.rb
 create mode 100644 ee/app/views/admin/projects/_archived.html.haml
 create mode 100644 ee/app/views/projects/_archived_notice.html.haml
 create mode 100644 ee/app/views/projects/_marked_for_deletion_notice.haml
 create mode 100644 ee/app/views/projects/_remove.html.haml
 create mode 100644 ee/app/views/projects/settings/_archive.html.haml
 create mode 100644 ee/app/views/projects/settings/_marked_for_removal.html.haml
 create mode 100644 ee/app/views/projects/settings/_restore.html.haml
 create mode 100644 ee/app/views/shared/projects/_archived.html.haml

diff --git a/app/assets/javascripts/groups/components/item_stats.vue b/app/assets/javascripts/groups/components/item_stats.vue
index 734a9a89c722b6..675552e6c2bb67 100644
--- a/app/assets/javascripts/groups/components/item_stats.vue
+++ b/app/assets/javascripts/groups/components/item_stats.vue
@@ -1,5 +1,6 @@
 <script>
 import icon from '~/vue_shared/components/icon.vue';
+import { GlBadge } from '@gitlab/ui';
 import timeAgoTooltip from '~/vue_shared/components/time_ago_tooltip.vue';
 import {
   ITEM_TYPE,
@@ -8,13 +9,16 @@ import {
   PROJECT_VISIBILITY_TYPE,
 } from '../constants';
 import itemStatsValue from './item_stats_value.vue';
+import isProjectPendingRemoval from 'ee_else_ce/groups/mixins/is_project_pending_removal';
 
 export default {
   components: {
     icon,
     timeAgoTooltip,
     itemStatsValue,
+    GlBadge,
   },
+  mixins: [isProjectPendingRemoval],
   props: {
     item: {
       type: Object,
@@ -70,6 +74,9 @@ export default {
       css-class="project-stars"
       icon-name="star"
     />
+    <div v-if="isProjectPendingRemoval">
+      <gl-badge variant="warning">{{ __('pending removal') }}</gl-badge>
+    </div>
     <div v-if="isProject" class="last-updated">
       <time-ago-tooltip :time="item.updatedAt" tooltip-placement="bottom" />
     </div>
diff --git a/app/assets/javascripts/groups/mixins/is_project_pending_removal.js b/app/assets/javascripts/groups/mixins/is_project_pending_removal.js
new file mode 100644
index 00000000000000..e44e5780199d97
--- /dev/null
+++ b/app/assets/javascripts/groups/mixins/is_project_pending_removal.js
@@ -0,0 +1,7 @@
+export default {
+  computed: {
+    isProjectPendingRemoval() {
+      return false;
+    },
+  },
+};
diff --git a/app/assets/javascripts/groups/store/groups_store.js b/app/assets/javascripts/groups/store/groups_store.js
index 16f95d5a0cc87b..214ac5e3db5253 100644
--- a/app/assets/javascripts/groups/store/groups_store.js
+++ b/app/assets/javascripts/groups/store/groups_store.js
@@ -93,6 +93,7 @@ export default class GroupsStore {
       memberCount: rawGroupItem.number_users_with_delimiter,
       starCount: rawGroupItem.star_count,
       updatedAt: rawGroupItem.updated_at,
+      pendingRemoval: rawGroupItem.marked_for_deletion_at,
     };
   }
 
diff --git a/app/serializers/group_child_entity.rb b/app/serializers/group_child_entity.rb
index 20d7032c9703af..a7fe4d3f9b9d58 100644
--- a/app/serializers/group_child_entity.rb
+++ b/app/serializers/group_child_entity.rb
@@ -99,3 +99,5 @@ def can_edit?
     end
   end
 end
+
+GroupChildEntity.prepend_if_ee('EE::GroupChildEntity')
diff --git a/app/views/admin/application_settings/_visibility_and_access.html.haml b/app/views/admin/application_settings/_visibility_and_access.html.haml
index 50a375dabe0fcf..ae90ffd9efc90b 100644
--- a/app/views/admin/application_settings/_visibility_and_access.html.haml
+++ b/app/views/admin/application_settings/_visibility_and_access.html.haml
@@ -54,6 +54,7 @@
       = select(:application_setting, :enabled_git_access_protocol, [['Both SSH and HTTP(S)', nil], ['Only SSH', 'ssh'], ['Only HTTP(S)', 'http']], {}, class: 'form-control')
       %span.form-text.text-muted#clone-protocol-help
         = _('Allow only the selected protocols to be used for Git access.')
+
     .form-group
       = f.label :custom_http_clone_url_root, _('Custom Git clone URL for HTTP(S)'), class: 'label-bold'
       = f.text_field :custom_http_clone_url_root, class: 'form-control', placeholder: 'https://git.example.com', :'aria-describedby' => 'custom_http_clone_url_root_help_block'
diff --git a/app/views/admin/projects/_archived.html.haml b/app/views/admin/projects/_archived.html.haml
new file mode 100644
index 00000000000000..8b4d5806c47905
--- /dev/null
+++ b/app/views/admin/projects/_archived.html.haml
@@ -0,0 +1,3 @@
+- if project.archived
+  %span.badge.badge-warning
+    = _('archived')
diff --git a/app/views/admin/projects/_projects.html.haml b/app/views/admin/projects/_projects.html.haml
index 2f7ad35eb3e570..f842ab2d009137 100644
--- a/app/views/admin/projects/_projects.html.haml
+++ b/app/views/admin/projects/_projects.html.haml
@@ -14,8 +14,7 @@
           .stats
             %span.badge.badge-pill
               = storage_counter(project.statistics&.storage_size)
-            - if project.archived
-              %span.badge.badge-warning archived
+            = render_if_exists 'admin/projects/archived', project: project
           .title
             = link_to(admin_project_path(project)) do
               .dash-project-avatar
diff --git a/app/views/projects/_archived_notice.html.haml b/app/views/projects/_archived_notice.html.haml
new file mode 100644
index 00000000000000..e02a17c886884c
--- /dev/null
+++ b/app/views/projects/_archived_notice.html.haml
@@ -0,0 +1,5 @@
+- if project.archived?
+  .text-warning.center.prepend-top-20
+    %p
+      = icon("exclamation-triangle fw")
+      = _('Archived project! Repository and other project resources are read-only')
diff --git a/app/views/projects/_remove.html.haml b/app/views/projects/_remove.html.haml
new file mode 100644
index 00000000000000..6c84fbfeeb307a
--- /dev/null
+++ b/app/views/projects/_remove.html.haml
@@ -0,0 +1,10 @@
+- return unless can?(current_user, :remove_project, project)
+
+.sub-section
+  %h4.danger-title= _('Remove project')
+  %p
+    %strong= _('Removing the project will delete its repository and all related resources including issues, merge requests etc.')
+  = form_tag(project_path(project), method: :delete) do
+    %p
+      %strong= _('Removed projects cannot be restored!')
+    = button_to _('Remove project'), '#', class: "btn btn-remove js-confirm-danger", data: { "confirm-danger-message" => remove_project_message(project) }
diff --git a/app/views/projects/edit.html.haml b/app/views/projects/edit.html.haml
index 7ad52673137646..1c18487f688ea9 100644
--- a/app/views/projects/edit.html.haml
+++ b/app/views/projects/edit.html.haml
@@ -73,23 +73,7 @@
 
     = render 'export', project: @project
 
-    - if can? current_user, :archive_project, @project
-      .sub-section
-        %h4.warning-title
-          - if @project.archived?
-            = _('Unarchive project')
-          - else
-            = _('Archive project')
-        - if @project.archived?
-          %p= _("Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. <strong>Once active this project shows up in the search and on the dashboard.</strong>").html_safe
-          = link_to _('Unarchive project'), unarchive_project_path(@project),
-              data: { confirm: _("Are you sure that you want to unarchive this project?"), qa_selector: 'unarchive_project_link' },
-              method: :post, class: "btn btn-success"
-        - else
-          %p= _("Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. <strong>The repository cannot be committed to, and no issues, comments or other entities can be created.</strong>").html_safe
-          = link_to _('Archive project'), archive_project_path(@project),
-              data: { confirm: _("Are you sure that you want to archive this project?"), qa_selector: 'archive_project_link' },
-              method: :post, class: "btn btn-warning"
+    = render_if_exists 'projects/settings/archive'
     .sub-section.rename-repository
       %h4.warning-title= _('Change path')
       = render 'projects/errors'
@@ -135,14 +119,7 @@
             %strong= _('Once removed, the fork relationship cannot be restored and you will no longer be able to send merge requests to the source.')
           = button_to _('Remove fork relationship'), '#', class: "btn btn-remove js-confirm-danger", data: { "confirm-danger-message" => remove_fork_project_warning_message(@project) }
 
-    - if can?(current_user, :remove_project, @project)
-      .sub-section
-        %h4.danger-title= _('Remove project')
-        %p= _('Removing the project will delete its repository and all related resources including issues, merge requests etc.')
-        = form_tag(project_path(@project), method: :delete) do
-          %p
-            %strong= _('Removed projects cannot be restored!')
-          = button_to _('Remove project'), '#', class: "btn btn-remove js-confirm-danger", data: { "confirm-danger-message" => remove_project_message(@project) }
+    = render 'remove', project: @project
 
 .save-project-loader.hide
   .center
diff --git a/app/views/projects/settings/_archive.html.haml b/app/views/projects/settings/_archive.html.haml
new file mode 100644
index 00000000000000..5d0dc5cc38dc39
--- /dev/null
+++ b/app/views/projects/settings/_archive.html.haml
@@ -0,0 +1,18 @@
+- return unless can?(current_user, :archive_project, @project)
+
+.sub-section
+  %h4.warning-title
+    - if @project.archived?
+      = _('Unarchive project')
+    - else
+      = _('Archive project')
+  - if @project.archived?
+    %p= _("Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. %{strong_start}Once active this project shows up in the search and on the dashboard.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
+    = link_to _('Unarchive project'), unarchive_project_path(@project),
+        data: { confirm: _("Are you sure that you want to unarchive this project?"), qa_selector: 'unarchive_project_link' },
+        method: :post, class: "btn btn-success"
+  - else
+    %p= _("Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments or other entities can be created.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
+    = link_to _('Archive project'), archive_project_path(@project),
+        data: { confirm: _("Are you sure that you want to archive this project?"), qa_selector: 'archive_project_link' },
+        method: :post, class: "btn btn-warning"
diff --git a/app/views/projects/show.html.haml b/app/views/projects/show.html.haml
index c5653c3dd5acc7..8f13806e8cde3a 100644
--- a/app/views/projects/show.html.haml
+++ b/app/views/projects/show.html.haml
@@ -18,11 +18,8 @@
   - if can?(current_user, :download_code, @project) && @project.repository_languages.present?
     = repository_languages_bar(@project.repository_languages)
 
-  - if @project.archived?
-    .text-warning.center.prepend-top-20
-      %p
-        = icon("exclamation-triangle fw")
-        #{ _('Archived project! Repository and other project resources are read-only') }
+  = render "archived_notice", project: @project
+  = render_if_exists "projects/marked_for_deletion_notice", project: @project
 
   - view_path = @project.default_view
 
diff --git a/app/views/shared/projects/_archived.html.haml b/app/views/shared/projects/_archived.html.haml
new file mode 100644
index 00000000000000..fad93d14390f6f
--- /dev/null
+++ b/app/views/shared/projects/_archived.html.haml
@@ -0,0 +1,3 @@
+- if project.archived
+  %span.d-flex.badge.badge-warning
+    = _('archived')
diff --git a/app/views/shared/projects/_project.html.haml b/app/views/shared/projects/_project.html.haml
index 5b9af0267ccc60..45e95685677924 100644
--- a/app/views/shared/projects/_project.html.haml
+++ b/app/views/shared/projects/_project.html.haml
@@ -67,8 +67,7 @@
             %span.icon-wrapper.pipeline-status
               = render 'ci/status/icon', status: project.last_pipeline.detailed_status(current_user), tooltip_placement: 'top', path: pipeline_path
 
-          - if project.archived
-            %span.d-flex.icon-wrapper.badge.badge-warning archived
+          = render_if_exists 'shared/projects/archived', project: project
           - if stars
             = link_to project_starrers_path(project),
                 class: "d-flex align-items-center icon-wrapper stars has-tooltip",
diff --git a/ee/app/assets/javascripts/groups/mixins/is_project_pending_removal.js b/ee/app/assets/javascripts/groups/mixins/is_project_pending_removal.js
new file mode 100644
index 00000000000000..1337b9f2d0960d
--- /dev/null
+++ b/ee/app/assets/javascripts/groups/mixins/is_project_pending_removal.js
@@ -0,0 +1,9 @@
+import { ITEM_TYPE } from '~/groups/constants';
+
+export default {
+  computed: {
+    isProjectPendingRemoval() {
+      return this.item.type === ITEM_TYPE.PROJECT && this.item.pendingRemoval;
+    },
+  },
+};
diff --git a/ee/app/controllers/ee/projects_controller.rb b/ee/app/controllers/ee/projects_controller.rb
index f98704f594249c..169cd6b831e78b 100644
--- a/ee/app/controllers/ee/projects_controller.rb
+++ b/ee/app/controllers/ee/projects_controller.rb
@@ -11,6 +11,40 @@ module ProjectsController
       before_action :log_unarchive_audit_event, only: [:unarchive]
     end
 
+    def restore
+      return access_denied! unless can?(current_user, :remove_project, project)
+
+      result = ::Projects::RestoreService.new(project, current_user, {}).execute
+
+      if result[:status] == :success
+        flash[:notice] = _("Project '%{project_name}' is restored.") % { project_name: project.full_name }
+
+        redirect_to(edit_project_path(project))
+      else
+        flash.now[:alert] = result[:message]
+
+        render 'edit'
+      end
+    end
+
+    override :destroy
+    def destroy
+      return super unless project.adjourned_deletion?
+      return access_denied! unless can?(current_user, :remove_project, project)
+
+      result = ::Projects::MarkForDeletionService.new(project, current_user, {}).execute
+      if result[:status] == :success
+        date = permanent_deletion_date(project.marked_for_deletion_at)
+        flash[:notice] = _("Project '%{project_name}' will be deleted on %{date}") % { date: date, project_name: project.full_name }
+
+        redirect_to(project_path(project), status: :found)
+      else
+        flash.now[:alert] = result[:message]
+
+        render 'edit'
+      end
+    end
+
     override :project_params_attributes
     def project_params_attributes
       super + project_params_ee
diff --git a/ee/app/helpers/ee/projects_helper.rb b/ee/app/helpers/ee/projects_helper.rb
index 58ac5457d868b5..794a1a7d7be08c 100644
--- a/ee/app/helpers/ee/projects_helper.rb
+++ b/ee/app/helpers/ee/projects_helper.rb
@@ -116,6 +116,19 @@ def sidebar_operations_link_path(project = @project)
       super || project_feature_flags_path(project)
     end
 
+    override :remove_project_message
+    def remove_project_message(project)
+      return super unless project.feature_available?(:marking_project_for_deletion)
+
+      date = permanent_deletion_date(Time.now.utc)
+      _("Removing a project places it into a read-only state until %{date}, at which point the project will be permanantly removed. Are you ABSOLUTELY sure?") %
+        { date: date }
+    end
+
+    def permanent_deletion_date(date)
+      (date + ::Gitlab::CurrentSettings.deletion_adjourned_period.days).strftime('%F')
+    end
+
     # Given the current GitLab configuration, check whether the GitLab URL for Kerberos is going to be different than the HTTP URL
     def alternative_kerberos_url?
       ::Gitlab.config.alternative_gitlab_kerberos_url?
diff --git a/ee/app/serializers/ee/group_child_entity.rb b/ee/app/serializers/ee/group_child_entity.rb
new file mode 100644
index 00000000000000..abe3172113a8b0
--- /dev/null
+++ b/ee/app/serializers/ee/group_child_entity.rb
@@ -0,0 +1,13 @@
+# frozen_string_literal: true
+
+module EE
+  module GroupChildEntity
+    extend ActiveSupport::Concern
+
+    prepended do
+      # Project only attributes
+      expose :marked_for_deletion_at,
+        if: lambda { |_instance, _options| project? }
+    end
+  end
+end
diff --git a/ee/app/views/admin/projects/_archived.html.haml b/ee/app/views/admin/projects/_archived.html.haml
new file mode 100644
index 00000000000000..0415d686869025
--- /dev/null
+++ b/ee/app/views/admin/projects/_archived.html.haml
@@ -0,0 +1,6 @@
+- if project.marked_for_deletion?
+  %span.badge.badge-warning
+    = _('pending removal')
+- elsif project.archived
+  %span.badge.badge-warning
+    = _('archived')
diff --git a/ee/app/views/projects/_archived_notice.html.haml b/ee/app/views/projects/_archived_notice.html.haml
new file mode 100644
index 00000000000000..88d05d98538419
--- /dev/null
+++ b/ee/app/views/projects/_archived_notice.html.haml
@@ -0,0 +1,7 @@
+- return if project.marked_for_deletion?
+
+- if project.archived?
+  .text-warning.center.prepend-top-20
+    %p
+      = icon("exclamation-triangle fw")
+      = _('Archived project! Repository and other project resources are read-only')
diff --git a/ee/app/views/projects/_marked_for_deletion_notice.haml b/ee/app/views/projects/_marked_for_deletion_notice.haml
new file mode 100644
index 00000000000000..4894ab8ae78f69
--- /dev/null
+++ b/ee/app/views/projects/_marked_for_deletion_notice.haml
@@ -0,0 +1,5 @@
+- if project.marked_for_deletion?
+  .text-warning.center.prepend-top-20
+    %p
+      = icon("exclamation-triangle fw")
+      = _("Deletion pending. This project will be removed on %{date}. Repository and other project resources are read-only.") % { date: permanent_deletion_date(project.marked_for_deletion_at) }
diff --git a/ee/app/views/projects/_remove.html.haml b/ee/app/views/projects/_remove.html.haml
new file mode 100644
index 00000000000000..0ae485d37dc673
--- /dev/null
+++ b/ee/app/views/projects/_remove.html.haml
@@ -0,0 +1,14 @@
+- return unless can?(current_user, :remove_project, project)
+
+- unless project.marked_for_deletion?
+  .sub-section
+    %h4.danger-title= _('Remove project')
+    = render 'projects/settings/marked_for_removal'
+    %p
+      %strong= _('Removing the project will delete its repository and all related resources including issues, merge requests etc.')
+    = form_tag(project_path(project), method: :delete) do
+      %p
+        %strong= _('Removed projects cannot be restored!')
+      = button_to _('Remove project'), '#', class: "btn btn-remove js-confirm-danger", data: { "confirm-danger-message" => remove_project_message(project) }
+- else
+  = render 'projects/settings/restore', project: project
diff --git a/ee/app/views/projects/settings/_archive.html.haml b/ee/app/views/projects/settings/_archive.html.haml
new file mode 100644
index 00000000000000..33acee9981d2b0
--- /dev/null
+++ b/ee/app/views/projects/settings/_archive.html.haml
@@ -0,0 +1,2 @@
+- return if @project.marked_for_deletion?
+= render_ce 'projects/settings/archive'
diff --git a/ee/app/views/projects/settings/_marked_for_removal.html.haml b/ee/app/views/projects/settings/_marked_for_removal.html.haml
new file mode 100644
index 00000000000000..9dd42ee68eaf5f
--- /dev/null
+++ b/ee/app/views/projects/settings/_marked_for_removal.html.haml
@@ -0,0 +1,8 @@
+- return unless @project.feature_available?(:marking_project_for_deletion)
+
+- date = permanent_deletion_date(Time.now.utc)
+
+%p
+  = _("Removing a project places it into a read-only state until %{date}, at which point the project will be permanently removed.") %{ date: date }
+  %br
+  = _("Until that time, the project can be restored.")
diff --git a/ee/app/views/projects/settings/_restore.html.haml b/ee/app/views/projects/settings/_restore.html.haml
new file mode 100644
index 00000000000000..73e180d5fee96d
--- /dev/null
+++ b/ee/app/views/projects/settings/_restore.html.haml
@@ -0,0 +1,13 @@
+- return unless project.feature_available?(:marking_project_for_deletion)
+
+- date = permanent_deletion_date(project.marked_for_deletion_at)
+.sub-section
+  %h4.danger-title= _('Restore project')
+  %p
+    %strong= _('This project will be removed on %{date}') %{ date: date }
+  %p
+    = _("Restoring the project will prevent the project from being removed on this date and restore people's ability to make changes to it.")
+    = _("The repository can be commited to, and issues, comments and other entities can be created.")
+    %strong= _('Only active this projects shows up in the search and on the dashboard.')
+  = link_to _('Restore project'), namespace_project_restore_path(project.namespace, project),
+      method: :post, class: "btn btn-remove"
diff --git a/ee/app/views/shared/projects/_archived.html.haml b/ee/app/views/shared/projects/_archived.html.haml
new file mode 100644
index 00000000000000..db58a93cf38485
--- /dev/null
+++ b/ee/app/views/shared/projects/_archived.html.haml
@@ -0,0 +1,6 @@
+- if project.marked_for_deletion?
+  %span.d-flex.badge.badge-warning
+    = _('pending removal')
+- elsif project.archived
+  %span.d-flex.badge.badge-warning
+    = _('archived')
diff --git a/ee/config/routes/project.rb b/ee/config/routes/project.rb
index dc536bc41cedea..74f9f265fab889 100644
--- a/ee/config/routes/project.rb
+++ b/ee/config/routes/project.rb
@@ -113,6 +113,8 @@
             end
           end
         end
+
+        post '/restore' => '/projects#restore', as: :restore
       end
       # End of the /-/ scope.
 
diff --git a/ee/spec/controllers/projects_controller_spec.rb b/ee/spec/controllers/projects_controller_spec.rb
index 4755d9b8427619..e2ee1f4e65a0a3 100644
--- a/ee/spec/controllers/projects_controller_spec.rb
+++ b/ee/spec/controllers/projects_controller_spec.rb
@@ -394,4 +394,96 @@
       end
     end
   end
+
+  describe 'DELETE #destroy' do
+    let(:owner) { create(:user) }
+    let(:project) { create(:project, namespace: owner.namespace)}
+
+    before do
+      controller.instance_variable_set(:@project, project)
+      sign_in(owner)
+    end
+
+    context 'feature is available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: true)
+      end
+
+      it 'marks project for deletion' do
+        delete :destroy, params: { namespace_id: project.namespace, id: project }
+
+        expect(project.reload.marked_for_deletion?).to be_truthy
+        expect(response).to have_gitlab_http_status(302)
+        expect(response).to redirect_to(project_path(project))
+      end
+
+      it 'does not mark project for deletion because of error' do
+        message = 'Error'
+
+        expect(::Projects::MarkForDeletionService).to receive_message_chain(:new, :execute).and_return({ status: :error, message: message })
+
+        delete :destroy, params: { namespace_id: project.namespace, id: project }
+
+        expect(response).to have_gitlab_http_status(200)
+        expect(response).to render_template(:edit)
+        expect(flash[:alert]).to include(message)
+      end
+
+      context 'when instance setting is set to 0 days' do
+        it 'deletes project right away' do
+          allow(Gitlab::CurrentSettings).to receive(:deletion_adjourned_period).and_return(0)
+
+          delete :destroy, params: { namespace_id: project.namespace, id: project }
+
+          expect(project.marked_for_deletion?).to be_falsey
+          expect(response).to have_gitlab_http_status(302)
+          expect(response).to redirect_to(dashboard_projects_path)
+        end
+      end
+    end
+
+    context 'feature is not available' do
+      before do
+        stub_licensed_features(marking_project_for_deletion: false)
+      end
+
+      it 'deletes project right away' do
+        delete :destroy, params: { namespace_id: project.namespace, id: project }
+
+        expect(project.marked_for_deletion?).to be_falsey
+        expect(response).to have_gitlab_http_status(302)
+        expect(response).to redirect_to(dashboard_projects_path)
+      end
+    end
+  end
+
+  describe 'POST #restore' do
+    let(:owner) { create(:user) }
+    let(:project) { create(:project, namespace: owner.namespace)}
+
+    before do
+      controller.instance_variable_set(:@project, project)
+      sign_in(owner)
+    end
+
+    it 'restores project deletion' do
+      post :restore, params: { namespace_id: project.namespace, project_id: project }
+
+      expect(project.reload.marked_for_deletion_at).to be_nil
+      expect(project.reload.archived).to be_falsey
+      expect(response).to have_gitlab_http_status(302)
+      expect(response).to redirect_to(edit_project_path(project))
+    end
+
+    it 'does not restore project because of error' do
+      message = 'Error'
+      expect(::Projects::RestoreService).to receive_message_chain(:new, :execute).and_return({ status: :error, message: message })
+
+      post :restore, params: { namespace_id: project.namespace, project_id: project }
+
+      expect(response).to have_gitlab_http_status(200)
+      expect(response).to render_template(:edit)
+      expect(flash[:alert]).to include(message)
+    end
+  end
 end
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 7e03a2c9f0d437..c1b3b2c3f84b71 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -2028,7 +2028,7 @@ msgstr ""
 msgid "Archived projects"
 msgstr ""
 
-msgid "Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. <strong>The repository cannot be committed to, and no issues, comments or other entities can be created.</strong>"
+msgid "Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments or other entities can be created.%{strong_end}"
 msgstr ""
 
 msgid "Are you setting up GitLab for a company?"
@@ -5623,6 +5623,9 @@ msgstr ""
 msgid "Deleting the license failed. You are not permitted to perform this action."
 msgstr ""
 
+msgid "Deletion pending. This project will be removed on %{date}. Repository and other project resources are read-only."
+msgstr ""
+
 msgid "Denied authorization of chat nickname %{user_name}."
 msgstr ""
 
@@ -12185,6 +12188,9 @@ msgstr ""
 msgid "Only Project Members"
 msgstr ""
 
+msgid "Only active this projects shows up in the search and on the dashboard."
+msgstr ""
+
 msgid "Only admins"
 msgstr ""
 
@@ -13583,6 +13589,9 @@ msgstr ""
 msgid "Project '%{project_name}' is in the process of being deleted."
 msgstr ""
 
+msgid "Project '%{project_name}' is restored."
+msgstr ""
+
 msgid "Project '%{project_name}' queued for deletion."
 msgstr ""
 
@@ -13592,6 +13601,9 @@ msgstr ""
 msgid "Project '%{project_name}' was successfully updated."
 msgstr ""
 
+msgid "Project '%{project_name}' will be deleted on %{date}"
+msgstr ""
+
 msgid "Project Badges"
 msgstr ""
 
@@ -14877,6 +14889,12 @@ msgstr ""
 msgid "Removes time estimate."
 msgstr ""
 
+msgid "Removing a project places it into a read-only state until %{date}, at which point the project will be permanantly removed. Are you ABSOLUTELY sure?"
+msgstr ""
+
+msgid "Removing a project places it into a read-only state until %{date}, at which point the project will be permanently removed."
+msgstr ""
+
 msgid "Removing group will cause all child projects and resources to be removed."
 msgstr ""
 
@@ -15172,6 +15190,12 @@ msgstr ""
 msgid "Restart Terminal"
 msgstr ""
 
+msgid "Restore project"
+msgstr ""
+
+msgid "Restoring the project will prevent the project from being removed on this date and restore people's ability to make changes to it."
+msgstr ""
+
 msgid "Restrict access by IP address"
 msgstr ""
 
@@ -17827,6 +17851,9 @@ msgstr ""
 msgid "The remote repository is being updated..."
 msgstr ""
 
+msgid "The repository can be commited to, and issues, comments and other entities can be created."
+msgstr ""
+
 msgid "The repository for this project does not exist."
 msgstr ""
 
@@ -18343,6 +18370,9 @@ msgstr ""
 msgid "This project path either does not exist or is private."
 msgstr ""
 
+msgid "This project will be removed on %{date}"
+msgstr ""
+
 msgid "This repository"
 msgstr ""
 
@@ -19082,7 +19112,7 @@ msgstr ""
 msgid "Unarchive project"
 msgstr ""
 
-msgid "Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. <strong>Once active this project shows up in the search and on the dashboard.</strong>"
+msgid "Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. %{strong_start}Once active this project shows up in the search and on the dashboard.%{strong_end}"
 msgstr ""
 
 msgid "Unblock"
@@ -19193,6 +19223,9 @@ msgstr ""
 msgid "Until"
 msgstr ""
 
+msgid "Until that time, the project can be restored."
+msgstr ""
+
 msgid "Unverified"
 msgstr ""
 
@@ -20874,6 +20907,9 @@ msgstr ""
 msgid "among other things"
 msgstr ""
 
+msgid "archived"
+msgstr ""
+
 msgid "assign yourself"
 msgstr ""
 
@@ -21818,6 +21854,9 @@ msgstr ""
 msgid "pending comment"
 msgstr ""
 
+msgid "pending removal"
+msgstr ""
+
 msgid "pipeline"
 msgstr ""
 
diff --git a/qa/qa/page/project/settings/advanced.rb b/qa/qa/page/project/settings/advanced.rb
index 3a5067a9541040..c95c47fa560d2f 100644
--- a/qa/qa/page/project/settings/advanced.rb
+++ b/qa/qa/page/project/settings/advanced.rb
@@ -12,6 +12,9 @@ class Advanced < Page::Base
             element :project_path_field
             element :change_path_button
             element :transfer_button
+          end
+
+          view 'app/views/projects/settings/_archive.html.haml' do
             element :archive_project_link
             element :unarchive_project_link
           end
-- 
GitLab


From 9e870052f028327e34a091e254d395dc8cf67c7c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Fri, 13 Dec 2019 14:16:56 +0100
Subject: [PATCH 08/12] Add cr remarks

---
 app/views/projects/_archived_notice.html.haml          |  2 +-
 app/views/projects/settings/_archive.html.haml         |  4 ++--
 doc/api/projects.md                                    | 10 ++++++----
 doc/api/settings.md                                    |  2 +-
 .../settings/visibility_and_access_controls.md         |  3 ++-
 5 files changed, 12 insertions(+), 9 deletions(-)

diff --git a/app/views/projects/_archived_notice.html.haml b/app/views/projects/_archived_notice.html.haml
index e02a17c886884c..522693ae24a5b4 100644
--- a/app/views/projects/_archived_notice.html.haml
+++ b/app/views/projects/_archived_notice.html.haml
@@ -2,4 +2,4 @@
   .text-warning.center.prepend-top-20
     %p
       = icon("exclamation-triangle fw")
-      = _('Archived project! Repository and other project resources are read-only')
+      = _('Archived project! Repository and other project resources are read only')
diff --git a/app/views/projects/settings/_archive.html.haml b/app/views/projects/settings/_archive.html.haml
index 5d0dc5cc38dc39..3307c3775ecf9b 100644
--- a/app/views/projects/settings/_archive.html.haml
+++ b/app/views/projects/settings/_archive.html.haml
@@ -7,12 +7,12 @@
     - else
       = _('Archive project')
   - if @project.archived?
-    %p= _("Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. %{strong_start}Once active this project shows up in the search and on the dashboard.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
+    %p= _("Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments, and other entities can be created. %{strong_start}Once active, this project shows up in the search and on the dashboard.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
     = link_to _('Unarchive project'), unarchive_project_path(@project),
         data: { confirm: _("Are you sure that you want to unarchive this project?"), qa_selector: 'unarchive_project_link' },
         method: :post, class: "btn btn-success"
   - else
-    %p= _("Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments or other entities can be created.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
+    %p= _("Archiving the project will make it entirely read only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments, or other entities can be created.%{strong_end}").html_safe % { strong_start: '<strong>'.html_safe, strong_end: '</strong>'.html_safe }
     = link_to _('Archive project'), archive_project_path(@project),
         data: { confirm: _("Are you sure that you want to archive this project?"), qa_selector: 'archive_project_link' },
         method: :post, class: "btn btn-warning"
diff --git a/doc/api/projects.md b/doc/api/projects.md
index eb87bd54c63183..e1e18a485e52f4 100644
--- a/doc/api/projects.md
+++ b/doc/api/projects.md
@@ -1712,7 +1712,12 @@ Example response:
 
 ## Remove project
 
-Removes a project including all associated resources (issues, merge requests etc).
+This endpoint either:
+
+- Removes a project including all associated resources (issues, merge requests etc).
+- From GitLab 12.6 on Premium or higher tiers, marks a project for deletion. Actual
+  deletion happens after number of days specified in
+  [instance settings](../user/admin_area/settings/visibility_and_access_controls.md#project-deletion-adjourned-period).
 
 ```
 DELETE /projects/:id
@@ -1722,9 +1727,6 @@ DELETE /projects/:id
 | --------- | ---- | -------- | ----------- |
 | `id` | integer/string | yes | The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding) |
 
-On premium or higher tiers this endpoint marks project for deletion - actual removal happens
-after number of days specified in instance settings, default number of days is 7.
-
 ## Restore project marked for deletion **(PREMIUM)**
 
 Restores project marked for deletion.
diff --git a/doc/api/settings.md b/doc/api/settings.md
index ad31edb37b1040..261d0e0f2541be 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -72,7 +72,7 @@ Example response:
 ```
 
 Users on GitLab [Premium or Ultimate](https://about.gitlab.com/pricing/) may also see
-the `file_template_project_id`, `deletion_adjourned_period` or the `geo_node_allowed_ips` parameters:
+the `file_template_project_id`, `deletion_adjourned_period`, or the `geo_node_allowed_ips` parameters:
 
 ```json
 {
diff --git a/doc/user/admin_area/settings/visibility_and_access_controls.md b/doc/user/admin_area/settings/visibility_and_access_controls.md
index 490f14241e17af..a4661359fe98a3 100644
--- a/doc/user/admin_area/settings/visibility_and_access_controls.md
+++ b/doc/user/admin_area/settings/visibility_and_access_controls.md
@@ -48,8 +48,9 @@ To ensure only admin users can delete projects:
 1. Check the **Default project deletion protection** checkbox.
 1. Click **Save changes**.
 
-## Project deletion adjourned period **(PREMIUM)**
+## Project deletion adjourned period **(PREMIUM ONLY)**
 
+> [Introduced](https://gitlab.com/gitlab-org/gitlab/issues/32935) in GitLab 12.6.
 By default, project marked for deletion will be permanently removed after 7 days. This period may be changed.
 
 To change this period:
-- 
GitLab


From 7a0ae8fbfc44cedf51556126688bdb3a6a79915d Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Fri, 13 Dec 2019 17:05:11 +0100
Subject: [PATCH 09/12] Add new strings

---
 locale/gitlab.pot | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index c1b3b2c3f84b71..bc906e2ebae197 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -2022,13 +2022,16 @@ msgstr ""
 msgid "Archive project"
 msgstr ""
 
+msgid "Archived project! Repository and other project resources are read only"
+msgstr ""
+
 msgid "Archived project! Repository and other project resources are read-only"
 msgstr ""
 
 msgid "Archived projects"
 msgstr ""
 
-msgid "Archiving the project will make it entirely read-only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments or other entities can be created.%{strong_end}"
+msgid "Archiving the project will make it entirely read only. It is hidden from the dashboard and doesn't show up in searches. %{strong_start}The repository cannot be committed to, and no issues, comments, or other entities can be created.%{strong_end}"
 msgstr ""
 
 msgid "Are you setting up GitLab for a company?"
@@ -19112,7 +19115,7 @@ msgstr ""
 msgid "Unarchive project"
 msgstr ""
 
-msgid "Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments and other entities can be created. %{strong_start}Once active this project shows up in the search and on the dashboard.%{strong_end}"
+msgid "Unarchiving the project will restore people's ability to make changes to it. The repository can be committed to, and issues, comments, and other entities can be created. %{strong_start}Once active, this project shows up in the search and on the dashboard.%{strong_end}"
 msgstr ""
 
 msgid "Unblock"
-- 
GitLab


From 7cbbd18d3d3a1d48f901bb7d247a332fcca092b6 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Mon, 16 Dec 2019 09:36:52 +0100
Subject: [PATCH 10/12] Fix docs file

---
 doc/api/projects.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/api/projects.md b/doc/api/projects.md
index e1e18a485e52f4..ca514b9aa5330b 100644
--- a/doc/api/projects.md
+++ b/doc/api/projects.md
@@ -1717,7 +1717,7 @@ This endpoint either:
 - Removes a project including all associated resources (issues, merge requests etc).
 - From GitLab 12.6 on Premium or higher tiers, marks a project for deletion. Actual
   deletion happens after number of days specified in
-  [instance settings](../user/admin_area/settings/visibility_and_access_controls.md#project-deletion-adjourned-period).
+  [instance settings](../user/admin_area/settings/visibility_and_access_controls.md#project-deletion-adjourned-period-premium-only).
 
 ```
 DELETE /projects/:id
-- 
GitLab


From d0d1b8ad51f37a6972d9c7de78e5adc388476614 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Mon, 16 Dec 2019 10:11:44 +0100
Subject: [PATCH 11/12] Add cr remarks

---
 doc/api/settings.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/api/settings.md b/doc/api/settings.md
index 261d0e0f2541be..fa0efcaa5f00e6 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -294,7 +294,7 @@ are listed in the descriptions of the relevant settings.
 | `plantuml_enabled`                       | boolean          | no                                   | (**If enabled, requires:** `plantuml_url`) Enable PlantUML integration. Default is `false`. |
 | `plantuml_url`                           | string           | required by: `plantuml_enabled`      | The PlantUML instance URL for integration. |
 | `polling_interval_multiplier`            | decimal          | no                                   | Interval multiplier used by endpoints that perform polling. Set to `0` to disable polling. |
-| `deletion_adjourned_period`      | integer          | no                                   | **(PREMIUM)** How many days after marking project for deletion it is actually removed. Value between 0 and 90.
+| `deletion_adjourned_period`      | integer          | no                                   | **(PREMIUM ONLY)** How many days after marking project for deletion it is actually removed. Value between 0 and 90.
 | `project_export_enabled`                 | boolean          | no                                   | Enable project export. |
 | `prometheus_metrics_enabled`             | boolean          | no                                   | Enable Prometheus metrics. |
 | `protected_ci_variables`                 | boolean          | no                                   | Environment variables are protected by default. |
-- 
GitLab


From cd32ce81c848bcbe27318051f23d4ee9377c6af8 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Ma=C5=82gorzata=20Ksionek?= <mksionek@gitlab.com>
Date: Tue, 17 Dec 2019 10:13:11 +0100
Subject: [PATCH 12/12] Add new line

---
 doc/user/admin_area/settings/visibility_and_access_controls.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/doc/user/admin_area/settings/visibility_and_access_controls.md b/doc/user/admin_area/settings/visibility_and_access_controls.md
index a4661359fe98a3..7439812859311e 100644
--- a/doc/user/admin_area/settings/visibility_and_access_controls.md
+++ b/doc/user/admin_area/settings/visibility_and_access_controls.md
@@ -51,6 +51,7 @@ To ensure only admin users can delete projects:
 ## Project deletion adjourned period **(PREMIUM ONLY)**
 
 > [Introduced](https://gitlab.com/gitlab-org/gitlab/issues/32935) in GitLab 12.6.
+
 By default, project marked for deletion will be permanently removed after 7 days. This period may be changed.
 
 To change this period:
-- 
GitLab