From 1733a9dd032f5300e215455867dc44da2c050197 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rub=C3=A9n=20D=C3=A1vila?= <ruben@gitlab.com>
Date: Mon, 2 Jul 2018 17:01:31 -0500
Subject: [PATCH 001/113] Backport some changes made for this spec in EE

With these changes this file will have the same content on EE
---
 spec/requests/api/namespaces_spec.rb | 12 ++++++------
 1 file changed, 6 insertions(+), 6 deletions(-)

diff --git a/spec/requests/api/namespaces_spec.rb b/spec/requests/api/namespaces_spec.rb
index 98102fcd6a7..e2000ab42e8 100644
--- a/spec/requests/api/namespaces_spec.rb
+++ b/spec/requests/api/namespaces_spec.rb
@@ -23,10 +23,10 @@ describe API::Namespaces do
 
         expect(response).to have_gitlab_http_status(200)
         expect(response).to include_pagination_headers
-        expect(group_kind_json_response.keys).to contain_exactly('id', 'kind', 'name', 'path', 'full_path',
-                                                                 'parent_id', 'members_count_with_descendants')
+        expect(group_kind_json_response.keys).to include('id', 'kind', 'name', 'path', 'full_path',
+                                                         'parent_id', 'members_count_with_descendants')
 
-        expect(user_kind_json_response.keys).to contain_exactly('id', 'kind', 'name', 'path', 'full_path', 'parent_id')
+        expect(user_kind_json_response.keys).to include('id', 'kind', 'name', 'path', 'full_path', 'parent_id')
       end
 
       it "admin: returns an array of all namespaces" do
@@ -58,8 +58,8 @@ describe API::Namespaces do
 
         owned_group_response = json_response.find { |resource| resource['id'] == group1.id }
 
-        expect(owned_group_response.keys).to contain_exactly('id', 'kind', 'name', 'path', 'full_path',
-                                                             'parent_id', 'members_count_with_descendants')
+        expect(owned_group_response.keys).to include('id', 'kind', 'name', 'path', 'full_path',
+                                                     'parent_id', 'members_count_with_descendants')
       end
 
       it "returns correct attributes when user cannot admin group" do
@@ -69,7 +69,7 @@ describe API::Namespaces do
 
         guest_group_response = json_response.find { |resource| resource['id'] == group1.id }
 
-        expect(guest_group_response.keys).to contain_exactly('id', 'kind', 'name', 'path', 'full_path', 'parent_id')
+        expect(guest_group_response.keys).to include('id', 'kind', 'name', 'path', 'full_path', 'parent_id')
       end
 
       it "user: returns an array of namespaces" do

From b40c468b35ecdbef8be490ec0933afb253fad0c6 Mon Sep 17 00:00:00 2001
From: Jamie Schembri <jamie@schembri.me>
Date: Fri, 6 Jul 2018 16:14:31 +0200
Subject: [PATCH 002/113] Fix #48934 - Focus on text input on danger
 confirmation

---
 app/assets/javascripts/confirm_danger_modal.js           | 5 ++++-
 changelogs/unreleased/48934.yml                          | 5 +++++
 spec/features/groups_spec.rb                             | 6 ++++++
 .../projects/settings/user_transfers_a_project_spec.rb   | 9 ++++++++-
 spec/features/projects_spec.rb                           | 6 ++++++
 5 files changed, 29 insertions(+), 2 deletions(-)
 create mode 100644 changelogs/unreleased/48934.yml

diff --git a/app/assets/javascripts/confirm_danger_modal.js b/app/assets/javascripts/confirm_danger_modal.js
index 1638e09132b..b0c85c2572e 100644
--- a/app/assets/javascripts/confirm_danger_modal.js
+++ b/app/assets/javascripts/confirm_danger_modal.js
@@ -2,13 +2,16 @@ import $ from 'jquery';
 import { rstrip } from './lib/utils/common_utils';
 
 function openConfirmDangerModal($form, text) {
+  const $input = $('.js-confirm-danger-input');
+  $input.val('');
+
   $('.js-confirm-text').text(text || '');
-  $('.js-confirm-danger-input').val('');
   $('#modal-confirm-danger').modal('show');
 
   const confirmTextMatch = $('.js-confirm-danger-match').text();
   const $submit = $('.js-confirm-danger-submit');
   $submit.disable();
+  $input.focus();
 
   $('.js-confirm-danger-input').off('input').on('input', function handleInput() {
     const confirmText = rstrip($(this).val());
diff --git a/changelogs/unreleased/48934.yml b/changelogs/unreleased/48934.yml
new file mode 100644
index 00000000000..8e2e53ed198
--- /dev/null
+++ b/changelogs/unreleased/48934.yml
@@ -0,0 +1,5 @@
+---
+title: Improve danger confirmation modals by focusing input field
+merge_request:
+author: Jamie Schembri
+type: added
diff --git a/spec/features/groups_spec.rb b/spec/features/groups_spec.rb
index 053e3b189c3..e62bd6f8187 100644
--- a/spec/features/groups_spec.rb
+++ b/spec/features/groups_spec.rb
@@ -154,6 +154,12 @@ describe 'Group' do
       end
     end
 
+    it 'focuses confirmation field on remove group' do
+      click_button('Remove group')
+
+      expect(page).to have_selector '#confirm_name_input:focus'
+    end
+
     it 'removes group' do
       expect { remove_with_confirm('Remove group', group.path) }.to change {Group.count}.by(-1)
       expect(group.members.all.count).to be_zero
diff --git a/spec/features/projects/settings/user_transfers_a_project_spec.rb b/spec/features/projects/settings/user_transfers_a_project_spec.rb
index 96b7cf1f93b..2fdbc04fa62 100644
--- a/spec/features/projects/settings/user_transfers_a_project_spec.rb
+++ b/spec/features/projects/settings/user_transfers_a_project_spec.rb
@@ -10,7 +10,7 @@ describe 'Projects > Settings > User transfers a project', :js do
     sign_in(user)
   end
 
-  def transfer_project(project, group)
+  def transfer_project(project, group, confirm: true)
     visit edit_project_path(project)
 
     page.within('.js-project-transfer-form') do
@@ -21,6 +21,8 @@ describe 'Projects > Settings > User transfers a project', :js do
 
     click_button('Transfer project')
 
+    return unless confirm
+
     fill_in 'confirm_name_input', with: project.name
 
     click_button 'Confirm'
@@ -28,6 +30,11 @@ describe 'Projects > Settings > User transfers a project', :js do
     wait_for_requests
   end
 
+  it 'focuses on the confirmation field' do
+    transfer_project(project, group, confirm: false)
+    expect(page).to have_selector '#confirm_name_input:focus'
+  end
+
   it 'allows transferring a project to a group' do
     old_path = project_path(project)
     transfer_project(project, group)
diff --git a/spec/features/projects_spec.rb b/spec/features/projects_spec.rb
index 8636d17f2c4..81be28cf0e3 100644
--- a/spec/features/projects_spec.rb
+++ b/spec/features/projects_spec.rb
@@ -155,6 +155,12 @@ describe 'Project' do
       visit edit_project_path(project)
     end
 
+    it 'focuses on the confirmation field' do
+      click_button 'Remove project'
+
+      expect(page).to have_selector '#confirm_name_input:focus'
+    end
+
     it 'removes a project' do
       expect { remove_with_confirm('Remove project', project.path) }.to change { Project.count }.by(-1)
       expect(page).to have_content "Project '#{project.full_name}' is in the process of being deleted."

From a4e75e7a83082c190474595ed9894ec86061d37f Mon Sep 17 00:00:00 2001
From: Jacob Vosmaer <jacob@gitlab.com>
Date: Mon, 9 Jul 2018 12:50:17 +0200
Subject: [PATCH 003/113] Use Gitaly for fetches and creating bundles

---
 lib/gitlab/git/repository.rb           |  16 +---
 lib/gitlab/shell.rb                    |  44 +---------
 spec/lib/gitlab/git/repository_spec.rb |  70 +++++++---------
 spec/lib/gitlab/shell_spec.rb          | 111 ++++++-------------------
 spec/lib/gitlab/workhorse_spec.rb      |  24 +++---
 5 files changed, 76 insertions(+), 189 deletions(-)

diff --git a/lib/gitlab/git/repository.rb b/lib/gitlab/git/repository.rb
index 420790f45d0..00c136cab41 100644
--- a/lib/gitlab/git/repository.rb
+++ b/lib/gitlab/git/repository.rb
@@ -898,12 +898,8 @@ module Gitlab
       end
 
       def fetch_source_branch!(source_repository, source_branch, local_ref)
-        Gitlab::GitalyClient.migrate(:fetch_source_branch) do |is_enabled|
-          if is_enabled
-            gitaly_repository_client.fetch_source_branch(source_repository, source_branch, local_ref)
-          else
-            rugged_fetch_source_branch(source_repository, source_branch, local_ref)
-          end
+        wrapped_gitaly_errors do
+          gitaly_repository_client.fetch_source_branch(source_repository, source_branch, local_ref)
         end
       end
 
@@ -1058,12 +1054,8 @@ module Gitlab
       end
 
       def bundle_to_disk(save_path)
-        gitaly_migrate(:bundle_to_disk) do |is_enabled|
-          if is_enabled
-            gitaly_repository_client.create_bundle(save_path)
-          else
-            run_git!(%W(bundle create #{save_path} --all))
-          end
+        wrapped_gitaly_errors do
+          gitaly_repository_client.create_bundle(save_path)
         end
 
         true
diff --git a/lib/gitlab/shell.rb b/lib/gitlab/shell.rb
index e222541992a..a17cd27e82d 100644
--- a/lib/gitlab/shell.rb
+++ b/lib/gitlab/shell.rb
@@ -92,21 +92,13 @@ module Gitlab
     # Ex.
     #   import_repository("nfs-file06", "gitlab/gitlab-ci", "https://gitlab.com/gitlab-org/gitlab-test.git")
     #
-    # Gitaly migration: https://gitlab.com/gitlab-org/gitaly/issues/874
     def import_repository(storage, name, url)
       if url.start_with?('.', '/')
         raise Error.new("don't use disk paths with import_repository: #{url.inspect}")
       end
 
       relative_path = "#{name}.git"
-      cmd = gitaly_migrate(:import_repository, status: Gitlab::GitalyClient::MigrationStatus::OPT_OUT) do |is_enabled|
-        if is_enabled
-          GitalyGitlabProjects.new(storage, relative_path)
-        else
-          # The timeout ensures the subprocess won't hang forever
-          gitlab_projects(storage, relative_path)
-        end
-      end
+      cmd = GitalyGitlabProjects.new(storage, relative_path)
 
       success = cmd.import_project(url, git_timeout)
       raise Error, cmd.output unless success
@@ -126,12 +118,8 @@ module Gitlab
     #   fetch_remote(my_repo, "upstream")
     #
     def fetch_remote(repository, remote, ssh_auth: nil, forced: false, no_tags: false, prune: true)
-      gitaly_migrate(:fetch_remote) do |is_enabled|
-        if is_enabled
-          repository.gitaly_repository_client.fetch_remote(remote, ssh_auth: ssh_auth, forced: forced, no_tags: no_tags, timeout: git_timeout, prune: prune)
-        else
-          local_fetch_remote(repository.storage, repository.relative_path, remote, ssh_auth: ssh_auth, forced: forced, no_tags: no_tags, prune: prune)
-        end
+      wrapped_gitaly_errors do
+        repository.gitaly_repository_client.fetch_remote(remote, ssh_auth: ssh_auth, forced: forced, no_tags: no_tags, timeout: git_timeout, prune: prune)
       end
     end
 
@@ -389,28 +377,6 @@ module Gitlab
       )
     end
 
-    def local_fetch_remote(storage_name, repository_relative_path, remote, ssh_auth: nil, forced: false, no_tags: false, prune: true)
-      vars = { force: forced, tags: !no_tags, prune: prune }
-
-      if ssh_auth&.ssh_import?
-        if ssh_auth.ssh_key_auth? && ssh_auth.ssh_private_key.present?
-          vars[:ssh_key] = ssh_auth.ssh_private_key
-        end
-
-        if ssh_auth.ssh_known_hosts.present?
-          vars[:known_hosts] = ssh_auth.ssh_known_hosts
-        end
-      end
-
-      cmd = gitlab_projects(storage_name, repository_relative_path)
-
-      success = cmd.fetch_remote(remote, git_timeout, vars)
-
-      raise Error, cmd.output unless success
-
-      success
-    end
-
     def gitlab_shell_fast_execute(cmd)
       output, status = gitlab_shell_fast_execute_helper(cmd)
 
@@ -440,10 +406,6 @@ module Gitlab
       Gitlab.config.gitlab_shell.git_timeout
     end
 
-    def gitaly_migrate(method, status: Gitlab::GitalyClient::MigrationStatus::OPT_IN, &block)
-      wrapped_gitaly_errors { Gitlab::GitalyClient.migrate(method, status: status, &block) }
-    end
-
     def wrapped_gitaly_errors
       yield
     rescue GRPC::NotFound, GRPC::BadStatus => e
diff --git a/spec/lib/gitlab/git/repository_spec.rb b/spec/lib/gitlab/git/repository_spec.rb
index e6268a05d44..4f8e6f29255 100644
--- a/spec/lib/gitlab/git/repository_spec.rb
+++ b/spec/lib/gitlab/git/repository_spec.rb
@@ -1716,59 +1716,51 @@ describe Gitlab::Git::Repository, seed_helper: true do
   end
 
   describe '#fetch_source_branch!' do
-    shared_examples '#fetch_source_branch!' do
-      let(:local_ref) { 'refs/merge-requests/1/head' }
-      let(:repository) { Gitlab::Git::Repository.new('default', TEST_REPO_PATH, '') }
-      let(:source_repository) { Gitlab::Git::Repository.new('default', TEST_MUTABLE_REPO_PATH, '') }
+    let(:local_ref) { 'refs/merge-requests/1/head' }
+    let(:repository) { Gitlab::Git::Repository.new('default', TEST_REPO_PATH, '') }
+    let(:source_repository) { Gitlab::Git::Repository.new('default', TEST_MUTABLE_REPO_PATH, '') }
 
-      after do
-        ensure_seeds
-      end
+    after do
+      ensure_seeds
+    end
 
-      context 'when the branch exists' do
-        context 'when the commit does not exist locally' do
-          let(:source_branch) { 'new-branch-for-fetch-source-branch' }
-          let(:source_rugged) { Gitlab::GitalyClient::StorageSettings.allow_disk_access { source_repository.rugged } }
-          let(:new_oid) { new_commit_edit_old_file(source_rugged).oid }
+    context 'when the branch exists' do
+      context 'when the commit does not exist locally' do
+        let(:source_branch) { 'new-branch-for-fetch-source-branch' }
+        let(:source_rugged) { Gitlab::GitalyClient::StorageSettings.allow_disk_access { source_repository.rugged } }
+        let(:new_oid) { new_commit_edit_old_file(source_rugged).oid }
 
-          before do
-            source_rugged.branches.create(source_branch, new_oid)
-          end
-
-          it 'writes the ref' do
-            expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(true)
-            expect(repository.commit(local_ref).sha).to eq(new_oid)
-          end
+        before do
+          source_rugged.branches.create(source_branch, new_oid)
         end
 
-        context 'when the commit exists locally' do
-          let(:source_branch) { 'master' }
-          let(:expected_oid) { SeedRepo::LastCommit::ID }
-
-          it 'writes the ref' do
-            # Sanity check: the commit should already exist
-            expect(repository.commit(expected_oid)).not_to be_nil
-
-            expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(true)
-            expect(repository.commit(local_ref).sha).to eq(expected_oid)
-          end
+        it 'writes the ref' do
+          expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(true)
+          expect(repository.commit(local_ref).sha).to eq(new_oid)
         end
       end
 
-      context 'when the branch does not exist' do
-        let(:source_branch) { 'definitely-not-master' }
+      context 'when the commit exists locally' do
+        let(:source_branch) { 'master' }
+        let(:expected_oid) { SeedRepo::LastCommit::ID }
 
-        it 'does not write the ref' do
-          expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(false)
-          expect(repository.commit(local_ref)).to be_nil
+        it 'writes the ref' do
+          # Sanity check: the commit should already exist
+          expect(repository.commit(expected_oid)).not_to be_nil
+
+          expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(true)
+          expect(repository.commit(local_ref).sha).to eq(expected_oid)
         end
       end
     end
 
-    it_behaves_like '#fetch_source_branch!'
+    context 'when the branch does not exist' do
+      let(:source_branch) { 'definitely-not-master' }
 
-    context 'without gitaly', :skip_gitaly_mock do
-      it_behaves_like '#fetch_source_branch!'
+      it 'does not write the ref' do
+        expect(repository.fetch_source_branch!(source_repository, source_branch, local_ref)).to eq(false)
+        expect(repository.commit(local_ref)).to be_nil
+      end
     end
   end
 
diff --git a/spec/lib/gitlab/shell_spec.rb b/spec/lib/gitlab/shell_spec.rb
index c435f988cdd..f8bf896950e 100644
--- a/spec/lib/gitlab/shell_spec.rb
+++ b/spec/lib/gitlab/shell_spec.rb
@@ -403,46 +403,36 @@ describe Gitlab::Shell do
     end
 
     describe '#create_repository' do
-      shared_examples '#create_repository' do
-        let(:repository_storage) { 'default' }
-        let(:repository_storage_path) do
-          Gitlab::GitalyClient::StorageSettings.allow_disk_access do
-            Gitlab.config.repositories.storages[repository_storage].legacy_disk_path
-          end
-        end
-        let(:repo_name) { 'project/path' }
-        let(:created_path) { File.join(repository_storage_path, repo_name + '.git') }
-
-        after do
-          FileUtils.rm_rf(created_path)
-        end
-
-        it 'creates a repository' do
-          expect(gitlab_shell.create_repository(repository_storage, repo_name)).to be_truthy
-
-          expect(File.stat(created_path).mode & 0o777).to eq(0o770)
-
-          hooks_path = File.join(created_path, 'hooks')
-          expect(File.lstat(hooks_path)).to be_symlink
-          expect(File.realpath(hooks_path)).to eq(gitlab_shell_hooks_path)
-        end
-
-        it 'returns false when the command fails' do
-          FileUtils.mkdir_p(File.dirname(created_path))
-          # This file will block the creation of the repo's .git directory. That
-          # should cause #create_repository to fail.
-          FileUtils.touch(created_path)
-
-          expect(gitlab_shell.create_repository(repository_storage, repo_name)).to be_falsy
+      let(:repository_storage) { 'default' }
+      let(:repository_storage_path) do
+        Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+          Gitlab.config.repositories.storages[repository_storage].legacy_disk_path
         end
       end
+      let(:repo_name) { 'project/path' }
+      let(:created_path) { File.join(repository_storage_path, repo_name + '.git') }
 
-      context 'with gitaly' do
-        it_behaves_like '#create_repository'
+      after do
+        FileUtils.rm_rf(created_path)
       end
 
-      context 'without gitaly', :skip_gitaly_mock do
-        it_behaves_like '#create_repository'
+      it 'creates a repository' do
+        expect(gitlab_shell.create_repository(repository_storage, repo_name)).to be_truthy
+
+        expect(File.stat(created_path).mode & 0o777).to eq(0o770)
+
+        hooks_path = File.join(created_path, 'hooks')
+        expect(File.lstat(hooks_path)).to be_symlink
+        expect(File.realpath(hooks_path)).to eq(gitlab_shell_hooks_path)
+      end
+
+      it 'returns false when the command fails' do
+        FileUtils.mkdir_p(File.dirname(created_path))
+        # This file will block the creation of the repo's .git directory. That
+        # should cause #create_repository to fail.
+        FileUtils.touch(created_path)
+
+        expect(gitlab_shell.create_repository(repository_storage, repo_name)).to be_falsy
       end
     end
 
@@ -513,22 +503,12 @@ describe Gitlab::Shell do
       end
     end
 
-    shared_examples 'fetch_remote' do |gitaly_on|
+    describe '#fetch_remote' do
       def fetch_remote(ssh_auth = nil, prune = true)
         gitlab_shell.fetch_remote(repository.raw_repository, 'remote-name', ssh_auth: ssh_auth, prune: prune)
       end
 
-      def expect_gitlab_projects(fail = false, options = {})
-        expect(gitlab_projects).to receive(:fetch_remote).with(
-          'remote-name',
-          timeout,
-          options
-        ).and_return(!fail)
-
-        allow(gitlab_projects).to receive(:output).and_return('error') if fail
-      end
-
-      def expect_gitaly_call(fail, options = {})
+      def expect_call(fail, options = {})
         receive_fetch_remote =
           if fail
             receive(:fetch_remote).and_raise(GRPC::NotFound)
@@ -539,16 +519,6 @@ describe Gitlab::Shell do
         expect_any_instance_of(Gitlab::GitalyClient::RepositoryService).to receive_fetch_remote
       end
 
-      if gitaly_on
-        def expect_call(fail, options = {})
-          expect_gitaly_call(fail, options)
-        end
-      else
-        def expect_call(fail, options = {})
-          expect_gitlab_projects(fail, options)
-        end
-      end
-
       def build_ssh_auth(opts = {})
         defaults = {
           ssh_import?: true,
@@ -634,14 +604,6 @@ describe Gitlab::Shell do
           expect(fetch_remote(ssh_auth)).to be_truthy
         end
       end
-    end
-
-    describe '#fetch_remote local', :skip_gitaly_mock do
-      it_should_behave_like 'fetch_remote', false
-    end
-
-    describe '#fetch_remote gitaly' do
-      it_should_behave_like 'fetch_remote', true
 
       context 'gitaly call' do
         let(:remote_name) { 'remote-name' }
@@ -683,25 +645,6 @@ describe Gitlab::Shell do
           end.to raise_error(Gitlab::Shell::Error, "error")
         end
       end
-
-      context 'without gitaly', :disable_gitaly do
-        it 'returns true when the command succeeds' do
-          expect(gitlab_projects).to receive(:import_project).with(import_url, timeout) { true }
-
-          result = gitlab_shell.import_repository(project.repository_storage, project.disk_path, import_url)
-
-          expect(result).to be_truthy
-        end
-
-        it 'raises an exception when the command fails' do
-          allow(gitlab_projects).to receive(:output) { 'error' }
-          expect(gitlab_projects).to receive(:import_project) { false }
-
-          expect do
-            gitlab_shell.import_repository(project.repository_storage, project.disk_path, import_url)
-          end.to raise_error(Gitlab::Shell::Error, "error")
-        end
-      end
     end
   end
 
diff --git a/spec/lib/gitlab/workhorse_spec.rb b/spec/lib/gitlab/workhorse_spec.rb
index 8fdcfe79fb5..b9e8c6c663a 100644
--- a/spec/lib/gitlab/workhorse_spec.rb
+++ b/spec/lib/gitlab/workhorse_spec.rb
@@ -36,22 +36,20 @@ describe Gitlab::Workhorse do
       allow(described_class).to receive(:git_archive_cache_disabled?).and_return(cache_disabled)
     end
 
-    context 'when Gitaly workhorse_archive feature is enabled' do
-      it 'sets the header correctly' do
-        key, command, params = decode_workhorse_header(subject)
+    it 'sets the header correctly' do
+      key, command, params = decode_workhorse_header(subject)
 
-        expect(key).to eq('Gitlab-Workhorse-Send-Data')
-        expect(command).to eq('git-archive')
-        expect(params).to include(gitaly_params)
-      end
+      expect(key).to eq('Gitlab-Workhorse-Send-Data')
+      expect(command).to eq('git-archive')
+      expect(params).to include(gitaly_params)
+    end
 
-      context 'when archive caching is disabled' do
-        let(:cache_disabled) { true }
+    context 'when archive caching is disabled' do
+      let(:cache_disabled) { true }
 
-        it 'tells workhorse not to use the cache' do
-          _, _, params = decode_workhorse_header(subject)
-          expect(params).to include({ 'DisableCache' => true })
-        end
+      it 'tells workhorse not to use the cache' do
+        _, _, params = decode_workhorse_header(subject)
+        expect(params).to include({ 'DisableCache' => true })
       end
     end
 

From bc00803af03147452c12e9e2c7e8f0c0cba86f73 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kamil=20Trzci=C5=84ski?= <ayufan@ayufan.eu>
Date: Mon, 9 Jul 2018 13:34:18 +0200
Subject: [PATCH 004/113] Access metadata directly from Object Storage

Previously we would pull the file, now, we just stream-it as needed from Object Storage
---
 app/models/ci/build.rb                        |   4 +-
 app/uploaders/gitlab_uploader.rb              |  17 ++
 app/uploaders/job_artifact_uploader.rb        |   8 -
 .../improve-metadata-access-performance.yml   |   5 +
 lib/gitlab/ci/build/artifacts/metadata.rb     |  19 +-
 lib/gitlab/ci/trace/http_io.rb                | 197 ------------------
 lib/gitlab/http_io.rb                         | 193 +++++++++++++++++
 .../projects/jobs_controller_spec.rb          |   2 +-
 .../ci/build/artifacts/metadata_spec.rb       |  24 ++-
 .../lib/gitlab/{ci/trace => }/http_io_spec.rb |   2 +-
 spec/support/http_io/http_io_helpers.rb       |   4 +-
 spec/uploaders/job_artifact_uploader_spec.rb  |   2 +-
 12 files changed, 258 insertions(+), 219 deletions(-)
 create mode 100644 changelogs/unreleased/improve-metadata-access-performance.yml
 delete mode 100644 lib/gitlab/ci/trace/http_io.rb
 create mode 100644 lib/gitlab/http_io.rb
 rename spec/lib/gitlab/{ci/trace => }/http_io_spec.rb (99%)

diff --git a/app/models/ci/build.rb b/app/models/ci/build.rb
index 19949f83351..acf555a5369 100644
--- a/app/models/ci/build.rb
+++ b/app/models/ci/build.rb
@@ -437,9 +437,9 @@ module Ci
     end
 
     def artifacts_metadata_entry(path, **options)
-      artifacts_metadata.use_file do |metadata_path|
+      artifacts_metadata.open do |metadata_stream|
         metadata = Gitlab::Ci::Build::Artifacts::Metadata.new(
-          metadata_path,
+          metadata_stream,
           path,
           **options)
 
diff --git a/app/uploaders/gitlab_uploader.rb b/app/uploaders/gitlab_uploader.rb
index 7919f126075..7636acf255c 100644
--- a/app/uploaders/gitlab_uploader.rb
+++ b/app/uploaders/gitlab_uploader.rb
@@ -71,6 +71,23 @@ class GitlabUploader < CarrierWave::Uploader::Base
     File.join('/', self.class.base_dir, dynamic_segment, filename)
   end
 
+  def open
+    stream = if file_storage?
+      File.open(path, "rb") if path
+    else
+      ::Gitlab::HttpIO.new(url, cached_size) if url
+    end
+
+    return unless stream
+    return stream unless block_given?
+
+    begin
+      yield(stream)
+    ensure
+      stream.close
+    end
+  end
+
   private
 
   # Designed to be overridden by child uploaders that have a dynamic path
diff --git a/app/uploaders/job_artifact_uploader.rb b/app/uploaders/job_artifact_uploader.rb
index 855cf2fc21c..f6af023e0f9 100644
--- a/app/uploaders/job_artifact_uploader.rb
+++ b/app/uploaders/job_artifact_uploader.rb
@@ -18,14 +18,6 @@ class JobArtifactUploader < GitlabUploader
     dynamic_segment
   end
 
-  def open
-    if file_storage?
-      File.open(path, "rb") if path
-    else
-      ::Gitlab::Ci::Trace::HttpIO.new(url, cached_size) if url
-    end
-  end
-
   private
 
   def dynamic_segment
diff --git a/changelogs/unreleased/improve-metadata-access-performance.yml b/changelogs/unreleased/improve-metadata-access-performance.yml
new file mode 100644
index 00000000000..b16fa99dd3b
--- /dev/null
+++ b/changelogs/unreleased/improve-metadata-access-performance.yml
@@ -0,0 +1,5 @@
+---
+title: Access metadata directly from Object Storage
+merge_request:
+author:
+type: performance
diff --git a/lib/gitlab/ci/build/artifacts/metadata.rb b/lib/gitlab/ci/build/artifacts/metadata.rb
index 0bbd60d8ffe..375d8bc1ff5 100644
--- a/lib/gitlab/ci/build/artifacts/metadata.rb
+++ b/lib/gitlab/ci/build/artifacts/metadata.rb
@@ -7,14 +7,15 @@ module Gitlab
       module Artifacts
         class Metadata
           ParserError = Class.new(StandardError)
+          InvalidStreamError = Class.new(StandardError)
 
           VERSION_PATTERN = /^[\w\s]+(\d+\.\d+\.\d+)/
           INVALID_PATH_PATTERN = %r{(^\.?\.?/)|(/\.?\.?/)}
 
-          attr_reader :file, :path, :full_version
+          attr_reader :stream, :path, :full_version
 
-          def initialize(file, path, **opts)
-            @file, @path, @opts = file, path, opts
+          def initialize(stream, path, **opts)
+            @stream, @path, @opts = stream, path, opts
             @full_version = read_version
           end
 
@@ -103,7 +104,17 @@ module Gitlab
           end
 
           def gzip(&block)
-            Zlib::GzipReader.open(@file, &block)
+            raise InvalidStreamError, "Invalid stream" unless @stream
+
+            # restart gzip reading
+            @stream.seek(0)
+
+            gz = Zlib::GzipReader.new(@stream)
+            yield(gz)
+          rescue Zlib::Error => e
+            raise InvalidStreamError, e.message
+          ensure
+            gz&.finish
           end
         end
       end
diff --git a/lib/gitlab/ci/trace/http_io.rb b/lib/gitlab/ci/trace/http_io.rb
deleted file mode 100644
index 8788af57a67..00000000000
--- a/lib/gitlab/ci/trace/http_io.rb
+++ /dev/null
@@ -1,197 +0,0 @@
-##
-# This class is compatible with IO class (https://ruby-doc.org/core-2.3.1/IO.html)
-# source: https://gitlab.com/snippets/1685610
-module Gitlab
-  module Ci
-    class Trace
-      class HttpIO
-        BUFFER_SIZE = 128.kilobytes
-
-        InvalidURLError = Class.new(StandardError)
-        FailedToGetChunkError = Class.new(StandardError)
-
-        attr_reader :uri, :size
-        attr_reader :tell
-        attr_reader :chunk, :chunk_range
-
-        alias_method :pos, :tell
-
-        def initialize(url, size)
-          raise InvalidURLError unless ::Gitlab::UrlSanitizer.valid?(url)
-
-          @uri = URI(url)
-          @size = size
-          @tell = 0
-        end
-
-        def close
-          # no-op
-        end
-
-        def binmode
-          # no-op
-        end
-
-        def binmode?
-          true
-        end
-
-        def path
-          nil
-        end
-
-        def url
-          @uri.to_s
-        end
-
-        def seek(pos, where = IO::SEEK_SET)
-          new_pos =
-            case where
-            when IO::SEEK_END
-              size + pos
-            when IO::SEEK_SET
-              pos
-            when IO::SEEK_CUR
-              tell + pos
-            else
-              -1
-            end
-
-          raise 'new position is outside of file' if new_pos < 0 || new_pos > size
-
-          @tell = new_pos
-        end
-
-        def eof?
-          tell == size
-        end
-
-        def each_line
-          until eof?
-            line = readline
-            break if line.nil?
-
-            yield(line)
-          end
-        end
-
-        def read(length = nil, outbuf = "")
-          out = ""
-
-          length ||= size - tell
-
-          until length <= 0 || eof?
-            data = get_chunk
-            break if data.empty?
-
-            chunk_bytes = [BUFFER_SIZE - chunk_offset, length].min
-            chunk_data = data.byteslice(0, chunk_bytes)
-
-            out << chunk_data
-            @tell += chunk_data.bytesize
-            length -= chunk_data.bytesize
-          end
-
-          # If outbuf is passed, we put the output into the buffer. This supports IO.copy_stream functionality
-          if outbuf
-            outbuf.slice!(0, outbuf.bytesize)
-            outbuf << out
-          end
-
-          out
-        end
-
-        def readline
-          out = ""
-
-          until eof?
-            data = get_chunk
-            new_line = data.index("\n")
-
-            if !new_line.nil?
-              out << data[0..new_line]
-              @tell += new_line + 1
-              break
-            else
-              out << data
-              @tell += data.bytesize
-            end
-          end
-
-          out
-        end
-
-        def write(data)
-          raise NotImplementedError
-        end
-
-        def truncate(offset)
-          raise NotImplementedError
-        end
-
-        def flush
-          raise NotImplementedError
-        end
-
-        def present?
-          true
-        end
-
-        private
-
-        ##
-        # The below methods are not implemented in IO class
-        #
-        def in_range?
-          @chunk_range&.include?(tell)
-        end
-
-        def get_chunk
-          unless in_range?
-            response = Net::HTTP.start(uri.hostname, uri.port, proxy_from_env: true, use_ssl: uri.scheme == 'https') do |http|
-              http.request(request)
-            end
-
-            raise FailedToGetChunkError unless response.code == '200' || response.code == '206'
-
-            @chunk = response.body.force_encoding(Encoding::BINARY)
-            @chunk_range = response.content_range
-
-            ##
-            # Note: If provider does not return content_range, then we set it as we requested
-            # Provider: minio
-            # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
-            # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
-            # Provider: AWS
-            # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
-            # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
-            # Provider: GCS
-            # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
-            # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPOK 200
-            @chunk_range ||= (chunk_start...(chunk_start + @chunk.bytesize))
-          end
-
-          @chunk[chunk_offset..BUFFER_SIZE]
-        end
-
-        def request
-          Net::HTTP::Get.new(uri).tap do |request|
-            request.set_range(chunk_start, BUFFER_SIZE)
-          end
-        end
-
-        def chunk_offset
-          tell % BUFFER_SIZE
-        end
-
-        def chunk_start
-          (tell / BUFFER_SIZE) * BUFFER_SIZE
-        end
-
-        def chunk_end
-          [chunk_start + BUFFER_SIZE, size].min
-        end
-      end
-    end
-  end
-end
diff --git a/lib/gitlab/http_io.rb b/lib/gitlab/http_io.rb
new file mode 100644
index 00000000000..ce24817db54
--- /dev/null
+++ b/lib/gitlab/http_io.rb
@@ -0,0 +1,193 @@
+##
+# This class is compatible with IO class (https://ruby-doc.org/core-2.3.1/IO.html)
+# source: https://gitlab.com/snippets/1685610
+module Gitlab
+  class HttpIO
+    BUFFER_SIZE = 128.kilobytes
+
+    InvalidURLError = Class.new(StandardError)
+    FailedToGetChunkError = Class.new(StandardError)
+
+    attr_reader :uri, :size
+    attr_reader :tell
+    attr_reader :chunk, :chunk_range
+
+    alias_method :pos, :tell
+
+    def initialize(url, size)
+      raise InvalidURLError unless ::Gitlab::UrlSanitizer.valid?(url)
+
+      @uri = URI(url)
+      @size = size
+      @tell = 0
+    end
+
+    def close
+      # no-op
+    end
+
+    def binmode
+      # no-op
+    end
+
+    def binmode?
+      true
+    end
+
+    def path
+      nil
+    end
+
+    def url
+      @uri.to_s
+    end
+
+    def seek(pos, where = IO::SEEK_SET)
+      new_pos =
+        case where
+        when IO::SEEK_END
+          size + pos
+        when IO::SEEK_SET
+          pos
+        when IO::SEEK_CUR
+          tell + pos
+        else
+          -1
+        end
+
+      raise 'new position is outside of file' if new_pos < 0 || new_pos > size
+
+      @tell = new_pos
+    end
+
+    def eof?
+      tell == size
+    end
+
+    def each_line
+      until eof?
+        line = readline
+        break if line.nil?
+
+        yield(line)
+      end
+    end
+
+    def read(length = nil, outbuf = "")
+      out = ""
+
+      length ||= size - tell
+
+      until length <= 0 || eof?
+        data = get_chunk
+        break if data.empty?
+
+        chunk_bytes = [BUFFER_SIZE - chunk_offset, length].min
+        chunk_data = data.byteslice(0, chunk_bytes)
+
+        out << chunk_data
+        @tell += chunk_data.bytesize
+        length -= chunk_data.bytesize
+      end
+
+      # If outbuf is passed, we put the output into the buffer. This supports IO.copy_stream functionality
+      if outbuf
+        outbuf.slice!(0, outbuf.bytesize)
+        outbuf << out
+      end
+
+      out
+    end
+
+    def readline
+      out = ""
+
+      until eof?
+        data = get_chunk
+        new_line = data.index("\n")
+
+        if !new_line.nil?
+          out << data[0..new_line]
+          @tell += new_line + 1
+          break
+        else
+          out << data
+          @tell += data.bytesize
+        end
+      end
+
+      out
+    end
+
+    def write(data)
+      raise NotImplementedError
+    end
+
+    def truncate(offset)
+      raise NotImplementedError
+    end
+
+    def flush
+      raise NotImplementedError
+    end
+
+    def present?
+      true
+    end
+
+    private
+
+    ##
+    # The below methods are not implemented in IO class
+    #
+    def in_range?
+      @chunk_range&.include?(tell)
+    end
+
+    def get_chunk
+      unless in_range?
+        response = Net::HTTP.start(uri.hostname, uri.port, proxy_from_env: true, use_ssl: uri.scheme == 'https') do |http|
+          http.request(request)
+        end
+
+        raise FailedToGetChunkError unless response.code == '200' || response.code == '206'
+
+        @chunk = response.body.force_encoding(Encoding::BINARY)
+        @chunk_range = response.content_range
+
+        ##
+        # Note: If provider does not return content_range, then we set it as we requested
+        # Provider: minio
+        # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
+        # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
+        # Provider: AWS
+        # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
+        # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
+        # Provider: GCS
+        # - When the file size is larger than requested Content-range, the Content-range is included in responces with Net::HTTPPartialContent 206
+        # - When the file size is smaller than requested Content-range, the Content-range is included in responces with Net::HTTPOK 200
+        @chunk_range ||= (chunk_start...(chunk_start + @chunk.bytesize))
+      end
+
+      @chunk[chunk_offset..BUFFER_SIZE]
+    end
+
+    def request
+      Net::HTTP::Get.new(uri).tap do |request|
+        request.set_range(chunk_start, BUFFER_SIZE)
+      end
+    end
+
+    def chunk_offset
+      tell % BUFFER_SIZE
+    end
+
+    def chunk_start
+      (tell / BUFFER_SIZE) * BUFFER_SIZE
+    end
+
+    def chunk_end
+      [chunk_start + BUFFER_SIZE, size].min
+    end
+  end
+end
diff --git a/spec/controllers/projects/jobs_controller_spec.rb b/spec/controllers/projects/jobs_controller_spec.rb
index e6332a10265..5f53a2d087a 100644
--- a/spec/controllers/projects/jobs_controller_spec.rb
+++ b/spec/controllers/projects/jobs_controller_spec.rb
@@ -245,7 +245,7 @@ describe Projects::JobsController, :clean_gitlab_redis_shared_state do
         end
 
         it 'returns a trace' do
-          expect { get_trace }.to raise_error(Gitlab::Ci::Trace::HttpIO::FailedToGetChunkError)
+          expect { get_trace }.to raise_error(Gitlab::HttpIO::FailedToGetChunkError)
         end
       end
     end
diff --git a/spec/lib/gitlab/ci/build/artifacts/metadata_spec.rb b/spec/lib/gitlab/ci/build/artifacts/metadata_spec.rb
index 6a52ae01b2f..e327399d82d 100644
--- a/spec/lib/gitlab/ci/build/artifacts/metadata_spec.rb
+++ b/spec/lib/gitlab/ci/build/artifacts/metadata_spec.rb
@@ -2,13 +2,21 @@ require 'spec_helper'
 
 describe Gitlab::Ci::Build::Artifacts::Metadata do
   def metadata(path = '', **opts)
-    described_class.new(metadata_file_path, path, **opts)
+    described_class.new(metadata_file_stream, path, **opts)
   end
 
   let(:metadata_file_path) do
     Rails.root + 'spec/fixtures/ci_build_artifacts_metadata.gz'
   end
 
+  let(:metadata_file_stream) do
+    File.open(metadata_file_path) if metadata_file_path
+  end
+
+  after do
+    metadata_file_stream&.close
+  end
+
   context 'metadata file exists' do
     describe '#find_entries! empty string' do
       subject { metadata('').find_entries! }
@@ -86,11 +94,21 @@ describe Gitlab::Ci::Build::Artifacts::Metadata do
   end
 
   context 'metadata file does not exist' do
-    let(:metadata_file_path) { '' }
+    let(:metadata_file_path) { nil }
 
     describe '#find_entries!' do
       it 'raises error' do
-        expect { metadata.find_entries! }.to raise_error(Errno::ENOENT)
+        expect { metadata.find_entries! }.to raise_error(described_class::InvalidStreamError, /Invalid stream/)
+      end
+    end
+  end
+
+  context 'metadata file is invalid' do
+    let(:metadata_file_path) { Rails.root + 'spec/fixtures/ci_build_artifacts.zip' }
+
+    describe '#find_entries!' do
+      it 'raises error' do
+        expect { metadata.find_entries! }.to raise_error(described_class::InvalidStreamError, /not in gzip format/)
       end
     end
   end
diff --git a/spec/lib/gitlab/ci/trace/http_io_spec.rb b/spec/lib/gitlab/http_io_spec.rb
similarity index 99%
rename from spec/lib/gitlab/ci/trace/http_io_spec.rb
rename to spec/lib/gitlab/http_io_spec.rb
index 5474e2f518c..2c9a73609a9 100644
--- a/spec/lib/gitlab/ci/trace/http_io_spec.rb
+++ b/spec/lib/gitlab/http_io_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-describe Gitlab::Ci::Trace::HttpIO do
+describe Gitlab::HttpIO do
   include HttpIOHelpers
 
   let(:http_io) { described_class.new(url, size) }
diff --git a/spec/support/http_io/http_io_helpers.rb b/spec/support/http_io/http_io_helpers.rb
index 2c68c2cd9a6..86b254aa67d 100644
--- a/spec/support/http_io/http_io_helpers.rb
+++ b/spec/support/http_io/http_io_helpers.rb
@@ -54,12 +54,12 @@ module HttpIOHelpers
   def set_smaller_buffer_size_than(file_size)
     blocks = (file_size / 128)
     new_size = (blocks / 2) * 128
-    stub_const("Gitlab::Ci::Trace::HttpIO::BUFFER_SIZE", new_size)
+    stub_const("Gitlab::HttpIO::BUFFER_SIZE", new_size)
   end
 
   def set_larger_buffer_size_than(file_size)
     blocks = (file_size / 128)
     new_size = (blocks * 2) * 128
-    stub_const("Gitlab::Ci::Trace::HttpIO::BUFFER_SIZE", new_size)
+    stub_const("Gitlab::HttpIO::BUFFER_SIZE", new_size)
   end
 end
diff --git a/spec/uploaders/job_artifact_uploader_spec.rb b/spec/uploaders/job_artifact_uploader_spec.rb
index 026e4356ed6..d0b14768867 100644
--- a/spec/uploaders/job_artifact_uploader_spec.rb
+++ b/spec/uploaders/job_artifact_uploader_spec.rb
@@ -55,7 +55,7 @@ describe JobArtifactUploader do
       end
 
       it 'returns http io stream' do
-        is_expected.to be_a(Gitlab::Ci::Trace::HttpIO)
+        is_expected.to be_a(Gitlab::HttpIO)
       end
     end
   end

From 5a9f23e780222218cc8418fd859669befcaed1b2 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kamil=20Trzci=C5=84ski?= <ayufan@ayufan.eu>
Date: Mon, 9 Jul 2018 14:18:31 +0200
Subject: [PATCH 005/113] Fix and add specs for testing metadata entry

---
 app/uploaders/gitlab_uploader.rb              |  4 ++
 .../projects/jobs_controller_spec.rb          |  7 ++-
 spec/lib/gitlab/http_io_spec.rb               | 41 ++++++------
 spec/models/ci/build_spec.rb                  | 54 ++++++++++++++++
 spec/requests/api/jobs_spec.rb                |  8 ++-
 spec/support/http_io/http_io_helpers.rb       | 56 ++++++-----------
 spec/uploaders/gitlab_uploader_spec.rb        | 62 +++++++++++++++++++
 spec/uploaders/job_artifact_uploader_spec.rb  | 37 -----------
 8 files changed, 172 insertions(+), 97 deletions(-)

diff --git a/app/uploaders/gitlab_uploader.rb b/app/uploaders/gitlab_uploader.rb
index 7636acf255c..7aa81a8c312 100644
--- a/app/uploaders/gitlab_uploader.rb
+++ b/app/uploaders/gitlab_uploader.rb
@@ -71,6 +71,10 @@ class GitlabUploader < CarrierWave::Uploader::Base
     File.join('/', self.class.base_dir, dynamic_segment, filename)
   end
 
+  def cached_size
+    size
+  end
+
   def open
     stream = if file_storage?
       File.open(path, "rb") if path
diff --git a/spec/controllers/projects/jobs_controller_spec.rb b/spec/controllers/projects/jobs_controller_spec.rb
index 5f53a2d087a..38431fb1598 100644
--- a/spec/controllers/projects/jobs_controller_spec.rb
+++ b/spec/controllers/projects/jobs_controller_spec.rb
@@ -225,8 +225,11 @@ describe Projects::JobsController, :clean_gitlab_redis_shared_state do
       end
 
       context 'when there are no network issues' do
+        let(:url) { 'http://object-storage/trace' }
+        let(:file) { expand_fixture_path('trace/sample_trace') }
+
         before do
-          stub_remote_trace_206
+          stub_remote_url_206(url, file)
 
           get_trace
         end
@@ -241,7 +244,7 @@ describe Projects::JobsController, :clean_gitlab_redis_shared_state do
 
       context 'when there is a network issue' do
         before do
-          stub_remote_trace_500
+          stub_remote_url_500(url)
         end
 
         it 'returns a trace' do
diff --git a/spec/lib/gitlab/http_io_spec.rb b/spec/lib/gitlab/http_io_spec.rb
index 2c9a73609a9..788bddb8f59 100644
--- a/spec/lib/gitlab/http_io_spec.rb
+++ b/spec/lib/gitlab/http_io_spec.rb
@@ -4,8 +4,11 @@ describe Gitlab::HttpIO do
   include HttpIOHelpers
 
   let(:http_io) { described_class.new(url, size) }
-  let(:url) { remote_trace_url }
-  let(:size) { remote_trace_size }
+
+  let(:url) { 'http://object-storage/trace' }
+  let(:file_path) { expand_fixture_path('trace/sample_trace') }
+  let(:file_body) { File.read(file_path).force_encoding(Encoding::BINARY) }
+  let(:size) { File.size(file_path) }
 
   describe '#close' do
     subject { http_io.close }
@@ -86,10 +89,10 @@ describe Gitlab::HttpIO do
   describe '#each_line' do
     subject { http_io.each_line }
 
-    let(:string_io) { StringIO.new(remote_trace_body) }
+    let(:string_io) { StringIO.new(file_body) }
 
     before do
-      stub_remote_trace_206
+      stub_remote_url_206(url, file_path)
     end
 
     it 'yields lines' do
@@ -99,7 +102,7 @@ describe Gitlab::HttpIO do
     context 'when buckets on GCS' do
       context 'when BUFFER_SIZE is larger than file size' do
         before do
-          stub_remote_trace_200
+          stub_remote_url_200(url, file_path)
           set_larger_buffer_size_than(size)
         end
 
@@ -117,7 +120,7 @@ describe Gitlab::HttpIO do
 
     context 'when there are no network issue' do
       before do
-        stub_remote_trace_206
+        stub_remote_url_206(url, file_path)
       end
 
       context 'when read whole size' do
@@ -129,7 +132,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body)
+            is_expected.to eq(file_body)
           end
         end
 
@@ -139,7 +142,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body)
+            is_expected.to eq(file_body)
           end
         end
       end
@@ -153,7 +156,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body[0, length])
+            is_expected.to eq(file_body[0, length])
           end
         end
 
@@ -163,7 +166,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body[0, length])
+            is_expected.to eq(file_body[0, length])
           end
         end
       end
@@ -177,7 +180,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body)
+            is_expected.to eq(file_body)
           end
         end
 
@@ -187,7 +190,7 @@ describe Gitlab::HttpIO do
           end
 
           it 'reads a trace' do
-            is_expected.to eq(remote_trace_body)
+            is_expected.to eq(file_body)
           end
         end
       end
@@ -221,11 +224,11 @@ describe Gitlab::HttpIO do
       let(:length) { nil }
 
       before do
-        stub_remote_trace_500
+        stub_remote_url_500(url)
       end
 
       it 'reads a trace' do
-        expect { subject }.to raise_error(Gitlab::Ci::Trace::HttpIO::FailedToGetChunkError)
+        expect { subject }.to raise_error(Gitlab::HttpIO::FailedToGetChunkError)
       end
     end
   end
@@ -233,15 +236,15 @@ describe Gitlab::HttpIO do
   describe '#readline' do
     subject { http_io.readline }
 
-    let(:string_io) { StringIO.new(remote_trace_body) }
+    let(:string_io) { StringIO.new(file_body) }
 
     before do
-      stub_remote_trace_206
+      stub_remote_url_206(url, file_path)
     end
 
     shared_examples 'all line matching' do
       it 'reads a line' do
-        (0...remote_trace_body.lines.count).each do
+        (0...file_body.lines.count).each do
           expect(http_io.readline).to eq(string_io.readline)
         end
       end
@@ -251,11 +254,11 @@ describe Gitlab::HttpIO do
       let(:length) { nil }
 
       before do
-        stub_remote_trace_500
+        stub_remote_url_500(url)
       end
 
       it 'reads a trace' do
-        expect { subject }.to raise_error(Gitlab::Ci::Trace::HttpIO::FailedToGetChunkError)
+        expect { subject }.to raise_error(Gitlab::HttpIO::FailedToGetChunkError)
       end
     end
 
diff --git a/spec/models/ci/build_spec.rb b/spec/models/ci/build_spec.rb
index 090ca159e08..bf116c07495 100644
--- a/spec/models/ci/build_spec.rb
+++ b/spec/models/ci/build_spec.rb
@@ -2687,4 +2687,58 @@ describe Ci::Build do
       end
     end
   end
+
+  describe '#artifacts_metadata_entry' do
+    set(:build) { create(:ci_build, project: project) }
+    let(:path) { 'other_artifacts_0.1.2/another-subdirectory/banana_sample.gif' }
+
+    before do
+      stub_artifacts_object_storage
+    end
+
+    subject { build.artifacts_metadata_entry(path) }
+
+    context 'when using local storage' do
+      let!(:metadata) { create(:ci_job_artifact, :metadata, job: build) }
+
+      context 'for existing file' do
+        it 'does exist' do
+          is_expected.to be_exists
+        end
+      end
+
+      context 'for non-existing file' do
+        let(:path) { 'invalid-file' }
+
+        it 'does not exist' do
+          is_expected.not_to be_exists
+        end
+      end
+    end
+
+    context 'when using remote storage' do
+      include HttpIOHelpers
+
+      let!(:metadata) { create(:ci_job_artifact, :remote_store, :metadata, job: build) }
+      let(:file_path) { expand_fixture_path('ci_build_artifacts_metadata.gz') }
+
+      before do
+        stub_remote_url_206(metadata.file.url, file_path)
+      end
+
+      context 'for existing file' do
+        it 'does exist' do
+          is_expected.to be_exists
+        end
+      end
+
+      context 'for non-existing file' do
+        let(:path) { 'invalid-file' }
+
+        it 'does not exist' do
+          is_expected.not_to be_exists
+        end
+      end
+    end
+  end
 end
diff --git a/spec/requests/api/jobs_spec.rb b/spec/requests/api/jobs_spec.rb
index 50d6f4b4d99..8a2812d1576 100644
--- a/spec/requests/api/jobs_spec.rb
+++ b/spec/requests/api/jobs_spec.rb
@@ -535,12 +535,14 @@ describe API::Jobs do
     context 'authorized user' do
       context 'when trace is in ObjectStorage' do
         let!(:job) { create(:ci_build, :trace_artifact, pipeline: pipeline) }
+        let(:url) { 'http://object-storage/trace' }
+        let(:file) { expand_fixture_path('trace/sample_trace') }
 
         before do
-          stub_remote_trace_206
+          stub_remote_url_206(url, file_path)
           allow_any_instance_of(JobArtifactUploader).to receive(:file_storage?) { false }
-          allow_any_instance_of(JobArtifactUploader).to receive(:url) { remote_trace_url }
-          allow_any_instance_of(JobArtifactUploader).to receive(:size) { remote_trace_size }
+          allow_any_instance_of(JobArtifactUploader).to receive(:url) { url }
+          allow_any_instance_of(JobArtifactUploader).to receive(:size) { File.size(file) }
         end
 
         it 'returns specific job trace' do
diff --git a/spec/support/http_io/http_io_helpers.rb b/spec/support/http_io/http_io_helpers.rb
index 86b254aa67d..42144870eb5 100644
--- a/spec/support/http_io/http_io_helpers.rb
+++ b/spec/support/http_io/http_io_helpers.rb
@@ -1,54 +1,38 @@
 module HttpIOHelpers
-  def stub_remote_trace_206
-    WebMock.stub_request(:get, remote_trace_url)
-      .to_return { |request| remote_trace_response(request, 206) }
+  def stub_remote_url_206(url, file_path)
+    WebMock.stub_request(:get, url)
+      .to_return { |request| remote_url_response(file_path, request, 206) }
   end
 
-  def stub_remote_trace_200
-    WebMock.stub_request(:get, remote_trace_url)
-      .to_return { |request| remote_trace_response(request, 200) }
+  def stub_remote_url_200(url, file_path)
+    WebMock.stub_request(:get, url)
+      .to_return { |request| remote_url_response(file_path, request, 200) }
   end
 
-  def stub_remote_trace_500
-    WebMock.stub_request(:get, remote_trace_url)
+  def stub_remote_url_500(url)
+    WebMock.stub_request(:get, url)
       .to_return(status: [500, "Internal Server Error"])
   end
 
-  def remote_trace_url
-    "http://trace.com/trace"
-  end
-
-  def remote_trace_response(request, responce_status)
+  def remote_url_response(file_path, request, response_status)
     range = request.headers['Range'].match(/bytes=(\d+)-(\d+)/)
 
+    body = File.read(file_path).force_encoding(Encoding::BINARY)
+    size = body.bytesize
+
     {
-      status: responce_status,
-      headers: remote_trace_response_headers(responce_status, range[1].to_i, range[2].to_i),
-      body: range_trace_body(range[1].to_i, range[2].to_i)
+      status: response_status,
+      headers: remote_url_response_headers(response_status, range[1].to_i, range[2].to_i, size),
+      body: body[range[1].to_i..range[2].to_i]
     }
   end
 
-  def remote_trace_response_headers(responce_status, from, to)
-    headers = { 'Content-Type' => 'text/plain' }
-
-    if responce_status == 206
-      headers.merge('Content-Range' => "bytes #{from}-#{to}/#{remote_trace_size}")
+  def remote_url_response_headers(response_status, from, to, size)
+    { 'Content-Type' => 'text/plain' }.tap do |headers|
+      if response_status == 206
+        headers.merge('Content-Range' => "bytes #{from}-#{to}/#{size}")
+      end
     end
-
-    headers
-  end
-
-  def range_trace_body(from, to)
-    remote_trace_body[from..to]
-  end
-
-  def remote_trace_body
-    @remote_trace_body ||= File.read(expand_fixture_path('trace/sample_trace'))
-      .force_encoding(Encoding::BINARY)
-  end
-
-  def remote_trace_size
-    remote_trace_body.bytesize
   end
 
   def set_smaller_buffer_size_than(file_size)
diff --git a/spec/uploaders/gitlab_uploader_spec.rb b/spec/uploaders/gitlab_uploader_spec.rb
index 362f89424d4..44718ed1212 100644
--- a/spec/uploaders/gitlab_uploader_spec.rb
+++ b/spec/uploaders/gitlab_uploader_spec.rb
@@ -68,4 +68,66 @@ describe GitlabUploader do
       expect(subject.file.path).to match(/#{subject.cache_dir}/)
     end
   end
+
+  describe '#open' do
+    context 'when trace is stored in File storage' do
+      context 'when file exists' do
+        let(:file) do
+          fixture_file_upload('spec/fixtures/trace/sample_trace', 'text/plain')
+        end
+
+        before do
+          subject.store!(file)
+        end
+
+        it 'returns io stream' do
+          expect(subject.open).to be_a(IO)
+        end
+
+        it 'when passing block it yields' do
+          expect { |b| subject.open(&b) }.to yield_control
+        end
+      end
+
+      context 'when file does not exist' do
+        it 'returns nil' do
+          expect(subject.open).to be_nil
+        end
+
+        it 'when passing block it does not yield' do
+          expect { |b| subject.open(&b) }.not_to yield_control
+        end
+      end
+    end
+
+    context 'when trace is stored in Object storage' do
+      before do
+        allow(subject).to receive(:file_storage?) { false }
+      end
+
+      context 'when file exists' do
+        before do
+          allow(subject).to receive(:url) { 'http://object_storage.com/trace' }
+        end
+
+        it 'returns http io stream' do
+          expect(subject.open).to be_a(Gitlab::HttpIO)
+        end
+
+        it 'when passing block it yields' do
+          expect { |b| subject.open(&b) }.to yield_control.once
+        end
+      end
+
+      context 'when file does not exist' do
+        it 'returns nil' do
+          expect(subject.open).to be_nil
+        end
+
+        it 'when passing block it does not yield' do
+          expect { |b| subject.open(&b) }.not_to yield_control
+        end
+      end
+    end
+  end
 end
diff --git a/spec/uploaders/job_artifact_uploader_spec.rb b/spec/uploaders/job_artifact_uploader_spec.rb
index d0b14768867..3ad5fe7e3b3 100644
--- a/spec/uploaders/job_artifact_uploader_spec.rb
+++ b/spec/uploaders/job_artifact_uploader_spec.rb
@@ -23,43 +23,6 @@ describe JobArtifactUploader do
                     store_dir: %r[\h{2}/\h{2}/\h{64}/\d{4}_\d{1,2}_\d{1,2}/\d+/\d+\z]
   end
 
-  describe '#open' do
-    subject { uploader.open }
-
-    context 'when trace is stored in File storage' do
-      context 'when file exists' do
-        let(:file) do
-          fixture_file_upload('spec/fixtures/trace/sample_trace', 'text/plain')
-        end
-
-        before do
-          uploader.store!(file)
-        end
-
-        it 'returns io stream' do
-          is_expected.to be_a(IO)
-        end
-      end
-
-      context 'when file does not exist' do
-        it 'returns nil' do
-          is_expected.to be_nil
-        end
-      end
-    end
-
-    context 'when trace is stored in Object storage' do
-      before do
-        allow(uploader).to receive(:file_storage?) { false }
-        allow(uploader).to receive(:url) { 'http://object_storage.com/trace' }
-      end
-
-      it 'returns http io stream' do
-        is_expected.to be_a(Gitlab::HttpIO)
-      end
-    end
-  end
-
   context 'file is stored in valid local_path' do
     let(:file) do
       fixture_file_upload('spec/fixtures/ci_build_artifacts.zip', 'application/zip')

From 8186bb39031b189396b57def9de202ddf65cbcbb Mon Sep 17 00:00:00 2001
From: Filipa Lacerda <filipa@gitlab.com>
Date: Mon, 9 Jul 2018 15:40:48 +0100
Subject: [PATCH 006/113] Removes unused store in diffs mr refactor Removes
 double export for actions in diffs module in mr refactor

---
 app/assets/javascripts/diffs/store/actions.js | 13 +--
 app/assets/javascripts/diffs/store/index.js   | 11 ---
 .../javascripts/diffs/store/modules/index.js  |  2 +-
 changelogs/unreleased/48951-clean-up.yml      |  5 +
 .../diffs/components/changed_files_spec.js    | 97 ++++++++++---------
 5 files changed, 59 insertions(+), 69 deletions(-)
 delete mode 100644 app/assets/javascripts/diffs/store/index.js
 create mode 100644 changelogs/unreleased/48951-clean-up.yml

diff --git a/app/assets/javascripts/diffs/store/actions.js b/app/assets/javascripts/diffs/store/actions.js
index 5e0fd5109bb..5bfe42618c2 100644
--- a/app/assets/javascripts/diffs/store/actions.js
+++ b/app/assets/javascripts/diffs/store/actions.js
@@ -82,14 +82,5 @@ export const expandAllFiles = ({ commit }) => {
   commit(types.EXPAND_ALL_FILES);
 };
 
-export default {
-  setBaseConfig,
-  fetchDiffFiles,
-  setInlineDiffViewType,
-  setParallelDiffViewType,
-  showCommentForm,
-  cancelCommentForm,
-  loadMoreLines,
-  loadCollapsedDiff,
-  expandAllFiles,
-};
+// prevent babel-plugin-rewire from generating an invalid default during karma tests
+export default () => {};
diff --git a/app/assets/javascripts/diffs/store/index.js b/app/assets/javascripts/diffs/store/index.js
deleted file mode 100644
index e6aa8f5b12a..00000000000
--- a/app/assets/javascripts/diffs/store/index.js
+++ /dev/null
@@ -1,11 +0,0 @@
-import Vue from 'vue';
-import Vuex from 'vuex';
-import diffsModule from './modules';
-
-Vue.use(Vuex);
-
-export default new Vuex.Store({
-  modules: {
-    diffs: diffsModule,
-  },
-});
diff --git a/app/assets/javascripts/diffs/store/modules/index.js b/app/assets/javascripts/diffs/store/modules/index.js
index c745320d532..56c26d1ffad 100644
--- a/app/assets/javascripts/diffs/store/modules/index.js
+++ b/app/assets/javascripts/diffs/store/modules/index.js
@@ -1,4 +1,4 @@
-import actions from '../actions';
+import * as actions from '../actions';
 import * as getters from '../getters';
 import mutations from '../mutations';
 import createState from './diff_state';
diff --git a/changelogs/unreleased/48951-clean-up.yml b/changelogs/unreleased/48951-clean-up.yml
new file mode 100644
index 00000000000..0102cd43f96
--- /dev/null
+++ b/changelogs/unreleased/48951-clean-up.yml
@@ -0,0 +1,5 @@
+---
+title: Removes unused vuex code in mr refactor and removes unneeded dependencies
+merge_request: 20499
+author:
+type: other
diff --git a/spec/javascripts/diffs/components/changed_files_spec.js b/spec/javascripts/diffs/components/changed_files_spec.js
index 2d57af6137c..f737e8fa38e 100644
--- a/spec/javascripts/diffs/components/changed_files_spec.js
+++ b/spec/javascripts/diffs/components/changed_files_spec.js
@@ -1,12 +1,17 @@
 import Vue from 'vue';
-import $ from 'jquery';
+import Vuex from 'vuex';
 import { mountComponentWithStore } from 'spec/helpers';
-import store from '~/diffs/store';
-import ChangedFiles from '~/diffs/components/changed_files.vue';
+import diffsModule from '~/diffs/store/modules';
+import changedFiles from '~/diffs/components/changed_files.vue';
 
 describe('ChangedFiles', () => {
-  const Component = Vue.extend(ChangedFiles);
-  const createComponent = props => mountComponentWithStore(Component, { props, store });
+  const Component = Vue.extend(changedFiles);
+  const store = new Vuex.Store({
+    modules: {
+      diffs: diffsModule,
+    },
+  });
+
   let vm;
 
   beforeEach(() => {
@@ -14,6 +19,7 @@ describe('ChangedFiles', () => {
       <div id="dummy-element"></div>
       <div class="js-tabs-affix"></div>
     `);
+
     const props = {
       diffFiles: [
         {
@@ -26,7 +32,8 @@ describe('ChangedFiles', () => {
         },
       ],
     };
-    vm = createComponent(props);
+
+    vm = mountComponentWithStore(Component, { props, store });
   });
 
   describe('with single file added', () => {
@@ -40,58 +47,56 @@ describe('ChangedFiles', () => {
     });
   });
 
-  describe('template', () => {
-    describe('diff view mode buttons', () => {
-      let inlineButton;
-      let parallelButton;
+  describe('diff view mode buttons', () => {
+    let inlineButton;
+    let parallelButton;
 
-      beforeEach(() => {
-        inlineButton = vm.$el.querySelector('.js-inline-diff-button');
-        parallelButton = vm.$el.querySelector('.js-parallel-diff-button');
+    beforeEach(() => {
+      inlineButton = vm.$el.querySelector('.js-inline-diff-button');
+      parallelButton = vm.$el.querySelector('.js-parallel-diff-button');
+    });
+
+    it('should have Inline and Side-by-side buttons', () => {
+      expect(inlineButton).toBeDefined();
+      expect(parallelButton).toBeDefined();
+    });
+
+    it('should add active class to Inline button', done => {
+      vm.$store.state.diffs.diffViewType = 'inline';
+
+      vm.$nextTick(() => {
+        expect(inlineButton.classList.contains('active')).toEqual(true);
+        expect(parallelButton.classList.contains('active')).toEqual(false);
+
+        done();
       });
+    });
 
-      it('should have Inline and Side-by-side buttons', () => {
-        expect(inlineButton).toBeDefined();
-        expect(parallelButton).toBeDefined();
+    it('should toggle active state of buttons when diff view type changed', done => {
+      vm.$store.state.diffs.diffViewType = 'parallel';
+
+      vm.$nextTick(() => {
+        expect(inlineButton.classList.contains('active')).toEqual(false);
+        expect(parallelButton.classList.contains('active')).toEqual(true);
+
+        done();
       });
+    });
 
-      it('should add active class to Inline button', done => {
-        vm.$store.state.diffs.diffViewType = 'inline';
-
-        vm.$nextTick(() => {
-          expect(inlineButton.classList.contains('active')).toEqual(true);
-          expect(parallelButton.classList.contains('active')).toEqual(false);
-
-          done();
-        });
-      });
-
-      it('should toggle active state of buttons when diff view type changed', done => {
-        vm.$store.state.diffs.diffViewType = 'parallel';
+    describe('clicking them', () => {
+      it('should toggle the diff view type', done => {
+        parallelButton.click();
 
         vm.$nextTick(() => {
           expect(inlineButton.classList.contains('active')).toEqual(false);
           expect(parallelButton.classList.contains('active')).toEqual(true);
 
-          done();
-        });
-      });
-
-      describe('clicking them', () => {
-        it('should toggle the diff view type', done => {
-          $(parallelButton).click();
+          inlineButton.click();
 
           vm.$nextTick(() => {
-            expect(inlineButton.classList.contains('active')).toEqual(false);
-            expect(parallelButton.classList.contains('active')).toEqual(true);
-
-            $(inlineButton).click();
-
-            vm.$nextTick(() => {
-              expect(inlineButton.classList.contains('active')).toEqual(true);
-              expect(parallelButton.classList.contains('active')).toEqual(false);
-              done();
-            });
+            expect(inlineButton.classList.contains('active')).toEqual(true);
+            expect(parallelButton.classList.contains('active')).toEqual(false);
+            done();
           });
         });
       });

From cb6bc902ed1f89e7f94caa86b75e756b9163af51 Mon Sep 17 00:00:00 2001
From: Filipa Lacerda <filipa@gitlab.com>
Date: Mon, 9 Jul 2018 16:13:10 +0100
Subject: [PATCH 007/113] Removes hardcoded and unused prop

---
 app/assets/javascripts/diffs/components/diff_file.vue | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/app/assets/javascripts/diffs/components/diff_file.vue b/app/assets/javascripts/diffs/components/diff_file.vue
index 060386c3ecb..a61e368249a 100644
--- a/app/assets/javascripts/diffs/components/diff_file.vue
+++ b/app/assets/javascripts/diffs/components/diff_file.vue
@@ -31,9 +31,6 @@ export default {
     };
   },
   computed: {
-    isDiscussionsExpanded() {
-      return true; // TODO: @fatihacet - Fix this.
-    },
     isCollapsed() {
       return this.file.collapsed || false;
     },
@@ -131,7 +128,6 @@ export default {
       :diff-file="file"
       :collapsible="true"
       :expanded="!isCollapsed"
-      :discussions-expanded="isDiscussionsExpanded"
       :add-merge-request-buttons="true"
       class="js-file-title file-title"
       @toggleFile="handleToggle"

From e6f3452314c73875bbf9560a84706161c25c2831 Mon Sep 17 00:00:00 2001
From: Tiago Botelho <tiagonbotelho@hotmail.com>
Date: Mon, 9 Jul 2018 13:24:29 +0100
Subject: [PATCH 008/113] Adds with_projects optional parameter to /groups/:id
 API endpoint

---
 ...-omit-projects-from-get-group-endpoint.yml |  5 ++++
 doc/api/groups.md                             | 25 +++++++++++++++++
 lib/api/groups.rb                             |  3 ++-
 spec/requests/api/groups_spec.rb              | 27 ++++++++++++++++---
 4 files changed, 55 insertions(+), 5 deletions(-)
 create mode 100644 changelogs/unreleased/42415-omit-projects-from-get-group-endpoint.yml

diff --git a/changelogs/unreleased/42415-omit-projects-from-get-group-endpoint.yml b/changelogs/unreleased/42415-omit-projects-from-get-group-endpoint.yml
new file mode 100644
index 00000000000..cabe5216045
--- /dev/null
+++ b/changelogs/unreleased/42415-omit-projects-from-get-group-endpoint.yml
@@ -0,0 +1,5 @@
+---
+title: Adds with_projects optional parameter to GET /groups/:id API endpoint
+merge_request: 20494
+author:
+type: changed
diff --git a/doc/api/groups.md b/doc/api/groups.md
index 53d72509423..11de75039ee 100644
--- a/doc/api/groups.md
+++ b/doc/api/groups.md
@@ -210,6 +210,7 @@ Parameters:
 | --------- | ---- | -------- | ----------- |
 | `id` | integer/string | yes | The ID or [URL-encoded path of the group](README.md#namespaced-path-encoding) owned by the authenticated user |
 | `with_custom_attributes` | boolean | no | Include [custom attributes](custom_attributes.md) in response (admins only) |
+| `with_projects` | boolean | no | Include details from projects that belong to the specified group (defaults to `true`). |
 
 ```bash
 curl --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/groups/4
@@ -361,6 +362,30 @@ Example response:
 }
 ```
 
+When adding the parameter `with_projects=false`, projects will not be returned.
+
+```bash
+curl --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/groups/4?with_projects=false
+```
+
+Example response:
+
+```json
+{
+  "id": 4,
+  "name": "Twitter",
+  "path": "twitter",
+  "description": "Aliquid qui quis dignissimos distinctio ut commodi voluptas est.",
+  "visibility": "public",
+  "avatar_url": null,
+  "web_url": "https://gitlab.example.com/groups/twitter",
+  "request_access_enabled": false,
+  "full_name": "Twitter",
+  "full_path": "twitter",
+  "parent_id": null
+}
+```
+
 ## New group
 
 Creates a new project group. Available only for users who can create groups.
diff --git a/lib/api/groups.rb b/lib/api/groups.rb
index f633dd88d06..797b04df059 100644
--- a/lib/api/groups.rb
+++ b/lib/api/groups.rb
@@ -150,12 +150,13 @@ module API
       end
       params do
         use :with_custom_attributes
+        optional :with_projects, type: Boolean, default: true, desc: 'Omit project details'
       end
       get ":id" do
         group = find_group!(params[:id])
 
         options = {
-          with: Entities::GroupDetail,
+          with: params[:with_projects] ? Entities::GroupDetail : Entities::Group,
           current_user: current_user
         }
 
diff --git a/spec/requests/api/groups_spec.rb b/spec/requests/api/groups_spec.rb
index da23fdd7dca..5a04e699d60 100644
--- a/spec/requests/api/groups_spec.rb
+++ b/spec/requests/api/groups_spec.rb
@@ -251,14 +251,22 @@ describe API::Groups do
       projects
     end
 
+    def response_project_ids(json_response, key)
+      json_response[key].map do |project|
+        project['id'].to_i
+      end
+    end
+
     context 'when unauthenticated' do
       it 'returns 404 for a private group' do
         get api("/groups/#{group2.id}")
+
         expect(response).to have_gitlab_http_status(404)
       end
 
       it 'returns 200 for a public group' do
         get api("/groups/#{group1.id}")
+
         expect(response).to have_gitlab_http_status(200)
       end
 
@@ -268,7 +276,7 @@ describe API::Groups do
 
         get api("/groups/#{public_group.id}")
 
-        expect(json_response['projects'].map { |p| p['id'].to_i })
+        expect(response_project_ids(json_response, 'projects'))
           .to contain_exactly(projects[:public].id)
       end
 
@@ -278,7 +286,7 @@ describe API::Groups do
 
         get api("/groups/#{group1.id}")
 
-        expect(json_response['shared_projects'].map { |p| p['id'].to_i })
+        expect(response_project_ids(json_response, 'shared_projects'))
           .to contain_exactly(projects[:public].id)
       end
     end
@@ -309,6 +317,17 @@ describe API::Groups do
         expect(json_response['shared_projects'][0]['id']).to eq(project.id)
       end
 
+      it "returns one of user1's groups without projects when with_projects option is set to false" do
+        project = create(:project, namespace: group2, path: 'Foo')
+        create(:project_group_link, project: project, group: group1)
+
+        get api("/groups/#{group1.id}", user1), with_projects: false
+
+        expect(response).to have_gitlab_http_status(200)
+        expect(json_response['projects']).to be_nil
+        expect(json_response['shared_projects']).to be_nil
+      end
+
       it "does not return a non existing group" do
         get api("/groups/1328", user1)
 
@@ -327,7 +346,7 @@ describe API::Groups do
 
         get api("/groups/#{public_group.id}", user2)
 
-        expect(json_response['projects'].map { |p| p['id'].to_i })
+        expect(response_project_ids(json_response, 'projects'))
           .to contain_exactly(projects[:public].id, projects[:internal].id)
       end
 
@@ -337,7 +356,7 @@ describe API::Groups do
 
         get api("/groups/#{group1.id}", user2)
 
-        expect(json_response['shared_projects'].map { |p| p['id'].to_i })
+        expect(response_project_ids(json_response, 'shared_projects'))
           .to contain_exactly(projects[:public].id, projects[:internal].id)
       end
     end

From 75e1f256385ed16b6a0b5bc40e52ad169d041b41 Mon Sep 17 00:00:00 2001
From: Kaspar Emanuel <kaspar.emanuel@gmail.com>
Date: Sun, 8 Jul 2018 22:09:44 +0100
Subject: [PATCH 009/113] Fix API docs on unauthenticated projects return

---
 doc/api/projects.md | 43 +++++++++++++++++++++++++++++++++++++++----
 1 file changed, 39 insertions(+), 4 deletions(-)

diff --git a/doc/api/projects.md b/doc/api/projects.md
index 1e06f6d01f3..a35c2a56992 100644
--- a/doc/api/projects.md
+++ b/doc/api/projects.md
@@ -34,7 +34,7 @@ There are currently three options for `merge_method` to choose from:
 ## List all projects
 
 Get a list of all visible projects across GitLab for the authenticated user.
-When accessed without authentication, only public projects are returned.
+When accessed without authentication, only public projects with "simple" fields are returned.
 
 ```
 GET /projects
@@ -47,7 +47,7 @@ GET /projects
 | `order_by` | string | no | Return projects ordered by `id`, `name`, `path`, `created_at`, `updated_at`, or `last_activity_at` fields. Default is `created_at` |
 | `sort` | string | no | Return projects sorted in `asc` or `desc` order. Default is `desc` |
 | `search` | string | no | Return list of projects matching the search criteria |
-| `simple` | boolean | no | Return only the ID, URL, name, and path of each project |
+| `simple` | boolean | no | Return only limited fields for each project. This is a no-op without authentication as then _only_ simple fields are returned. |
 | `owned` | boolean | no | Limit by projects owned by the current user |
 | `membership` | boolean | no | Limit by projects that the current user is a member of |
 | `starred` | boolean | no | Limit by projects starred by the current user |
@@ -56,6 +56,41 @@ GET /projects
 | `with_issues_enabled` | boolean | no | Limit by enabled issues feature |
 | `with_merge_requests_enabled` | boolean | no | Limit by enabled merge requests feature |
 
+When `simple=true` or the user is unauthenticated this returns something like:
+
+```json
+[
+  {
+    "id": 4,
+    "description": null,
+    "default_branch": "master",
+    "ssh_url_to_repo": "git@example.com:diaspora/diaspora-client.git",
+    "http_url_to_repo": "http://example.com/diaspora/diaspora-client.git",
+    "web_url": "http://example.com/diaspora/diaspora-client",
+    "readme_url": "http://example.com/diaspora/diaspora-client/blob/master/README.md",
+    "tag_list": [
+      "example",
+      "disapora client"
+    ],
+    "name": "Diaspora Client",
+    "name_with_namespace": "Diaspora / Diaspora Client",
+    "path": "diaspora-client",
+    "path_with_namespace": "diaspora/diaspora-client",
+    "created_at": "2013-09-30T13:46:02Z",
+    "last_activity_at": "2013-09-30T13:46:02Z",
+    "forks_count": 0,
+    "avatar_url": "http://example.com/uploads/project/avatar/4/uploads/avatar.png",
+    "star_count": 0,
+  },
+  {
+    "id": 6,
+    "description": null,
+    "default_branch": "master",
+...
+```
+
+When the user is authenticated and `simple` is not set this returns something like:
+
 ```json
 [
   {
@@ -235,7 +270,7 @@ GET /users/:user_id/projects
 | `order_by` | string | no | Return projects ordered by `id`, `name`, `path`, `created_at`, `updated_at`, or `last_activity_at` fields. Default is `created_at` |
 | `sort` | string | no | Return projects sorted in `asc` or `desc` order. Default is `desc` |
 | `search` | string | no | Return list of projects matching the search criteria |
-| `simple` | boolean | no | Return only the ID, URL, name, and path of each project |
+| `simple` | boolean | no | Return only limited fields for each project. This is a no-op without authentication as then _only_ simple fields are returned. |
 | `owned` | boolean | no | Limit by projects owned by the current user |
 | `membership` | boolean | no | Limit by projects that the current user is a member of |
 | `starred` | boolean | no | Limit by projects starred by the current user |
@@ -723,7 +758,7 @@ GET /projects/:id/forks
 | `order_by` | string | no | Return projects ordered by `id`, `name`, `path`, `created_at`, `updated_at`, or `last_activity_at` fields. Default is `created_at` |
 | `sort` | string | no | Return projects sorted in `asc` or `desc` order. Default is `desc` |
 | `search` | string | no | Return list of projects matching the search criteria |
-| `simple` | boolean | no | Return only the ID, URL, name, and path of each project |
+| `simple` | boolean | no | Return only limited fields for each project. This is a no-op without authentication as then _only_ simple fields are returned. |
 | `owned` | boolean | no | Limit by projects owned by the current user |
 | `membership` | boolean | no | Limit by projects that the current user is a member of |
 | `starred` | boolean | no | Limit by projects starred by the current user |

From 737666a3d121b1bf89861de4445f857256a47949 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Kamil=20Trzci=C5=84ski?= <ayufan@ayufan.eu>
Date: Mon, 9 Jul 2018 18:13:34 +0200
Subject: [PATCH 010/113] Fix specs

---
 app/uploaders/gitlab_uploader.rb                  | 11 ++++++-----
 spec/controllers/projects/jobs_controller_spec.rb | 11 +++++------
 spec/requests/api/jobs_spec.rb                    |  4 ++--
 3 files changed, 13 insertions(+), 13 deletions(-)

diff --git a/app/uploaders/gitlab_uploader.rb b/app/uploaders/gitlab_uploader.rb
index 7aa81a8c312..719bd6ef418 100644
--- a/app/uploaders/gitlab_uploader.rb
+++ b/app/uploaders/gitlab_uploader.rb
@@ -76,11 +76,12 @@ class GitlabUploader < CarrierWave::Uploader::Base
   end
 
   def open
-    stream = if file_storage?
-      File.open(path, "rb") if path
-    else
-      ::Gitlab::HttpIO.new(url, cached_size) if url
-    end
+    stream =
+      if file_storage?
+        File.open(path, "rb") if path
+      else
+        ::Gitlab::HttpIO.new(url, cached_size) if url
+      end
 
     return unless stream
     return stream unless block_given?
diff --git a/spec/controllers/projects/jobs_controller_spec.rb b/spec/controllers/projects/jobs_controller_spec.rb
index 38431fb1598..6be27126383 100644
--- a/spec/controllers/projects/jobs_controller_spec.rb
+++ b/spec/controllers/projects/jobs_controller_spec.rb
@@ -216,20 +216,19 @@ describe Projects::JobsController, :clean_gitlab_redis_shared_state do
     end
 
     context 'when trace artifact is in ObjectStorage' do
+      let(:url) { 'http://object-storage/trace' }
+      let(:file_path) { expand_fixture_path('trace/sample_trace') }
       let!(:job) { create(:ci_build, :success, :trace_artifact, pipeline: pipeline) }
 
       before do
         allow_any_instance_of(JobArtifactUploader).to receive(:file_storage?) { false }
-        allow_any_instance_of(JobArtifactUploader).to receive(:url) { remote_trace_url }
-        allow_any_instance_of(JobArtifactUploader).to receive(:size) { remote_trace_size }
+        allow_any_instance_of(JobArtifactUploader).to receive(:url) { url }
+        allow_any_instance_of(JobArtifactUploader).to receive(:size) { File.size(file_path) }
       end
 
       context 'when there are no network issues' do
-        let(:url) { 'http://object-storage/trace' }
-        let(:file) { expand_fixture_path('trace/sample_trace') }
-
         before do
-          stub_remote_url_206(url, file)
+          stub_remote_url_206(url, file_path)
 
           get_trace
         end
diff --git a/spec/requests/api/jobs_spec.rb b/spec/requests/api/jobs_spec.rb
index 8a2812d1576..0609166ed90 100644
--- a/spec/requests/api/jobs_spec.rb
+++ b/spec/requests/api/jobs_spec.rb
@@ -536,13 +536,13 @@ describe API::Jobs do
       context 'when trace is in ObjectStorage' do
         let!(:job) { create(:ci_build, :trace_artifact, pipeline: pipeline) }
         let(:url) { 'http://object-storage/trace' }
-        let(:file) { expand_fixture_path('trace/sample_trace') }
+        let(:file_path) { expand_fixture_path('trace/sample_trace') }
 
         before do
           stub_remote_url_206(url, file_path)
           allow_any_instance_of(JobArtifactUploader).to receive(:file_storage?) { false }
           allow_any_instance_of(JobArtifactUploader).to receive(:url) { url }
-          allow_any_instance_of(JobArtifactUploader).to receive(:size) { File.size(file) }
+          allow_any_instance_of(JobArtifactUploader).to receive(:size) { File.size(file_path) }
         end
 
         it 'returns specific job trace' do

From 38d407d7a7fd07888cbfda26360cd0a1c4972ec5 Mon Sep 17 00:00:00 2001
From: Jamie Schembri <jamie@schembri.me>
Date: Mon, 9 Jul 2018 17:44:09 +0200
Subject: [PATCH 011/113] Fix #48537 - Update avatar only via the projects API

---
 .../48537-update-avatar-only-via-api.yml           |  5 +++++
 lib/api/projects.rb                                |  3 ++-
 spec/requests/api/projects_spec.rb                 | 14 ++++++++++++++
 3 files changed, 21 insertions(+), 1 deletion(-)
 create mode 100644 changelogs/unreleased/48537-update-avatar-only-via-api.yml

diff --git a/changelogs/unreleased/48537-update-avatar-only-via-api.yml b/changelogs/unreleased/48537-update-avatar-only-via-api.yml
new file mode 100644
index 00000000000..9b3ab946cc1
--- /dev/null
+++ b/changelogs/unreleased/48537-update-avatar-only-via-api.yml
@@ -0,0 +1,5 @@
+---
+title: Allow updating a project's avatar without other params
+merge_request:
+author: Jamie Schembri
+type: fixed
diff --git a/lib/api/projects.rb b/lib/api/projects.rb
index b83da00502d..8273abe48c9 100644
--- a/lib/api/projects.rb
+++ b/lib/api/projects.rb
@@ -260,7 +260,8 @@ module API
             :snippets_enabled,
             :tag_list,
             :visibility,
-            :wiki_enabled
+            :wiki_enabled,
+            :avatar
           ]
         optional :name, type: String, desc: 'The name of the project'
         optional :default_branch, type: String, desc: 'The default branch of the project'
diff --git a/spec/requests/api/projects_spec.rb b/spec/requests/api/projects_spec.rb
index de540ba7a10..15da81b57db 100644
--- a/spec/requests/api/projects_spec.rb
+++ b/spec/requests/api/projects_spec.rb
@@ -1526,6 +1526,20 @@ describe API::Projects do
 
         expect(response).to have_gitlab_http_status(400)
       end
+
+      it 'updates avatar' do
+        project_param = {
+          avatar: fixture_file_upload('spec/fixtures/banana_sample.gif',
+                                      'image/gif')
+        }
+
+        put api("/projects/#{project3.id}", user), project_param
+
+        expect(response).to have_gitlab_http_status(200)
+        expect(json_response['avatar_url']).to eq('http://localhost/uploads/'\
+                                                  '-/system/project/avatar/'\
+                                                  "#{project3.id}/banana_sample.gif")
+      end
     end
 
     context 'when authenticated as project master' do

From b98bff13defd7d0af68cdba4a47da19e3e606659 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Rub=C3=A9n=20D=C3=A1vila?= <ruben@gitlab.com>
Date: Fri, 6 Jul 2018 15:56:41 -0500
Subject: [PATCH 012/113] Backport some changes from EE

---
 lib/gitlab/git_access.rb           | 20 +++++++++++++-------
 spec/lib/gitlab/git_access_spec.rb | 24 ++++++++++++++----------
 2 files changed, 27 insertions(+), 17 deletions(-)

diff --git a/lib/gitlab/git_access.rb b/lib/gitlab/git_access.rb
index db7c29be94b..35808149b90 100644
--- a/lib/gitlab/git_access.rb
+++ b/lib/gitlab/git_access.rb
@@ -2,6 +2,8 @@
 # class return an instance of `GitlabAccessStatus`
 module Gitlab
   class GitAccess
+    include Gitlab::Utils::StrongMemoize
+
     UnauthorizedError = Class.new(StandardError)
     NotFoundError = Class.new(StandardError)
     ProjectCreationError = Class.new(StandardError)
@@ -26,7 +28,7 @@ module Gitlab
     PUSH_COMMANDS = %w{ git-receive-pack }.freeze
     ALL_COMMANDS = DOWNLOAD_COMMANDS + PUSH_COMMANDS
 
-    attr_reader :actor, :project, :protocol, :authentication_abilities, :namespace_path, :project_path, :redirected_path, :auth_result_type
+    attr_reader :actor, :project, :protocol, :authentication_abilities, :namespace_path, :project_path, :redirected_path, :auth_result_type, :changes
 
     def initialize(actor, project, protocol, authentication_abilities:, namespace_path: nil, project_path: nil, redirected_path: nil, auth_result_type: nil)
       @actor    = actor
@@ -40,6 +42,8 @@ module Gitlab
     end
 
     def check(cmd, changes)
+      @changes = changes
+
       check_protocol!
       check_valid_actor!
       check_active_user!
@@ -58,7 +62,7 @@ module Gitlab
       when *DOWNLOAD_COMMANDS
         check_download_access!
       when *PUSH_COMMANDS
-        check_push_access!(changes)
+        check_push_access!
       end
 
       true
@@ -218,7 +222,7 @@ module Gitlab
       end
     end
 
-    def check_push_access!(changes)
+    def check_push_access!
       if project.repository_read_only?
         raise UnauthorizedError, ERROR_MESSAGES[:read_only]
       end
@@ -235,17 +239,15 @@ module Gitlab
 
       return if changes.blank? # Allow access this is needed for EE.
 
-      check_change_access!(changes)
+      check_change_access!
     end
 
-    def check_change_access!(changes)
+    def check_change_access!
       # If there are worktrees with a HEAD pointing to a non-existent object,
       # calls to `git rev-list --all` will fail in git 2.15+. This should also
       # clear stale lock files.
       project.repository.clean_stale_repository_files
 
-      changes_list = Gitlab::ChangesList.new(changes)
-
       # Iterate over all changes to find if user allowed all of them to be applied
       changes_list.each.with_index do |change, index|
         first_change = index == 0
@@ -321,6 +323,10 @@ module Gitlab
 
     protected
 
+    def changes_list
+      @changes_list ||= Gitlab::ChangesList.new(changes)
+    end
+
     def user
       return @user if defined?(@user)
 
diff --git a/spec/lib/gitlab/git_access_spec.rb b/spec/lib/gitlab/git_access_spec.rb
index ff32025253a..6d11efb42c8 100644
--- a/spec/lib/gitlab/git_access_spec.rb
+++ b/spec/lib/gitlab/git_access_spec.rb
@@ -13,14 +13,6 @@ describe Gitlab::GitAccess do
   let(:authentication_abilities) { %i[read_project download_code push_code] }
   let(:redirected_path) { nil }
   let(:auth_result_type) { nil }
-
-  let(:access) do
-    described_class.new(actor, project,
-      protocol, authentication_abilities: authentication_abilities,
-                namespace_path: namespace_path, project_path: project_path,
-                redirected_path: redirected_path, auth_result_type: auth_result_type)
-  end
-
   let(:changes) { '_any' }
   let(:push_access_check) { access.check('git-receive-pack', changes) }
   let(:pull_access_check) { access.check('git-upload-pack', changes) }
@@ -724,10 +716,11 @@ describe Gitlab::GitAccess do
   end
 
   describe '#check_push_access!' do
+    let(:unprotected_branch) { 'unprotected_branch' }
+
     before do
       merge_into_protected_branch
     end
-    let(:unprotected_branch) { 'unprotected_branch' }
 
     let(:changes) do
       { push_new_branch: "#{Gitlab::Git::BLANK_SHA} 570e7b2ab refs/heads/wow",
@@ -785,7 +778,7 @@ describe Gitlab::GitAccess do
 
           aggregate_failures do
             matrix.each do |action, allowed|
-              check = -> { access.send(:check_push_access!, changes[action]) }
+              check = -> { push_changes(changes[action]) }
 
               if allowed
                 expect(&check).not_to raise_error,
@@ -1152,6 +1145,17 @@ describe Gitlab::GitAccess do
 
   private
 
+  def access
+    described_class.new(actor, project, protocol,
+                        authentication_abilities: authentication_abilities,
+                        namespace_path: namespace_path, project_path: project_path,
+                        redirected_path: redirected_path, auth_result_type: auth_result_type)
+  end
+
+  def push_changes(changes)
+    access.check('git-receive-pack', changes)
+  end
+
   def raise_unauthorized(message)
     raise_error(Gitlab::GitAccess::UnauthorizedError, message)
   end

From 220f37a02bb009ae3fb3ee1d442e6a9105f1729d Mon Sep 17 00:00:00 2001
From: Lin Jen-Shin <godfat@godfat.org>
Date: Tue, 10 Jul 2018 01:49:50 +0800
Subject: [PATCH 013/113] This test was copied from EE

---
 spec/mailers/notify_spec.rb | 11 +++++++++++
 1 file changed, 11 insertions(+)

diff --git a/spec/mailers/notify_spec.rb b/spec/mailers/notify_spec.rb
index a9a45367b4a..effbfb1ba84 100644
--- a/spec/mailers/notify_spec.rb
+++ b/spec/mailers/notify_spec.rb
@@ -314,6 +314,17 @@ describe Notify do
         end
       end
 
+      describe 'that are new with a description' do
+        subject { described_class.new_merge_request_email(merge_request.assignee_id, merge_request.id) }
+
+        it_behaves_like 'it should show Gmail Actions View Merge request link'
+        it_behaves_like "an unsubscribeable thread"
+
+        it 'contains the description' do
+          is_expected.to have_body_text(merge_request.description)
+        end
+      end
+
       describe 'that have been relabeled' do
         subject { described_class.relabeled_merge_request_email(recipient.id, merge_request.id, %w[foo bar baz], current_user.id) }
 

From ded205b4024109942dc50594f504f0e85e2447bd Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Mon, 9 Jul 2018 22:41:19 +0200
Subject: [PATCH 014/113] Fix mountComponent helper path in docs

---
 doc/development/fe_guide/vue.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/development/fe_guide/vue.md b/doc/development/fe_guide/vue.md
index e31ee087358..219b98ac696 100644
--- a/doc/development/fe_guide/vue.md
+++ b/doc/development/fe_guide/vue.md
@@ -425,7 +425,7 @@ There is a helper in `spec/javascripts/helpers/vue_mount_component_helper.js` th
 
 ```javascript
 import Vue from 'vue';
-import mountComponent from 'helpers/vue_mount_component_helper.js'
+import mountComponent from 'spec/helpers/vue_mount_component_helper'
 import component from 'component.vue'
 
 const Component = Vue.extend(component);

From 7ce51548acc8fe27ec9325a9a9583e22edbc2822 Mon Sep 17 00:00:00 2001
From: Jasper Maes <jaspermaes.jm@gmail.com>
Date: Mon, 9 Jul 2018 23:07:57 +0200
Subject: [PATCH 015/113] Rails5 MySQL fix rename_column as part of
 cleanup_concurrent_column_type_change

---
 changelogs/unreleased/rails5-mysql-rename-column.yml  | 5 +++++
 config/initializers/active_record_table_definition.rb | 5 +++++
 2 files changed, 10 insertions(+)
 create mode 100644 changelogs/unreleased/rails5-mysql-rename-column.yml

diff --git a/changelogs/unreleased/rails5-mysql-rename-column.yml b/changelogs/unreleased/rails5-mysql-rename-column.yml
new file mode 100644
index 00000000000..cbae9250744
--- /dev/null
+++ b/changelogs/unreleased/rails5-mysql-rename-column.yml
@@ -0,0 +1,5 @@
+---
+title: Rails5 MySQL fix rename_column as part of cleanup_concurrent_column_type_change
+merge_request: 20514
+author: Jasper Maes
+type: fixed
diff --git a/config/initializers/active_record_table_definition.rb b/config/initializers/active_record_table_definition.rb
index 8e3a1c7a62f..a71069f27a3 100644
--- a/config/initializers/active_record_table_definition.rb
+++ b/config/initializers/active_record_table_definition.rb
@@ -29,6 +29,11 @@ module ActiveRecord
       def datetime_with_timezone(column_name, **options)
         column(column_name, :datetime_with_timezone, options)
       end
+
+      # Disable timestamp alias to datetime
+      def aliased_types(name, fallback)
+        fallback
+      end
     end
   end
 end

From d79cef3a9a5577765d975326fbf4bc1b8c5634de Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Tue, 10 Jul 2018 08:11:04 +0000
Subject: [PATCH 016/113] Support manually stopping any environment from the UI

---
 .../components/environment_actions.vue        |  91 +-
 .../components/environment_external_url.vue   |  51 +-
 .../components/environment_item.vue           | 867 +++++++++---------
 .../components/environment_monitoring.vue     |  49 +-
 .../components/environment_rollback.vue       |  96 +-
 .../components/environment_stop.vue           | 114 +--
 .../environment_terminal_button.vue           |  53 +-
 .../components/environments_app.vue           |   4 +
 .../components/stop_environment_modal.vue     |  92 ++
 .../folder/environments_folder_view.vue       |   8 +
 .../environments/mixins/environments_mixin.js |  22 +-
 .../services/environments_service.js          |   2 +-
 .../stylesheets/pages/environments.scss       |   2 +-
 .../projects/environments_controller.rb       |   6 +-
 .../projects/merge_requests_controller.rb     |   2 +-
 app/policies/environment_policy.rb            |  10 +-
 app/serializers/environment_entity.rb         |  12 +-
 app/views/projects/deployments/_actions.haml  |   7 +-
 app/views/projects/deployments/_rollback.haml |   7 +-
 .../environments/_external_url.html.haml      |   2 +-
 .../projects/environments/_stop.html.haml     |   5 -
 .../projects/environments/show.html.haml      |  32 +-
 .../unreleased/winh-stop-all-environments.yml |   5 +
 lib/api/environments.rb                       |   3 +-
 locale/gitlab.pot                             |  37 +-
 .../projects/environments/environment_spec.rb |  13 +-
 .../environments/environments_spec.rb         |  12 +-
 .../environments/environment_rollback_spec.js |   4 +-
 .../environments/environment_stop_spec.js     |  12 +-
 spec/policies/environment_policy_spec.rb      | 128 ++-
 spec/serializers/environment_entity_spec.rb   |   3 +-
 .../environment_serializer_spec.rb            |  10 +-
 32 files changed, 1009 insertions(+), 752 deletions(-)
 create mode 100644 app/assets/javascripts/environments/components/stop_environment_modal.vue
 delete mode 100644 app/views/projects/environments/_stop.html.haml
 create mode 100644 changelogs/unreleased/winh-stop-all-environments.yml

diff --git a/app/assets/javascripts/environments/components/environment_actions.vue b/app/assets/javascripts/environments/components/environment_actions.vue
index e3652fe739e..63d83e307ee 100644
--- a/app/assets/javascripts/environments/components/environment_actions.vue
+++ b/app/assets/javascripts/environments/components/environment_actions.vue
@@ -1,50 +1,50 @@
 <script>
-  import Icon from '~/vue_shared/components/icon.vue';
-  import eventHub from '../event_hub';
-  import loadingIcon from '../../vue_shared/components/loading_icon.vue';
-  import tooltip from '../../vue_shared/directives/tooltip';
+import Icon from '~/vue_shared/components/icon.vue';
+import eventHub from '../event_hub';
+import loadingIcon from '../../vue_shared/components/loading_icon.vue';
+import tooltip from '../../vue_shared/directives/tooltip';
 
-  export default {
-    directives: {
-      tooltip,
+export default {
+  directives: {
+    tooltip,
+  },
+  components: {
+    loadingIcon,
+    Icon,
+  },
+  props: {
+    actions: {
+      type: Array,
+      required: false,
+      default: () => [],
     },
-    components: {
-      loadingIcon,
-      Icon,
+  },
+  data() {
+    return {
+      isLoading: false,
+    };
+  },
+  computed: {
+    title() {
+      return 'Deploy to...';
     },
-    props: {
-      actions: {
-        type: Array,
-        required: false,
-        default: () => [],
-      },
-    },
-    data() {
-      return {
-        isLoading: false,
-      };
-    },
-    computed: {
-      title() {
-        return 'Deploy to...';
-      },
-    },
-    methods: {
-      onClickAction(endpoint) {
-        this.isLoading = true;
+  },
+  methods: {
+    onClickAction(endpoint) {
+      this.isLoading = true;
 
-        eventHub.$emit('postAction', endpoint);
-      },
-
-      isActionDisabled(action) {
-        if (action.playable === undefined) {
-          return false;
-        }
-
-        return !action.playable;
-      },
+      eventHub.$emit('postAction', { endpoint });
     },
-  };
+
+    isActionDisabled(action) {
+      if (action.playable === undefined) {
+        return false;
+      }
+
+      return !action.playable;
+    },
+  },
+};
 </script>
 <template>
   <div
@@ -61,10 +61,7 @@
       data-toggle="dropdown"
     >
       <span>
-        <icon
-          :size="12"
-          name="play"
-        />
+        <icon name="play" />
         <i
           class="fa fa-caret-down"
           aria-hidden="true"
@@ -85,10 +82,6 @@
           class="js-manual-action-link no-btn btn"
           @click="onClickAction(action.play_path)"
         >
-          <icon
-            :size="12"
-            name="play"
-          />
           <span>
             {{ action.name }}
           </span>
diff --git a/app/assets/javascripts/environments/components/environment_external_url.vue b/app/assets/javascripts/environments/components/environment_external_url.vue
index 68195225d50..7446196de13 100644
--- a/app/assets/javascripts/environments/components/environment_external_url.vue
+++ b/app/assets/javascripts/environments/components/environment_external_url.vue
@@ -1,30 +1,30 @@
 <script>
-  import Icon from '~/vue_shared/components/icon.vue';
-  import tooltip from '../../vue_shared/directives/tooltip';
-  import { s__ } from '../../locale';
+import Icon from '~/vue_shared/components/icon.vue';
+import tooltip from '../../vue_shared/directives/tooltip';
+import { s__ } from '../../locale';
 
-  /**
-  * Renders the external url link in environments table.
-  */
-  export default {
-    components: {
-      Icon,
+/**
+ * Renders the external url link in environments table.
+ */
+export default {
+  components: {
+    Icon,
+  },
+  directives: {
+    tooltip,
+  },
+  props: {
+    externalUrl: {
+      type: String,
+      required: true,
     },
-    directives: {
-      tooltip,
+  },
+  computed: {
+    title() {
+      return s__('Environments|Open live environment');
     },
-    props: {
-      externalUrl: {
-        type: String,
-        required: true,
-      },
-    },
-    computed: {
-      title() {
-        return s__('Environments|Open');
-      },
-    },
-  };
+  },
+};
 </script>
 <template>
   <a
@@ -37,9 +37,6 @@
     target="_blank"
     rel="noopener noreferrer nofollow"
   >
-    <icon
-      :size="12"
-      name="external-link"
-    />
+    <icon name="external-link" />
   </a>
 </template>
diff --git a/app/assets/javascripts/environments/components/environment_item.vue b/app/assets/javascripts/environments/components/environment_item.vue
index 5ecdccf63ad..39f3790a286 100644
--- a/app/assets/javascripts/environments/components/environment_item.vue
+++ b/app/assets/javascripts/environments/components/environment_item.vue
@@ -1,429 +1,450 @@
 <script>
-  import Timeago from 'timeago.js';
-  import _ from 'underscore';
-  import tooltip from '~/vue_shared/directives/tooltip';
-  import UserAvatarLink from '~/vue_shared/components/user_avatar/user_avatar_link.vue';
-  import { humanize } from '~/lib/utils/text_utility';
-  import ActionsComponent from './environment_actions.vue';
-  import ExternalUrlComponent from './environment_external_url.vue';
-  import StopComponent from './environment_stop.vue';
-  import RollbackComponent from './environment_rollback.vue';
-  import TerminalButtonComponent from './environment_terminal_button.vue';
-  import MonitoringButtonComponent from './environment_monitoring.vue';
-  import CommitComponent from '../../vue_shared/components/commit.vue';
-  import eventHub from '../event_hub';
+import Timeago from 'timeago.js';
+import _ from 'underscore';
+import tooltip from '~/vue_shared/directives/tooltip';
+import UserAvatarLink from '~/vue_shared/components/user_avatar/user_avatar_link.vue';
+import { humanize } from '~/lib/utils/text_utility';
+import ActionsComponent from './environment_actions.vue';
+import ExternalUrlComponent from './environment_external_url.vue';
+import StopComponent from './environment_stop.vue';
+import RollbackComponent from './environment_rollback.vue';
+import TerminalButtonComponent from './environment_terminal_button.vue';
+import MonitoringButtonComponent from './environment_monitoring.vue';
+import CommitComponent from '../../vue_shared/components/commit.vue';
+import eventHub from '../event_hub';
 
-  /**
-  * Envrionment Item Component
-  *
-  * Renders a table row for each environment.
-  */
-  const timeagoInstance = new Timeago();
+/**
+ * Envrionment Item Component
+ *
+ * Renders a table row for each environment.
+ */
+const timeagoInstance = new Timeago();
 
-  export default {
-    components: {
-      UserAvatarLink,
-      CommitComponent,
-      ActionsComponent,
-      ExternalUrlComponent,
-      StopComponent,
-      RollbackComponent,
-      TerminalButtonComponent,
-      MonitoringButtonComponent,
+export default {
+  components: {
+    UserAvatarLink,
+    CommitComponent,
+    ActionsComponent,
+    ExternalUrlComponent,
+    StopComponent,
+    RollbackComponent,
+    TerminalButtonComponent,
+    MonitoringButtonComponent,
+  },
+
+  directives: {
+    tooltip,
+  },
+
+  props: {
+    model: {
+      type: Object,
+      required: true,
+      default: () => ({}),
     },
 
-    directives: {
-      tooltip,
+    canCreateDeployment: {
+      type: Boolean,
+      required: false,
+      default: false,
     },
 
-    props: {
-      model: {
-        type: Object,
-        required: true,
-        default: () => ({}),
-      },
+    canReadEnvironment: {
+      type: Boolean,
+      required: false,
+      default: false,
+    },
+  },
 
-      canCreateDeployment: {
-        type: Boolean,
-        required: false,
-        default: false,
-      },
-
-      canReadEnvironment: {
-        type: Boolean,
-        required: false,
-        default: false,
-      },
+  computed: {
+    /**
+     * Verifies if `last_deployment` key exists in the current Envrionment.
+     * This key is required to render most of the html - this method works has
+     * an helper.
+     *
+     * @returns {Boolean}
+     */
+    hasLastDeploymentKey() {
+      if (this.model && this.model.last_deployment && !_.isEmpty(this.model.last_deployment)) {
+        return true;
+      }
+      return false;
     },
 
-    computed: {
-      /**
-      * Verifies if `last_deployment` key exists in the current Envrionment.
-      * This key is required to render most of the html - this method works has
-      * an helper.
-      *
-      * @returns {Boolean}
-      */
-      hasLastDeploymentKey() {
-        if (this.model &&
-          this.model.last_deployment &&
-          !_.isEmpty(this.model.last_deployment)) {
-          return true;
-        }
-        return false;
-      },
-
-      /**
-      * Verifies is the given environment has manual actions.
-      * Used to verify if we should render them or nor.
-      *
-      * @returns {Boolean|Undefined}
-      */
-      hasManualActions() {
-        return this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.manual_actions &&
-          this.model.last_deployment.manual_actions.length > 0;
-      },
-
-      /**
-      * Returns the value of the `stop_action?` key provided in the response.
-      *
-      * @returns {Boolean}
-      */
-      hasStopAction() {
-        return this.model && this.model['stop_action?'];
-      },
-
-      /**
-      * Verifies if the `deployable` key is present in `last_deployment` key.
-      * Used to verify whether we should or not render the rollback partial.
-      *
-      * @returns {Boolean|Undefined}
-      */
-      canRetry() {
-        return this.model &&
-          this.hasLastDeploymentKey &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable;
-      },
-
-      /**
-      * Verifies if the date to be shown is present.
-      *
-      * @returns {Boolean|Undefined}
-      */
-      canShowDate() {
-        return this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable &&
-          this.model.last_deployment.deployable !== undefined;
-      },
-
-      /**
-      * Human readable date.
-      *
-      * @returns {String}
-      */
-      createdDate() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable &&
-          this.model.last_deployment.deployable.created_at) {
-          return timeagoInstance.format(this.model.last_deployment.deployable.created_at);
-        }
-        return '';
-      },
-
-      /**
-      * Returns the manual actions with the name parsed.
-      *
-      * @returns {Array.<Object>|Undefined}
-      */
-      manualActions() {
-        if (this.hasManualActions) {
-          return this.model.last_deployment.manual_actions.map((action) => {
-            const parsedAction = {
-              name: humanize(action.name),
-              play_path: action.play_path,
-              playable: action.playable,
-            };
-            return parsedAction;
-          });
-        }
-        return [];
-      },
-
-      /**
-      * Builds the string used in the user image alt attribute.
-      *
-      * @returns {String}
-      */
-      userImageAltDescription() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.user &&
-          this.model.last_deployment.user.username) {
-          return `${this.model.last_deployment.user.username}'s avatar'`;
-        }
-        return '';
-      },
-
-      /**
-      * If provided, returns the commit tag.
-      *
-      * @returns {String|Undefined}
-      */
-      commitTag() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.tag) {
-          return this.model.last_deployment.tag;
-        }
-        return undefined;
-      },
-
-      /**
-      * If provided, returns the commit ref.
-      *
-      * @returns {Object|Undefined}
-      */
-      commitRef() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.ref) {
-          return this.model.last_deployment.ref;
-        }
-        return undefined;
-      },
-
-      /**
-      * If provided, returns the commit url.
-      *
-      * @returns {String|Undefined}
-      */
-      commitUrl() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.commit &&
-          this.model.last_deployment.commit.commit_path) {
-          return this.model.last_deployment.commit.commit_path;
-        }
-        return undefined;
-      },
-
-      /**
-      * If provided, returns the commit short sha.
-      *
-      * @returns {String|Undefined}
-      */
-      commitShortSha() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.commit &&
-          this.model.last_deployment.commit.short_id) {
-          return this.model.last_deployment.commit.short_id;
-        }
-        return undefined;
-      },
-
-      /**
-      * If provided, returns the commit title.
-      *
-      * @returns {String|Undefined}
-      */
-      commitTitle() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.commit &&
-          this.model.last_deployment.commit.title) {
-          return this.model.last_deployment.commit.title;
-        }
-        return undefined;
-      },
-
-      /**
-      * If provided, returns the commit tag.
-      *
-      * @returns {Object|Undefined}
-      */
-      commitAuthor() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.commit &&
-          this.model.last_deployment.commit.author) {
-          return this.model.last_deployment.commit.author;
-        }
-
-        return undefined;
-      },
-
-      /**
-      * Verifies if the `retry_path` key is present and returns its value.
-      *
-      * @returns {String|Undefined}
-      */
-      retryUrl() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable &&
-          this.model.last_deployment.deployable.retry_path) {
-          return this.model.last_deployment.deployable.retry_path;
-        }
-        return undefined;
-      },
-
-      /**
-      * Verifies if the `last?` key is present and returns its value.
-      *
-      * @returns {Boolean|Undefined}
-      */
-      isLastDeployment() {
-        return this.model && this.model.last_deployment &&
-          this.model.last_deployment['last?'];
-      },
-
-      /**
-      * Builds the name of the builds needed to display both the name and the id.
-      *
-      * @returns {String}
-      */
-      buildName() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable) {
-          const { deployable } = this.model.last_deployment;
-          return `${deployable.name} #${deployable.id}`;
-        }
-        return '';
-      },
-
-      /**
-      * Builds the needed string to show the internal id.
-      *
-      * @returns {String}
-      */
-      deploymentInternalId() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.iid) {
-          return `#${this.model.last_deployment.iid}`;
-        }
-        return '';
-      },
-
-      /**
-      * Verifies if the user object is present under last_deployment object.
-      *
-      * @returns {Boolean}
-      */
-      deploymentHasUser() {
-        return this.model &&
-          !_.isEmpty(this.model.last_deployment) &&
-          !_.isEmpty(this.model.last_deployment.user);
-      },
-
-      /**
-      * Returns the user object nested with the last_deployment object.
-      * Used to render the template.
-      *
-      * @returns {Object}
-      */
-      deploymentUser() {
-        if (this.model &&
-          !_.isEmpty(this.model.last_deployment) &&
-          !_.isEmpty(this.model.last_deployment.user)) {
-          return this.model.last_deployment.user;
-        }
-        return {};
-      },
-
-      /**
-      * Verifies if the build name column should be rendered by verifing
-      * if all the information needed is present
-      * and if the environment is not a folder.
-      *
-      * @returns {Boolean}
-      */
-      shouldRenderBuildName() {
-        return !this.model.isFolder &&
-          !_.isEmpty(this.model.last_deployment) &&
-          !_.isEmpty(this.model.last_deployment.deployable);
-      },
-
-      /**
-      * Verifies the presence of all the keys needed to render the buil_path.
-      *
-      * @return {String}
-      */
-      buildPath() {
-        if (this.model &&
-          this.model.last_deployment &&
-          this.model.last_deployment.deployable &&
-          this.model.last_deployment.deployable.build_path) {
-          return this.model.last_deployment.deployable.build_path;
-        }
-
-        return '';
-      },
-
-      /**
-      * Verifies the presence of all the keys needed to render the external_url.
-      *
-      * @return {String}
-      */
-      externalURL() {
-        if (this.model && this.model.external_url) {
-          return this.model.external_url;
-        }
-
-        return '';
-      },
-
-      /**
-      * Verifies if deplyment internal ID should be rendered by verifing
-      * if all the information needed is present
-      * and if the environment is not a folder.
-      *
-      * @returns {Boolean}
-      */
-      shouldRenderDeploymentID() {
-        return !this.model.isFolder &&
-          !_.isEmpty(this.model.last_deployment) &&
-          this.model.last_deployment.iid !== undefined;
-      },
-
-      environmentPath() {
-        if (this.model && this.model.environment_path) {
-          return this.model.environment_path;
-        }
-
-        return '';
-      },
-
-      monitoringUrl() {
-        if (this.model && this.model.metrics_path) {
-          return this.model.metrics_path;
-        }
-
-        return '';
-      },
-
-      displayEnvironmentActions() {
-        return this.hasManualActions ||
-              this.externalURL ||
-              this.monitoringUrl ||
-              this.hasStopAction ||
-              this.canRetry;
-      },
+    /**
+     * Verifies is the given environment has manual actions.
+     * Used to verify if we should render them or nor.
+     *
+     * @returns {Boolean|Undefined}
+     */
+    hasManualActions() {
+      return (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.manual_actions &&
+        this.model.last_deployment.manual_actions.length > 0
+      );
     },
 
-    methods: {
-      onClickFolder() {
-        eventHub.$emit('toggleFolder', this.model);
-      },
+    /**
+     * Returns whether the environment can be stopped.
+     *
+     * @returns {Boolean}
+     */
+    canStopEnvironment() {
+      return this.model && this.model.can_stop;
     },
-  };
+
+    /**
+     * Verifies if the `deployable` key is present in `last_deployment` key.
+     * Used to verify whether we should or not render the rollback partial.
+     *
+     * @returns {Boolean|Undefined}
+     */
+    canRetry() {
+      return (
+        this.model &&
+        this.hasLastDeploymentKey &&
+        this.model.last_deployment &&
+        this.model.last_deployment.deployable
+      );
+    },
+
+    /**
+     * Verifies if the date to be shown is present.
+     *
+     * @returns {Boolean|Undefined}
+     */
+    canShowDate() {
+      return (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.deployable &&
+        this.model.last_deployment.deployable !== undefined
+      );
+    },
+
+    /**
+     * Human readable date.
+     *
+     * @returns {String}
+     */
+    createdDate() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.deployable &&
+        this.model.last_deployment.deployable.created_at
+      ) {
+        return timeagoInstance.format(this.model.last_deployment.deployable.created_at);
+      }
+      return '';
+    },
+
+    /**
+     * Returns the manual actions with the name parsed.
+     *
+     * @returns {Array.<Object>|Undefined}
+     */
+    manualActions() {
+      if (this.hasManualActions) {
+        return this.model.last_deployment.manual_actions.map(action => {
+          const parsedAction = {
+            name: humanize(action.name),
+            play_path: action.play_path,
+            playable: action.playable,
+          };
+          return parsedAction;
+        });
+      }
+      return [];
+    },
+
+    /**
+     * Builds the string used in the user image alt attribute.
+     *
+     * @returns {String}
+     */
+    userImageAltDescription() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.user &&
+        this.model.last_deployment.user.username
+      ) {
+        return `${this.model.last_deployment.user.username}'s avatar'`;
+      }
+      return '';
+    },
+
+    /**
+     * If provided, returns the commit tag.
+     *
+     * @returns {String|Undefined}
+     */
+    commitTag() {
+      if (this.model && this.model.last_deployment && this.model.last_deployment.tag) {
+        return this.model.last_deployment.tag;
+      }
+      return undefined;
+    },
+
+    /**
+     * If provided, returns the commit ref.
+     *
+     * @returns {Object|Undefined}
+     */
+    commitRef() {
+      if (this.model && this.model.last_deployment && this.model.last_deployment.ref) {
+        return this.model.last_deployment.ref;
+      }
+      return undefined;
+    },
+
+    /**
+     * If provided, returns the commit url.
+     *
+     * @returns {String|Undefined}
+     */
+    commitUrl() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.commit &&
+        this.model.last_deployment.commit.commit_path
+      ) {
+        return this.model.last_deployment.commit.commit_path;
+      }
+      return undefined;
+    },
+
+    /**
+     * If provided, returns the commit short sha.
+     *
+     * @returns {String|Undefined}
+     */
+    commitShortSha() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.commit &&
+        this.model.last_deployment.commit.short_id
+      ) {
+        return this.model.last_deployment.commit.short_id;
+      }
+      return undefined;
+    },
+
+    /**
+     * If provided, returns the commit title.
+     *
+     * @returns {String|Undefined}
+     */
+    commitTitle() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.commit &&
+        this.model.last_deployment.commit.title
+      ) {
+        return this.model.last_deployment.commit.title;
+      }
+      return undefined;
+    },
+
+    /**
+     * If provided, returns the commit tag.
+     *
+     * @returns {Object|Undefined}
+     */
+    commitAuthor() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.commit &&
+        this.model.last_deployment.commit.author
+      ) {
+        return this.model.last_deployment.commit.author;
+      }
+
+      return undefined;
+    },
+
+    /**
+     * Verifies if the `retry_path` key is present and returns its value.
+     *
+     * @returns {String|Undefined}
+     */
+    retryUrl() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.deployable &&
+        this.model.last_deployment.deployable.retry_path
+      ) {
+        return this.model.last_deployment.deployable.retry_path;
+      }
+      return undefined;
+    },
+
+    /**
+     * Verifies if the `last?` key is present and returns its value.
+     *
+     * @returns {Boolean|Undefined}
+     */
+    isLastDeployment() {
+      return this.model && this.model.last_deployment && this.model.last_deployment['last?'];
+    },
+
+    /**
+     * Builds the name of the builds needed to display both the name and the id.
+     *
+     * @returns {String}
+     */
+    buildName() {
+      if (this.model && this.model.last_deployment && this.model.last_deployment.deployable) {
+        const { deployable } = this.model.last_deployment;
+        return `${deployable.name} #${deployable.id}`;
+      }
+      return '';
+    },
+
+    /**
+     * Builds the needed string to show the internal id.
+     *
+     * @returns {String}
+     */
+    deploymentInternalId() {
+      if (this.model && this.model.last_deployment && this.model.last_deployment.iid) {
+        return `#${this.model.last_deployment.iid}`;
+      }
+      return '';
+    },
+
+    /**
+     * Verifies if the user object is present under last_deployment object.
+     *
+     * @returns {Boolean}
+     */
+    deploymentHasUser() {
+      return (
+        this.model &&
+        !_.isEmpty(this.model.last_deployment) &&
+        !_.isEmpty(this.model.last_deployment.user)
+      );
+    },
+
+    /**
+     * Returns the user object nested with the last_deployment object.
+     * Used to render the template.
+     *
+     * @returns {Object}
+     */
+    deploymentUser() {
+      if (
+        this.model &&
+        !_.isEmpty(this.model.last_deployment) &&
+        !_.isEmpty(this.model.last_deployment.user)
+      ) {
+        return this.model.last_deployment.user;
+      }
+      return {};
+    },
+
+    /**
+     * Verifies if the build name column should be rendered by verifing
+     * if all the information needed is present
+     * and if the environment is not a folder.
+     *
+     * @returns {Boolean}
+     */
+    shouldRenderBuildName() {
+      return (
+        !this.model.isFolder &&
+        !_.isEmpty(this.model.last_deployment) &&
+        !_.isEmpty(this.model.last_deployment.deployable)
+      );
+    },
+
+    /**
+     * Verifies the presence of all the keys needed to render the buil_path.
+     *
+     * @return {String}
+     */
+    buildPath() {
+      if (
+        this.model &&
+        this.model.last_deployment &&
+        this.model.last_deployment.deployable &&
+        this.model.last_deployment.deployable.build_path
+      ) {
+        return this.model.last_deployment.deployable.build_path;
+      }
+
+      return '';
+    },
+
+    /**
+     * Verifies the presence of all the keys needed to render the external_url.
+     *
+     * @return {String}
+     */
+    externalURL() {
+      if (this.model && this.model.external_url) {
+        return this.model.external_url;
+      }
+
+      return '';
+    },
+
+    /**
+     * Verifies if deplyment internal ID should be rendered by verifing
+     * if all the information needed is present
+     * and if the environment is not a folder.
+     *
+     * @returns {Boolean}
+     */
+    shouldRenderDeploymentID() {
+      return (
+        !this.model.isFolder &&
+        !_.isEmpty(this.model.last_deployment) &&
+        this.model.last_deployment.iid !== undefined
+      );
+    },
+
+    environmentPath() {
+      if (this.model && this.model.environment_path) {
+        return this.model.environment_path;
+      }
+
+      return '';
+    },
+
+    monitoringUrl() {
+      if (this.model && this.model.metrics_path) {
+        return this.model.metrics_path;
+      }
+
+      return '';
+    },
+
+    displayEnvironmentActions() {
+      return (
+        this.hasManualActions ||
+        this.externalURL ||
+        this.monitoringUrl ||
+        this.canStopEnvironment ||
+        this.canRetry
+      );
+    },
+  },
+
+  methods: {
+    onClickFolder() {
+      eventHub.$emit('toggleFolder', this.model);
+    },
+  },
+};
 </script>
 <template>
   <div
@@ -580,11 +601,6 @@
         class="btn-group table-action-buttons"
         role="group">
 
-        <actions-component
-          v-if="hasManualActions && canCreateDeployment"
-          :actions="manualActions"
-        />
-
         <external-url-component
           v-if="externalURL && canReadEnvironment"
           :external-url="externalURL"
@@ -595,21 +611,26 @@
           :monitoring-url="monitoringUrl"
         />
 
+        <actions-component
+          v-if="hasManualActions && canCreateDeployment"
+          :actions="manualActions"
+        />
+
         <terminal-button-component
           v-if="model && model.terminal_path"
           :terminal-path="model.terminal_path"
         />
 
-        <stop-component
-          v-if="hasStopAction && canCreateDeployment"
-          :stop-url="model.stop_path"
-        />
-
         <rollback-component
           v-if="canRetry && canCreateDeployment"
           :is-last-deployment="isLastDeployment"
           :retry-url="retryUrl"
         />
+
+        <stop-component
+          v-if="canStopEnvironment"
+          :environment="model"
+        />
       </div>
     </div>
   </div>
diff --git a/app/assets/javascripts/environments/components/environment_monitoring.vue b/app/assets/javascripts/environments/components/environment_monitoring.vue
index 947e8c901e9..ccc8419ca6d 100644
--- a/app/assets/javascripts/environments/components/environment_monitoring.vue
+++ b/app/assets/javascripts/environments/components/environment_monitoring.vue
@@ -1,29 +1,29 @@
 <script>
-  /**
-  * Renders the Monitoring (Metrics) link in environments table.
-  */
-  import Icon from '~/vue_shared/components/icon.vue';
-  import tooltip from '../../vue_shared/directives/tooltip';
+/**
+ * Renders the Monitoring (Metrics) link in environments table.
+ */
+import Icon from '~/vue_shared/components/icon.vue';
+import tooltip from '../../vue_shared/directives/tooltip';
 
-  export default {
-    components: {
-      Icon,
+export default {
+  components: {
+    Icon,
+  },
+  directives: {
+    tooltip,
+  },
+  props: {
+    monitoringUrl: {
+      type: String,
+      required: true,
     },
-    directives: {
-      tooltip,
+  },
+  computed: {
+    title() {
+      return 'Monitoring';
     },
-    props: {
-      monitoringUrl: {
-        type: String,
-        required: true,
-      },
-    },
-    computed: {
-      title() {
-        return 'Monitoring';
-      },
-    },
-  };
+  },
+};
 </script>
 <template>
   <a
@@ -35,9 +35,6 @@
     data-container="body"
     rel="noopener noreferrer nofollow"
   >
-    <icon
-      :size="12"
-      name="chart"
-    />
+    <icon name="chart" />
   </a>
 </template>
diff --git a/app/assets/javascripts/environments/components/environment_rollback.vue b/app/assets/javascripts/environments/components/environment_rollback.vue
index 310835c5ea9..4deeef4beb9 100644
--- a/app/assets/javascripts/environments/components/environment_rollback.vue
+++ b/app/assets/javascripts/environments/components/environment_rollback.vue
@@ -1,56 +1,74 @@
 <script>
-  /**
-  * Renders Rollback or Re deploy button in environments table depending
-  * of the provided property `isLastDeployment`.
-  *
-  * Makes a post request when the button is clicked.
-  */
-  import eventHub from '../event_hub';
-  import loadingIcon from '../../vue_shared/components/loading_icon.vue';
+/**
+ * Renders Rollback or Re deploy button in environments table depending
+ * of the provided property `isLastDeployment`.
+ *
+ * Makes a post request when the button is clicked.
+ */
+import { s__ } from '~/locale';
+import Icon from '~/vue_shared/components/icon.vue';
+import tooltip from '~/vue_shared/directives/tooltip';
+import eventHub from '../event_hub';
+import LoadingIcon from '../../vue_shared/components/loading_icon.vue';
 
-  export default {
-    components: {
-      loadingIcon,
-    },
-    props: {
-      retryUrl: {
-        type: String,
-        default: '',
-      },
+export default {
+  components: {
+    Icon,
+    LoadingIcon,
+  },
 
-      isLastDeployment: {
-        type: Boolean,
-        default: true,
-      },
-    },
-    data() {
-      return {
-        isLoading: false,
-      };
-    },
-    methods: {
-      onClick() {
-        this.isLoading = true;
+  directives: {
+    tooltip,
+  },
 
-        eventHub.$emit('postAction', this.retryUrl);
-      },
+  props: {
+    retryUrl: {
+      type: String,
+      default: '',
     },
-  };
+
+    isLastDeployment: {
+      type: Boolean,
+      default: true,
+    },
+  },
+  data() {
+    return {
+      isLoading: false,
+    };
+  },
+
+  computed: {
+    title() {
+      return this.isLastDeployment ? s__('Environments|Re-deploy to environment') : s__('Environments|Rollback environment');
+    },
+  },
+
+  methods: {
+    onClick() {
+      this.isLoading = true;
+
+      eventHub.$emit('postAction', { endpoint: this.retryUrl });
+    },
+  },
+};
 </script>
 <template>
   <button
+    v-tooltip
     :disabled="isLoading"
+    :title="title"
     type="button"
     class="btn d-none d-sm-none d-md-block"
     @click="onClick"
   >
 
-    <span v-if="isLastDeployment">
-      {{ s__("Environments|Re-deploy") }}
-    </span>
-    <span v-else>
-      {{ s__("Environments|Rollback") }}
-    </span>
+    <icon
+      v-if="isLastDeployment"
+      name="repeat" />
+    <icon
+      v-else
+      name="redo"/>
 
     <loading-icon v-if="isLoading" />
   </button>
diff --git a/app/assets/javascripts/environments/components/environment_stop.vue b/app/assets/javascripts/environments/components/environment_stop.vue
index eba58bedd6d..a814b3405f5 100644
--- a/app/assets/javascripts/environments/components/environment_stop.vue
+++ b/app/assets/javascripts/environments/components/environment_stop.vue
@@ -1,72 +1,78 @@
 <script>
-  /**
-  * Renders the stop "button" that allows stop an environment.
-  * Used in environments table.
-  */
+/**
+ * Renders the stop "button" that allows stop an environment.
+ * Used in environments table.
+ */
 
-  import $ from 'jquery';
-  import eventHub from '../event_hub';
-  import loadingIcon from '../../vue_shared/components/loading_icon.vue';
-  import tooltip from '../../vue_shared/directives/tooltip';
+import $ from 'jquery';
+import Icon from '~/vue_shared/components/icon.vue';
+import { s__ } from '~/locale';
+import eventHub from '../event_hub';
+import LoadingButton from '../../vue_shared/components/loading_button.vue';
+import tooltip from '../../vue_shared/directives/tooltip';
 
-  export default {
-    components: {
-      loadingIcon,
+export default {
+  components: {
+    Icon,
+    LoadingButton,
+  },
+
+  directives: {
+    tooltip,
+  },
+
+  props: {
+    environment: {
+      type: Object,
+      required: true,
     },
+  },
 
-    directives: {
-      tooltip,
+  data() {
+    return {
+      isLoading: false,
+    };
+  },
+
+  computed: {
+    title() {
+      return s__('Environments|Stop environment');
     },
+  },
 
-    props: {
-      stopUrl: {
-        type: String,
-        default: '',
-      },
+  mounted() {
+    eventHub.$on('stopEnvironment', this.onStopEnvironment);
+  },
+
+  beforeDestroy() {
+    eventHub.$off('stopEnvironment', this.onStopEnvironment);
+  },
+
+  methods: {
+    onClick() {
+      $(this.$el).tooltip('dispose');
+      eventHub.$emit('requestStopEnvironment', this.environment);
     },
-
-    data() {
-      return {
-        isLoading: false,
-      };
+    onStopEnvironment(environment) {
+      if (this.environment.id === environment.id) {
+        this.isLoading = true;
+      }
     },
-
-    computed: {
-      title() {
-        return 'Stop';
-      },
-    },
-
-    methods: {
-      onClick() {
-        // eslint-disable-next-line no-alert
-        if (window.confirm('Are you sure you want to stop this environment?')) {
-          this.isLoading = true;
-
-          $(this.$el).tooltip('dispose');
-
-          eventHub.$emit('postAction', this.stopUrl);
-        }
-      },
-    },
-  };
+  },
+};
 </script>
 <template>
-  <button
+  <loading-button
     v-tooltip
-    :disabled="isLoading"
+    :loading="isLoading"
     :title="title"
     :aria-label="title"
-    type="button"
-    class="btn stop-env-link d-none d-sm-none d-md-block"
+    container-class="btn btn-danger d-none d-sm-none d-md-block"
     data-container="body"
+    data-toggle="modal"
+    data-target="#stop-environment-modal"
     @click="onClick"
   >
-    <i
-      class="fa fa-stop stop-env-icon"
-      aria-hidden="true"
-    >
-    </i>
-    <loading-icon v-if="isLoading" />
-  </button>
+    <icon name="stop"/>
+  </loading-button>
 </template>
diff --git a/app/assets/javascripts/environments/components/environment_terminal_button.vue b/app/assets/javascripts/environments/components/environment_terminal_button.vue
index f8e3165f8cd..350417e5ad0 100644
--- a/app/assets/javascripts/environments/components/environment_terminal_button.vue
+++ b/app/assets/javascripts/environments/components/environment_terminal_button.vue
@@ -1,31 +1,31 @@
 <script>
-  /**
-  * Renders a terminal button to open a web terminal.
-  * Used in environments table.
-  */
-  import Icon from '~/vue_shared/components/icon.vue';
-  import tooltip from '../../vue_shared/directives/tooltip';
+/**
+ * Renders a terminal button to open a web terminal.
+ * Used in environments table.
+ */
+import Icon from '~/vue_shared/components/icon.vue';
+import tooltip from '../../vue_shared/directives/tooltip';
 
-  export default {
-    components: {
-      Icon,
+export default {
+  components: {
+    Icon,
+  },
+  directives: {
+    tooltip,
+  },
+  props: {
+    terminalPath: {
+      type: String,
+      required: false,
+      default: '',
     },
-    directives: {
-      tooltip,
+  },
+  computed: {
+    title() {
+      return 'Terminal';
     },
-    props: {
-      terminalPath: {
-        type: String,
-        required: false,
-        default: '',
-      },
-    },
-    computed: {
-      title() {
-        return 'Terminal';
-      },
-    },
-  };
+  },
+};
 </script>
 <template>
   <a
@@ -36,9 +36,6 @@
     class="btn terminal-button d-none d-sm-none d-md-block"
     data-container="body"
   >
-    <icon
-      :size="12"
-      name="terminal"
-    />
+    <icon name="terminal" />
   </a>
 </template>
diff --git a/app/assets/javascripts/environments/components/environments_app.vue b/app/assets/javascripts/environments/components/environments_app.vue
index b18f02343d6..8efdfb8abe0 100644
--- a/app/assets/javascripts/environments/components/environments_app.vue
+++ b/app/assets/javascripts/environments/components/environments_app.vue
@@ -5,10 +5,12 @@
   import eventHub from '../event_hub';
   import environmentsMixin from '../mixins/environments_mixin';
   import CIPaginationMixin from '../../vue_shared/mixins/ci_pagination_api_mixin';
+  import StopEnvironmentModal from './stop_environment_modal.vue';
 
   export default {
     components: {
       emptyState,
+      StopEnvironmentModal,
     },
 
     mixins: [
@@ -90,6 +92,8 @@
 </script>
 <template>
   <div :class="cssContainerClass">
+    <stop-environment-modal :environment="environmentInStopModal" />
+
     <div class="top-area">
       <tabs
         :tabs="tabs"
diff --git a/app/assets/javascripts/environments/components/stop_environment_modal.vue b/app/assets/javascripts/environments/components/stop_environment_modal.vue
new file mode 100644
index 00000000000..657cc8cd1aa
--- /dev/null
+++ b/app/assets/javascripts/environments/components/stop_environment_modal.vue
@@ -0,0 +1,92 @@
+<script>
+import GlModal from '~/vue_shared/components/gl_modal.vue';
+import { s__, sprintf } from '~/locale';
+import tooltip from '~/vue_shared/directives/tooltip';
+import LoadingButton from '~/vue_shared/components/loading_button.vue';
+import eventHub from '../event_hub';
+
+export default {
+  id: 'stop-environment-modal',
+  name: 'StopEnvironmentModal',
+
+  components: {
+    GlModal,
+    LoadingButton,
+  },
+
+  directives: {
+    tooltip,
+  },
+
+  props: {
+    environment: {
+      type: Object,
+      required: true,
+    },
+  },
+
+  computed: {
+    noStopActionMessage() {
+      return sprintf(
+        s__(
+          `Environments|Note that this action will stop the environment,
+        but it will %{emphasisStart}not%{emphasisEnd} have an effect on any existing deployment
+        due to no “stop environment action” being defined
+        in the %{ciConfigLinkStart}.gitlab-ci.yml%{ciConfigLinkEnd} file.`,
+        ),
+        {
+          emphasisStart: '<strong>',
+          emphasisEnd: '</strong>',
+          ciConfigLinkStart:
+            '<a href="https://docs.gitlab.com/ee/ci/yaml/" target="_blank" rel="noopener noreferrer">',
+          ciConfigLinkEnd: '</a>',
+        },
+        false,
+      );
+    },
+  },
+
+  methods: {
+    onSubmit() {
+      eventHub.$emit('stopEnvironment', this.environment);
+    },
+  },
+};
+</script>
+
+<template>
+  <gl-modal
+    :id="$options.id"
+    :footer-primary-button-text="s__('Environments|Stop environment')"
+    footer-primary-button-variant="danger"
+    @submit="onSubmit"
+  >
+    <template slot="header">
+      <h4
+        class="modal-title d-flex mw-100"
+      >
+        Stopping
+        <span
+          v-tooltip
+          :title="environment.name"
+          class="text-truncate ml-1 mr-1 flex-fill"
+        >{{ environment.name }}</span>
+        ?
+      </h4>
+    </template>
+
+    <p>{{ s__('Environments|Are you sure you want to stop this environment?') }}</p>
+
+    <div
+      v-if="!environment.has_stop_action"
+      class="warning_message"
+    >
+      <p v-html="noStopActionMessage"></p>
+      <a
+        href="https://docs.gitlab.com/ee/ci/environments.html#stopping-an-environment"
+        target="_blank"
+        rel="noopener noreferrer"
+      >{{ s__('Environments|Learn more about stopping environments') }}</a>
+    </div>
+  </gl-modal>
+</template>
diff --git a/app/assets/javascripts/environments/folder/environments_folder_view.vue b/app/assets/javascripts/environments/folder/environments_folder_view.vue
index 5f72a39c5cb..e69bfa0b2cc 100644
--- a/app/assets/javascripts/environments/folder/environments_folder_view.vue
+++ b/app/assets/javascripts/environments/folder/environments_folder_view.vue
@@ -1,12 +1,18 @@
 <script>
   import environmentsMixin from '../mixins/environments_mixin';
   import CIPaginationMixin from '../../vue_shared/mixins/ci_pagination_api_mixin';
+  import StopEnvironmentModal from '../components/stop_environment_modal.vue';
 
   export default {
+    components: {
+      StopEnvironmentModal,
+    },
+
     mixins: [
       environmentsMixin,
       CIPaginationMixin,
     ],
+
     props: {
       endpoint: {
         type: String,
@@ -38,6 +44,8 @@
 </script>
 <template>
   <div :class="cssContainerClass">
+    <stop-environment-modal :environment="environmentInStopModal" />
+
     <div
       v-if="!isLoading"
       class="top-area"
diff --git a/app/assets/javascripts/environments/mixins/environments_mixin.js b/app/assets/javascripts/environments/mixins/environments_mixin.js
index a7a79dbca70..d88624f7f8d 100644
--- a/app/assets/javascripts/environments/mixins/environments_mixin.js
+++ b/app/assets/javascripts/environments/mixins/environments_mixin.js
@@ -40,6 +40,7 @@ export default {
       scope: getParameterByName('scope') || 'available',
       page: getParameterByName('page') || '1',
       requestData: {},
+      environmentInStopModal: {},
     };
   },
 
@@ -85,7 +86,7 @@ export default {
       Flash(s__('Environments|An error occurred while fetching the environments.'));
     },
 
-    postAction(endpoint) {
+    postAction({ endpoint, errorMessage }) {
       if (!this.isMakingRequest) {
         this.isLoading = true;
 
@@ -93,7 +94,7 @@ export default {
           .then(() => this.fetchEnvironments())
           .catch(() => {
             this.isLoading = false;
-            Flash(s__('Environments|An error occurred while making the request.'));
+            Flash(errorMessage || s__('Environments|An error occurred while making the request.'));
           });
       }
     },
@@ -106,6 +107,15 @@ export default {
         .catch(this.errorCallback);
     },
 
+    updateStopModal(environment) {
+      this.environmentInStopModal = environment;
+    },
+
+    stopEnvironment(environment) {
+      const endpoint = environment.stop_path;
+      const errorMessage = s__('Environments|An error occurred while stopping the environment, please try again');
+      this.postAction({ endpoint, errorMessage });
+    },
   },
 
   computed: {
@@ -162,9 +172,13 @@ export default {
     });
 
     eventHub.$on('postAction', this.postAction);
+    eventHub.$on('requestStopEnvironment', this.updateStopModal);
+    eventHub.$on('stopEnvironment', this.stopEnvironment);
   },
 
-  beforeDestroyed() {
-    eventHub.$off('postAction');
+  beforeDestroy() {
+    eventHub.$off('postAction', this.postAction);
+    eventHub.$off('requestStopEnvironment', this.updateStopModal);
+    eventHub.$off('stopEnvironment', this.stopEnvironment);
   },
 };
diff --git a/app/assets/javascripts/environments/services/environments_service.js b/app/assets/javascripts/environments/services/environments_service.js
index 3b121551aca..4e07ccba91a 100644
--- a/app/assets/javascripts/environments/services/environments_service.js
+++ b/app/assets/javascripts/environments/services/environments_service.js
@@ -13,7 +13,7 @@ export default class EnvironmentsService {
 
   // eslint-disable-next-line class-methods-use-this
   postAction(endpoint) {
-    return axios.post(endpoint, {}, { emulateJSON: true });
+    return axios.post(endpoint, {});
   }
 
   getFolderContent(folderUrl) {
diff --git a/app/assets/stylesheets/pages/environments.scss b/app/assets/stylesheets/pages/environments.scss
index 199039f38f7..3144dcc4dc0 100644
--- a/app/assets/stylesheets/pages/environments.scss
+++ b/app/assets/stylesheets/pages/environments.scss
@@ -23,7 +23,7 @@
     }
 
     .btn-group {
-      > a {
+      > .btn:not(.btn-danger) {
         color: $gl-text-color-secondary;
       }
 
diff --git a/app/controllers/projects/environments_controller.rb b/app/controllers/projects/environments_controller.rb
index 395c5336ad5..68353e6a210 100644
--- a/app/controllers/projects/environments_controller.rb
+++ b/app/controllers/projects/environments_controller.rb
@@ -2,7 +2,7 @@ class Projects::EnvironmentsController < Projects::ApplicationController
   layout 'project'
   before_action :authorize_read_environment!
   before_action :authorize_create_environment!, only: [:new, :create]
-  before_action :authorize_create_deployment!, only: [:stop]
+  before_action :authorize_stop_environment!, only: [:stop]
   before_action :authorize_update_environment!, only: [:edit, :update]
   before_action :authorize_admin_environment!, only: [:terminal, :terminal_websocket_authorize]
   before_action :environment, only: [:show, :edit, :update, :stop, :terminal, :terminal_websocket_authorize, :metrics]
@@ -175,4 +175,8 @@ class Projects::EnvironmentsController < Projects::ApplicationController
   def environment
     @environment ||= project.environments.find(params[:id])
   end
+
+  def authorize_stop_environment!
+    access_denied! unless can?(current_user, :stop_environment, environment)
+  end
 end
diff --git a/app/controllers/projects/merge_requests_controller.rb b/app/controllers/projects/merge_requests_controller.rb
index 1ad2e93c85f..dc6551fc761 100644
--- a/app/controllers/projects/merge_requests_controller.rb
+++ b/app/controllers/projects/merge_requests_controller.rb
@@ -192,7 +192,7 @@ class Projects::MergeRequestsController < Projects::MergeRequests::ApplicationCo
           deployment = environment.first_deployment_for(@merge_request.diff_head_sha)
 
           stop_url =
-            if environment.stop_action? && can?(current_user, :create_deployment, environment)
+            if can?(current_user, :stop_environment, environment)
               stop_project_environment_path(project, environment)
             end
 
diff --git a/app/policies/environment_policy.rb b/app/policies/environment_policy.rb
index 375a5535359..978dc3a7c81 100644
--- a/app/policies/environment_policy.rb
+++ b/app/policies/environment_policy.rb
@@ -1,9 +1,13 @@
 class EnvironmentPolicy < BasePolicy
   delegate { @subject.project }
 
-  condition(:stop_action_allowed) do
-    @subject.stop_action? && can?(:update_build, @subject.stop_action)
+  condition(:stop_with_deployment_allowed) do
+    @subject.stop_action? && can?(:create_deployment) && can?(:update_build, @subject.stop_action)
   end
 
-  rule { can?(:create_deployment) & stop_action_allowed }.enable :stop_environment
+  condition(:stop_with_update_allowed) do
+    !@subject.stop_action? && can?(:update_environment, @subject)
+  end
+
+  rule { stop_with_deployment_allowed | stop_with_update_allowed }.enable :stop_environment
 end
diff --git a/app/serializers/environment_entity.rb b/app/serializers/environment_entity.rb
index ba0ae6ba8a0..0fc3f92b151 100644
--- a/app/serializers/environment_entity.rb
+++ b/app/serializers/environment_entity.rb
@@ -7,7 +7,7 @@ class EnvironmentEntity < Grape::Entity
   expose :external_url
   expose :environment_type
   expose :last_deployment, using: DeploymentEntity
-  expose :stop_action?
+  expose :stop_action?, as: :has_stop_action
 
   expose :metrics_path, if: -> (environment, _) { environment.has_metrics? } do |environment|
     metrics_project_environment_path(environment.project, environment)
@@ -31,4 +31,14 @@ class EnvironmentEntity < Grape::Entity
   end
 
   expose :created_at, :updated_at
+
+  expose :can_stop do |environment|
+    environment.available? && can?(current_user, :stop_environment, environment)
+  end
+
+  private
+
+  def current_user
+    request.current_user
+  end
 end
diff --git a/app/views/projects/deployments/_actions.haml b/app/views/projects/deployments/_actions.haml
index e0ecf56525a..f4c91377ecb 100644
--- a/app/views/projects/deployments/_actions.haml
+++ b/app/views/projects/deployments/_actions.haml
@@ -3,13 +3,12 @@
   - if actions.present?
     .btn-group
       .dropdown
-        %button.dropdown.dropdown-new.btn.btn-default{ type: 'button', 'data-toggle' => 'dropdown' }
-          = custom_icon('icon_play')
+        %button.dropdown.dropdown-new.btn.btn-default.has-tooltip{ type: 'button', 'data-toggle' => 'dropdown', title: s_('Environments|Deploy to...') }
+          = sprite_icon('play')
           = icon('caret-down')
         %ul.dropdown-menu.dropdown-menu-right
           - actions.each do |action|
             - next unless can?(current_user, :update_build, action)
             %li
-              = link_to [:play, @project.namespace.becomes(Namespace), @project, action], method: :post, rel: 'nofollow' do
-                = custom_icon('icon_play')
+              = link_to [:play, @project.namespace.becomes(Namespace), @project, action], method: :post, rel: 'nofollow', class: 'btn' do
                 %span= action.name.humanize
diff --git a/app/views/projects/deployments/_rollback.haml b/app/views/projects/deployments/_rollback.haml
index 95f950948ab..281e042c915 100644
--- a/app/views/projects/deployments/_rollback.haml
+++ b/app/views/projects/deployments/_rollback.haml
@@ -1,6 +1,7 @@
 - if can?(current_user, :create_deployment, deployment) && deployment.deployable
-  = link_to [:retry, @project.namespace.becomes(Namespace), @project, deployment.deployable], method: :post, class: 'btn btn-build' do
+  - tooltip = deployment.last? ? s_('Environments|Re-deploy to environment') : s_('Environments|Rollback environment')
+  = link_to [:retry, @project.namespace.becomes(Namespace), @project, deployment.deployable], method: :post, class: 'btn btn-build has-tooltip', title: tooltip do
     - if deployment.last?
-      = _("Re-deploy")
+      = sprite_icon('repeat')
     - else
-      = _("Rollback")
+      = sprite_icon('redo')
diff --git a/app/views/projects/environments/_external_url.html.haml b/app/views/projects/environments/_external_url.html.haml
index a264252e095..4694bc39d54 100644
--- a/app/views/projects/environments/_external_url.html.haml
+++ b/app/views/projects/environments/_external_url.html.haml
@@ -1,4 +1,4 @@
 - if environment.external_url && can?(current_user, :read_environment, environment)
-  = link_to environment.external_url, target: '_blank', rel: 'noopener noreferrer', class: 'btn external-url' do
+  = link_to environment.external_url, target: '_blank', rel: 'noopener noreferrer', class: 'btn external-url has-tooltip', title: s_('Environments|Open live environment') do
     = sprite_icon('external-link')
     View deployment
diff --git a/app/views/projects/environments/_stop.html.haml b/app/views/projects/environments/_stop.html.haml
deleted file mode 100644
index c35f9af2873..00000000000
--- a/app/views/projects/environments/_stop.html.haml
+++ /dev/null
@@ -1,5 +0,0 @@
-- if can?(current_user, :create_deployment, environment) && environment.stop_action?
-  .inline
-    = link_to stop_project_environment_path(@project, environment), method: :post,
-      class: 'btn stop-env-link', rel: 'nofollow', data: { confirm: 'Are you sure you want to stop this environment?' } do
-      = icon('stop', class: 'stop-env-icon')
diff --git a/app/views/projects/environments/show.html.haml b/app/views/projects/environments/show.html.haml
index add394a6356..a33bc9d4ce6 100644
--- a/app/views/projects/environments/show.html.haml
+++ b/app/views/projects/environments/show.html.haml
@@ -4,6 +4,33 @@
 - page_title "Environments"
 
 %div{ class: container_class }
+  - if can?(current_user, :stop_environment, @environment)
+    #stop-environment-modal.modal.fade{ tabindex: -1 }
+      .modal-dialog
+        .modal-content
+          .modal-header
+            %h4.modal-title.d-flex.mw-100
+              Stopping
+              %span.has-tooltip.text-truncate.ml-1.mr-1.flex-fill{ title: @environment.name, data: { container: '#stop-environment-modal' } }
+                = @environment.name
+              ?
+          .modal-body
+            %p= s_('Environments|Are you sure you want to stop this environment?')
+            - unless @environment.stop_action?
+              .warning_message
+                %p= s_('Environments|Note that this action will stop the environment, but it will %{emphasis_start}not%{emphasis_end} have an effect on any existing deployment due to no “stop environment action” being defined in the %{ci_config_link_start}.gitlab-ci.yml%{ci_config_link_end} file.').html_safe % { emphasis_start: '<strong>'.html_safe,
+                  emphasis_end: '</strong>'.html_safe,
+                  ci_config_link_start: '<a href="https://docs.gitlab.com/ee/ci/yaml/" target="_blank" rel="noopener noreferrer">'.html_safe,
+                  ci_config_link_end: '</a>'.html_safe }
+                %a{ href: 'https://docs.gitlab.com/ee/ci/environments.html#stopping-an-environment',
+                  target: '_blank',
+                  rel: 'noopener noreferrer' }
+                  = s_('Environments|Learn more about stopping environments')
+          .modal-footer
+            = button_tag _('Cancel'), type: 'button', class: 'btn btn-cancel', data: { dismiss: 'modal' }
+            = button_to stop_project_environment_path(@project, @environment), class: 'btn btn-danger has-tooltip', method: :post do
+              = s_('Environments|Stop environment')
+
   .row.top-area.adjust
     .col-md-7
       %h3.page-title= @environment.name
@@ -15,7 +42,10 @@
         - if can?(current_user, :update_environment, @environment)
           = link_to 'Edit', edit_project_environment_path(@project, @environment), class: 'btn'
         - if can?(current_user, :stop_environment, @environment)
-          = link_to 'Stop', stop_project_environment_path(@project, @environment), data: { confirm: 'Are you sure you want to stop this environment?' }, class: 'btn btn-danger', method: :post
+          = button_tag class: 'btn btn-danger', type: 'button', data: { toggle: 'modal',
+            target: '#stop-environment-modal' } do
+            = sprite_icon('stop')
+            = s_('Environments|Stop')
 
   .environments-container
     - if @deployments.blank?
diff --git a/changelogs/unreleased/winh-stop-all-environments.yml b/changelogs/unreleased/winh-stop-all-environments.yml
new file mode 100644
index 00000000000..6e5f2f506d9
--- /dev/null
+++ b/changelogs/unreleased/winh-stop-all-environments.yml
@@ -0,0 +1,5 @@
+---
+title: Support manually stopping any environment from the UI
+merge_request: 20077
+author:
+type: changed
diff --git a/lib/api/environments.rb b/lib/api/environments.rb
index 5c63ec028d9..fa828f43001 100644
--- a/lib/api/environments.rb
+++ b/lib/api/environments.rb
@@ -89,9 +89,10 @@ module API
         requires :environment_id, type: Integer,  desc: 'The environment ID'
       end
       post ':id/environments/:environment_id/stop' do
-        authorize! :create_deployment, user_project
+        authorize! :read_environment, user_project
 
         environment = user_project.environments.find(params[:environment_id])
+        authorize! :stop_environment, environment
 
         environment.stop_with_action!(current_user)
 
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index ca488053a1f..b6fd7ccc1bb 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -8,8 +8,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: gitlab 1.0.0\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-09 08:28+0200\n"
-"PO-Revision-Date: 2018-07-09 08:28+0200\n"
+"POT-Creation-Date: 2018-07-09 19:16+0200\n"
+"PO-Revision-Date: 2018-07-09 19:16+0200\n"
 "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
 "Language-Team: LANGUAGE <LL@li.org>\n"
 "Language: \n"
@@ -2099,9 +2099,18 @@ msgstr ""
 msgid "Environments|An error occurred while making the request."
 msgstr ""
 
+msgid "Environments|An error occurred while stopping the environment, please try again"
+msgstr ""
+
+msgid "Environments|Are you sure you want to stop this environment?"
+msgstr ""
+
 msgid "Environments|Commit"
 msgstr ""
 
+msgid "Environments|Deploy to..."
+msgstr ""
+
 msgid "Environments|Deployment"
 msgstr ""
 
@@ -2114,27 +2123,39 @@ msgstr ""
 msgid "Environments|Job"
 msgstr ""
 
+msgid "Environments|Learn more about stopping environments"
+msgstr ""
+
 msgid "Environments|New environment"
 msgstr ""
 
 msgid "Environments|No deployments yet"
 msgstr ""
 
-msgid "Environments|Open"
+msgid "Environments|Note that this action will stop the environment, but it will %{emphasis_start}not%{emphasis_end} have an effect on any existing deployment due to no “stop environment action” being defined in the %{ci_config_link_start}.gitlab-ci.yml%{ci_config_link_end} file."
 msgstr ""
 
-msgid "Environments|Re-deploy"
+msgid "Environments|Open live environment"
+msgstr ""
+
+msgid "Environments|Re-deploy to environment"
 msgstr ""
 
 msgid "Environments|Read more about environments"
 msgstr ""
 
-msgid "Environments|Rollback"
+msgid "Environments|Rollback environment"
 msgstr ""
 
 msgid "Environments|Show all"
 msgstr ""
 
+msgid "Environments|Stop"
+msgstr ""
+
+msgid "Environments|Stop environment"
+msgstr ""
+
 msgid "Environments|Updated"
 msgstr ""
 
@@ -3799,9 +3820,6 @@ msgstr ""
 msgid "Quick actions can be used in the issues description and comment boxes."
 msgstr ""
 
-msgid "Re-deploy"
-msgstr ""
-
 msgid "Read more"
 msgstr ""
 
@@ -3936,9 +3954,6 @@ msgstr ""
 msgid "Reviewing (merge request !%{mergeRequestId})"
 msgstr ""
 
-msgid "Rollback"
-msgstr ""
-
 msgid "Runner token"
 msgstr ""
 
diff --git a/spec/features/projects/environments/environment_spec.rb b/spec/features/projects/environments/environment_spec.rb
index 0c34309c1f4..624f7139605 100644
--- a/spec/features/projects/environments/environment_spec.rb
+++ b/spec/features/projects/environments/environment_spec.rb
@@ -166,7 +166,8 @@ describe 'Environment' do
                 end
 
                 it 'allows to stop environment' do
-                  click_link('Stop')
+                  click_button('Stop')
+                  click_button('Stop environment') # confirm modal
 
                   expect(page).to have_content('close_app')
                 end
@@ -174,7 +175,7 @@ describe 'Environment' do
 
               context 'when user has no ability to stop environment' do
                 it 'does not allow to stop environment' do
-                  expect(page).to have_no_link('Stop')
+                  expect(page).not_to have_button('Stop')
                 end
               end
 
@@ -182,7 +183,7 @@ describe 'Environment' do
                 let(:role) { :reporter }
 
                 it 'does not show stop button' do
-                  expect(page).not_to have_link('Stop')
+                  expect(page).not_to have_button('Stop')
                 end
               end
             end
@@ -192,7 +193,7 @@ describe 'Environment' do
             let(:environment) { create(:environment, project: project, state: :stopped) }
 
             it 'does not show stop button' do
-              expect(page).not_to have_link('Stop')
+              expect(page).not_to have_button('Stop')
             end
           end
         end
@@ -230,7 +231,7 @@ describe 'Environment' do
     it 'user visits environment page' do
       visit_environment(environment)
 
-      expect(page).to have_link('Stop')
+      expect(page).to have_button('Stop')
     end
 
     it 'user deletes the branch with running environment' do
@@ -242,7 +243,7 @@ describe 'Environment' do
 
       visit_environment(environment)
 
-      expect(page).to have_no_link('Stop')
+      expect(page).not_to have_button('Stop')
     end
 
     ##
diff --git a/spec/features/projects/environments/environments_spec.rb b/spec/features/projects/environments/environments_spec.rb
index 9900c13095e..c2ed753c409 100644
--- a/spec/features/projects/environments/environments_spec.rb
+++ b/spec/features/projects/environments/environments_spec.rb
@@ -10,6 +10,10 @@ describe 'Environments page', :js do
     sign_in(user)
   end
 
+  def stop_button_selector
+    %q{button[data-original-title="Stop environment"]}
+  end
+
   describe 'page tabs' do
     it 'shows "Available" and "Stopped" tab with links' do
       visit_environments(project)
@@ -120,7 +124,7 @@ describe 'Environments page', :js do
       end
 
       it 'does not show stip button when environment is not stoppable' do
-        expect(page).not_to have_selector('.stop-env-link')
+        expect(page).not_to have_selector(stop_button_selector)
       end
     end
 
@@ -178,7 +182,7 @@ describe 'Environments page', :js do
         end
 
         it 'shows a stop button' do
-          expect(page).not_to have_selector('.stop-env-link')
+          expect(page).not_to have_selector(stop_button_selector)
         end
 
         it 'does not show external link button' do
@@ -211,14 +215,14 @@ describe 'Environments page', :js do
           end
 
           it 'shows a stop button' do
-            expect(page).to have_selector('.stop-env-link')
+            expect(page).to have_selector(stop_button_selector)
           end
 
           context 'when user is a reporter' do
             let(:role) { :reporter }
 
             it 'does not show stop button' do
-              expect(page).not_to have_selector('.stop-env-link')
+              expect(page).not_to have_selector(stop_button_selector)
             end
           end
         end
diff --git a/spec/javascripts/environments/environment_rollback_spec.js b/spec/javascripts/environments/environment_rollback_spec.js
index eb8e49d81fe..79f33c5bc8a 100644
--- a/spec/javascripts/environments/environment_rollback_spec.js
+++ b/spec/javascripts/environments/environment_rollback_spec.js
@@ -18,7 +18,7 @@ describe('Rollback Component', () => {
       },
     }).$mount();
 
-    expect(component.$el.querySelector('span').textContent).toContain('Re-deploy');
+    expect(component.$el).toHaveSpriteIcon('repeat');
   });
 
   it('Should render Rollback label when isLastDeployment is false', () => {
@@ -30,6 +30,6 @@ describe('Rollback Component', () => {
       },
     }).$mount();
 
-    expect(component.$el.querySelector('span').textContent).toContain('Rollback');
+    expect(component.$el).toHaveSpriteIcon('redo');
   });
 });
diff --git a/spec/javascripts/environments/environment_stop_spec.js b/spec/javascripts/environments/environment_stop_spec.js
index 3f95faf466a..4d9caa57566 100644
--- a/spec/javascripts/environments/environment_stop_spec.js
+++ b/spec/javascripts/environments/environment_stop_spec.js
@@ -4,7 +4,6 @@ import stopComp from '~/environments/components/environment_stop.vue';
 describe('Stop Component', () => {
   let StopComponent;
   let component;
-  const stopURL = '/stop';
 
   beforeEach(() => {
     StopComponent = Vue.extend(stopComp);
@@ -12,20 +11,13 @@ describe('Stop Component', () => {
 
     component = new StopComponent({
       propsData: {
-        stopUrl: stopURL,
+        environment: {},
       },
     }).$mount();
   });
 
-  describe('computed', () => {
-    it('title', () => {
-      expect(component.title).toEqual('Stop');
-    });
-  });
-
   it('should render a button to stop the environment', () => {
     expect(component.$el.tagName).toEqual('BUTTON');
-    expect(component.$el.getAttribute('data-original-title')).toEqual('Stop');
-    expect(component.$el.getAttribute('aria-label')).toEqual('Stop');
+    expect(component.$el.getAttribute('data-original-title')).toEqual('Stop environment');
   });
 });
diff --git a/spec/policies/environment_policy_spec.rb b/spec/policies/environment_policy_spec.rb
index de4cb5b30c5..3728218accc 100644
--- a/spec/policies/environment_policy_spec.rb
+++ b/spec/policies/environment_policy_spec.rb
@@ -1,57 +1,101 @@
 require 'spec_helper'
 
 describe EnvironmentPolicy do
-  let(:user) { create(:user) }
-  let(:project) { create(:project, :repository) }
+  using RSpec::Parameterized::TableSyntax
 
-  let(:environment) do
-    create(:environment, :with_review_app, project: project)
-  end
+  let(:user) { create(:user) }
 
   let(:policy) do
     described_class.new(user, environment)
   end
 
   describe '#rules' do
-    context 'when user does not have access to the project' do
+    shared_examples 'project permissions' do
+      context 'with stop action' do
+        let(:environment) do
+          create(:environment, :with_review_app, project: project)
+        end
+
+        where(:access_level, :allowed?) do
+          nil        | false
+          :guest     | false
+          :reporter  | false
+          :developer | true
+          :master    | true
+        end
+
+        with_them do
+          before do
+            project.add_user(user, access_level) unless access_level.nil?
+          end
+
+          it { expect(policy.allowed?(:stop_environment)).to be allowed? }
+        end
+
+        context 'when an admin user' do
+          let(:user) { create(:user, :admin) }
+
+          it { expect(policy).to be_allowed :stop_environment }
+        end
+
+        context 'with protected branch' do
+          with_them do
+            before do
+              project.add_user(user, access_level) unless access_level.nil?
+              create(:protected_branch, :no_one_can_push,
+                     name: 'master', project: project)
+            end
+
+            it { expect(policy).to be_disallowed :stop_environment }
+          end
+
+          context 'when an admin user' do
+            let(:user) { create(:user, :admin) }
+
+            it { expect(policy).to be_allowed :stop_environment }
+          end
+        end
+      end
+
+      context 'without stop action' do
+        let(:environment) do
+          create(:environment, project: project)
+        end
+
+        where(:access_level, :allowed?) do
+          nil        | false
+          :guest     | false
+          :reporter  | false
+          :developer | false
+          :master    | true
+        end
+
+        with_them do
+          before do
+            project.add_user(user, access_level) unless access_level.nil?
+          end
+
+          it { expect(policy.allowed?(:stop_environment)).to be allowed? }
+        end
+
+        context 'when an admin user' do
+          let(:user) { create(:user, :admin) }
+
+          it { expect(policy).to be_allowed :stop_environment }
+        end
+      end
+    end
+
+    context 'when project is public' do
+      let(:project) { create(:project, :public, :repository) }
+
+      include_examples 'project permissions'
+    end
+
+    context 'when project is private' do
       let(:project) { create(:project, :private, :repository) }
 
-      it 'does not include ability to stop environment' do
-        expect(policy).to be_disallowed :stop_environment
-      end
-    end
-
-    context 'when anonymous user has access to the project' do
-      let(:project) { create(:project, :public, :repository) }
-
-      it 'does not include ability to stop environment' do
-        expect(policy).to be_disallowed :stop_environment
-      end
-    end
-
-    context 'when team member has access to the project' do
-      let(:project) { create(:project, :public, :repository) }
-
-      before do
-        project.add_developer(user)
-      end
-
-      context 'when team member has ability to stop environment' do
-        it 'does includes ability to stop environment' do
-          expect(policy).to be_allowed :stop_environment
-        end
-      end
-
-      context 'when team member has no ability to stop environment' do
-        before do
-          create(:protected_branch, :no_one_can_push,
-                 name: 'master', project: project)
-        end
-
-        it 'does not include ability to stop environment' do
-          expect(policy).to be_disallowed :stop_environment
-        end
-      end
+      include_examples 'project permissions'
     end
   end
 end
diff --git a/spec/serializers/environment_entity_spec.rb b/spec/serializers/environment_entity_spec.rb
index 8f32c5639a1..b7324a26ed2 100644
--- a/spec/serializers/environment_entity_spec.rb
+++ b/spec/serializers/environment_entity_spec.rb
@@ -1,8 +1,9 @@
 require 'spec_helper'
 
 describe EnvironmentEntity do
+  let(:request) { double('request') }
   let(:entity) do
-    described_class.new(environment, request: double)
+    described_class.new(environment, request: spy('request'))
   end
 
   let(:environment) { create(:environment) }
diff --git a/spec/serializers/environment_serializer_spec.rb b/spec/serializers/environment_serializer_spec.rb
index ca9b520fb38..0f0ab5ac796 100644
--- a/spec/serializers/environment_serializer_spec.rb
+++ b/spec/serializers/environment_serializer_spec.rb
@@ -54,7 +54,9 @@ describe EnvironmentSerializer do
 
   context 'when representing environments within folders' do
     let(:serializer) do
-      described_class.new(project: project).within_folders
+      described_class
+        .new(current_user: user, project: project)
+        .within_folders
     end
 
     let(:resource) { Environment.all }
@@ -123,7 +125,8 @@ describe EnvironmentSerializer do
     let(:pagination) { { page: 1, per_page: 2 } }
 
     let(:serializer) do
-      described_class.new(project: project)
+      described_class
+        .new(current_user: user, project: project)
         .with_pagination(request, response)
     end
 
@@ -169,7 +172,8 @@ describe EnvironmentSerializer do
 
       context 'when grouping environments within folders' do
         let(:serializer) do
-          described_class.new(project: project)
+          described_class
+            .new(current_user: user, project: project)
             .with_pagination(request, response)
             .within_folders
         end

From 3318a79ef0700d1555ffa98991776c78f70fd6de Mon Sep 17 00:00:00 2001
From: Achilleas Pipinellis <axil@gitlab.com>
Date: Tue, 10 Jul 2018 10:25:09 +0200
Subject: [PATCH 017/113] Mention admin privileges for k8s token creation

---
 doc/user/project/clusters/index.md | 5 +++--
 1 file changed, 3 insertions(+), 2 deletions(-)

diff --git a/doc/user/project/clusters/index.md b/doc/user/project/clusters/index.md
index baa6efe50d5..cc1d65e4e6c 100644
--- a/doc/user/project/clusters/index.md
+++ b/doc/user/project/clusters/index.md
@@ -96,8 +96,9 @@ To add an existing Kubernetes cluster to your project:
       you can follow the
       [Kubernetes documentation](https://kubernetes.io/docs/tasks/configure-pod-container/configure-service-account/)
       to create one. You can also view or create service tokens in the
-      [Kubernetes dashboard](https://kubernetes.io/docs/tasks/access-application-cluster/web-ui-dashboard/#config)
-      (under **Config > Secrets**).
+      [Kubernetes dashboard](https://kubernetes.io/docs/tasks/access-application-cluster/web-ui-dashboard/)
+      (under **Config > Secrets**). **The account that will issue the service token
+      must have admin privileges on the cluster.**
     - **Project namespace** (optional) - You don't have to fill it in; by leaving
       it blank, GitLab will create one for you. Also:
       - Each project should have a unique namespace.

From 1f28f4567b99518e4ae5df8d85f3f122b6737c1d Mon Sep 17 00:00:00 2001
From: Lin Jen-Shin <godfat@godfat.org>
Date: Tue, 10 Jul 2018 16:43:17 +0800
Subject: [PATCH 018/113] Fix a typo? gitaly_operation{-s-}_client

---
 lib/gitlab/git/repository.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/lib/gitlab/git/repository.rb b/lib/gitlab/git/repository.rb
index 76404366e8e..66d590499b5 100644
--- a/lib/gitlab/git/repository.rb
+++ b/lib/gitlab/git/repository.rb
@@ -627,7 +627,7 @@ module Gitlab
       def update_branch(branch_name, user:, newrev:, oldrev:)
         gitaly_migrate(:operation_user_update_branch) do |is_enabled|
           if is_enabled
-            gitaly_operations_client.user_update_branch(branch_name, user, newrev, oldrev)
+            gitaly_operation_client.user_update_branch(branch_name, user, newrev, oldrev)
           else
             OperationService.new(user, self).update_branch(branch_name, newrev, oldrev)
           end

From cb728c536ac42e744a611672c4e85fbd053dff57 Mon Sep 17 00:00:00 2001
From: Tao Wang <twang2218@gmail.com>
Date: Wed, 13 Jun 2018 00:14:52 +1000
Subject: [PATCH 019/113] i18n: externalize strings from 'app/views/explore'

Signed-off-by: Tao Wang <twang2218@gmail.com>
---
 app/views/explore/_head.html.haml             |  4 +--
 app/views/explore/groups/_nav.html.haml       |  2 +-
 app/views/explore/groups/index.html.haml      | 12 +++----
 app/views/explore/projects/_filter.html.haml  |  6 ++--
 app/views/explore/projects/_nav.html.haml     |  6 ++--
 app/views/explore/projects/index.html.haml    |  4 +--
 app/views/explore/projects/starred.html.haml  |  4 +--
 app/views/explore/projects/trending.html.haml |  4 +--
 locale/gitlab.pot                             | 36 +++++++++++++++++++
 9 files changed, 57 insertions(+), 21 deletions(-)

diff --git a/app/views/explore/_head.html.haml b/app/views/explore/_head.html.haml
index a3b0709e261..eefc797cf03 100644
--- a/app/views/explore/_head.html.haml
+++ b/app/views/explore/_head.html.haml
@@ -1,6 +1,6 @@
 .explore-title.text-center
   %h2
-    Explore GitLab
+    = _("Explore GitLab")
   %p.lead
-    Discover projects, groups and snippets. Share your projects with others
+    = _("Discover projects, groups and snippets. Share your projects with others")
   %br
diff --git a/app/views/explore/groups/_nav.html.haml b/app/views/explore/groups/_nav.html.haml
index ab4787c6d05..c337149a2f3 100644
--- a/app/views/explore/groups/_nav.html.haml
+++ b/app/views/explore/groups/_nav.html.haml
@@ -2,7 +2,7 @@
   %ul.nav-links.nav.nav-tabs
     = nav_link(page: explore_groups_path) do
       = link_to explore_groups_path do
-        Explore Groups
+        = _("Explore Groups")
   .nav-controls
     = render 'shared/groups/search_form'
     = render 'shared/groups/dropdown'
diff --git a/app/views/explore/groups/index.html.haml b/app/views/explore/groups/index.html.haml
index 0643b9cfbc5..387c37b7a91 100644
--- a/app/views/explore/groups/index.html.haml
+++ b/app/views/explore/groups/index.html.haml
@@ -1,6 +1,6 @@
 - @hide_top_links = true
-- page_title    "Groups"
-- header_title  "Groups", dashboard_groups_path
+- page_title    _("Groups")
+- header_title  _("Groups"), dashboard_groups_path
 
 - if current_user
   = render 'dashboard/groups_head'
@@ -10,14 +10,14 @@
 
 - if cookies[:explore_groups_landing_dismissed] != 'true'
   .explore-groups.landing.content-block.js-explore-groups-landing.hide
-    %button.dismiss-button{ type: 'button', 'aria-label' => 'Dismiss' }= icon('times')
+    %button.dismiss-button{ type: 'button', 'aria-label' => _('Dismiss') }= icon('times')
     .svg-container
       = custom_icon('icon_explore_groups_splash')
     .inner-content
-      %p Below you will find all the groups that are public.
-      %p You can easily contribute to them by requesting to join these groups.
+      %p= _("Below you will find all the groups that are public.")
+      %p= _("You can easily contribute to them by requesting to join these groups.")
 
 - if params[:filter].blank? && @groups.empty?
-  .nothing-here-block No public groups
+  .nothing-here-block= _("No public groups")
 - else
   = render 'groups'
diff --git a/app/views/explore/projects/_filter.html.haml b/app/views/explore/projects/_filter.html.haml
index 6abb56ba6d2..b694103ccaf 100644
--- a/app/views/explore/projects/_filter.html.haml
+++ b/app/views/explore/projects/_filter.html.haml
@@ -2,16 +2,16 @@
   .dropdown
     %button.dropdown-toggle{ href: '#', "data-toggle" => "dropdown", 'data-display' => 'static' }
       = icon('globe')
-      %span.light Visibility:
+      %span.light= _("Visibility:")
       - if params[:visibility_level].present?
         = visibility_level_label(params[:visibility_level].to_i)
       - else
-        Any
+        = _('Any')
       = icon('chevron-down')
     %ul.dropdown-menu.dropdown-menu-right
       %li
         = link_to filter_projects_path(visibility_level: nil) do
-          Any
+          = _('Any')
       - Gitlab::VisibilityLevel.values.each do |level|
         %li{ class: active_when(level.to_s == params[:visibility_level]) || 'light' }
           = link_to filter_projects_path(visibility_level: level) do
diff --git a/app/views/explore/projects/_nav.html.haml b/app/views/explore/projects/_nav.html.haml
index 558cd26f1e0..bf65c19b720 100644
--- a/app/views/explore/projects/_nav.html.haml
+++ b/app/views/explore/projects/_nav.html.haml
@@ -2,13 +2,13 @@
   %ul.nav-links.nav.nav-tabs
     = nav_link(page: [trending_explore_projects_path, explore_root_path]) do
       = link_to trending_explore_projects_path do
-        Trending
+        = _('Trending')
     = nav_link(page: starred_explore_projects_path) do
       = link_to starred_explore_projects_path do
-        Most stars
+        = _('Most stars')
     = nav_link(page: explore_projects_path) do
       = link_to explore_projects_path do
-        All
+        = _('All')
 
   .nav-controls
     - unless current_user
diff --git a/app/views/explore/projects/index.html.haml b/app/views/explore/projects/index.html.haml
index f00802e0af7..452f390695c 100644
--- a/app/views/explore/projects/index.html.haml
+++ b/app/views/explore/projects/index.html.haml
@@ -1,6 +1,6 @@
 - @hide_top_links = true
-- page_title    "Projects"
-- header_title  "Projects", dashboard_projects_path
+- page_title    _("Projects")
+- header_title  _("Projects"), dashboard_projects_path
 
 - if current_user
   = render 'dashboard/projects_head'
diff --git a/app/views/explore/projects/starred.html.haml b/app/views/explore/projects/starred.html.haml
index f00802e0af7..452f390695c 100644
--- a/app/views/explore/projects/starred.html.haml
+++ b/app/views/explore/projects/starred.html.haml
@@ -1,6 +1,6 @@
 - @hide_top_links = true
-- page_title    "Projects"
-- header_title  "Projects", dashboard_projects_path
+- page_title    _("Projects")
+- header_title  _("Projects"), dashboard_projects_path
 
 - if current_user
   = render 'dashboard/projects_head'
diff --git a/app/views/explore/projects/trending.html.haml b/app/views/explore/projects/trending.html.haml
index f00802e0af7..452f390695c 100644
--- a/app/views/explore/projects/trending.html.haml
+++ b/app/views/explore/projects/trending.html.haml
@@ -1,6 +1,6 @@
 - @hide_top_links = true
-- page_title    "Projects"
-- header_title  "Projects", dashboard_projects_path
+- page_title    _("Projects")
+- header_title  _("Projects"), dashboard_projects_path
 
 - if current_user
   = render 'dashboard/projects_head'
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index b6fd7ccc1bb..471cda4e5ad 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -465,6 +465,9 @@ msgstr ""
 msgid "An error occurred. Please try again."
 msgstr ""
 
+msgid "Any"
+msgstr ""
+
 msgid "Appearance"
 msgstr ""
 
@@ -687,6 +690,9 @@ msgstr ""
 msgid "Below are examples of regex for existing tools:"
 msgstr ""
 
+msgid "Below you will find all the groups that are public."
+msgstr ""
+
 msgid "Boards"
 msgstr ""
 
@@ -1976,6 +1982,12 @@ msgstr ""
 msgid "Discard draft"
 msgstr ""
 
+msgid "Discover projects, groups and snippets. Share your projects with others"
+msgstr ""
+
+msgid "Dismiss"
+msgstr ""
+
 msgid "Dismiss Cycle Analytics introduction box"
 msgstr ""
 
@@ -2246,6 +2258,12 @@ msgstr ""
 msgid "Expand sidebar"
 msgstr ""
 
+msgid "Explore GitLab"
+msgstr ""
+
+msgid "Explore Groups"
+msgstr ""
+
 msgid "Explore groups"
 msgstr ""
 
@@ -2461,6 +2479,9 @@ msgstr ""
 msgid "GroupSettings|remove the share with group lock from %{ancestor_group_name}"
 msgstr ""
 
+msgid "Groups"
+msgstr ""
+
 msgid "Groups can also be nested by creating %{subgroup_docs_link_start}subgroups%{subgroup_docs_link_end}."
 msgstr ""
 
@@ -3023,6 +3044,9 @@ msgstr ""
 msgid "More information is available|here"
 msgstr ""
 
+msgid "Most stars"
+msgstr ""
+
 msgid "Move"
 msgstr ""
 
@@ -3151,6 +3175,9 @@ msgstr ""
 msgid "No messages were logged"
 msgstr ""
 
+msgid "No public groups"
+msgstr ""
+
 msgid "No repository"
 msgstr ""
 
@@ -4931,6 +4958,9 @@ msgstr ""
 msgid "Track time with quick actions"
 msgstr ""
 
+msgid "Trending"
+msgstr ""
+
 msgid "Trigger this manual action"
 msgstr ""
 
@@ -5071,6 +5101,9 @@ msgstr ""
 msgid "Visibility and access controls"
 msgstr ""
 
+msgid "Visibility:"
+msgstr ""
+
 msgid "VisibilityLevel|Internal"
 msgstr ""
 
@@ -5275,6 +5308,9 @@ msgstr ""
 msgid "You can also test your .gitlab-ci.yml in the %{linkStart}Lint%{linkEnd}"
 msgstr ""
 
+msgid "You can easily contribute to them by requesting to join these groups."
+msgstr ""
+
 msgid "You can easily install a Runner on a Kubernetes cluster. %{link_to_help_page}"
 msgstr ""
 

From 54e127a8bb758a0c4280849914539be16c2c70f9 Mon Sep 17 00:00:00 2001
From: Richard Hancock <rjhancock@tapenvy.us>
Date: Tue, 10 Jul 2018 10:32:53 +0000
Subject: [PATCH 020/113] Document update for GitLab Pages users.

---
 doc/install/installation.md |  9 +++++++++
 doc/update/11.0-to-11.1.md  | 27 ++++++++++++++++++++++-----
 2 files changed, 31 insertions(+), 5 deletions(-)

diff --git a/doc/install/installation.md b/doc/install/installation.md
index 259d8f73a22..4b68090f8d3 100644
--- a/doc/install/installation.md
+++ b/doc/install/installation.md
@@ -447,6 +447,15 @@ You can specify a different Git repository by providing it as an extra parameter
 
     sudo -u git -H bundle exec rake "gitlab:workhorse:install[/home/git/gitlab-workhorse,https://example.com/gitlab-workhorse.git]" RAILS_ENV=production
 
+### Install gitlab-pages
+
+GitLab-Pages uses [GNU Make](https://www.gnu.org/software/make/). This step is optional and only needed if you wish to host static sites from within GitLab. The following commands will install GitLab-Pages in `/home/git/gitlab-pages`. For additional setup steps, please consult the [administration guide](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/doc/administration/pages/source.md) for your version of GitLab as the GitLab Pages daemon can be ran several different ways.
+
+    cd /home/git
+    sudo -u git -H git clone https://gitlab.com/gitlab-org/gitlab-pages.git
+    cd gitlab-pages
+    sudo -u git -H git checkout v$(</home/git/gitlab/GITLAB_PAGES_VERSION)
+    sudo -u git -H make
 
 ### Initialize Database and Activate Advanced Features
 
diff --git a/doc/update/11.0-to-11.1.md b/doc/update/11.0-to-11.1.md
index 306bd417ebf..3f10a7edb8a 100644
--- a/doc/update/11.0-to-11.1.md
+++ b/doc/update/11.0-to-11.1.md
@@ -187,7 +187,24 @@ sudo -u git -H git checkout v$(</home/git/gitlab/GITALY_SERVER_VERSION)
 sudo -u git -H make
 ```
 
-### 10. Update MySQL permissions
+### 10. Update gitlab-pages
+
+#### Only needed if you use GitLab Pages.
+
+Install and compile gitlab-pages. GitLab-Pages uses
+[GNU Make](https://www.gnu.org/software/make/).
+If you are not using Linux you may have to run `gmake` instead of
+`make` below.
+
+```bash
+cd /home/git/gitlab-pages
+
+sudo -u git -H git fetch --all --tags --prune
+sudo -u git -H git checkout v$(</home/git/gitlab/GITLAB_PAGES_VERSION)
+sudo -u git -H make
+```
+
+### 11. Update MySQL permissions
 
 If you are using MySQL you need to grant the GitLab user the necessary
 permissions on the database:
@@ -209,7 +226,7 @@ You can make this setting permanent by adding it to your `my.cnf`:
 log_bin_trust_function_creators=1
 ```
 
-### 11. Update configuration files
+### 12. Update configuration files
 
 #### New configuration options for `gitlab.yml`
 
@@ -283,7 +300,7 @@ For Ubuntu 16.04.1 LTS:
 sudo systemctl daemon-reload
 ```
 
-### 12. Install libs, migrations, etc.
+### 13. Install libs, migrations, etc.
 
 ```bash
 cd /home/git/gitlab
@@ -313,14 +330,14 @@ sudo -u git -H bundle exec rake cache:clear RAILS_ENV=production
 
 **MySQL installations**: Run through the `MySQL strings limits` and `Tables and data conversion to utf8mb4` [tasks](../install/database_mysql.md).
 
-### 13. Start application
+### 14. Start application
 
 ```bash
 sudo service gitlab start
 sudo service nginx restart
 ```
 
-### 14. Check application status
+### 15. Check application status
 
 Check if GitLab and its environment are configured correctly:
 

From 8aac79be5311ff6e545f9756a60b4b1c07885a76 Mon Sep 17 00:00:00 2001
From: Marcel Amirault <ravlen@gmail.com>
Date: Tue, 10 Jul 2018 10:49:28 +0000
Subject: [PATCH 021/113] Update time_helper.rb to fix output for exact
 minutes.

---
 app/helpers/time_helper.rb       |  8 ++++++--
 spec/helpers/time_helper_spec.rb | 10 ++++++----
 2 files changed, 12 insertions(+), 6 deletions(-)

diff --git a/app/helpers/time_helper.rb b/app/helpers/time_helper.rb
index 271e839692a..336385f6798 100644
--- a/app/helpers/time_helper.rb
+++ b/app/helpers/time_helper.rb
@@ -5,9 +5,13 @@ module TimeHelper
     seconds = interval_in_seconds - minutes * 60
 
     if minutes >= 1
-      "#{pluralize(minutes, "minute")} #{pluralize(seconds, "second")}"
+      if seconds % 60 == 0
+        pluralize(minutes, "minute")
+      else
+        [pluralize(minutes, "minute"), pluralize(seconds, "second")].to_sentence
+      end
     else
-      "#{pluralize(seconds, "second")}"
+      pluralize(seconds, "second")
     end
   end
 
diff --git a/spec/helpers/time_helper_spec.rb b/spec/helpers/time_helper_spec.rb
index 21f35585367..0b371d69ecf 100644
--- a/spec/helpers/time_helper_spec.rb
+++ b/spec/helpers/time_helper_spec.rb
@@ -4,10 +4,12 @@ describe TimeHelper do
   describe "#time_interval_in_words" do
     it "returns minutes and seconds" do
       intervals_in_words = {
-        100 => "1 minute 40 seconds",
-        100.32 => "1 minute 40 seconds",
-        121 => "2 minutes 1 second",
-        3721 => "62 minutes 1 second",
+        60 => "1 minute",
+        100 => "1 minute and 40 seconds",
+        100.32 => "1 minute and 40 seconds",
+        120 => "2 minutes",
+        121 => "2 minutes and 1 second",
+        3721 => "62 minutes and 1 second",
         0 => "0 seconds"
       }
 

From ca4eb4447da1ef2d53a76d742d8568cc153b6fb9 Mon Sep 17 00:00:00 2001
From: Marcel Amirault <ravlen@gmail.com>
Date: Tue, 10 Jul 2018 10:50:17 +0000
Subject: [PATCH 022/113] Update bitbucket.md to fix typo and small grammar
 touchups.

---
 doc/integration/bitbucket.md | 18 +++++++++---------
 1 file changed, 9 insertions(+), 9 deletions(-)

diff --git a/doc/integration/bitbucket.md b/doc/integration/bitbucket.md
index 9094d1f2419..2afcb052536 100644
--- a/doc/integration/bitbucket.md
+++ b/doc/integration/bitbucket.md
@@ -22,8 +22,8 @@ Bitbucket.org.
 
 > **Note:**
 GitLab 8.15 significantly simplified the way to integrate Bitbucket.org with
-GitLab. You are encouraged to upgrade your GitLab instance if you haven't done
-already. If you're using GitLab 8.14 and below, [use the previous integration
+GitLab. You are encouraged to upgrade your GitLab instance if you haven't done so
+already. If you're using GitLab 8.14 or below, [use the previous integration
 docs][bb-old].
 
 To enable the Bitbucket OmniAuth provider you must register your application
@@ -64,7 +64,7 @@ you to use.
 
 1.  Select **Save**.
 1.  Select your newly created OAuth consumer and you should now see a Key and
-    Secret in the list of OAuth customers. Keep this page open as you continue
+    Secret in the list of OAuth consumers. Keep this page open as you continue
     the configuration.
 
       ![Bitbucket OAuth key](img/bitbucket_oauth_keys.png)
@@ -114,8 +114,8 @@ you to use.
     from the Bitbucket application page.
 
 1.  Save the configuration file.
-1.  [Reconfigure][] or [restart GitLab][] for the changes to take effect if you
-    installed GitLab via Omnibus or from source respectively.
+1.  For the changes to take effect, [reconfigure GitLab][] if you installed via
+    Omnibus, or [restart][] if installed from source.
 
 On the sign in page there should now be a Bitbucket icon below the regular sign
 in form. Click the icon to begin the authentication process. Bitbucket will ask
@@ -127,12 +127,12 @@ well, the user will be returned to GitLab and will be signed in.
 Once the above configuration is set up, you can use Bitbucket to sign into
 GitLab and [start importing your projects][bb-import].
 
-If you don't want to enable signing in with Bitbucket but just want to import
-projects from Bitbucket, you could [disable it in the admin panel](omniauth.md#enable-or-disable-sign-in-with-an-omniauth-provider-without-disabling-import-sources).
+If you want to import projects from Bitbucket, but don't want to enable signing in,
+you can [disable Sign-Ins in the admin panel](omniauth.md#enable-or-disable-sign-in-with-an-omniauth-provider-without-disabling-import-sources).
 
 [init-oauth]: omniauth.md#initial-omniauth-configuration
 [bb-import]: ../workflow/importing/import_projects_from_bitbucket.md
 [bb-old]: https://gitlab.com/gitlab-org/gitlab-ce/blob/8-14-stable/doc/integration/bitbucket.md
 [bitbucket-docs]: https://confluence.atlassian.com/bitbucket/use-the-ssh-protocol-with-bitbucket-cloud-221449711.html#UsetheSSHprotocolwithBitbucketCloud-KnownhostorBitbucket%27spublickeyfingerprints
-[reconfigure]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure
-[restart GitLab]: ../administration/restart_gitlab.md#installations-from-source
+[reconfigure GitLab]: ../administration/restart_gitlab.md#omnibus-gitlab-reconfigure
+[restart]: ../administration/restart_gitlab.md#installations-from-source

From fdfc8d04d2007bd2956e39161b00b1c19cbbadcc Mon Sep 17 00:00:00 2001
From: Jan Provaznik <jprovaznik@gitlab.com>
Date: Sat, 7 Jul 2018 20:22:01 +0200
Subject: [PATCH 023/113] [Rails5] Permit concurrent loads

Rails 5 introduced a new (and safer) autoload mechanism which
uses locking when loading missing constants. Under some circumstances
it's possible that a deadlock occurs in multi-threaded environment
(especially when running capybara tests)

To avoid these deadlocks, concurrent load is enabled when loading
policies - we ere hitting timeout in this case:
https://gitlab.com/gitlab-org/gitlab-ce/issues/48263

Note that autoloading is enabled only in development or test envs
(not in production).
---
 lib/declarative_policy.rb | 12 +++++++++++-
 1 file changed, 11 insertions(+), 1 deletion(-)

diff --git a/lib/declarative_policy.rb b/lib/declarative_policy.rb
index 1dd2855063d..dda6cd38dcd 100644
--- a/lib/declarative_policy.rb
+++ b/lib/declarative_policy.rb
@@ -21,7 +21,17 @@ module DeclarativePolicy
       cache = opts[:cache] || {}
       key = Cache.policy_key(user, subject)
 
-      cache[key] ||= class_for(subject).new(user, subject, opts)
+      cache[key] ||=
+        if Gitlab.rails5?
+          # to avoid deadlocks in multi-threaded environment when
+          # autoloading is enabled, we allow concurrent loads,
+          # https://gitlab.com/gitlab-org/gitlab-ce/issues/48263
+          ActiveSupport::Dependencies.interlock.permit_concurrent_loads do
+            class_for(subject).new(user, subject, opts)
+          end
+        else
+          class_for(subject).new(user, subject, opts)
+        end
     end
 
     def class_for(subject)

From ac71675d3096ac9317ea230a408d69029bdadc73 Mon Sep 17 00:00:00 2001
From: Filipa Lacerda <filipa@gitlab.com>
Date: Mon, 9 Jul 2018 18:13:41 +0100
Subject: [PATCH 024/113] Fixes toggle discussion button not expanding
 collapsed discussions

Discussions were being toggled by jquery DOM querying them and toggling
visibility but in vue, only the open discussions will be in the DOM
Fix includes:
 - Adds a getter to the store to get the expanded discussions
 - Adds an action to collapse a discussion
 - When the user clicks the button, all data needed is now accessible
   through a getter and we can dispatch an action to toggle the discussion
   within the state, instead of showing/hiding with jQuery
 - Removes hardcoded properties

Resolves #48237
---
 .../diffs/components/diff_file_header.vue     | 17 ++++++---
 app/assets/javascripts/diffs/store/actions.js | 31 ++++++++++++++++
 app/assets/javascripts/diffs/store/getters.js | 36 ++++++++++++++++++-
 .../javascripts/notes/stores/actions.js       |  2 ++
 .../notes/stores/mutation_types.js            |  4 +++
 .../javascripts/notes/stores/mutations.js     |  5 +++
 .../unreleased/48237-toggle-file-comments.yml |  5 +++
 7 files changed, 94 insertions(+), 6 deletions(-)
 create mode 100644 changelogs/unreleased/48237-toggle-file-comments.yml

diff --git a/app/assets/javascripts/diffs/components/diff_file_header.vue b/app/assets/javascripts/diffs/components/diff_file_header.vue
index 1957698c6c1..ac4f37512ec 100644
--- a/app/assets/javascripts/diffs/components/diff_file_header.vue
+++ b/app/assets/javascripts/diffs/components/diff_file_header.vue
@@ -1,5 +1,6 @@
 <script>
 import _ from 'underscore';
+import { mapActions, mapGetters } from 'vuex';
 import ClipboardButton from '~/vue_shared/components/clipboard_button.vue';
 import Icon from '~/vue_shared/components/icon.vue';
 import FileIcon from '~/vue_shared/components/file_icon.vue';
@@ -54,6 +55,10 @@ export default {
     };
   },
   computed: {
+    ...mapGetters('diffs', ['diffHasExpandedDiscussions']),
+    hasExpandedDiscussions() {
+      return this.diffHasExpandedDiscussions(this.diffFile);
+    },
     icon() {
       if (this.diffFile.submodule) {
         return 'archive';
@@ -88,9 +93,6 @@ export default {
     collapseIcon() {
       return this.expanded ? 'chevron-down' : 'chevron-right';
     },
-    isDiscussionsExpanded() {
-      return this.discussionsExpanded && this.expanded;
-    },
     viewFileButtonText() {
       const truncatedContentSha = _.escape(truncateSha(this.diffFile.contentSha));
       return sprintf(
@@ -113,6 +115,7 @@ export default {
     },
   },
   methods: {
+    ...mapActions('diffs', ['toggleFileDiscussions']),
     handleToggle(e, checkTarget) {
       if (
         !checkTarget ||
@@ -125,6 +128,9 @@ export default {
     showForkMessage() {
       this.$emit('showForkMessage');
     },
+    handleToggleDiscussions(){
+      this.toggleFileDiscussions(this.diffFile);
+    },
   },
 };
 </script>
@@ -216,9 +222,10 @@ export default {
         v-if="diffFile.blob && diffFile.blob.readableText"
       >
         <button
-          :class="{ active: isDiscussionsExpanded }"
+          :class="{ active: hasExpandedDiscussions }"
           :title="s__('MergeRequests|Toggle comments for this file')"
-          class="btn js-toggle-diff-comments"
+          @click="handleToggleDiscussions"
+          class="btn"
           type="button"
         >
           <icon name="comment" />
diff --git a/app/assets/javascripts/diffs/store/actions.js b/app/assets/javascripts/diffs/store/actions.js
index 5e0fd5109bb..2e6092d7e87 100644
--- a/app/assets/javascripts/diffs/store/actions.js
+++ b/app/assets/javascripts/diffs/store/actions.js
@@ -82,6 +82,36 @@ export const expandAllFiles = ({ commit }) => {
   commit(types.EXPAND_ALL_FILES);
 };
 
+/**
+ * Toggles the file discussions after user clicked on the toggle discussions button.
+ *
+ * Gets the discussions for the provided diff.
+ *
+ * If all discussions are expanded, it will collapse all of them
+ * If all discussions are collapsed, it will expand all of them
+ * If some discussions are open and others closed, it will expand the closed ones.
+ *
+ * @param {Object} diff
+ */
+export const toggleFileDiscussions = ({ getters, dispatch }, diff) => {
+  const discussions = getters.getDiffFileDiscussions(diff);
+
+  const shouldCloseAll = getters.diffHasAllExpandedDiscussions(diff);
+  const shouldExpandAll = getters.diffHasAllCollpasedDiscussions(diff);
+
+  discussions.forEach(discussion => {
+    const data = { discussionId: discussion.id };
+
+    if (shouldCloseAll) {
+      dispatch('collapseDiscussion', data, { root: true });
+    } else if (shouldExpandAll) {
+      dispatch('expandDiscussion', data, { root: true });
+    } else if (!shouldCloseAll && !shouldExpandAll && !discussion.expanded) {
+      dispatch('expandDiscussion', data, { root: true });
+    }
+  });
+};
+
 export default {
   setBaseConfig,
   fetchDiffFiles,
@@ -92,4 +122,5 @@ export default {
   loadMoreLines,
   loadCollapsedDiff,
   expandAllFiles,
+  toggleFileDiscussions,
 };
diff --git a/app/assets/javascripts/diffs/store/getters.js b/app/assets/javascripts/diffs/store/getters.js
index f3c2d7427e7..9a8d27d0b04 100644
--- a/app/assets/javascripts/diffs/store/getters.js
+++ b/app/assets/javascripts/diffs/store/getters.js
@@ -1,3 +1,4 @@
+import _ from 'underscore';
 import { PARALLEL_DIFF_VIEW_TYPE, INLINE_DIFF_VIEW_TYPE } from '../constants';
 
 export const isParallelView = state => state.diffViewType === PARALLEL_DIFF_VIEW_TYPE;
@@ -8,5 +9,38 @@ export const areAllFilesCollapsed = state => state.diffFiles.every(file => file.
 
 export const commitId = state => (state.commit && state.commit.id ? state.commit.id : null);
 
-// prevent babel-plugin-rewire from generating an invalid default during karma tests
+/**
+ * Checks if the diff has all discussions expanded
+ * @param {Object} diff
+ * @returns {Boolean}
+ */
+export const diffHasAllExpandedDiscussions = (state, getters) => diff => {
+  const discussions = getters.getDiffFileDiscussions(diff);
+
+  return (discussions.length && discussions.every(discussion => discussion.expanded)) || false;
+};
+
+/**
+ * Checks if the diff has all discussions collpased
+ * @param {Object} diff
+ * @returns {Boolean}
+ */
+export const diffHasAllCollpasedDiscussions = (state, getters) => diff => {
+  const discussions = getters.getDiffFileDiscussions(diff);
+
+  return (discussions.length && discussions.every(discussion => !discussion.expanded)) || false;
+};
+
+/**
+ * Returns an array with the discussions of the given diff
+ * @param {Object} diff
+ * @returns {Array}
+ */
+export const getDiffFileDiscussions = (state, getters, rootState, rootGetters) => diff =>
+  rootGetters.discussions.filter(
+    discussion =>
+      discussion.diff_discussion && _.isEqual(discussion.diff_file.file_hash, diff.fileHash),
+  ) || [];
+
+// prevent babel-plugin-rewire from generating an invalid default during karma∂ tests
 export default () => {};
diff --git a/app/assets/javascripts/notes/stores/actions.js b/app/assets/javascripts/notes/stores/actions.js
index b2bf86eea56..3eefbe11c37 100644
--- a/app/assets/javascripts/notes/stores/actions.js
+++ b/app/assets/javascripts/notes/stores/actions.js
@@ -15,6 +15,8 @@ let eTagPoll;
 
 export const expandDiscussion = ({ commit }, data) => commit(types.EXPAND_DISCUSSION, data);
 
+export const collapseDiscussion = ({ commit }, data) => commit(types.COLLAPSE_DISCUSSION, data);
+
 export const setNotesData = ({ commit }, data) => commit(types.SET_NOTES_DATA, data);
 
 export const setNoteableData = ({ commit }, data) => commit(types.SET_NOTEABLE_DATA, data);
diff --git a/app/assets/javascripts/notes/stores/mutation_types.js b/app/assets/javascripts/notes/stores/mutation_types.js
index a25098fbc06..6c1ffdf266b 100644
--- a/app/assets/javascripts/notes/stores/mutation_types.js
+++ b/app/assets/javascripts/notes/stores/mutation_types.js
@@ -17,6 +17,10 @@ export const UPDATE_DISCUSSION = 'UPDATE_DISCUSSION';
 export const SET_DISCUSSION_DIFF_LINES = 'SET_DISCUSSION_DIFF_LINES';
 export const SET_NOTES_FETCHED_STATE = 'SET_NOTES_FETCHED_STATE';
 
+// DISCUSSION
+
+export const COLLAPSE_DISCUSSION = 'COLLAPSE_DISCUSSION';
+
 // Issue
 export const CLOSE_ISSUE = 'CLOSE_ISSUE';
 export const REOPEN_ISSUE = 'REOPEN_ISSUE';
diff --git a/app/assets/javascripts/notes/stores/mutations.js b/app/assets/javascripts/notes/stores/mutations.js
index a1849269010..ab6a95e2601 100644
--- a/app/assets/javascripts/notes/stores/mutations.js
+++ b/app/assets/javascripts/notes/stores/mutations.js
@@ -58,6 +58,11 @@ export default {
     discussion.expanded = true;
   },
 
+  [types.COLLAPSE_DISCUSSION](state, { discussionId }) {
+    const discussion = utils.findNoteObjectById(state.discussions, discussionId);
+    discussion.expanded = false;
+  },
+
   [types.REMOVE_PLACEHOLDER_NOTES](state) {
     const { discussions } = state;
 
diff --git a/changelogs/unreleased/48237-toggle-file-comments.yml b/changelogs/unreleased/48237-toggle-file-comments.yml
new file mode 100644
index 00000000000..9c9b8e95691
--- /dev/null
+++ b/changelogs/unreleased/48237-toggle-file-comments.yml
@@ -0,0 +1,5 @@
+---
+title: Fixes toggle discussion button not expanding collapsed discussions
+merge_request:
+author:
+type: fixed

From cf777261888cb4baccd03b3d1ca491cb5b1a65f3 Mon Sep 17 00:00:00 2001
From: Lin Jen-Shin <godfat@godfat.org>
Date: Tue, 10 Jul 2018 20:05:57 +0800
Subject: [PATCH 025/113] Make sure we're matching the same way.
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Ruby's regular expression is unicode aware, therefore 'å' also
matches against /\p{alnum}/. If we want only ASCII-7bit, use
[a-zA-Z0-9]+ so they always match the same thing
---
 db/fixtures/development/19_environments.rb | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/db/fixtures/development/19_environments.rb b/db/fixtures/development/19_environments.rb
index 00a14f458d1..65089f6ba4e 100644
--- a/db/fixtures/development/19_environments.rb
+++ b/db/fixtures/development/19_environments.rb
@@ -30,14 +30,14 @@ class Gitlab::Seeder::Environments
   def create_merge_request_review_deployments!
     @project
       .merge_requests
-      .select { |mr| mr.source_branch.match(/\p{Alnum}+/) }
+      .select { |mr| mr.source_branch.match(/[^a-zA-Z0-9]+/) }
       .sample(4)
       .each do |merge_request|
       next unless merge_request.diff_head_sha
 
       create_deployment!(
         merge_request.source_project,
-        "review/#{merge_request.source_branch.gsub(/[^a-zA-Z0-9]/, '')}",
+        "review/#{merge_request.source_branch.gsub(/[^a-zA-Z0-9]+/, '')}",
         merge_request.source_branch,
         merge_request.diff_head_sha
       )

From 191d8ecff6ece1a7f57b5d033cbe7405e4e06933 Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Tue, 10 Jul 2018 12:38:15 +0000
Subject: [PATCH 026/113] Revert "Merge branch 'fix-inconsistent-cancel-button'
 into 'master'"

This reverts merge request !20140
---
 app/assets/javascripts/notes/components/note_form.vue           | 2 +-
 app/views/shared/notes/_form.html.haml                          | 2 +-
 .../features/projects/commit/comments/user_adds_comment_spec.rb | 2 +-
 3 files changed, 3 insertions(+), 3 deletions(-)

diff --git a/app/assets/javascripts/notes/components/note_form.vue b/app/assets/javascripts/notes/components/note_form.vue
index 963e3a37b39..26482a02e00 100644
--- a/app/assets/javascripts/notes/components/note_form.vue
+++ b/app/assets/javascripts/notes/components/note_form.vue
@@ -200,7 +200,7 @@ js-autosize markdown-area js-vue-issue-note-form js-vue-textarea"
           class="btn btn-cancel note-edit-cancel js-close-discussion-note-form"
           type="button"
           @click="cancelHandler()">
-          {{ __('Discard draft') }}
+          Cancel
         </button>
       </div>
     </form>
diff --git a/app/views/shared/notes/_form.html.haml b/app/views/shared/notes/_form.html.haml
index 6b2715b47a7..c360f1ffe2a 100644
--- a/app/views/shared/notes/_form.html.haml
+++ b/app/views/shared/notes/_form.html.haml
@@ -40,5 +40,5 @@
 
       = yield(:note_actions)
 
-      %a.btn.btn-cancel.js-note-discard{ role: "button", data: {cancel_text: "Discard draft" } }
+      %a.btn.btn-cancel.js-note-discard{ role: "button", data: {cancel_text: "Cancel" } }
         Discard draft
diff --git a/spec/features/projects/commit/comments/user_adds_comment_spec.rb b/spec/features/projects/commit/comments/user_adds_comment_spec.rb
index 53866c32c69..6397df086a7 100644
--- a/spec/features/projects/commit/comments/user_adds_comment_spec.rb
+++ b/spec/features/projects/commit/comments/user_adds_comment_spec.rb
@@ -62,7 +62,7 @@ describe "User adds a comment on a commit", :js do
           click_diff_line(sample_commit.line_code)
 
           expect(page).to have_css(".js-temp-notes-holder form.new-note")
-                    .and have_css(".js-close-discussion-note-form", text: "Discard draft")
+                    .and have_css(".js-close-discussion-note-form", text: "Cancel")
 
           # The `Cancel` button closes the current form. The page should not have any open forms after that.
           find(".js-close-discussion-note-form").click

From ee740d5ee0e0a9a2dda9e55102ec37c63a098783 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Achilleas=20Pipinellis=20=28=F0=9F=8C=B4=20July=2010=20-?=
 =?UTF-8?q?=20July=2020=20=F0=9F=8C=B4=29?= <axil@gitlab.com>
Date: Tue, 10 Jul 2018 12:39:55 +0000
Subject: [PATCH 027/113] Rename code climate to code quality

---
 doc/ci/examples/README.md                |  4 +-
 doc/ci/examples/code_climate.md          | 53 +++---------------------
 doc/ci/examples/code_quality.md          | 49 ++++++++++++++++++++++
 doc/topics/autodevops/index.md           |  2 +-
 doc/user/project/merge_requests/index.md |  4 +-
 5 files changed, 59 insertions(+), 53 deletions(-)
 create mode 100644 doc/ci/examples/code_quality.md

diff --git a/doc/ci/examples/README.md b/doc/ci/examples/README.md
index aa31e172641..811f4d1f07a 100644
--- a/doc/ci/examples/README.md
+++ b/doc/ci/examples/README.md
@@ -43,9 +43,9 @@ There's also a collection of repositories with [example projects](https://gitlab
 - [Using `dpl` as deployment tool](deployment/README.md)
 - [The `.gitlab-ci.yml` file for GitLab itself](https://gitlab.com/gitlab-org/gitlab-ce/blob/master/.gitlab-ci.yml)
 
-## Code quality analysis
+## Code Quality analysis
 
-[Analyze code quality with the Code Climate CLI](code_climate.md).
+**(Starter)** [Analyze your project's Code Quality](code_quality.md).
 
 ## Static Application Security Testing (SAST)
 
diff --git a/doc/ci/examples/code_climate.md b/doc/ci/examples/code_climate.md
index 2c8865c6e50..b34637efc8d 100644
--- a/doc/ci/examples/code_climate.md
+++ b/doc/ci/examples/code_climate.md
@@ -1,49 +1,6 @@
-# Analyze project code quality with Code Climate CLI
+---
+redirect_from: 'https://docs.gitlab.com/ee/ci/examples/code_climate.html'
+redirect_to: code_quality.md
+---
 
-This example shows how to run [Code Climate CLI][cli] on your code by using
-GitLab CI and Docker.
-
-First, you need GitLab Runner with [docker-in-docker executor][dind].
-
-Once you set up the Runner, add a new job to `.gitlab-ci.yml`, called `code_quality`:
-
-```yaml
-code_quality:
-  image: docker:stable
-  variables:
-    DOCKER_DRIVER: overlay2
-  allow_failure: true
-  services:
-    - docker:stable-dind
-  script:
-    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
-    - docker run
-        --env SOURCE_CODE="$PWD"
-        --volume "$PWD":/code
-        --volume /var/run/docker.sock:/var/run/docker.sock
-        "registry.gitlab.com/gitlab-org/security-products/codequality:$SP_VERSION" /code
-  artifacts:
-    paths: [gl-code-quality-report.json]
-```
-
-The above example will create a `code_quality` job in your CI/CD pipeline which
-will scan your source code for code quality issues. The report will be saved
-as an artifact that you can later download and analyze.
-
-TIP: **Tip:**
-Starting with [GitLab Starter][ee] 9.3, this information will
-be automatically extracted and shown right in the merge request widget. To do
-so, the CI/CD job must be named `code_quality` and the artifact path must be
-`gl-code-quality-report.json`.
-[Learn more on code quality diffs in merge requests](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality_diff.html).
-
-CAUTION: **Caution:**
-Code Quality was previously using `codeclimate` and `codequality` for job name and
-`codeclimate.json` for the artifact name. While these old names
-are still maintained they have been deprecated with GitLab 11.0 and may be removed
-in next major release, GitLab 12.0. You are advised to update your current `.gitlab-ci.yml`
-configuration to reflect that change.
-
-[cli]: https://github.com/codeclimate/codeclimate
-[dind]: ../docker/using_docker_build.md#use-docker-in-docker-executor
-[ee]: https://about.gitlab.com/pricing/
+This document was moved to [another location](code_quality.md).
diff --git a/doc/ci/examples/code_quality.md b/doc/ci/examples/code_quality.md
new file mode 100644
index 00000000000..2a7040ecdeb
--- /dev/null
+++ b/doc/ci/examples/code_quality.md
@@ -0,0 +1,49 @@
+# Analyze your project's Code Quality
+
+This example shows how to run Code Quality on your code by using GitLab CI/CD
+and Docker.
+
+First, you need GitLab Runner with [docker-in-docker executor][dind].
+
+Once you set up the Runner, add a new job to `.gitlab-ci.yml`, called `code_quality`:
+
+```yaml
+code_quality:
+  image: docker:stable
+  variables:
+    DOCKER_DRIVER: overlay2
+  allow_failure: true
+  services:
+    - docker:stable-dind
+  script:
+    - export SP_VERSION=$(echo "$CI_SERVER_VERSION" | sed 's/^\([0-9]*\)\.\([0-9]*\).*/\1-\2-stable/')
+    - docker run
+        --env SOURCE_CODE="$PWD"
+        --volume "$PWD":/code
+        --volume /var/run/docker.sock:/var/run/docker.sock
+        "registry.gitlab.com/gitlab-org/security-products/codequality:$SP_VERSION" /code
+  artifacts:
+    paths: [gl-code-quality-report.json]
+```
+
+The above example will create a `code_quality` job in your CI/CD pipeline which
+will scan your source code for code quality issues. The report will be saved
+as an artifact that you can later download and analyze.
+
+TIP: **Tip:**
+Starting with [GitLab Starter][ee] 9.3, this information will
+be automatically extracted and shown right in the merge request widget. To do
+so, the CI/CD job must be named `code_quality` and the artifact path must be
+`gl-code-quality-report.json`.
+[Learn more on Code Quality in merge requests](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html).
+
+CAUTION: **Caution:**
+Code Quality was previously using `codeclimate` and `codequality` for job name and
+`codeclimate.json` for the artifact name. While these old names
+are still maintained they have been deprecated with GitLab 11.0 and may be removed
+in next major release, GitLab 12.0. You are advised to update your current `.gitlab-ci.yml`
+configuration to reflect that change.
+
+[cli]: https://github.com/codeclimate/codeclimate
+[dind]: ../docker/using_docker_build.md#use-docker-in-docker-executor
+[ee]: https://about.gitlab.com/pricing/
diff --git a/doc/topics/autodevops/index.md b/doc/topics/autodevops/index.md
index bb323705ab3..d04829eaeb8 100644
--- a/doc/topics/autodevops/index.md
+++ b/doc/topics/autodevops/index.md
@@ -297,7 +297,7 @@ out.
 
 In GitLab Starter, differences between the source and
 target branches are also
-[shown in the merge request widget](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality_diff.html).
+[shown in the merge request widget](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html).
 
 ### Auto SAST **[ULTIMATE]**
 
diff --git a/doc/user/project/merge_requests/index.md b/doc/user/project/merge_requests/index.md
index 483a54051d7..86ecf33ed31 100644
--- a/doc/user/project/merge_requests/index.md
+++ b/doc/user/project/merge_requests/index.md
@@ -35,7 +35,7 @@ With **[GitLab Enterprise Edition][ee]**, you can also:
 
 - View the deployment process across projects with [Multi-Project Pipeline Graphs](https://docs.gitlab.com/ee/ci/multi_project_pipeline_graphs.html#multi-project-pipeline-graphs) **[PREMIUM]**
 - Request [approvals](https://docs.gitlab.com/ee/user/project/merge_requests/merge_request_approvals.html) from your managers **[STARTER]**
-- Analyze the impact of your changes with [Code Quality reports](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality_diff.html) **[STARTER]**
+- Analyze the impact of your changes with [Code Quality reports](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html) **[STARTER]**
 
 ## Use cases
 
@@ -43,7 +43,7 @@ A. Consider you are a software developer working in a team:
 
 1. You checkout a new branch, and submit your changes through a merge request
 1. You gather feedback from your team
-1. You work on the implementation optimizing code with [Code Quality reports](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality_diff.html) **[STARTER]**
+1. You work on the implementation optimizing code with [Code Quality reports](https://docs.gitlab.com/ee/user/project/merge_requests/code_quality.html) **[STARTER]**
 1. You build and test your changes with GitLab CI/CD
 1. You request the approval from your manager
 1. Your manager pushes a commit with his final review, [approves the merge request](https://docs.gitlab.com/ee/user/project/merge_requests/merge_request_approvals.html), and set it to [merge when pipeline succeeds](#merge-when-pipeline-succeeds) (Merge Request Approvals are available in GitLab Starter)

From 3acf7ba9caf19b1a02b34071454a631c959b5c58 Mon Sep 17 00:00:00 2001
From: Sean McGivern <sean@gitlab.com>
Date: Tue, 3 Jul 2018 13:23:17 +0100
Subject: [PATCH 028/113] Revert "Temporarily remove MR diffs removal
 migration"

This reverts commit 15ec6a13eb4d839d252315bf5b0a50d28351cb5f.
---
 ...21030_enqueue_delete_diff_files_workers.rb | 70 +++++++++++++++++++
 .../delete_diff_files_spec.rb                 |  2 +-
 .../enqueue_delete_diff_files_workers_spec.rb | 48 +++++++++++++
 3 files changed, 119 insertions(+), 1 deletion(-)
 create mode 100644 db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
 create mode 100644 spec/migrations/enqueue_delete_diff_files_workers_spec.rb

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
new file mode 100644
index 00000000000..5fb3d545624
--- /dev/null
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -0,0 +1,70 @@
+class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
+  include Gitlab::Database::MigrationHelpers
+
+  class MergeRequestDiff < ActiveRecord::Base
+    self.table_name = 'merge_request_diffs'
+
+    belongs_to :merge_request
+
+    include EachBatch
+  end
+
+  DOWNTIME = false
+  BATCH_SIZE = 1000
+  MIGRATION = 'DeleteDiffFiles'
+  DELAY_INTERVAL = 8.minutes
+  TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
+
+  disable_ddl_transaction!
+
+  def up
+    # We add temporary index, to make iteration over batches more performant.
+    # Conditional here is to avoid the need of doing that in a separate
+    # migration file to make this operation idempotent.
+    #
+    unless index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
+      add_concurrent_index(:merge_request_diffs, :id, where: "(state NOT IN ('without_files', 'empty'))", name: TMP_INDEX)
+    end
+
+
+    diffs_with_files = MergeRequestDiff.where.not(state: ['without_files', 'empty'])
+
+    # explain (analyze, buffers) example for the iteration:
+    #
+    # Index Only Scan using tmp_index_20013 on merge_request_diffs  (cost=0.43..1630.19 rows=60567 width=4) (actual time=0.047..9.572 rows=56976 loops=1)
+    #   Index Cond: ((id >= 764586) AND (id < 835298))
+    #   Heap Fetches: 8
+    #   Buffers: shared hit=18188
+    # Planning time: 0.752 ms
+    # Execution time: 12.430 ms
+    #
+    diffs_with_files.each_batch(of: BATCH_SIZE) do |relation, outer_index|
+      ids = relation.pluck(:id)
+
+      ids.each_with_index do |diff_id, inner_index|
+        # This will give some space between batches of workers.
+        interval = DELAY_INTERVAL * outer_index + inner_index.minutes
+
+        # A single `merge_request_diff` can be associated with way too many
+        # `merge_request_diff_files`. It's better to avoid batching these and
+        # schedule one at a time.
+        #
+        # Considering roughly 6M jobs, this should take ~30 days to process all
+        # of them.
+        #
+        BackgroundMigrationWorker.perform_in(interval, MIGRATION, [diff_id])
+      end
+    end
+
+    # We remove temporary index, because it is not required during standard
+    # operations and runtime.
+    #
+    remove_concurrent_index_by_name(:merge_request_diffs, TMP_INDEX)
+  end
+
+  def down
+    if index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
+      remove_concurrent_index_by_name(:merge_request_diffs, TMP_INDEX)
+    end
+  end
+end
diff --git a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
index 1b3df7b20d4..a251ab323d8 100644
--- a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
+++ b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180626125654 do
+describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180619121030 do
   describe '#perform' do
     context 'when diff files can be deleted' do
       let(:merge_request) { create(:merge_request, :merged) }
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
new file mode 100644
index 00000000000..686027822b8
--- /dev/null
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -0,0 +1,48 @@
+require 'spec_helper'
+require Rails.root.join('db', 'post_migrate', '20180619121030_enqueue_delete_diff_files_workers.rb')
+
+describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
+  let(:merge_request_diffs) { table(:merge_request_diffs) }
+  let(:merge_requests) { table(:merge_requests) }
+  let(:namespaces) { table(:namespaces) }
+  let(:projects) { table(:projects) }
+
+  before do
+    stub_const("#{described_class.name}::BATCH_SIZE", 2)
+
+    namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
+    projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
+
+    merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
+
+    merge_request_diffs.create!(id: 1, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 2, merge_request_id: 1, state: 'without_files')
+    merge_request_diffs.create!(id: 3, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 4, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 5, merge_request_id: 1, state: 'empty')
+    merge_request_diffs.create!(id: 6, merge_request_id: 1, state: 'collected')
+
+    merge_requests.update(1, latest_merge_request_diff_id: 6)
+  end
+
+  it 'correctly schedules diff file deletion workers' do
+    Sidekiq::Testing.fake! do
+      Timecop.freeze do
+        migrate!
+
+        # 1st batch
+        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(8.minutes, 1)
+        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(9.minutes, 3)
+        # 2nd batch
+        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(16.minutes, 4)
+        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(17.minutes, 6)
+        expect(BackgroundMigrationWorker.jobs.size).to eq(4)
+      end
+    end
+  end
+
+  it 'migrates the data' do
+    expect { migrate! }.to change { merge_request_diffs.where(state: 'without_files').count }
+      .from(1).to(4)
+  end
+end

From 80a7be87f82b36c23e273b6a84b5a6bdbffaa947 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Tue, 3 Jul 2018 12:16:06 -0300
Subject: [PATCH 029/113] Schedule batches in bulks of 5 diffs

Issuing 6M writings in a N+1 manner in Redis takes time, 3 hours to be precise. This commit makes it schedule 5 jobs at a time, what should make it schedule every job in approximately 40 minutes
---
 ...21030_enqueue_delete_diff_files_workers.rb | 19 ++++++++-------
 .../enqueue_delete_diff_files_workers_spec.rb | 24 ++++++++++++-------
 2 files changed, 26 insertions(+), 17 deletions(-)

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index 5fb3d545624..bd614aee75c 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -12,7 +12,7 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
   DOWNTIME = false
   BATCH_SIZE = 1000
   MIGRATION = 'DeleteDiffFiles'
-  DELAY_INTERVAL = 8.minutes
+  DELAY_INTERVAL = 10.minutes
   TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
 
   disable_ddl_transaction!
@@ -39,20 +39,21 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
     # Execution time: 12.430 ms
     #
     diffs_with_files.each_batch(of: BATCH_SIZE) do |relation, outer_index|
-      ids = relation.pluck(:id)
+      # We slice the batches in groups of 5 and schedule each group of 5 at
+      # once. This should make writings on Redis go 5x faster.
+      job_batches = relation.pluck(:id).in_groups_of(5, false).map do |ids|
+        ids.map { |id| [MIGRATION, [id]] }
+      end
 
-      ids.each_with_index do |diff_id, inner_index|
+      job_batches.each_with_index do |jobs, inner_index|
         # This will give some space between batches of workers.
         interval = DELAY_INTERVAL * outer_index + inner_index.minutes
 
         # A single `merge_request_diff` can be associated with way too many
-        # `merge_request_diff_files`. It's better to avoid batching these and
-        # schedule one at a time.
+        # `merge_request_diff_files`. It's better to avoid scheduling big
+        # batches and go with 5 at a time.
         #
-        # Considering roughly 6M jobs, this should take ~30 days to process all
-        # of them.
-        #
-        BackgroundMigrationWorker.perform_in(interval, MIGRATION, [diff_id])
+        BackgroundMigrationWorker.bulk_perform_in(interval, jobs)
       end
     end
 
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
index 686027822b8..52d6e9b2c64 100644
--- a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -8,7 +8,7 @@ describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
   let(:projects) { table(:projects) }
 
   before do
-    stub_const("#{described_class.name}::BATCH_SIZE", 2)
+    stub_const("#{described_class.name}::BATCH_SIZE", 7)
 
     namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
     projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
@@ -21,6 +21,10 @@ describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
     merge_request_diffs.create!(id: 4, merge_request_id: 1, state: 'collected')
     merge_request_diffs.create!(id: 5, merge_request_id: 1, state: 'empty')
     merge_request_diffs.create!(id: 6, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 7, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 8, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 9, merge_request_id: 1, state: 'collected')
+    merge_request_diffs.create!(id: 10, merge_request_id: 1, state: 'collected')
 
     merge_requests.update(1, latest_merge_request_diff_id: 6)
   end
@@ -30,13 +34,17 @@ describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
       Timecop.freeze do
         migrate!
 
-        # 1st batch
-        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(8.minutes, 1)
-        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(9.minutes, 3)
-        # 2nd batch
-        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(16.minutes, 4)
-        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(17.minutes, 6)
-        expect(BackgroundMigrationWorker.jobs.size).to eq(4)
+        # 1st batch schedule
+        [1, 3, 4, 6, 7].each do |id|
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(10.minutes, id)
+        end
+        [8, 9].each do |id|
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(11.minutes, id)
+        end
+
+        # 2nd batch schedule
+        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(20.minutes, 10)
+        expect(BackgroundMigrationWorker.jobs.size).to eq(8)
       end
     end
   end

From e66535e8407ccb8dd229fefdce817902a364f58a Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Tue, 3 Jul 2018 17:05:19 -0300
Subject: [PATCH 030/113] Create a diff deletion worker scheduler to avoid
 long-running post-migration

---
 ...21030_enqueue_delete_diff_files_workers.rb | 22 ++--------
 .../schedule_diff_files_deletion.rb           | 32 ++++++++++++++
 .../schedule_diff_files_deletion_spec.rb      | 43 +++++++++++++++++++
 .../enqueue_delete_diff_files_workers_spec.rb | 36 ++++++----------
 4 files changed, 92 insertions(+), 41 deletions(-)
 create mode 100644 lib/gitlab/background_migration/schedule_diff_files_deletion.rb
 create mode 100644 spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index bd614aee75c..92950c1eec1 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -11,8 +11,7 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
 
   DOWNTIME = false
   BATCH_SIZE = 1000
-  MIGRATION = 'DeleteDiffFiles'
-  DELAY_INTERVAL = 10.minutes
+  SCHEDULER = 'ScheduleDiffFilesDeletion'.freeze
   TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
 
   disable_ddl_transaction!
@@ -38,23 +37,10 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
     # Planning time: 0.752 ms
     # Execution time: 12.430 ms
     #
-    diffs_with_files.each_batch(of: BATCH_SIZE) do |relation, outer_index|
-      # We slice the batches in groups of 5 and schedule each group of 5 at
-      # once. This should make writings on Redis go 5x faster.
-      job_batches = relation.pluck(:id).in_groups_of(5, false).map do |ids|
-        ids.map { |id| [MIGRATION, [id]] }
-      end
+    diffs_with_files.each_batch(of: BATCH_SIZE) do |relation, scheduler_index|
+      ids = relation.pluck(:id).map { |id| [id] }
 
-      job_batches.each_with_index do |jobs, inner_index|
-        # This will give some space between batches of workers.
-        interval = DELAY_INTERVAL * outer_index + inner_index.minutes
-
-        # A single `merge_request_diff` can be associated with way too many
-        # `merge_request_diff_files`. It's better to avoid scheduling big
-        # batches and go with 5 at a time.
-        #
-        BackgroundMigrationWorker.bulk_perform_in(interval, jobs)
-      end
+      BackgroundMigrationWorker.perform_async(SCHEDULER, [ids, scheduler_index])
     end
 
     # We remove temporary index, because it is not required during standard
diff --git a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
new file mode 100644
index 00000000000..d944ed90fce
--- /dev/null
+++ b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
@@ -0,0 +1,32 @@
+# frozen_string_literal: true
+# rubocop:disable Metrics/AbcSize
+# rubocop:disable Style/Documentation
+
+module Gitlab
+  module BackgroundMigration
+    class ScheduleDiffFilesDeletion
+      BATCH_SIZE = 5
+      MIGRATION = 'DeleteDiffFiles'
+      DELAY_INTERVAL = 10.minutes
+
+      def perform(diff_ids, scheduler_index)
+        relation = MergeRequestDiff.where(id: diff_ids)
+
+        job_batches = relation.pluck(:id).in_groups_of(BATCH_SIZE, false).map do |ids|
+          ids.map { |id| [MIGRATION, [id]] }
+        end
+
+        job_batches.each_with_index do |jobs, inner_index|
+          # This will give some space between batches of workers.
+          interval = DELAY_INTERVAL * scheduler_index + inner_index.minutes
+
+          # A single `merge_request_diff` can be associated with way too many
+          # `merge_request_diff_files`. It's better to avoid scheduling big
+          # batches and go with 5 at a time.
+          #
+          BackgroundMigrationWorker.bulk_perform_in(interval, jobs)
+        end
+      end
+    end
+  end
+end
diff --git a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
new file mode 100644
index 00000000000..a699571ca90
--- /dev/null
+++ b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
@@ -0,0 +1,43 @@
+require 'spec_helper'
+
+describe Gitlab::BackgroundMigration::ScheduleDiffFilesDeletion, :migration, schema: 20180619121030 do
+  describe '#perform' do
+    let(:merge_request_diffs) { table(:merge_request_diffs) }
+    let(:merge_requests) { table(:merge_requests) }
+    let(:namespaces) { table(:namespaces) }
+    let(:projects) { table(:projects) }
+
+    before do
+      stub_const("#{described_class.name}::BATCH_SIZE", 3)
+
+      namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
+      projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
+
+      merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
+
+      merge_request_diffs.create!(id: 1, merge_request_id: 1)
+      merge_request_diffs.create!(id: 2, merge_request_id: 1)
+      merge_request_diffs.create!(id: 3, merge_request_id: 1)
+      merge_request_diffs.create!(id: 4, merge_request_id: 1)
+      merge_request_diffs.create!(id: 5, merge_request_id: 1)
+    end
+
+    it 'correctly schedules diff file deletion workers' do
+      Sidekiq::Testing.fake! do
+        Timecop.freeze do
+          described_class.new.perform([1, 2, 3, 4, 5], 1)
+
+          [1, 2, 3].each do |id|
+            expect(described_class::MIGRATION).to be_scheduled_delayed_migration(10.minutes, id)
+          end
+
+          [4, 5].each do |id|
+            expect(described_class::MIGRATION).to be_scheduled_delayed_migration(11.minutes, id)
+          end
+
+          expect(BackgroundMigrationWorker.jobs.size).to eq(5)
+        end
+      end
+    end
+  end
+end
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
index 52d6e9b2c64..43dbd7e8f53 100644
--- a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -8,7 +8,7 @@ describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
   let(:projects) { table(:projects) }
 
   before do
-    stub_const("#{described_class.name}::BATCH_SIZE", 7)
+    stub_const("#{described_class.name}::BATCH_SIZE", 4)
 
     namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
     projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
@@ -22,35 +22,25 @@ describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
     merge_request_diffs.create!(id: 5, merge_request_id: 1, state: 'empty')
     merge_request_diffs.create!(id: 6, merge_request_id: 1, state: 'collected')
     merge_request_diffs.create!(id: 7, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 8, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 9, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 10, merge_request_id: 1, state: 'collected')
 
     merge_requests.update(1, latest_merge_request_diff_id: 6)
   end
 
-  it 'correctly schedules diff file deletion workers' do
+  it 'correctly schedules diff file deletion workers schedulers' do
     Sidekiq::Testing.fake! do
-      Timecop.freeze do
-        migrate!
+      # First scheduling batch
+      expect(BackgroundMigrationWorker).to receive(:perform_async)
+        .with(described_class::SCHEDULER, [[[1], [3], [4], [6]], 1])
+        .and_call_original
 
-        # 1st batch schedule
-        [1, 3, 4, 6, 7].each do |id|
-          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(10.minutes, id)
-        end
-        [8, 9].each do |id|
-          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(11.minutes, id)
-        end
+      # Second scheduling batch
+      expect(BackgroundMigrationWorker).to receive(:perform_async)
+        .with(described_class::SCHEDULER, [[[7]], 2])
+        .and_call_original
 
-        # 2nd batch schedule
-        expect(described_class::MIGRATION).to be_scheduled_delayed_migration(20.minutes, 10)
-        expect(BackgroundMigrationWorker.jobs.size).to eq(8)
-      end
+      migrate!
+
+      expect(BackgroundMigrationWorker.jobs.size).to eq(2)
     end
   end
-
-  it 'migrates the data' do
-    expect { migrate! }.to change { merge_request_diffs.where(state: 'without_files').count }
-      .from(1).to(4)
-  end
 end

From 4455904bc154f1a36cedeea574bb0f454f92a9e9 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Wed, 4 Jul 2018 16:06:30 -0300
Subject: [PATCH 031/113] Add 1000 files per minute deletion ratio on scheduler

---
 ...21030_enqueue_delete_diff_files_workers.rb | 38 +-----------
 .../background_migration/delete_diff_files.rb | 14 +++++
 .../schedule_diff_files_deletion.rb           | 59 +++++++++++++-----
 .../delete_diff_files_spec.rb                 |  2 +-
 .../schedule_diff_files_deletion_spec.rb      | 60 ++++++++++++++-----
 .../enqueue_delete_diff_files_workers_spec.rb | 39 ++----------
 6 files changed, 112 insertions(+), 100 deletions(-)

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index 92950c1eec1..df30991737c 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -1,52 +1,20 @@
 class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
   include Gitlab::Database::MigrationHelpers
 
-  class MergeRequestDiff < ActiveRecord::Base
-    self.table_name = 'merge_request_diffs'
-
-    belongs_to :merge_request
-
-    include EachBatch
-  end
-
   DOWNTIME = false
-  BATCH_SIZE = 1000
   SCHEDULER = 'ScheduleDiffFilesDeletion'.freeze
   TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
 
   disable_ddl_transaction!
 
   def up
-    # We add temporary index, to make iteration over batches more performant.
-    # Conditional here is to avoid the need of doing that in a separate
-    # migration file to make this operation idempotent.
-    #
     unless index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
       add_concurrent_index(:merge_request_diffs, :id, where: "(state NOT IN ('without_files', 'empty'))", name: TMP_INDEX)
     end
 
-
-    diffs_with_files = MergeRequestDiff.where.not(state: ['without_files', 'empty'])
-
-    # explain (analyze, buffers) example for the iteration:
-    #
-    # Index Only Scan using tmp_index_20013 on merge_request_diffs  (cost=0.43..1630.19 rows=60567 width=4) (actual time=0.047..9.572 rows=56976 loops=1)
-    #   Index Cond: ((id >= 764586) AND (id < 835298))
-    #   Heap Fetches: 8
-    #   Buffers: shared hit=18188
-    # Planning time: 0.752 ms
-    # Execution time: 12.430 ms
-    #
-    diffs_with_files.each_batch(of: BATCH_SIZE) do |relation, scheduler_index|
-      ids = relation.pluck(:id).map { |id| [id] }
-
-      BackgroundMigrationWorker.perform_async(SCHEDULER, [ids, scheduler_index])
-    end
-
-    # We remove temporary index, because it is not required during standard
-    # operations and runtime.
-    #
-    remove_concurrent_index_by_name(:merge_request_diffs, TMP_INDEX)
+    # We keep the index since this will be used async.
+    # Ideally we should remove it in an upcoming release.
+    BackgroundMigrationWorker.perform_async(SCHEDULER)
   end
 
   def down
diff --git a/lib/gitlab/background_migration/delete_diff_files.rb b/lib/gitlab/background_migration/delete_diff_files.rb
index 8fb2c334048..e2c90fce6b1 100644
--- a/lib/gitlab/background_migration/delete_diff_files.rb
+++ b/lib/gitlab/background_migration/delete_diff_files.rb
@@ -4,6 +4,20 @@
 module Gitlab
   module BackgroundMigration
     class DeleteDiffFiles
+      class MergeRequestDiff < ActiveRecord::Base
+        self.table_name = 'merge_request_diffs'
+
+        belongs_to :merge_request
+
+        include EachBatch
+      end
+
+      class MergeRequestDiffFile < ActiveRecord::Base
+        self.table_name = 'merge_request_diff_files'
+
+        include EachBatch
+      end
+
       def perform(merge_request_diff_id)
         merge_request_diff = MergeRequestDiff.find_by(id: merge_request_diff_id)
 
diff --git a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
index d944ed90fce..6442468836b 100644
--- a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
+++ b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
@@ -5,27 +5,56 @@
 module Gitlab
   module BackgroundMigration
     class ScheduleDiffFilesDeletion
-      BATCH_SIZE = 5
+      class MergeRequestDiff < ActiveRecord::Base
+        self.table_name = 'merge_request_diffs'
+
+        has_many :merge_request_diff_files
+
+        include EachBatch
+      end
+
+      ITERATION_BATCH = 1000
+      DELETION_BATCH = 1000 # per minute
       MIGRATION = 'DeleteDiffFiles'
-      DELAY_INTERVAL = 10.minutes
 
-      def perform(diff_ids, scheduler_index)
-        relation = MergeRequestDiff.where(id: diff_ids)
+      # Considering query times and Redis writings, this should take around 2
+      # hours to complete.
+      def perform
+        diffs_with_files = MergeRequestDiff.where.not(state: %w(without_files empty))
 
-        job_batches = relation.pluck(:id).in_groups_of(BATCH_SIZE, false).map do |ids|
-          ids.map { |id| [MIGRATION, [id]] }
+        # This will be increased for each scheduled job
+        process_job_in = 1.second
+
+        # explain (analyze, buffers) example for the iteration:
+        #
+        # Index Only Scan using tmp_index_20013 on merge_request_diffs  (cost=0.43..1630.19 rows=60567 width=4) (actual time=0.047..9.572 rows=56976 loops=1)
+        #   Index Cond: ((id >= 764586) AND (id < 835298))
+        #   Heap Fetches: 8
+        #   Buffers: shared hit=18188
+        # Planning time: 0.752 ms
+        # Execution time: 12.430 ms
+        #
+        diffs_with_files.reorder(nil).each_batch(of: ITERATION_BATCH) do |relation, scheduler_index|
+          relation.each do |diff|
+            BackgroundMigrationWorker.perform_in(process_job_in, MIGRATION, [diff.id])
+
+            diff_files_count = diff.merge_request_diff_files.reorder(nil).count
+
+            # We should limit on 1000 diff files deletion per minute to avoid
+            # replication lag issues.
+            #
+            interval = (diff_files_count.to_f / DELETION_BATCH).minutes
+            process_job_in += interval
+          end
         end
 
-        job_batches.each_with_index do |jobs, inner_index|
-          # This will give some space between batches of workers.
-          interval = DELAY_INTERVAL * scheduler_index + inner_index.minutes
+        log_days_to_process_all_jobs(process_job_in)
+      end
 
-          # A single `merge_request_diff` can be associated with way too many
-          # `merge_request_diff_files`. It's better to avoid scheduling big
-          # batches and go with 5 at a time.
-          #
-          BackgroundMigrationWorker.bulk_perform_in(interval, jobs)
-        end
+      def log_days_to_process_all_jobs(seconds_to_process)
+        days_to_process_all_jobs = (seconds_to_process / 60 / 60 / 24).to_i
+        Rails.logger.info("Gitlab::BackgroundMigration::DeleteDiffFiles will take " \
+                          "#{days_to_process_all_jobs} days to be processed")
       end
     end
   end
diff --git a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
index a251ab323d8..d8497315e2d 100644
--- a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
+++ b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
@@ -22,7 +22,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
       end
 
       it 'rollsback if something goes wrong' do
-        expect(MergeRequestDiffFile).to receive_message_chain(:where, :delete_all)
+        expect(described_class::MergeRequestDiffFile).to receive_message_chain(:where, :delete_all)
           .and_raise
 
         expect { described_class.new.perform(merge_request_diff.id) }
diff --git a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
index a699571ca90..04f20b75531 100644
--- a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
+++ b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
@@ -3,41 +3,71 @@ require 'spec_helper'
 describe Gitlab::BackgroundMigration::ScheduleDiffFilesDeletion, :migration, schema: 20180619121030 do
   describe '#perform' do
     let(:merge_request_diffs) { table(:merge_request_diffs) }
+    let(:diff_files) { table(:merge_request_diff_files) }
     let(:merge_requests) { table(:merge_requests) }
     let(:namespaces) { table(:namespaces) }
     let(:projects) { table(:projects) }
 
+    def diff_file_params(extra_params = {})
+      extra_params.merge(new_file: false,
+                         renamed_file: false,
+                         too_large: false,
+                         deleted_file: false,
+                         a_mode: 'foo',
+                         b_mode: 'bar',
+                         new_path: 'xpto',
+                         old_path: 'kux',
+                         diff: 'content')
+    end
+
+    def create_diffs(id:, files_number:, state: 'collected')
+      merge_request_diffs.create!(id: id, merge_request_id: 1, state: state)
+      files_number.times.to_a.each do |index|
+        params = diff_file_params(merge_request_diff_id: id, relative_order: index)
+
+        diff_files.create!(params)
+      end
+    end
+
     before do
-      stub_const("#{described_class.name}::BATCH_SIZE", 3)
+      stub_const("#{described_class.name}::DELETION_BATCH", 10)
 
       namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
       projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
 
       merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
-
-      merge_request_diffs.create!(id: 1, merge_request_id: 1)
-      merge_request_diffs.create!(id: 2, merge_request_id: 1)
-      merge_request_diffs.create!(id: 3, merge_request_id: 1)
-      merge_request_diffs.create!(id: 4, merge_request_id: 1)
-      merge_request_diffs.create!(id: 5, merge_request_id: 1)
     end
 
     it 'correctly schedules diff file deletion workers' do
       Sidekiq::Testing.fake! do
         Timecop.freeze do
-          described_class.new.perform([1, 2, 3, 4, 5], 1)
+          create_diffs(id: 1, files_number: 25)
+          create_diffs(id: 2, files_number: 11)
+          create_diffs(id: 3, files_number: 4, state: 'without_files')
+          create_diffs(id: 4, files_number: 5, state: 'empty')
+          create_diffs(id: 5, files_number: 9)
 
-          [1, 2, 3].each do |id|
-            expect(described_class::MIGRATION).to be_scheduled_delayed_migration(10.minutes, id)
-          end
+          worker = described_class.new
 
-          [4, 5].each do |id|
-            expect(described_class::MIGRATION).to be_scheduled_delayed_migration(11.minutes, id)
-          end
+          expect(worker).to receive(:log_days_to_process_all_jobs).with(1.second + 2.5.minutes + 1.1.minutes + 0.9.minutes)
 
-          expect(BackgroundMigrationWorker.jobs.size).to eq(5)
+          worker.perform
+
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second, 1)
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second + 2.5.minutes, 2)
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second + 2.5.minutes + 1.1.minutes, 5)
+          expect(BackgroundMigrationWorker.jobs.size).to eq(3)
         end
       end
     end
   end
+
+  describe '#days_to_process_all_jobs' do
+    it 'logs how many days it will take to run all jobs' do
+      expect(Rails).to receive_message_chain(:logger, :info)
+        .with("Gitlab::BackgroundMigration::DeleteDiffFiles will take 3 days to be processed")
+
+      described_class.new.log_days_to_process_all_jobs(3.days.seconds)
+    end
+  end
 end
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
index 43dbd7e8f53..3d19c6fcc10 100644
--- a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -2,45 +2,16 @@ require 'spec_helper'
 require Rails.root.join('db', 'post_migrate', '20180619121030_enqueue_delete_diff_files_workers.rb')
 
 describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
-  let(:merge_request_diffs) { table(:merge_request_diffs) }
-  let(:merge_requests) { table(:merge_requests) }
-  let(:namespaces) { table(:namespaces) }
-  let(:projects) { table(:projects) }
-
-  before do
-    stub_const("#{described_class.name}::BATCH_SIZE", 4)
-
-    namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
-    projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
-
-    merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
-
-    merge_request_diffs.create!(id: 1, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 2, merge_request_id: 1, state: 'without_files')
-    merge_request_diffs.create!(id: 3, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 4, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 5, merge_request_id: 1, state: 'empty')
-    merge_request_diffs.create!(id: 6, merge_request_id: 1, state: 'collected')
-    merge_request_diffs.create!(id: 7, merge_request_id: 1, state: 'collected')
-
-    merge_requests.update(1, latest_merge_request_diff_id: 6)
-  end
-
-  it 'correctly schedules diff file deletion workers schedulers' do
+  it 'correctly schedules diff file deletion scheduler' do
     Sidekiq::Testing.fake! do
-      # First scheduling batch
-      expect(BackgroundMigrationWorker).to receive(:perform_async)
-        .with(described_class::SCHEDULER, [[[1], [3], [4], [6]], 1])
-        .and_call_original
-
-      # Second scheduling batch
-      expect(BackgroundMigrationWorker).to receive(:perform_async)
-        .with(described_class::SCHEDULER, [[[7]], 2])
+      expect(BackgroundMigrationWorker)
+        .to receive(:perform_async)
+        .with(described_class::SCHEDULER)
         .and_call_original
 
       migrate!
 
-      expect(BackgroundMigrationWorker.jobs.size).to eq(2)
+      expect(BackgroundMigrationWorker.jobs.size).to eq(1)
     end
   end
 end

From 19966e7095fd6357183afb8e009c7f8e78a05591 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Thu, 5 Jul 2018 17:15:57 -0300
Subject: [PATCH 032/113] Wait postgresql vacuum of deadtuples on
 merge_request_diff_files deletion

---
 ...21030_enqueue_delete_diff_files_workers.rb | 15 +---
 .../background_migration/delete_diff_files.rb | 81 +++++++++++++------
 .../schedule_diff_files_deletion.rb           | 61 --------------
 .../delete_diff_files_spec.rb                 | 31 +++++--
 .../schedule_diff_files_deletion_spec.rb      | 73 -----------------
 .../enqueue_delete_diff_files_workers_spec.rb |  4 +-
 6 files changed, 86 insertions(+), 179 deletions(-)
 delete mode 100644 lib/gitlab/background_migration/schedule_diff_files_deletion.rb
 delete mode 100644 spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index df30991737c..9e96aaf50a0 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -2,24 +2,15 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
   include Gitlab::Database::MigrationHelpers
 
   DOWNTIME = false
-  SCHEDULER = 'ScheduleDiffFilesDeletion'.freeze
-  TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
+  MIGRATION = 'DeleteDiffFiles'.freeze
 
   disable_ddl_transaction!
 
   def up
-    unless index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
-      add_concurrent_index(:merge_request_diffs, :id, where: "(state NOT IN ('without_files', 'empty'))", name: TMP_INDEX)
-    end
-
-    # We keep the index since this will be used async.
-    # Ideally we should remove it in an upcoming release.
-    BackgroundMigrationWorker.perform_async(SCHEDULER)
+    BackgroundMigrationWorker.perform_async(MIGRATION)
   end
 
   def down
-    if index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
-      remove_concurrent_index_by_name(:merge_request_diffs, TMP_INDEX)
-    end
+    # no-op
   end
 end
diff --git a/lib/gitlab/background_migration/delete_diff_files.rb b/lib/gitlab/background_migration/delete_diff_files.rb
index e2c90fce6b1..36161285aac 100644
--- a/lib/gitlab/background_migration/delete_diff_files.rb
+++ b/lib/gitlab/background_migration/delete_diff_files.rb
@@ -8,6 +8,7 @@ module Gitlab
         self.table_name = 'merge_request_diffs'
 
         belongs_to :merge_request
+        has_many :merge_request_diff_files
 
         include EachBatch
       end
@@ -18,41 +19,73 @@ module Gitlab
         include EachBatch
       end
 
-      def perform(merge_request_diff_id)
-        merge_request_diff = MergeRequestDiff.find_by(id: merge_request_diff_id)
+      BATCH = 5_000
+      DEAD_TUPLES_THRESHOLD = 50_000
+      VACUUM_WAIT_TIME = 5.minutes
 
-        return unless merge_request_diff
-        return unless should_delete_diff_files?(merge_request_diff)
+      def perform
+        diffs_with_files = MergeRequestDiff
+          .joins(:merge_request)
+          .where("merge_requests.state = 'merged'")
+          .where('merge_requests.latest_merge_request_diff_id IS NOT NULL')
+          .where('merge_requests.latest_merge_request_diff_id != merge_request_diffs.id')
+          .where("merge_request_diffs.state NOT IN ('without_files', 'empty')")
 
-        MergeRequestDiff.transaction do
-          merge_request_diff.update_column(:state, 'without_files')
+        diffs_with_files.each_batch(of: BATCH) do |batch, index|
+          wait_deadtuple_vacuum(index)
+          prune_diff_files(batch, index)
+        end
+      end
 
-          # explain (analyze, buffers) when deleting 453 diff files:
-          #
-          # Delete on merge_request_diff_files  (cost=0.57..8487.35 rows=4846 width=6) (actual time=43.265..43.265 rows=0 loops=1)
-          #   Buffers: shared hit=2043 read=259 dirtied=254
-          #   ->  Index Scan using index_merge_request_diff_files_on_mr_diff_id_and_order on merge_request_diff_files  (cost=0.57..8487.35 rows=4846 width=6) (actu
-          # al time=0.466..26.317 rows=453 loops=1)
-          #         Index Cond: (merge_request_diff_id = 463448)
-          #         Buffers: shared hit=17 read=84
-          # Planning time: 0.107 ms
-          # Execution time: 43.287 ms
-          #
-          MergeRequestDiffFile.where(merge_request_diff_id: merge_request_diff.id).delete_all
+      def wait_deadtuple_vacuum(index)
+        db_klass = Gitlab::Database
+
+        if defined?(db_klass) && db_klass.respond_to?(:postgresql?) && db_klass.postgresql?
+          while diff_files_dead_tuples_count >= DEAD_TUPLES_THRESHOLD
+            log_info("Dead tuple threshold hit on merge_request_diff_files (#{index}th batch): " \
+                     "#{diff_files_dead_tuples_count}, waiting 5 minutes")
+            sleep VACUUM_WAIT_TIME
+          end
         end
       end
 
       private
 
-      def should_delete_diff_files?(merge_request_diff)
-        return false if merge_request_diff.state == 'without_files'
+      def diff_files_dead_tuples_count
+        dead_tuple =
+          execute_statement("SELECT n_dead_tup FROM pg_stat_all_tables "\
+                            "WHERE relname = 'merge_request_diff_files'")[0]
 
-        merge_request = merge_request_diff.merge_request
+        if dead_tuple.present?
+          dead_tuple['n_dead_tup'].to_i
+        else
+          0
+        end
+      end
 
-        return false unless merge_request.state == 'merged'
-        return false if merge_request_diff.id == merge_request.latest_merge_request_diff_id
+      def prune_diff_files(batch, index)
+        diff_ids = batch.pluck(:id)
 
-        true
+        removed = 0
+        updated = 0
+
+        MergeRequestDiff.transaction do
+          updated = MergeRequestDiff.where(id: diff_ids)
+            .update_all(state: 'without_files')
+          removed = MergeRequestDiffFile.where(merge_request_diff_id: diff_ids)
+            .delete_all
+        end
+
+        log_info("#{index}th batch - Removed #{removed} merge_request_diff_files rows, "\
+                 "updated #{updated} merge_request_diffs rows")
+      end
+
+      def execute_statement(sql)
+        ActiveRecord::Base.connection.execute(sql)
+      end
+
+      def log_info(message)
+        Rails.logger.info("BackgroundMigration::DeleteDiffFiles - #{message}")
       end
     end
   end
diff --git a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
deleted file mode 100644
index 6442468836b..00000000000
--- a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
+++ /dev/null
@@ -1,61 +0,0 @@
-# frozen_string_literal: true
-# rubocop:disable Metrics/AbcSize
-# rubocop:disable Style/Documentation
-
-module Gitlab
-  module BackgroundMigration
-    class ScheduleDiffFilesDeletion
-      class MergeRequestDiff < ActiveRecord::Base
-        self.table_name = 'merge_request_diffs'
-
-        has_many :merge_request_diff_files
-
-        include EachBatch
-      end
-
-      ITERATION_BATCH = 1000
-      DELETION_BATCH = 1000 # per minute
-      MIGRATION = 'DeleteDiffFiles'
-
-      # Considering query times and Redis writings, this should take around 2
-      # hours to complete.
-      def perform
-        diffs_with_files = MergeRequestDiff.where.not(state: %w(without_files empty))
-
-        # This will be increased for each scheduled job
-        process_job_in = 1.second
-
-        # explain (analyze, buffers) example for the iteration:
-        #
-        # Index Only Scan using tmp_index_20013 on merge_request_diffs  (cost=0.43..1630.19 rows=60567 width=4) (actual time=0.047..9.572 rows=56976 loops=1)
-        #   Index Cond: ((id >= 764586) AND (id < 835298))
-        #   Heap Fetches: 8
-        #   Buffers: shared hit=18188
-        # Planning time: 0.752 ms
-        # Execution time: 12.430 ms
-        #
-        diffs_with_files.reorder(nil).each_batch(of: ITERATION_BATCH) do |relation, scheduler_index|
-          relation.each do |diff|
-            BackgroundMigrationWorker.perform_in(process_job_in, MIGRATION, [diff.id])
-
-            diff_files_count = diff.merge_request_diff_files.reorder(nil).count
-
-            # We should limit on 1000 diff files deletion per minute to avoid
-            # replication lag issues.
-            #
-            interval = (diff_files_count.to_f / DELETION_BATCH).minutes
-            process_job_in += interval
-          end
-        end
-
-        log_days_to_process_all_jobs(process_job_in)
-      end
-
-      def log_days_to_process_all_jobs(seconds_to_process)
-        days_to_process_all_jobs = (seconds_to_process / 60 / 60 / 24).to_i
-        Rails.logger.info("Gitlab::BackgroundMigration::DeleteDiffFiles will take " \
-                          "#{days_to_process_all_jobs} days to be processed")
-      end
-    end
-  end
-end
diff --git a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
index d8497315e2d..f128c9ecf1b 100644
--- a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
+++ b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
@@ -4,19 +4,19 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
   describe '#perform' do
     context 'when diff files can be deleted' do
       let(:merge_request) { create(:merge_request, :merged) }
-      let(:merge_request_diff) do
+      let!(:merge_request_diff) do
         merge_request.create_merge_request_diff
         merge_request.merge_request_diffs.first
       end
 
       it 'deletes all merge request diff files' do
-        expect { described_class.new.perform(merge_request_diff.id) }
+        expect { described_class.new.perform }
           .to change { merge_request_diff.merge_request_diff_files.count }
           .from(20).to(0)
       end
 
       it 'updates state to without_files' do
-        expect { described_class.new.perform(merge_request_diff.id) }
+        expect { described_class.new.perform }
           .to change { merge_request_diff.reload.state }
           .from('collected').to('without_files')
       end
@@ -25,7 +25,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
         expect(described_class::MergeRequestDiffFile).to receive_message_chain(:where, :delete_all)
           .and_raise
 
-        expect { described_class.new.perform(merge_request_diff.id) }
+        expect { described_class.new.perform }
           .to raise_error
 
         merge_request_diff.reload
@@ -40,7 +40,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
       merge_request.create_merge_request_diff
       merge_request_diff = merge_request.merge_request_diffs.first
 
-      expect { described_class.new.perform(merge_request_diff.id) }
+      expect { described_class.new.perform }
         .not_to change { merge_request_diff.merge_request_diff_files.count }
         .from(20)
     end
@@ -52,7 +52,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
 
       merge_request_diff.clean!
 
-      expect { described_class.new.perform(merge_request_diff.id) }
+      expect { described_class.new.perform }
         .not_to change { merge_request_diff.merge_request_diff_files.count }
         .from(20)
     end
@@ -61,9 +61,26 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
       merge_request = create(:merge_request, :merged)
       merge_request_diff = merge_request.merge_request_diff
 
-      expect { described_class.new.perform(merge_request_diff.id) }
+      expect { described_class.new.perform }
         .not_to change { merge_request_diff.merge_request_diff_files.count }
         .from(20)
     end
   end
+
+  describe '#wait_deadtuple_vacuum' do
+    it 'sleeps process for VACUUM_WAIT_TIME when hitting DEAD_TUPLES_THRESHOLD', :postgresql do
+      worker = described_class.new
+      threshold_query_result = [{ "n_dead_tup" => described_class::DEAD_TUPLES_THRESHOLD.to_s }]
+      normal_query_result = [{ "n_dead_tup" => '3' }]
+
+      allow(worker)
+        .to receive(:execute_statement)
+        .with(/SELECT n_dead_tup */)
+        .and_return(threshold_query_result, normal_query_result)
+
+      expect(worker).to receive(:sleep).with(described_class::VACUUM_WAIT_TIME).once
+
+      worker.wait_deadtuple_vacuum(1)
+    end
+  end
 end
diff --git a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
deleted file mode 100644
index 04f20b75531..00000000000
--- a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
+++ /dev/null
@@ -1,73 +0,0 @@
-require 'spec_helper'
-
-describe Gitlab::BackgroundMigration::ScheduleDiffFilesDeletion, :migration, schema: 20180619121030 do
-  describe '#perform' do
-    let(:merge_request_diffs) { table(:merge_request_diffs) }
-    let(:diff_files) { table(:merge_request_diff_files) }
-    let(:merge_requests) { table(:merge_requests) }
-    let(:namespaces) { table(:namespaces) }
-    let(:projects) { table(:projects) }
-
-    def diff_file_params(extra_params = {})
-      extra_params.merge(new_file: false,
-                         renamed_file: false,
-                         too_large: false,
-                         deleted_file: false,
-                         a_mode: 'foo',
-                         b_mode: 'bar',
-                         new_path: 'xpto',
-                         old_path: 'kux',
-                         diff: 'content')
-    end
-
-    def create_diffs(id:, files_number:, state: 'collected')
-      merge_request_diffs.create!(id: id, merge_request_id: 1, state: state)
-      files_number.times.to_a.each do |index|
-        params = diff_file_params(merge_request_diff_id: id, relative_order: index)
-
-        diff_files.create!(params)
-      end
-    end
-
-    before do
-      stub_const("#{described_class.name}::DELETION_BATCH", 10)
-
-      namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
-      projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
-
-      merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
-    end
-
-    it 'correctly schedules diff file deletion workers' do
-      Sidekiq::Testing.fake! do
-        Timecop.freeze do
-          create_diffs(id: 1, files_number: 25)
-          create_diffs(id: 2, files_number: 11)
-          create_diffs(id: 3, files_number: 4, state: 'without_files')
-          create_diffs(id: 4, files_number: 5, state: 'empty')
-          create_diffs(id: 5, files_number: 9)
-
-          worker = described_class.new
-
-          expect(worker).to receive(:log_days_to_process_all_jobs).with(1.second + 2.5.minutes + 1.1.minutes + 0.9.minutes)
-
-          worker.perform
-
-          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second, 1)
-          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second + 2.5.minutes, 2)
-          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(1.second + 2.5.minutes + 1.1.minutes, 5)
-          expect(BackgroundMigrationWorker.jobs.size).to eq(3)
-        end
-      end
-    end
-  end
-
-  describe '#days_to_process_all_jobs' do
-    it 'logs how many days it will take to run all jobs' do
-      expect(Rails).to receive_message_chain(:logger, :info)
-        .with("Gitlab::BackgroundMigration::DeleteDiffFiles will take 3 days to be processed")
-
-      described_class.new.log_days_to_process_all_jobs(3.days.seconds)
-    end
-  end
-end
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
index 3d19c6fcc10..803830d81cf 100644
--- a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -2,11 +2,11 @@ require 'spec_helper'
 require Rails.root.join('db', 'post_migrate', '20180619121030_enqueue_delete_diff_files_workers.rb')
 
 describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
-  it 'correctly schedules diff file deletion scheduler' do
+  it 'correctly schedules diff files deletion' do
     Sidekiq::Testing.fake! do
       expect(BackgroundMigrationWorker)
         .to receive(:perform_async)
-        .with(described_class::SCHEDULER)
+        .with(described_class::MIGRATION)
         .and_call_original
 
       migrate!

From db0f150516404c6e7951bc961eab45be11b5fcf5 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Fri, 6 Jul 2018 12:23:51 -0300
Subject: [PATCH 033/113] Reschedule DeleteDiffFiles until there is none left
 to remove

---
 ...21030_enqueue_delete_diff_files_workers.rb | 12 +++-
 .../background_migration/delete_diff_files.rb | 65 +++++++++++--------
 .../delete_diff_files_spec.rb                 | 25 +++++--
 3 files changed, 68 insertions(+), 34 deletions(-)

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index 9e96aaf50a0..100bd2a8f4e 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -3,14 +3,24 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
 
   DOWNTIME = false
   MIGRATION = 'DeleteDiffFiles'.freeze
+  TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
 
   disable_ddl_transaction!
 
   def up
+    unless index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
+      add_concurrent_index(:merge_request_diffs, :id, where: "(state NOT IN ('without_files', 'empty'))", name: TMP_INDEX)
+    end
+
     BackgroundMigrationWorker.perform_async(MIGRATION)
+
+    # We don't remove the index since it's going to be used on DeleteDiffFiles
+    # worker. We should remove it in an upcoming release.
   end
 
   def down
-    # no-op
+    if index_exists_by_name?(:merge_request_diffs, TMP_INDEX)
+      remove_concurrent_index_by_name(:merge_request_diffs, TMP_INDEX)
+    end
   end
 end
diff --git a/lib/gitlab/background_migration/delete_diff_files.rb b/lib/gitlab/background_migration/delete_diff_files.rb
index 36161285aac..2043b1649dc 100644
--- a/lib/gitlab/background_migration/delete_diff_files.rb
+++ b/lib/gitlab/background_migration/delete_diff_files.rb
@@ -19,51 +19,60 @@ module Gitlab
         include EachBatch
       end
 
-      BATCH = 5_000
+      DIFF_ROWS_LIMIT = 5_000
       DEAD_TUPLES_THRESHOLD = 50_000
       VACUUM_WAIT_TIME = 5.minutes
 
       def perform
-        diffs_with_files = MergeRequestDiff
+        rescheduling do
+          prune_diff_files(diffs_collection.limit(DIFF_ROWS_LIMIT))
+        end
+      end
+
+      def should_wait_deadtuple_vacuum?
+        return false unless Gitlab::Database.postgresql?
+
+        diff_files_dead_tuples_count >= DEAD_TUPLES_THRESHOLD
+      end
+
+      private
+
+      def rescheduling(&block)
+        # We should reschedule until deadtuples get in a desirable
+        # state (e.g. < 50_000). That may take move than one reschedule.
+        #
+        if should_wait_deadtuple_vacuum?
+          reschedule
+          return
+        end
+
+        block.call
+
+        reschedule if diffs_collection.limit(1).count > 0
+      end
+
+      def reschedule
+        BackgroundMigrationWorker.perform_in(VACUUM_WAIT_TIME, self.class.name.demodulize)
+      end
+
+      def diffs_collection
+        MergeRequestDiff
           .joins(:merge_request)
           .where("merge_requests.state = 'merged'")
           .where('merge_requests.latest_merge_request_diff_id IS NOT NULL')
           .where('merge_requests.latest_merge_request_diff_id != merge_request_diffs.id')
           .where("merge_request_diffs.state NOT IN ('without_files', 'empty')")
-
-        diffs_with_files.each_batch(of: BATCH) do |batch, index|
-          wait_deadtuple_vacuum(index)
-          prune_diff_files(batch, index)
-        end
       end
 
-      def wait_deadtuple_vacuum(index)
-        db_klass = Gitlab::Database
-
-        if defined?(db_klass) && db_klass.respond_to?(:postgresql?) && db_klass.postgresql?
-          while diff_files_dead_tuples_count >= DEAD_TUPLES_THRESHOLD
-            log_info("Dead tuple threshold hit on merge_request_diff_files (#{index}th batch): " \
-                     "#{diff_files_dead_tuples_count}, waiting 5 minutes")
-            sleep VACUUM_WAIT_TIME
-          end
-        end
-      end
-
-      private
-
       def diff_files_dead_tuples_count
         dead_tuple =
           execute_statement("SELECT n_dead_tup FROM pg_stat_all_tables "\
                             "WHERE relname = 'merge_request_diff_files'")[0]
 
-        if dead_tuple.present?
-          dead_tuple['n_dead_tup'].to_i
-        else
-          0
-        end
+        dead_tuple&.fetch('n_dead_tup', 0).to_i
       end
 
-      def prune_diff_files(batch, index)
+      def prune_diff_files(batch)
         diff_ids = batch.pluck(:id)
 
         removed = 0
@@ -76,7 +85,7 @@ module Gitlab
             .delete_all
         end
 
-        log_info("#{index}th batch - Removed #{removed} merge_request_diff_files rows, "\
+        log_info("Removed #{removed} merge_request_diff_files rows, "\
                  "updated #{updated} merge_request_diffs rows")
       end
 
diff --git a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
index f128c9ecf1b..247e0786dd6 100644
--- a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
+++ b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
@@ -65,10 +65,27 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
         .not_to change { merge_request_diff.merge_request_diff_files.count }
         .from(20)
     end
+
+    it 'reschedules itself when should_wait_deadtuple_vacuum' do
+      Sidekiq::Testing.fake! do
+        worker = described_class.new
+
+        allow(worker).to receive(:should_wait_deadtuple_vacuum?) { true }
+
+        expect(BackgroundMigrationWorker)
+          .to receive(:perform_in)
+          .with(described_class::VACUUM_WAIT_TIME, 'DeleteDiffFiles')
+          .and_call_original
+
+        worker.perform
+
+        expect(BackgroundMigrationWorker.jobs.size).to eq(1)
+      end
+    end
   end
 
-  describe '#wait_deadtuple_vacuum' do
-    it 'sleeps process for VACUUM_WAIT_TIME when hitting DEAD_TUPLES_THRESHOLD', :postgresql do
+  describe '#should_wait_deadtuple_vacuum?' do
+    it 'returns true when hitting merge_request_diff_files hits DEAD_TUPLES_THRESHOLD', :postgresql do
       worker = described_class.new
       threshold_query_result = [{ "n_dead_tup" => described_class::DEAD_TUPLES_THRESHOLD.to_s }]
       normal_query_result = [{ "n_dead_tup" => '3' }]
@@ -78,9 +95,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
         .with(/SELECT n_dead_tup */)
         .and_return(threshold_query_result, normal_query_result)
 
-      expect(worker).to receive(:sleep).with(described_class::VACUUM_WAIT_TIME).once
-
-      worker.wait_deadtuple_vacuum(1)
+      expect(worker.should_wait_deadtuple_vacuum?).to be(true)
     end
   end
 end

From c15f836c3a38e7c512a1851bc09440da90af8ac6 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Fri, 6 Jul 2018 12:40:43 -0300
Subject: [PATCH 034/113] Remove unnecessary EachBatch

---
 lib/gitlab/background_migration/delete_diff_files.rb | 4 ----
 1 file changed, 4 deletions(-)

diff --git a/lib/gitlab/background_migration/delete_diff_files.rb b/lib/gitlab/background_migration/delete_diff_files.rb
index 2043b1649dc..9824d0a0c37 100644
--- a/lib/gitlab/background_migration/delete_diff_files.rb
+++ b/lib/gitlab/background_migration/delete_diff_files.rb
@@ -9,14 +9,10 @@ module Gitlab
 
         belongs_to :merge_request
         has_many :merge_request_diff_files
-
-        include EachBatch
       end
 
       class MergeRequestDiffFile < ActiveRecord::Base
         self.table_name = 'merge_request_diff_files'
-
-        include EachBatch
       end
 
       DIFF_ROWS_LIMIT = 5_000

From fe268175a20a517d31de7edd1701bcb35ecfae5b Mon Sep 17 00:00:00 2001
From: Dennis Tang <dennis@dennistang.net>
Date: Tue, 10 Jul 2018 13:20:05 +0000
Subject: [PATCH 035/113] Resolve "Disable GCP free credit banner at instance
 level"

---
 app/helpers/application_settings_helper.rb     |  1 +
 app/helpers/clusters_helper.rb                 |  1 +
 app/models/application_setting.rb              |  1 +
 .../_third_party_offers.html.haml              | 13 +++++++++++++
 .../admin/application_settings/show.html.haml  | 11 +++++++++++
 ...cp-free-credit-banner-at-instance-level.yml |  5 +++++
 ...ird_party_offers_to_application_settings.rb | 18 ++++++++++++++++++
 db/schema.rb                                   |  3 ++-
 doc/administration/index.md                    |  1 +
 .../admin_area/settings/third_party_offers.md  |  6 ++++++
 locale/gitlab.pot                              | 10 ++++++++--
 spec/features/admin/admin_settings_spec.rb     | 10 ++++++++++
 12 files changed, 77 insertions(+), 3 deletions(-)
 create mode 100644 app/views/admin/application_settings/_third_party_offers.html.haml
 create mode 100644 changelogs/unreleased/48578-disable-gcp-free-credit-banner-at-instance-level.yml
 create mode 100644 db/migrate/20180704204006_add_hide_third_party_offers_to_application_settings.rb
 create mode 100644 doc/user/admin_area/settings/third_party_offers.md

diff --git a/app/helpers/application_settings_helper.rb b/app/helpers/application_settings_helper.rb
index ef1bf283d0c..358b896702b 100644
--- a/app/helpers/application_settings_helper.rb
+++ b/app/helpers/application_settings_helper.rb
@@ -251,6 +251,7 @@ module ApplicationSettingsHelper
       :user_oauth_applications,
       :version_check_enabled,
       :allow_local_requests_from_hooks_and_services,
+      :hide_third_party_offers,
       :enforce_terms,
       :terms,
       :mirror_available
diff --git a/app/helpers/clusters_helper.rb b/app/helpers/clusters_helper.rb
index c24d340d184..8fd0b6f14c6 100644
--- a/app/helpers/clusters_helper.rb
+++ b/app/helpers/clusters_helper.rb
@@ -4,6 +4,7 @@ module ClustersHelper
   end
 
   def render_gcp_signup_offer
+    return if Gitlab::CurrentSettings.current_application_settings.hide_third_party_offers?
     return unless show_gcp_signup_offer?
 
     content_tag :section, class: 'no-animate expanded' do
diff --git a/app/models/application_setting.rb b/app/models/application_setting.rb
index bddeb8b0352..f770b219422 100644
--- a/app/models/application_setting.rb
+++ b/app/models/application_setting.rb
@@ -294,6 +294,7 @@ class ApplicationSetting < ActiveRecord::Base
       gitaly_timeout_medium: 30,
       gitaly_timeout_default: 55,
       allow_local_requests_from_hooks_and_services: false,
+      hide_third_party_offers: false,
       mirror_available: true
     }
   end
diff --git a/app/views/admin/application_settings/_third_party_offers.html.haml b/app/views/admin/application_settings/_third_party_offers.html.haml
new file mode 100644
index 00000000000..c5d775d4bf5
--- /dev/null
+++ b/app/views/admin/application_settings/_third_party_offers.html.haml
@@ -0,0 +1,13 @@
+- application_setting = local_assigns.fetch(:application_setting)
+
+= form_for application_setting, url: admin_application_settings_path, html: { class: 'fieldset-form' } do |f|
+  = form_errors(application_setting)
+
+  %fieldset
+    .form-group
+      .form-check
+        = f.check_box :hide_third_party_offers, class: 'form-check-input'
+        = f.label :hide_third_party_offers, class: 'form-check-label' do
+          Do not display offers from third parties within GitLab
+
+  = f.submit 'Save changes', class: "btn btn-success"
diff --git a/app/views/admin/application_settings/show.html.haml b/app/views/admin/application_settings/show.html.haml
index bd43504dd37..5cb8001a364 100644
--- a/app/views/admin/application_settings/show.html.haml
+++ b/app/views/admin/application_settings/show.html.haml
@@ -325,5 +325,16 @@
   .settings-content
     = render partial: 'repository_mirrors_form'
 
+%section.settings.as-third-party-offers.no-animate#js-third-party-offers-settings{ class: ('expanded' if expanded) }
+  .settings-header
+    %h4
+      = _('Third party offers')
+    %button.btn.btn-default.js-settings-toggle{ type: 'button' }
+      = expanded ? _('Collapse') : _('Expand')
+    %p
+      = _('Control the display of third party offers.')
+  .settings-content
+    = render 'third_party_offers', application_setting: @application_setting
+
 = render_if_exists 'admin/application_settings/pseudonymizer_settings', expanded: expanded
 
diff --git a/changelogs/unreleased/48578-disable-gcp-free-credit-banner-at-instance-level.yml b/changelogs/unreleased/48578-disable-gcp-free-credit-banner-at-instance-level.yml
new file mode 100644
index 00000000000..575767df912
--- /dev/null
+++ b/changelogs/unreleased/48578-disable-gcp-free-credit-banner-at-instance-level.yml
@@ -0,0 +1,5 @@
+---
+title: Add option to hide third party offers in admin application settings
+merge_request: 20379
+author:
+type: added
diff --git a/db/migrate/20180704204006_add_hide_third_party_offers_to_application_settings.rb b/db/migrate/20180704204006_add_hide_third_party_offers_to_application_settings.rb
new file mode 100644
index 00000000000..6631c5d1b6c
--- /dev/null
+++ b/db/migrate/20180704204006_add_hide_third_party_offers_to_application_settings.rb
@@ -0,0 +1,18 @@
+class AddHideThirdPartyOffersToApplicationSettings < ActiveRecord::Migration
+  include Gitlab::Database::MigrationHelpers
+
+  DOWNTIME = false
+
+  disable_ddl_transaction!
+
+  def up
+    add_column_with_default(:application_settings, :hide_third_party_offers,
+                            :boolean,
+                            default: false,
+                            allow_null: false)
+  end
+
+  def down
+    remove_column(:application_settings, :hide_third_party_offers)
+  end
+end
diff --git a/db/schema.rb b/db/schema.rb
index 1898dfc6022..75a1960e2f8 100644
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -11,7 +11,7 @@
 #
 # It's strongly recommended that you check this file into your version control system.
 
-ActiveRecord::Schema.define(version: 20180702120647) do
+ActiveRecord::Schema.define(version: 20180704204006) do
 
   # These are extensions that must be enabled in order to support this database
   enable_extension "plpgsql"
@@ -167,6 +167,7 @@ ActiveRecord::Schema.define(version: 20180702120647) do
     t.boolean "allow_local_requests_from_hooks_and_services", default: false, null: false
     t.boolean "enforce_terms", default: false
     t.boolean "mirror_available", default: true, null: false
+    t.boolean "hide_third_party_offers", default: false, null: false
   end
 
   create_table "audit_events", force: :cascade do |t|
diff --git a/doc/administration/index.md b/doc/administration/index.md
index 922cc45d8c4..88190b2df5f 100644
--- a/doc/administration/index.md
+++ b/doc/administration/index.md
@@ -45,6 +45,7 @@ Learn how to install, configure, update, and maintain your GitLab instance.
 - [Environment variables](environment_variables.md): Supported environment variables that can be used to override their defaults values in order to configure GitLab.
 - [Plugins](plugins.md): With custom plugins, GitLab administrators can introduce custom integrations without modifying GitLab's source code.
 - [Enforcing Terms of Service](../user/admin_area/settings/terms.md)
+- [Third party offers](../user/admin_area/settings/third_party_offers.md)
 
 #### Customizing GitLab's appearance
 
diff --git a/doc/user/admin_area/settings/third_party_offers.md b/doc/user/admin_area/settings/third_party_offers.md
new file mode 100644
index 00000000000..177251b52b9
--- /dev/null
+++ b/doc/user/admin_area/settings/third_party_offers.md
@@ -0,0 +1,6 @@
+# Third party offers
+
+> [Introduced](https://gitlab.com/gitlab-org/gitlab-ce/merge_requests/20379)
+> in [GitLab Core](https://about.gitlab.com/pricing/) 11.1
+
+The display of third party offers can be controlled in the Admin Area -> Settings page.
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index b6fd7ccc1bb..f2e4eda576f 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -8,8 +8,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: gitlab 1.0.0\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-09 19:16+0200\n"
-"PO-Revision-Date: 2018-07-09 19:16+0200\n"
+"POT-Creation-Date: 2018-07-10 08:56+0200\n"
+"PO-Revision-Date: 2018-07-10 08:56+0200\n"
 "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
 "Language-Team: LANGUAGE <LL@li.org>\n"
 "Language: \n"
@@ -1644,6 +1644,9 @@ msgstr ""
 msgid "ContributorsPage|Please wait a moment, this page will automatically refresh when ready."
 msgstr ""
 
+msgid "Control the display of third party offers."
+msgstr ""
+
 msgid "Copy URL to clipboard"
 msgstr ""
 
@@ -4615,6 +4618,9 @@ msgstr ""
 msgid "They can be managed using the %{link}."
 msgstr ""
 
+msgid "Third party offers"
+msgstr ""
+
 msgid "This GitLab instance does not provide any shared Runners yet. Instance administrators can register shared Runners in the admin area."
 msgstr ""
 
diff --git a/spec/features/admin/admin_settings_spec.rb b/spec/features/admin/admin_settings_spec.rb
index 9c6758abe86..a852ca689e7 100644
--- a/spec/features/admin/admin_settings_spec.rb
+++ b/spec/features/admin/admin_settings_spec.rb
@@ -272,6 +272,16 @@ describe 'Admin updates settings' do
     expect(Gitlab::CurrentSettings.allow_local_requests_from_hooks_and_services).to be true
   end
 
+  it 'Enable hiding third party offers' do
+    page.within('.as-third-party-offers') do
+      check 'Do not display offers from third parties within GitLab'
+      click_button 'Save changes'
+    end
+
+    expect(page).to have_content "Application settings saved successfully"
+    expect(Gitlab::CurrentSettings.hide_third_party_offers).to be true
+  end
+
   it 'Change Slack Notifications Service template settings' do
     first(:link, 'Service Templates').click
     click_link 'Slack notifications'

From 659aeba43c498b7a45fb1495371ded7436b238c9 Mon Sep 17 00:00:00 2001
From: Oswaldo Ferreira <oswaldo@gitlab.com>
Date: Mon, 9 Jul 2018 18:34:30 -0300
Subject: [PATCH 036/113] Use schedulers and delete diff files upon deadtuples
 check

---
 ...21030_enqueue_delete_diff_files_workers.rb |  4 +-
 .../background_migration/delete_diff_files.rb | 48 ++++++-----------
 .../schedule_diff_files_deletion.rb           | 44 +++++++++++++++
 .../delete_diff_files_spec.rb                 | 54 +++++--------------
 .../schedule_diff_files_deletion_spec.rb      | 43 +++++++++++++++
 .../enqueue_delete_diff_files_workers_spec.rb |  4 +-
 6 files changed, 120 insertions(+), 77 deletions(-)
 create mode 100644 lib/gitlab/background_migration/schedule_diff_files_deletion.rb
 create mode 100644 spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb

diff --git a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
index 100bd2a8f4e..c4d2f5f61a0 100644
--- a/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
+++ b/db/post_migrate/20180619121030_enqueue_delete_diff_files_workers.rb
@@ -2,7 +2,7 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
   include Gitlab::Database::MigrationHelpers
 
   DOWNTIME = false
-  MIGRATION = 'DeleteDiffFiles'.freeze
+  SCHEDULER = 'ScheduleDiffFilesDeletion'.freeze
   TMP_INDEX = 'tmp_partial_diff_id_with_files_index'.freeze
 
   disable_ddl_transaction!
@@ -12,7 +12,7 @@ class EnqueueDeleteDiffFilesWorkers < ActiveRecord::Migration
       add_concurrent_index(:merge_request_diffs, :id, where: "(state NOT IN ('without_files', 'empty'))", name: TMP_INDEX)
     end
 
-    BackgroundMigrationWorker.perform_async(MIGRATION)
+    BackgroundMigrationWorker.perform_async(SCHEDULER)
 
     # We don't remove the index since it's going to be used on DeleteDiffFiles
     # worker. We should remove it in an upcoming release.
diff --git a/lib/gitlab/background_migration/delete_diff_files.rb b/lib/gitlab/background_migration/delete_diff_files.rb
index 9824d0a0c37..664ead1af44 100644
--- a/lib/gitlab/background_migration/delete_diff_files.rb
+++ b/lib/gitlab/background_migration/delete_diff_files.rb
@@ -15,14 +15,21 @@ module Gitlab
         self.table_name = 'merge_request_diff_files'
       end
 
-      DIFF_ROWS_LIMIT = 5_000
       DEAD_TUPLES_THRESHOLD = 50_000
       VACUUM_WAIT_TIME = 5.minutes
 
-      def perform
-        rescheduling do
-          prune_diff_files(diffs_collection.limit(DIFF_ROWS_LIMIT))
+      def perform(ids)
+        @ids = ids
+
+        # We should reschedule until deadtuples get in a desirable
+        # state (e.g. < 50_000). That may take more than one reschedule.
+        #
+        if should_wait_deadtuple_vacuum?
+          reschedule
+          return
         end
+
+        prune_diff_files
       end
 
       def should_wait_deadtuple_vacuum?
@@ -33,31 +40,12 @@ module Gitlab
 
       private
 
-      def rescheduling(&block)
-        # We should reschedule until deadtuples get in a desirable
-        # state (e.g. < 50_000). That may take move than one reschedule.
-        #
-        if should_wait_deadtuple_vacuum?
-          reschedule
-          return
-        end
-
-        block.call
-
-        reschedule if diffs_collection.limit(1).count > 0
-      end
-
       def reschedule
-        BackgroundMigrationWorker.perform_in(VACUUM_WAIT_TIME, self.class.name.demodulize)
+        BackgroundMigrationWorker.perform_in(VACUUM_WAIT_TIME, self.class.name.demodulize, [@ids])
       end
 
       def diffs_collection
-        MergeRequestDiff
-          .joins(:merge_request)
-          .where("merge_requests.state = 'merged'")
-          .where('merge_requests.latest_merge_request_diff_id IS NOT NULL')
-          .where('merge_requests.latest_merge_request_diff_id != merge_request_diffs.id')
-          .where("merge_request_diffs.state NOT IN ('without_files', 'empty')")
+        MergeRequestDiff.where(id: @ids)
       end
 
       def diff_files_dead_tuples_count
@@ -68,17 +56,13 @@ module Gitlab
         dead_tuple&.fetch('n_dead_tup', 0).to_i
       end
 
-      def prune_diff_files(batch)
-        diff_ids = batch.pluck(:id)
-
+      def prune_diff_files
         removed = 0
         updated = 0
 
         MergeRequestDiff.transaction do
-          updated = MergeRequestDiff.where(id: diff_ids)
-            .update_all(state: 'without_files')
-          removed = MergeRequestDiffFile.where(merge_request_diff_id: diff_ids)
-            .delete_all
+          updated = diffs_collection.update_all(state: 'without_files')
+          removed = MergeRequestDiffFile.where(merge_request_diff_id: @ids).delete_all
         end
 
         log_info("Removed #{removed} merge_request_diff_files rows, "\
diff --git a/lib/gitlab/background_migration/schedule_diff_files_deletion.rb b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
new file mode 100644
index 00000000000..609cf19187c
--- /dev/null
+++ b/lib/gitlab/background_migration/schedule_diff_files_deletion.rb
@@ -0,0 +1,44 @@
+# frozen_string_literal: true
+# rubocop:disable Style/Documentation
+
+module Gitlab
+  module BackgroundMigration
+    class ScheduleDiffFilesDeletion
+      class MergeRequestDiff < ActiveRecord::Base
+        self.table_name = 'merge_request_diffs'
+
+        belongs_to :merge_request
+
+        include EachBatch
+      end
+
+      DIFF_BATCH_SIZE = 5_000
+      INTERVAL = 5.minutes
+      MIGRATION = 'DeleteDiffFiles'
+
+      def perform
+        diffs = MergeRequestDiff
+          .from("(#{diffs_collection.to_sql}) merge_request_diffs")
+          .where('merge_request_diffs.id != merge_request_diffs.latest_merge_request_diff_id')
+          .select(:id)
+
+        diffs.each_batch(of: DIFF_BATCH_SIZE) do |relation, index|
+          ids = relation.pluck(:id)
+
+          BackgroundMigrationWorker.perform_in(index * INTERVAL, MIGRATION, [ids])
+        end
+      end
+
+      private
+
+      def diffs_collection
+        MergeRequestDiff
+          .joins(:merge_request)
+          .where("merge_requests.state = 'merged'")
+          .where('merge_requests.latest_merge_request_diff_id IS NOT NULL')
+          .where("merge_request_diffs.state NOT IN ('without_files', 'empty')")
+          .select('merge_requests.latest_merge_request_diff_id, merge_request_diffs.id')
+      end
+    end
+  end
+end
diff --git a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
index 247e0786dd6..64c994a268f 100644
--- a/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
+++ b/spec/lib/gitlab/background_migration/delete_diff_files_spec.rb
@@ -9,14 +9,18 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
         merge_request.merge_request_diffs.first
       end
 
+      let(:perform) do
+        described_class.new.perform(MergeRequestDiff.pluck(:id))
+      end
+
       it 'deletes all merge request diff files' do
-        expect { described_class.new.perform }
+        expect { perform }
           .to change { merge_request_diff.merge_request_diff_files.count }
           .from(20).to(0)
       end
 
       it 'updates state to without_files' do
-        expect { described_class.new.perform }
+        expect { perform }
           .to change { merge_request_diff.reload.state }
           .from('collected').to('without_files')
       end
@@ -25,7 +29,7 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
         expect(described_class::MergeRequestDiffFile).to receive_message_chain(:where, :delete_all)
           .and_raise
 
-        expect { described_class.new.perform }
+        expect { perform }
           .to raise_error
 
         merge_request_diff.reload
@@ -35,50 +39,18 @@ describe Gitlab::BackgroundMigration::DeleteDiffFiles, :migration, schema: 20180
       end
     end
 
-    it 'deletes no merge request diff files when MR is not merged' do
-      merge_request = create(:merge_request, :opened)
-      merge_request.create_merge_request_diff
-      merge_request_diff = merge_request.merge_request_diffs.first
-
-      expect { described_class.new.perform }
-        .not_to change { merge_request_diff.merge_request_diff_files.count }
-        .from(20)
-    end
-
-    it 'deletes no merge request diff files when diff is marked as "without_files"' do
-      merge_request = create(:merge_request, :merged)
-      merge_request.create_merge_request_diff
-      merge_request_diff = merge_request.merge_request_diffs.first
-
-      merge_request_diff.clean!
-
-      expect { described_class.new.perform }
-        .not_to change { merge_request_diff.merge_request_diff_files.count }
-        .from(20)
-    end
-
-    it 'deletes no merge request diff files when diff is the latest' do
-      merge_request = create(:merge_request, :merged)
-      merge_request_diff = merge_request.merge_request_diff
-
-      expect { described_class.new.perform }
-        .not_to change { merge_request_diff.merge_request_diff_files.count }
-        .from(20)
-    end
-
     it 'reschedules itself when should_wait_deadtuple_vacuum' do
+      merge_request = create(:merge_request, :merged)
+      first_diff = merge_request.merge_request_diff
+      second_diff = merge_request.create_merge_request_diff
+
       Sidekiq::Testing.fake! do
         worker = described_class.new
-
         allow(worker).to receive(:should_wait_deadtuple_vacuum?) { true }
 
-        expect(BackgroundMigrationWorker)
-          .to receive(:perform_in)
-          .with(described_class::VACUUM_WAIT_TIME, 'DeleteDiffFiles')
-          .and_call_original
-
-        worker.perform
+        worker.perform([first_diff.id, second_diff.id])
 
+        expect(described_class.name.demodulize).to be_scheduled_delayed_migration(5.minutes, [first_diff.id, second_diff.id])
         expect(BackgroundMigrationWorker.jobs.size).to eq(1)
       end
     end
diff --git a/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
new file mode 100644
index 00000000000..fb5093b0bd1
--- /dev/null
+++ b/spec/lib/gitlab/background_migration/schedule_diff_files_deletion_spec.rb
@@ -0,0 +1,43 @@
+require 'spec_helper'
+
+describe Gitlab::BackgroundMigration::ScheduleDiffFilesDeletion, :migration, schema: 20180619121030 do
+  describe '#perform' do
+    let(:merge_request_diffs) { table(:merge_request_diffs) }
+    let(:merge_requests) { table(:merge_requests) }
+    let(:namespaces) { table(:namespaces) }
+    let(:projects) { table(:projects) }
+
+    before do
+      stub_const("#{described_class.name}::DIFF_BATCH_SIZE", 3)
+
+      namespaces.create!(id: 1, name: 'gitlab', path: 'gitlab')
+      projects.create!(id: 1, namespace_id: 1, name: 'gitlab', path: 'gitlab')
+
+      merge_requests.create!(id: 1, target_project_id: 1, source_project_id: 1, target_branch: 'feature', source_branch: 'master', state: 'merged')
+
+      merge_request_diffs.create!(id: 1, merge_request_id: 1, state: 'collected')
+      merge_request_diffs.create!(id: 2, merge_request_id: 1, state: 'empty')
+      merge_request_diffs.create!(id: 3, merge_request_id: 1, state: 'without_files')
+      merge_request_diffs.create!(id: 4, merge_request_id: 1, state: 'collected')
+      merge_request_diffs.create!(id: 5, merge_request_id: 1, state: 'collected')
+      merge_request_diffs.create!(id: 6, merge_request_id: 1, state: 'collected')
+      merge_request_diffs.create!(id: 7, merge_request_id: 1, state: 'collected')
+
+      merge_requests.update(1, latest_merge_request_diff_id: 7)
+    end
+
+    it 'correctly schedules diff file deletion workers' do
+      Sidekiq::Testing.fake! do
+        Timecop.freeze do
+          described_class.new.perform
+
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(5.minutes, [1, 4, 5])
+
+          expect(described_class::MIGRATION).to be_scheduled_delayed_migration(10.minutes, [6])
+
+          expect(BackgroundMigrationWorker.jobs.size).to eq(2)
+        end
+      end
+    end
+  end
+end
diff --git a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
index 803830d81cf..6bae870920c 100644
--- a/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
+++ b/spec/migrations/enqueue_delete_diff_files_workers_spec.rb
@@ -2,11 +2,11 @@ require 'spec_helper'
 require Rails.root.join('db', 'post_migrate', '20180619121030_enqueue_delete_diff_files_workers.rb')
 
 describe EnqueueDeleteDiffFilesWorkers, :migration, :sidekiq do
-  it 'correctly schedules diff files deletion' do
+  it 'correctly schedules diff files deletion schedulers' do
     Sidekiq::Testing.fake! do
       expect(BackgroundMigrationWorker)
         .to receive(:perform_async)
-        .with(described_class::MIGRATION)
+        .with(described_class::SCHEDULER)
         .and_call_original
 
       migrate!

From a68ea57d619f02b10e605cc39448b136e651d2db Mon Sep 17 00:00:00 2001
From: Michael Leopard <mleopard@gitlab.com>
Date: Tue, 10 Jul 2018 13:55:56 +0000
Subject: [PATCH 037/113] Update project_import_export.md to include example
 remote import script and additional curl command

---
 doc/api/project_import_export.md | 31 +++++++++++++++++++++++++++++++
 1 file changed, 31 insertions(+)

diff --git a/doc/api/project_import_export.md b/doc/api/project_import_export.md
index 085437c801a..1d307df4d0f 100644
--- a/doc/api/project_import_export.md
+++ b/doc/api/project_import_export.md
@@ -32,6 +32,14 @@ POST /projects/:id/export
 curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/projects/1/export --data "description=FooBar&upload[http_method]=PUT&upload[url]=https://example-bucket.s3.eu-west-3.amazonaws.com/backup?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIMBJHN2O62W8IELQ%2F20180312%2Feu-west-3%2Fs3%2Faws4_request&X-Amz-Date=20180312T110328Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=8413facb20ff33a49a147a0b4abcff4c8487cc33ee1f7e450c46e8f695569dbd"
 ```
 
+Some systems may require the upload url to be url-encoded:
+
+```console
+curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/projects/1/export \
+    --data "upload[http_method]=PUT" \
+    --data-urlencode "upload[url]=https://example-bucket.s3.eu-west-3.amazonaws.com/backup?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIMBJHN2O62W8IELQ%2F20180312%2Feu-west-3%2Fs3%2Faws4_request&X-Amz-Date=20180312T110328Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=8413facb20ff33a49a147a0b4abcff4c8487cc33ee1f7e450c46e8f695569dbd"
+```
+
 ```json
 {
   "message": "202 Accepted"
@@ -125,6 +133,29 @@ by `@`. For example:
 curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" --form "path=api-project" --form "file=@/path/to/file" https://gitlab.example.com/api/v4/projects/import
 ```
 
+cURL doesn't support posting a file from a remote server. Importing a project from a remote server can be accomplished through something like the following:
+
+```python
+import requests
+import urllib
+import json
+import sys
+
+s3_file = urllib.urlopen(presigned_url)
+
+url =  'https://gitlab.example.com/api/v4/projects/import'
+files = {'file': s3_file}
+data = {
+    "path": "example-project",
+    "namespace": "example-group"
+}
+headers = {
+    'Private-Token': "9koXpg98eAheJpvBs5tK"
+}
+
+requests.post(url, headers=headers, data=data, files=files)
+```
+
 ```json
 {
   "id": 1,

From 57fc7cd8f35525f772d7c59a2aa45c96467cb882 Mon Sep 17 00:00:00 2001
From: Sean McGivern <sean@gitlab.com>
Date: Tue, 10 Jul 2018 15:00:13 +0100
Subject: [PATCH 038/113] Make sure ConflictsService does not raise for
 conflicting submodules

---
 lib/gitlab/gitaly_client/conflicts_service.rb | 10 +++++----
 spec/models/repository_spec.rb                | 22 ++++++++++++-------
 .../conflicts/list_service_spec.rb            | 10 +++++++--
 spec/support/helpers/test_env.rb              |  4 +++-
 4 files changed, 31 insertions(+), 15 deletions(-)

diff --git a/lib/gitlab/gitaly_client/conflicts_service.rb b/lib/gitlab/gitaly_client/conflicts_service.rb
index b1a01b185e6..aa7e03301f5 100644
--- a/lib/gitlab/gitaly_client/conflicts_service.rb
+++ b/lib/gitlab/gitaly_client/conflicts_service.rb
@@ -25,10 +25,12 @@ module Gitlab
 
       def conflicts?
         list_conflict_files.any?
-      rescue GRPC::FailedPrecondition
-        # The server raises this exception when it encounters ConflictSideMissing, which
-        # means a conflict exists but its `theirs` or `ours` data is nil due to a non-existent
-        # file in one of the trees.
+      rescue GRPC::FailedPrecondition, GRPC::Unknown
+        # The server raises FailedPrecondition when it encounters
+        # ConflictSideMissing, which means a conflict exists but its `theirs` or
+        # `ours` data is nil due to a non-existent file in one of the trees.
+        #
+        # GRPC::Unknown comes from Rugged::ReferenceError and Rugged::OdbError.
         true
       end
 
diff --git a/spec/models/repository_spec.rb b/spec/models/repository_spec.rb
index d060ab923d1..caf5d829d21 100644
--- a/spec/models/repository_spec.rb
+++ b/spec/models/repository_spec.rb
@@ -431,6 +431,18 @@ describe Repository do
 
       it { is_expected.to be_falsey }
     end
+
+    context 'non merged branch' do
+      subject { repository.merged_to_root_ref?('fix') }
+
+      it { is_expected.to be_falsey }
+    end
+
+    context 'non existent branch' do
+      subject { repository.merged_to_root_ref?('non_existent_branch') }
+
+      it { is_expected.to be_nil }
+    end
   end
 
   describe '#can_be_merged?' do
@@ -452,17 +464,11 @@ describe Repository do
       it { is_expected.to be_falsey }
     end
 
-    context 'non merged branch' do
-      subject { repository.merged_to_root_ref?('fix') }
+    context 'submodule changes that confuse rugged' do
+      subject { repository.can_be_merged?('update-gitlab-shell-v-6-0-1', 'update-gitlab-shell-v-6-0-3') }
 
       it { is_expected.to be_falsey }
     end
-
-    context 'non existent branch' do
-      subject { repository.merged_to_root_ref?('non_existent_branch') }
-
-      it { is_expected.to be_nil }
-    end
   end
 
   describe '#commit' do
diff --git a/spec/services/merge_requests/conflicts/list_service_spec.rb b/spec/services/merge_requests/conflicts/list_service_spec.rb
index a5520e7373e..c81fa95e4b7 100644
--- a/spec/services/merge_requests/conflicts/list_service_spec.rb
+++ b/spec/services/merge_requests/conflicts/list_service_spec.rb
@@ -2,8 +2,8 @@ require 'spec_helper'
 
 describe MergeRequests::Conflicts::ListService do
   describe '#can_be_resolved_in_ui?' do
-    def create_merge_request(source_branch)
-      create(:merge_request, source_branch: source_branch, target_branch: 'conflict-start', merge_status: :unchecked) do |mr|
+    def create_merge_request(source_branch, target_branch = 'conflict-start')
+      create(:merge_request, source_branch: source_branch, target_branch: target_branch, merge_status: :unchecked) do |mr|
         mr.mark_as_unmergeable
       end
     end
@@ -84,5 +84,11 @@ describe MergeRequests::Conflicts::ListService do
 
       expect(service.can_be_resolved_in_ui?).to be_falsey
     end
+
+    it 'returns a falsey value when the conflict is in a submodule revision' do
+      merge_request = create_merge_request('update-gitlab-shell-v-6-0-3', 'update-gitlab-shell-v-6-0-1')
+
+      expect(conflicts_service(merge_request).can_be_resolved_in_ui?).to be_falsey
+    end
   end
 end
diff --git a/spec/support/helpers/test_env.rb b/spec/support/helpers/test_env.rb
index 05a8e6206ae..e531495d917 100644
--- a/spec/support/helpers/test_env.rb
+++ b/spec/support/helpers/test_env.rb
@@ -49,7 +49,9 @@ module TestEnv
     'add-pdf-file'                       => 'e774ebd',
     'squash-large-files'                 => '54cec52',
     'add-pdf-text-binary'                => '79faa7b',
-    'add_images_and_changes'             => '010d106'
+    'add_images_and_changes'             => '010d106',
+    'update-gitlab-shell-v-6-0-1'        => '2f61d70',
+    'update-gitlab-shell-v-6-0-3'        => 'de78448'
   }.freeze
 
   # gitlab-test-fork is a fork of gitlab-fork, but we don't necessarily

From fa39876ecb13746e12f80a649da2d1e8492500b3 Mon Sep 17 00:00:00 2001
From: Ave <gitlab@ave.zone>
Date: Tue, 10 Jul 2018 14:47:32 +0000
Subject: [PATCH 039/113] Fix a typo on CI Runner page on Projects

---
 app/views/ci/runner/_how_to_setup_runner.html.haml | 2 +-
 locale/gitlab.pot                                  | 6 +++---
 2 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/app/views/ci/runner/_how_to_setup_runner.html.haml b/app/views/ci/runner/_how_to_setup_runner.html.haml
index 37fb8fbab26..3ae9ce6c11f 100644
--- a/app/views/ci/runner/_how_to_setup_runner.html.haml
+++ b/app/views/ci/runner/_how_to_setup_runner.html.haml
@@ -5,7 +5,7 @@
 %ol
   %li
     = _("Install a Runner compatible with GitLab CI")
-    = (_("(checkout the %{link} for information on how to install it).") % { link: link }).html_safe
+    = (_("(check out the %{link} for information on how to install it).") % { link: link }).html_safe
   %li
     = _("Specify the following URL during the Runner setup:")
     %code#coordinator_address= root_url(only_path: false)
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index f2e4eda576f..77cfe4ee84e 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -8,8 +8,8 @@ msgid ""
 msgstr ""
 "Project-Id-Version: gitlab 1.0.0\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-10 08:56+0200\n"
-"PO-Revision-Date: 2018-07-10 08:56+0200\n"
+"POT-Creation-Date: 2018-07-10 17:09+0300\n"
+"PO-Revision-Date: 2018-07-10 17:09+0300\n"
 "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
 "Language-Team: LANGUAGE <LL@li.org>\n"
 "Language: \n"
@@ -128,7 +128,7 @@ msgstr ""
 msgid "%{unstaged} unstaged and %{staged} staged changes"
 msgstr ""
 
-msgid "(checkout the %{link} for information on how to install it)."
+msgid "(check out the %{link} for information on how to install it)."
 msgstr ""
 
 msgid "+ %{moreCount} more"

From 798608af94f092dd6289b7da0f57bd1c8307e2f0 Mon Sep 17 00:00:00 2001
From: Collen <collen@gitlab.com>
Date: Tue, 10 Jul 2018 15:22:13 +0000
Subject: [PATCH 040/113] Add daylight saving time support for pipeline
 schedules

---
 app/helpers/pipeline_schedules_helper.rb                     | 2 +-
 .../unreleased/add-dst-support-to-pipeline-schedule.yml      | 5 +++++
 2 files changed, 6 insertions(+), 1 deletion(-)
 create mode 100644 changelogs/unreleased/add-dst-support-to-pipeline-schedule.yml

diff --git a/app/helpers/pipeline_schedules_helper.rb b/app/helpers/pipeline_schedules_helper.rb
index 6edaf78de1b..4b9f6bd2caf 100644
--- a/app/helpers/pipeline_schedules_helper.rb
+++ b/app/helpers/pipeline_schedules_helper.rb
@@ -3,7 +3,7 @@ module PipelineSchedulesHelper
     ActiveSupport::TimeZone.all.map do |timezone|
       {
         name: timezone.name,
-        offset: timezone.utc_offset,
+        offset: timezone.now.utc_offset,
         identifier: timezone.tzinfo.identifier
       }
     end
diff --git a/changelogs/unreleased/add-dst-support-to-pipeline-schedule.yml b/changelogs/unreleased/add-dst-support-to-pipeline-schedule.yml
new file mode 100644
index 00000000000..08376014ad7
--- /dev/null
+++ b/changelogs/unreleased/add-dst-support-to-pipeline-schedule.yml
@@ -0,0 +1,5 @@
+---
+title: Add support for daylight savings time to pipleline schedules
+merge_request: 20145
+author:
+type: fixed

From 491afd39a0c5aae1d8626cb25fd5d05be75fa416 Mon Sep 17 00:00:00 2001
From: Michael Leopard <mleopard@gitlab.com>
Date: Tue, 10 Jul 2018 15:27:10 +0000
Subject: [PATCH 041/113] Update project_import_export.md. Removed cURL
 statement

---
 doc/api/project_import_export.md | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/doc/api/project_import_export.md b/doc/api/project_import_export.md
index 1d307df4d0f..83e405141f1 100644
--- a/doc/api/project_import_export.md
+++ b/doc/api/project_import_export.md
@@ -28,11 +28,6 @@ POST /projects/:id/export
 | `upload[url]`      | string | yes      | The URL to upload the project |
 | `upload[http_method]`      | string | no      | The HTTP method to upload the exported project. Only `PUT` and `POST` methods allowed. Default is `PUT` |
 
-```console
-curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/projects/1/export --data "description=FooBar&upload[http_method]=PUT&upload[url]=https://example-bucket.s3.eu-west-3.amazonaws.com/backup?X-Amz-Algorithm=AWS4-HMAC-SHA256&X-Amz-Credential=AKIAIMBJHN2O62W8IELQ%2F20180312%2Feu-west-3%2Fs3%2Faws4_request&X-Amz-Date=20180312T110328Z&X-Amz-Expires=900&X-Amz-SignedHeaders=host&X-Amz-Signature=8413facb20ff33a49a147a0b4abcff4c8487cc33ee1f7e450c46e8f695569dbd"
-```
-
-Some systems may require the upload url to be url-encoded:
 
 ```console
 curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/projects/1/export \

From 5b0210a0c8db13b6e538dfea7bc07d090224bbca Mon Sep 17 00:00:00 2001
From: Sean McGivern <sean@gitlab.com>
Date: Tue, 10 Jul 2018 17:11:31 +0100
Subject: [PATCH 042/113] Fix ProcessCommitWorker when upstream project is
 deleted

---
 app/workers/process_commit_worker.rb          |  5 ++-
 ...-project-with-upstream-project-deleted.yml |  5 +++
 spec/workers/process_commit_worker_spec.rb    | 40 ++++++++++++++++---
 3 files changed, 42 insertions(+), 8 deletions(-)
 create mode 100644 changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml

diff --git a/app/workers/process_commit_worker.rb b/app/workers/process_commit_worker.rb
index ed39b4a1ea8..c9f6df9b56d 100644
--- a/app/workers/process_commit_worker.rb
+++ b/app/workers/process_commit_worker.rb
@@ -79,9 +79,10 @@ class ProcessCommitWorker
   # Avoid reprocessing commits that already exist in the upstream
   # when project is forked. This will also prevent duplicated system notes.
   def commit_exists_in_upstream?(project, commit_hash)
-    return false unless project.forked?
+    upstream_project = project.fork_source
+
+    return false unless upstream_project
 
-    upstream_project = project.forked_from_project
     commit_id = commit_hash.with_indifferent_access[:id]
     upstream_project.commit(commit_id).present?
   end
diff --git a/changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml b/changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml
new file mode 100644
index 00000000000..6994a238074
--- /dev/null
+++ b/changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml
@@ -0,0 +1,5 @@
+---
+title: Process commits as normal in forks when the upstream project is deleted
+merge_request: 20534
+author:
+type: fixed
diff --git a/spec/workers/process_commit_worker_spec.rb b/spec/workers/process_commit_worker_spec.rb
index ac79d9c0ac1..2d071c181c2 100644
--- a/spec/workers/process_commit_worker_spec.rb
+++ b/spec/workers/process_commit_worker_spec.rb
@@ -1,6 +1,8 @@
 require 'spec_helper'
 
 describe ProcessCommitWorker do
+  include ProjectForksHelper
+
   let(:worker) { described_class.new }
   let(:user) { create(:user) }
   let(:project) { create(:project, :public, :repository) }
@@ -32,15 +34,41 @@ describe ProcessCommitWorker do
       worker.perform(project.id, user.id, commit.to_hash)
     end
 
-    context 'when commit already exists in upstream project' do
-      let(:forked) { create(:project, :public, :repository) }
+    context 'when the project is forked' do
+      context 'when commit already exists in the upstream project' do
+        it 'does not process the commit message' do
+          forked = fork_project(project, user, repository: true)
 
-      it 'does not process commit message' do
-        create(:forked_project_link, forked_to_project: forked, forked_from_project: project)
+          expect(worker).not_to receive(:process_commit_message)
 
-        expect(worker).not_to receive(:process_commit_message)
+          worker.perform(forked.id, user.id, forked.commit.to_hash)
+        end
+      end
 
-        worker.perform(forked.id, user.id, forked.commit.to_hash)
+      context 'when the commit does not exist in the upstream project' do
+        it 'processes the commit message' do
+          empty_project = create(:project, :public)
+          forked = fork_project(empty_project, user, repository: true)
+
+          TestEnv.copy_repo(forked,
+                            bare_repo: TestEnv.factory_repo_path_bare,
+                            refs: TestEnv::BRANCH_SHA)
+
+          expect(worker).to receive(:process_commit_message)
+
+          worker.perform(forked.id, user.id, forked.commit.to_hash)
+        end
+      end
+
+      context 'when the upstream project no longer exists' do
+        it 'processes the commit message' do
+          forked = fork_project(project, user, repository: true)
+          project.destroy!
+
+          expect(worker).to receive(:process_commit_message)
+
+          worker.perform(forked.id, user.id, forked.commit.to_hash)
+        end
       end
     end
   end

From f6d22ec11ef3427f1295f6552e94a7e9e6324d32 Mon Sep 17 00:00:00 2001
From: Bob Van Landuyt <bob@vanlanduyt.co>
Date: Tue, 10 Jul 2018 17:50:17 +0200
Subject: [PATCH 043/113] Remove timestamps from `locale/gitlab.pot`

This will help us avoid conflicts when regenerating the pot file, the
timestamps aren't used by Crowdin.
---
 lib/tasks/gettext.rake | 8 +++++++-
 locale/gitlab.pot      | 2 --
 2 files changed, 7 insertions(+), 3 deletions(-)

diff --git a/lib/tasks/gettext.rake b/lib/tasks/gettext.rake
index 6df7fe81437..f431352b61e 100644
--- a/lib/tasks/gettext.rake
+++ b/lib/tasks/gettext.rake
@@ -20,16 +20,22 @@ namespace :gettext do
   end
 
   task :regenerate do
+    pot_file = 'locale/gitlab.pot'
     # Remove all translated files, this speeds up finding
     FileUtils.rm Dir['locale/**/gitlab.*']
     # remove the `pot` file to ensure it's completely regenerated
-    FileUtils.rm_f 'locale/gitlab.pot'
+    FileUtils.rm_f pot_file
 
     Rake::Task['gettext:find'].invoke
 
     # leave only the required changes.
     `git checkout -- locale/*/gitlab.po`
 
+    # Remove timestamps from the pot file
+    pot_content = File.read pot_file
+    pot_content.gsub!(/^"POT?\-(?:Creation|Revision)\-Date\:.*\n/, '')
+    File.write pot_file, pot_content
+
     puts <<~MSG
     All done. Please commit the changes to `locale/gitlab.pot`.
 
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 77cfe4ee84e..83ff735580e 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -8,8 +8,6 @@ msgid ""
 msgstr ""
 "Project-Id-Version: gitlab 1.0.0\n"
 "Report-Msgid-Bugs-To: \n"
-"POT-Creation-Date: 2018-07-10 17:09+0300\n"
-"PO-Revision-Date: 2018-07-10 17:09+0300\n"
 "Last-Translator: FULL NAME <EMAIL@ADDRESS>\n"
 "Language-Team: LANGUAGE <LL@li.org>\n"
 "Language: \n"

From e4047ad6f9ae0f4ff2ba3d19fedb8902213b9edb Mon Sep 17 00:00:00 2001
From: Lin Jen-Shin <godfat@godfat.org>
Date: Tue, 10 Jul 2018 22:47:15 +0800
Subject: [PATCH 044/113] Find the EE branch by searching the branches

This uses a similar approach in ee_specific_check.rb
---
 lib/gitlab/ee_compat_check.rb | 28 ++++++++++++++++++++--------
 1 file changed, 20 insertions(+), 8 deletions(-)

diff --git a/lib/gitlab/ee_compat_check.rb b/lib/gitlab/ee_compat_check.rb
index 8c72d00c1f3..ee604e66154 100644
--- a/lib/gitlab/ee_compat_check.rb
+++ b/lib/gitlab/ee_compat_check.rb
@@ -138,15 +138,23 @@ module Gitlab
 
     def ee_branch_presence_check!
       ee_remotes.keys.each do |remote|
-        [ce_branch, ee_branch_prefix, ee_branch_suffix].each do |branch|
-          _, status = step("Fetching #{remote}/#{branch}", %W[git fetch #{remote} #{branch}])
+        output, _ = step(
+          "Searching #{remote}",
+          %W[git ls-remote #{remote} *#{minimal_ee_branch_name}*])
 
-          if status.zero?
-            @ee_remote_with_branch = remote
-            @ee_branch_found = branch
-            return true
-          end
-        end
+        branches =
+          output.scan(%r{(?<=refs/heads/|refs/tags/).+}).sort_by(&:size)
+
+        next if branches.empty?
+
+        branch = branches.first
+
+        step("Fetching #{remote}/#{branch}", %W[git fetch #{remote} #{branch}])
+
+        @ee_remote_with_branch = remote
+        @ee_branch_found = branch
+
+        return true
       end
 
       puts
@@ -271,6 +279,10 @@ module Gitlab
       @ee_patch_full_path ||= patches_dir.join(ee_patch_name)
     end
 
+    def minimal_ee_branch_name
+      @minimal_ee_branch_name ||= ce_branch.sub(/(\Ace\-|\-ce\z)/, '')
+    end
+
     def patch_name_from_branch(branch_name)
       branch_name.parameterize << '.patch'
     end

From f60aa2ed3fcd92a9b34157d02cd478ae8b282edc Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Dennis=20G=C3=BCnnewig?= <dev@fedux.org>
Date: Thu, 21 Jun 2018 07:29:23 +0200
Subject: [PATCH 045/113] Add documenation about how to active debug logging
 for gitlab-pages

---
 doc/administration/pages/index.md | 18 ++++++++++++++++++
 1 file changed, 18 insertions(+)

diff --git a/doc/administration/pages/index.md b/doc/administration/pages/index.md
index c0a281382a5..b3602bc35ab 100644
--- a/doc/administration/pages/index.md
+++ b/doc/administration/pages/index.md
@@ -259,6 +259,24 @@ verification requirement. Navigate to `Admin area ➔ Settings` and uncheck
 **Require users to prove ownership of custom domains** in the Pages section.
 This setting is enabled by default.
 
+## Activate verbose logging for daemon
+
+Verbose logging was [introduced](https://gitlab.com/gitlab-org/omnibus-gitlab/merge_requests/2533) in
+Omnibus GitLab 11.1.
+
+Follow the steps below to configure verbose logging of GitLab Pages daemon.
+
+1. By default the daemon only logs with `INFO` level.
+
+   If you wish to make it log events with level `DEBUG` you must configure this in
+   `/etc/gitlab/gitlab.rb`:
+
+     ```shell
+     gitlab_pages['log_verbose'] = true
+     ```
+
+1. [Reconfigure GitLab][reconfigure]
+
 ## Change storage path
 
 Follow the steps below to change the default path where GitLab Pages' contents

From 66ad04e40ce13be3ce90c69e6449160ac12f73d4 Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Tue, 10 Jul 2018 19:28:14 +0000
Subject: [PATCH 046/113] Mock timeouts and Promise in SmartInterval tests

---
 spec/javascripts/helpers/wait_for_promises.js |   1 +
 spec/javascripts/job_spec.js                  |  27 ++-
 spec/javascripts/smart_interval_spec.js       | 203 ++++++++++--------
 3 files changed, 131 insertions(+), 100 deletions(-)
 create mode 100644 spec/javascripts/helpers/wait_for_promises.js

diff --git a/spec/javascripts/helpers/wait_for_promises.js b/spec/javascripts/helpers/wait_for_promises.js
new file mode 100644
index 00000000000..1d2b53fc770
--- /dev/null
+++ b/spec/javascripts/helpers/wait_for_promises.js
@@ -0,0 +1 @@
+export default () => new Promise(resolve => requestAnimationFrame(resolve));
diff --git a/spec/javascripts/job_spec.js b/spec/javascripts/job_spec.js
index 79e375aa02e..2fcb5566ebc 100644
--- a/spec/javascripts/job_spec.js
+++ b/spec/javascripts/job_spec.js
@@ -5,6 +5,7 @@ import { numberToHumanSize } from '~/lib/utils/number_utils';
 import '~/lib/utils/datetime_utility';
 import Job from '~/job';
 import '~/breakpoints';
+import waitForPromises from 'spec/helpers/wait_for_promises';
 
 describe('Job', () => {
   const JOB_URL = `${gl.TEST_HOST}/frontend-fixtures/builds-project/-/jobs/1`;
@@ -12,10 +13,6 @@ describe('Job', () => {
   let response;
   let job;
 
-  function waitForPromise() {
-    return new Promise(resolve => requestAnimationFrame(resolve));
-  }
-
   preloadFixtures('builds/build-with-artifacts.html.raw');
 
   beforeEach(() => {
@@ -49,7 +46,7 @@ describe('Job', () => {
       beforeEach(function (done) {
         job = new Job();
 
-        waitForPromise()
+        waitForPromises()
           .then(done)
           .catch(done.fail);
       });
@@ -93,7 +90,7 @@ describe('Job', () => {
 
         job = new Job();
 
-        waitForPromise()
+        waitForPromises()
           .then(() => {
             expect($('#build-trace .js-build-output').text()).toMatch(/Update/);
             expect(job.state).toBe('newstate');
@@ -107,7 +104,7 @@ describe('Job', () => {
             };
           })
           .then(() => jasmine.clock().tick(4001))
-          .then(waitForPromise)
+          .then(waitForPromises)
           .then(() => {
             expect($('#build-trace .js-build-output').text()).toMatch(/UpdateMore/);
             expect(job.state).toBe('finalstate');
@@ -126,7 +123,7 @@ describe('Job', () => {
 
         job = new Job();
 
-        waitForPromise()
+        waitForPromises()
           .then(() => {
             expect($('#build-trace .js-build-output').text()).toMatch(/Update/);
 
@@ -137,7 +134,7 @@ describe('Job', () => {
             };
           })
           .then(() => jasmine.clock().tick(4001))
-          .then(waitForPromise)
+          .then(waitForPromises)
           .then(() => {
             expect($('#build-trace .js-build-output').text()).not.toMatch(/Update/);
             expect($('#build-trace .js-build-output').text()).toMatch(/Different/);
@@ -160,7 +157,7 @@ describe('Job', () => {
 
           job = new Job();
 
-          waitForPromise()
+          waitForPromises()
             .then(() => {
               expect(document.querySelector('.js-truncated-info').classList).not.toContain('hidden');
             })
@@ -181,7 +178,7 @@ describe('Job', () => {
 
           job = new Job();
 
-          waitForPromise()
+          waitForPromises()
             .then(() => {
               expect(
                 document.querySelector('.js-truncated-info-size').textContent.trim(),
@@ -203,7 +200,7 @@ describe('Job', () => {
 
           job = new Job();
 
-          waitForPromise()
+          waitForPromises()
             .then(() => {
               expect(
                 document.querySelector('.js-truncated-info-size').textContent.trim(),
@@ -219,7 +216,7 @@ describe('Job', () => {
               };
             })
             .then(() => jasmine.clock().tick(4001))
-            .then(waitForPromise)
+            .then(waitForPromises)
             .then(() => {
               expect(
                 document.querySelector('.js-truncated-info-size').textContent.trim(),
@@ -258,7 +255,7 @@ describe('Job', () => {
 
           job = new Job();
 
-          waitForPromise()
+          waitForPromises()
             .then(() => {
               expect(document.querySelector('.js-truncated-info').classList).toContain('hidden');
             })
@@ -280,7 +277,7 @@ describe('Job', () => {
 
         job = new Job();
 
-        waitForPromise()
+        waitForPromises()
           .then(done)
           .catch(done.fail);
       });
diff --git a/spec/javascripts/smart_interval_spec.js b/spec/javascripts/smart_interval_spec.js
index 60153672214..d9b6dd1d487 100644
--- a/spec/javascripts/smart_interval_spec.js
+++ b/spec/javascripts/smart_interval_spec.js
@@ -1,12 +1,12 @@
 import $ from 'jquery';
 import _ from 'underscore';
 import SmartInterval from '~/smart_interval';
+import waitForPromises from 'spec/helpers/wait_for_promises';
 
 describe('SmartInterval', function () {
   const DEFAULT_MAX_INTERVAL = 100;
   const DEFAULT_STARTING_INTERVAL = 5;
   const DEFAULT_SHORT_TIMEOUT = 75;
-  const DEFAULT_LONG_TIMEOUT = 1000;
   const DEFAULT_INCREMENT_FACTOR = 2;
 
   function createDefaultSmartInterval(config) {
@@ -27,52 +27,65 @@ describe('SmartInterval', function () {
     return new SmartInterval(defaultParams);
   }
 
+  beforeEach(() => {
+    jasmine.clock().install();
+  });
+
+  afterEach(() => {
+    jasmine.clock().uninstall();
+  });
+
   describe('Increment Interval', function () {
-    beforeEach(function () {
-      this.smartInterval = createDefaultSmartInterval();
+    it('should increment the interval delay', (done) => {
+      const smartInterval = createDefaultSmartInterval();
+
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
+
+      waitForPromises()
+        .then(() => {
+          const intervalConfig = smartInterval.cfg;
+          const iterationCount = 4;
+          const maxIntervalAfterIterations = intervalConfig.startingInterval *
+            (intervalConfig.incrementByFactorOf ** iterationCount);
+          const currentInterval = smartInterval.getCurrentInterval();
+
+          // Provide some flexibility for performance of testing environment
+          expect(currentInterval).toBeGreaterThan(intervalConfig.startingInterval);
+          expect(currentInterval).toBeLessThanOrEqual(maxIntervalAfterIterations);
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
-    it('should increment the interval delay', function (done) {
-      const interval = this.smartInterval;
-      setTimeout(() => {
-        const intervalConfig = this.smartInterval.cfg;
-        const iterationCount = 4;
-        const maxIntervalAfterIterations = intervalConfig.startingInterval *
-          (intervalConfig.incrementByFactorOf ** (iterationCount - 1)); // 40
-        const currentInterval = interval.getCurrentInterval();
+    it('should not increment past maxInterval', (done) => {
+      const smartInterval = createDefaultSmartInterval({ maxInterval: DEFAULT_STARTING_INTERVAL });
 
-        // Provide some flexibility for performance of testing environment
-        expect(currentInterval).toBeGreaterThan(intervalConfig.startingInterval);
-        expect(currentInterval <= maxIntervalAfterIterations).toBeTruthy();
+      jasmine.clock().tick(DEFAULT_STARTING_INTERVAL);
+      jasmine.clock().tick(DEFAULT_STARTING_INTERVAL * DEFAULT_INCREMENT_FACTOR);
 
-        done();
-      }, DEFAULT_SHORT_TIMEOUT); // 4 iterations, increment by 2x = (5 + 10 + 20 + 40)
+      waitForPromises()
+        .then(() => {
+          const currentInterval = smartInterval.getCurrentInterval();
+          expect(currentInterval).toBe(smartInterval.cfg.maxInterval);
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
-    it('should not increment past maxInterval', function (done) {
-      const interval = this.smartInterval;
-
-      setTimeout(() => {
-        const currentInterval = interval.getCurrentInterval();
-        expect(currentInterval).toBe(interval.cfg.maxInterval);
-
-        done();
-      }, DEFAULT_LONG_TIMEOUT);
-    });
-
-    it('does not increment while waiting for callback', function () {
-      jasmine.clock().install();
-
+    it('does not increment while waiting for callback', done => {
       const smartInterval = createDefaultSmartInterval({
         callback: () => new Promise($.noop),
       });
 
       jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-      const oneInterval = smartInterval.cfg.startingInterval * DEFAULT_INCREMENT_FACTOR;
-      expect(smartInterval.getCurrentInterval()).toEqual(oneInterval);
-
-      jasmine.clock().uninstall();
+      waitForPromises()
+        .then(() => {
+          const oneInterval = smartInterval.cfg.startingInterval * DEFAULT_INCREMENT_FACTOR;
+          expect(smartInterval.getCurrentInterval()).toEqual(oneInterval);
+        })
+        .then(done)
+        .catch(done.fail);
     });
   });
 
@@ -84,34 +97,39 @@ describe('SmartInterval', function () {
     it('should cancel an interval', function (done) {
       const interval = this.smartInterval;
 
-      setTimeout(() => {
-        interval.cancel();
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-        const { intervalId } = interval.state;
-        const currentInterval = interval.getCurrentInterval();
-        const intervalLowerLimit = interval.cfg.startingInterval;
+      interval.cancel();
 
-        expect(intervalId).toBeUndefined();
-        expect(currentInterval).toBe(intervalLowerLimit);
+      waitForPromises()
+        .then(() => {
+          const { intervalId } = interval.state;
+          const currentInterval = interval.getCurrentInterval();
+          const intervalLowerLimit = interval.cfg.startingInterval;
 
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+          expect(intervalId).toBeUndefined();
+          expect(currentInterval).toBe(intervalLowerLimit);
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
     it('should resume an interval', function (done) {
       const interval = this.smartInterval;
 
-      setTimeout(() => {
-        interval.cancel();
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-        interval.resume();
+      interval.cancel();
 
-        const { intervalId } = interval.state;
+      interval.resume();
 
-        expect(intervalId).toBeTruthy();
-
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+      waitForPromises()
+        .then(() => {
+          const { intervalId } = interval.state;
+          expect(intervalId).toBeTruthy();
+        })
+        .then(done)
+        .catch(done.fail);
     });
   });
 
@@ -126,64 +144,79 @@ describe('SmartInterval', function () {
     it('should pause when page is not visible', function (done) {
       const interval = this.smartInterval;
 
-      setTimeout(() => {
-        expect(interval.state.intervalId).toBeTruthy();
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-        // simulates triggering of visibilitychange event
-        interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
+      waitForPromises()
+        .then(() => {
+          expect(interval.state.intervalId).toBeTruthy();
 
-        expect(interval.state.intervalId).toBeUndefined();
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+          // simulates triggering of visibilitychange event
+          interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
+
+          expect(interval.state.intervalId).toBeUndefined();
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
-    it('should change to the hidden interval when page is not visible', function (done) {
+    it('should change to the hidden interval when page is not visible', done => {
       const HIDDEN_INTERVAL = 1500;
       const interval = createDefaultSmartInterval({ hiddenInterval: HIDDEN_INTERVAL });
 
-      setTimeout(() => {
-        expect(interval.state.intervalId).toBeTruthy();
-        expect(interval.getCurrentInterval() >= DEFAULT_STARTING_INTERVAL &&
-          interval.getCurrentInterval() <= DEFAULT_MAX_INTERVAL).toBeTruthy();
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-        // simulates triggering of visibilitychange event
-        interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
+      waitForPromises()
+        .then(() => {
+          expect(interval.state.intervalId).toBeTruthy();
+          expect(interval.getCurrentInterval() >= DEFAULT_STARTING_INTERVAL &&
+            interval.getCurrentInterval() <= DEFAULT_MAX_INTERVAL).toBeTruthy();
 
-        expect(interval.state.intervalId).toBeTruthy();
-        expect(interval.getCurrentInterval()).toBe(HIDDEN_INTERVAL);
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+          // simulates triggering of visibilitychange event
+          interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
+
+          expect(interval.state.intervalId).toBeTruthy();
+          expect(interval.getCurrentInterval()).toBe(HIDDEN_INTERVAL);
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
     it('should resume when page is becomes visible at the previous interval', function (done) {
       const interval = this.smartInterval;
 
-      setTimeout(() => {
-        expect(interval.state.intervalId).toBeTruthy();
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
 
-        // simulates triggering of visibilitychange event
-        interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
+      waitForPromises()
+        .then(() => {
+          expect(interval.state.intervalId).toBeTruthy();
 
-        expect(interval.state.intervalId).toBeUndefined();
+          // simulates triggering of visibilitychange event
+          interval.handleVisibilityChange({ target: { visibilityState: 'hidden' } });
 
-        // simulates triggering of visibilitychange event
-        interval.handleVisibilityChange({ target: { visibilityState: 'visible' } });
+          expect(interval.state.intervalId).toBeUndefined();
 
-        expect(interval.state.intervalId).toBeTruthy();
+          // simulates triggering of visibilitychange event
+          interval.handleVisibilityChange({ target: { visibilityState: 'visible' } });
 
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+          expect(interval.state.intervalId).toBeTruthy();
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
     it('should cancel on page unload', function (done) {
       const interval = this.smartInterval;
 
-      setTimeout(() => {
-        $(document).triggerHandler('beforeunload');
-        expect(interval.state.intervalId).toBeUndefined();
-        expect(interval.getCurrentInterval()).toBe(interval.cfg.startingInterval);
-        done();
-      }, DEFAULT_SHORT_TIMEOUT);
+      jasmine.clock().tick(DEFAULT_SHORT_TIMEOUT);
+
+      waitForPromises()
+        .then(() => {
+          $(document).triggerHandler('beforeunload');
+          expect(interval.state.intervalId).toBeUndefined();
+          expect(interval.getCurrentInterval()).toBe(interval.cfg.startingInterval);
+        })
+        .then(done)
+        .catch(done.fail);
     });
 
     it('should execute callback before first interval', function () {

From 718a23fd36de971b3bd127c6f9d5311f7029e15c Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Tue, 10 Jul 2018 13:00:21 -0700
Subject: [PATCH 047/113] Properly handle colons in URL passwords

Before b46d5b13ecb8e0c0793fa433bff7f49cb0612760, we relied on
`Addressable::URI` to parse the username/password in a URL, but this failed
when credentials contained special characters. However, this introduced a regression
where the parsing would incorrectly truncate the password if the password had a colon.

Closes #49080
---
 changelogs/unreleased/sh-handle-colons-in-url-passwords.yml | 5 +++++
 lib/gitlab/url_sanitizer.rb                                 | 2 +-
 spec/lib/gitlab/url_sanitizer_spec.rb                       | 1 +
 3 files changed, 7 insertions(+), 1 deletion(-)
 create mode 100644 changelogs/unreleased/sh-handle-colons-in-url-passwords.yml

diff --git a/changelogs/unreleased/sh-handle-colons-in-url-passwords.yml b/changelogs/unreleased/sh-handle-colons-in-url-passwords.yml
new file mode 100644
index 00000000000..7717d0aab37
--- /dev/null
+++ b/changelogs/unreleased/sh-handle-colons-in-url-passwords.yml
@@ -0,0 +1,5 @@
+---
+title: Properly handle colons in URL passwords
+merge_request:
+author:
+type: fixed
diff --git a/lib/gitlab/url_sanitizer.rb b/lib/gitlab/url_sanitizer.rb
index 59331c827af..de8b6ec69ce 100644
--- a/lib/gitlab/url_sanitizer.rb
+++ b/lib/gitlab/url_sanitizer.rb
@@ -58,7 +58,7 @@ module Gitlab
       if raw_credentials.present?
         url.sub!("#{raw_credentials}@", '')
 
-        user, password = raw_credentials.split(':')
+        user, _, password = raw_credentials.partition(':')
         @credentials ||= { user: user.presence, password: password.presence }
       end
 
diff --git a/spec/lib/gitlab/url_sanitizer_spec.rb b/spec/lib/gitlab/url_sanitizer_spec.rb
index fc8991fd31f..758a9bc5a2b 100644
--- a/spec/lib/gitlab/url_sanitizer_spec.rb
+++ b/spec/lib/gitlab/url_sanitizer_spec.rb
@@ -92,6 +92,7 @@ describe Gitlab::UrlSanitizer do
     context 'credentials in URL' do
       where(:url, :credentials) do
         'http://foo:bar@example.com' | { user: 'foo', password: 'bar' }
+        'http://foo:bar:baz@example.com' | { user: 'foo', password: 'bar:baz' }
         'http://:bar@example.com'    | { user: nil,   password: 'bar' }
         'http://foo:@example.com'    | { user: 'foo', password: nil }
         'http://foo@example.com'     | { user: 'foo', password: nil }

From 0c1eebe24c9717da10c6335b91273dbb73061ff8 Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Tue, 10 Jul 2018 15:08:54 -0700
Subject: [PATCH 048/113] Fix ArgumentError in GitGarbageCollectWorker Sidekiq
 job

When the Gitaly call failed, the exception handling failed
because `method` is expected to have a parameter.

Closes #49096
---
 app/workers/git_garbage_collect_worker.rb       | 4 ++--
 spec/workers/git_garbage_collect_worker_spec.rb | 6 ++++++
 2 files changed, 8 insertions(+), 2 deletions(-)

diff --git a/app/workers/git_garbage_collect_worker.rb b/app/workers/git_garbage_collect_worker.rb
index fd49bc18161..2d381c6fd6c 100644
--- a/app/workers/git_garbage_collect_worker.rb
+++ b/app/workers/git_garbage_collect_worker.rb
@@ -65,10 +65,10 @@ class GitGarbageCollectWorker
       client.repack_incremental
     end
   rescue GRPC::NotFound => e
-    Gitlab::GitLogger.error("#{method} failed:\nRepository not found")
+    Gitlab::GitLogger.error("#{__method__} failed:\nRepository not found")
     raise Gitlab::Git::Repository::NoRepository.new(e)
   rescue GRPC::BadStatus => e
-    Gitlab::GitLogger.error("#{method} failed:\n#{e}")
+    Gitlab::GitLogger.error("#{__method__} failed:\n#{e}")
     raise Gitlab::Git::CommandError.new(e)
   end
 
diff --git a/spec/workers/git_garbage_collect_worker_spec.rb b/spec/workers/git_garbage_collect_worker_spec.rb
index e39dec556fc..d5808e21271 100644
--- a/spec/workers/git_garbage_collect_worker_spec.rb
+++ b/spec/workers/git_garbage_collect_worker_spec.rb
@@ -27,6 +27,12 @@ describe GitGarbageCollectWorker do
 
         subject.perform(project.id, :gc, lease_key, lease_uuid)
       end
+
+      it 'handles gRPC errors' do
+        expect_any_instance_of(Gitlab::GitalyClient::RepositoryService).to receive(:garbage_collect).and_raise(GRPC::NotFound)
+
+        expect { subject.perform(project.id, :gc, lease_key, lease_uuid) }.to raise_exception(Gitlab::Git::Repository::NoRepository)
+      end
     end
 
     context 'with different lease than the active one' do

From acb33baa8796fbeb5414379b65187cddf4330e81 Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Tue, 10 Jul 2018 22:44:05 -0700
Subject: [PATCH 049/113] Bump gitlab-shell to 7.1.5

Fixes a NoMethodError in the pre-receive hook: https://gitlab.com/gitlab-org/gitlab-shell/merge_requests/206
---
 GITLAB_SHELL_VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/GITLAB_SHELL_VERSION b/GITLAB_SHELL_VERSION
index b7f8ee41e69..69adf3456f8 100644
--- a/GITLAB_SHELL_VERSION
+++ b/GITLAB_SHELL_VERSION
@@ -1 +1 @@
-7.1.4
+7.1.5

From 2be54f1bbfc9cfa1e07a88ea581508f251c09853 Mon Sep 17 00:00:00 2001
From: Mark Chao <mchao@gitlab.com>
Date: Wed, 11 Jul 2018 11:33:49 +0800
Subject: [PATCH 050/113] Fix doc for large table column rename

---
 doc/development/what_requires_downtime.md | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/doc/development/what_requires_downtime.md b/doc/development/what_requires_downtime.md
index 47396666879..b668c9de6a0 100644
--- a/doc/development/what_requires_downtime.md
+++ b/doc/development/what_requires_downtime.md
@@ -198,14 +198,14 @@ And that's it, we're done!
 ## Changing The Schema For Large Tables
 
 While `change_column_type_concurrently` and `rename_column_concurrently` can be
-used for changing the schema of a table without downtime it doesn't work very
+used for changing the schema of a table without downtime, it doesn't work very
 well for large tables. Because all of the work happens in sequence the migration
 can take a very long time to complete, preventing a deployment from proceeding.
 They can also produce a lot of pressure on the database due to it rapidly
 updating many rows in sequence.
 
 To reduce database pressure you should instead use
-`change_column_type_using_background_migration` or `rename_column_concurrently`
+`change_column_type_using_background_migration` or `rename_column_using_background_migration`
 when migrating a column in a large table (e.g. `issues`). These methods work
 similarly to the concurrent counterparts but uses background migration to spread
 the work / load over a longer time period, without slowing down deployments.

From c2c2890269b989c1f5b593c7bd4fc5b6ea79dd4b Mon Sep 17 00:00:00 2001
From: Jacob Vosmaer <jacob@gitlab.com>
Date: Wed, 11 Jul 2018 10:57:19 +0200
Subject: [PATCH 051/113] Use gitaly 0.112.0

---
 GITALY_SERVER_VERSION | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/GITALY_SERVER_VERSION b/GITALY_SERVER_VERSION
index 5af665a17e0..e23e3fd2982 100644
--- a/GITALY_SERVER_VERSION
+++ b/GITALY_SERVER_VERSION
@@ -1 +1 @@
-0.111.0
+0.112.0

From 068defa7505126fc80b5a1f23a5634148e09eb67 Mon Sep 17 00:00:00 2001
From: gfyoung <gfyoung17@gmail.com>
Date: Wed, 11 Jul 2018 09:13:28 +0000
Subject: [PATCH 052/113] Add missing maximum_timeout parameter

---
 .../unreleased/runners-max-timeout-param.yml  |  5 ++
 lib/api/runners.rb                            |  2 +-
 spec/requests/api/runners_spec.rb             | 63 +++++++++++++++++++
 3 files changed, 69 insertions(+), 1 deletion(-)
 create mode 100644 changelogs/unreleased/runners-max-timeout-param.yml

diff --git a/changelogs/unreleased/runners-max-timeout-param.yml b/changelogs/unreleased/runners-max-timeout-param.yml
new file mode 100644
index 00000000000..875f805d849
--- /dev/null
+++ b/changelogs/unreleased/runners-max-timeout-param.yml
@@ -0,0 +1,5 @@
+---
+title: Add missing maximum_timeout parameter
+merge_request: 20355 
+author: gfyoung
+type: fixed
diff --git a/lib/api/runners.rb b/lib/api/runners.rb
index 2071c5a62c1..51242341dba 100644
--- a/lib/api/runners.rb
+++ b/lib/api/runners.rb
@@ -58,7 +58,7 @@ module API
         optional :access_level, type: String, values: Ci::Runner.access_levels.keys,
                                 desc: 'The access_level of the runner'
         optional :maximum_timeout, type: Integer, desc: 'Maximum timeout set when this Runner will handle the job'
-        at_least_one_of :description, :active, :tag_list, :run_untagged, :locked, :access_level
+        at_least_one_of :description, :active, :tag_list, :run_untagged, :locked, :access_level, :maximum_timeout
       end
       put ':id' do
         runner = get_runner(params.delete(:id))
diff --git a/spec/requests/api/runners_spec.rb b/spec/requests/api/runners_spec.rb
index b5e4b6011ea..eb57c734e92 100644
--- a/spec/requests/api/runners_spec.rb
+++ b/spec/requests/api/runners_spec.rb
@@ -211,6 +211,69 @@ describe API::Runners do
 
   describe 'PUT /runners/:id' do
     context 'admin user' do
+      # see https://gitlab.com/gitlab-org/gitlab-ce/issues/48625
+      context 'single parameter update' do
+        it 'runner description' do
+          description = shared_runner.description
+          update_runner(shared_runner.id, admin, description: "#{description}_updated")
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.description).to eq("#{description}_updated")
+        end
+
+        it 'runner active state' do
+          active = shared_runner.active
+          update_runner(shared_runner.id, admin, active: !active)
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.active).to eq(!active)
+        end
+
+        it 'runner tag list' do
+          update_runner(shared_runner.id, admin, tag_list: ['ruby2.1', 'pgsql', 'mysql'])
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.tag_list).to include('ruby2.1', 'pgsql', 'mysql')
+        end
+
+        it 'runner untagged flag' do
+          # Ensure tag list is non-empty before setting untagged to false.
+          update_runner(shared_runner.id, admin, tag_list: ['ruby2.1', 'pgsql', 'mysql'])
+          update_runner(shared_runner.id, admin, run_untagged: 'false')
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.run_untagged?).to be(false)
+        end
+
+        it 'runner unlocked flag' do
+          update_runner(shared_runner.id, admin, locked: 'true')
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.locked?).to be(true)
+        end
+
+        it 'runner access level' do
+          update_runner(shared_runner.id, admin, access_level: 'ref_protected')
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.ref_protected?).to be_truthy
+        end
+
+        it 'runner maximum timeout' do
+          update_runner(shared_runner.id, admin, maximum_timeout: 1234)
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(shared_runner.reload.maximum_timeout).to eq(1234)
+        end
+
+        it 'fails with no parameters' do
+          put api("/runners/#{shared_runner.id}", admin)
+
+          shared_runner.reload
+          expect(response).to have_gitlab_http_status(400)
+        end
+      end
+
       context 'when runner is shared' do
         it 'updates runner' do
           description = shared_runner.description

From 88e640374a82c3058b2a8cb54407fdc1784484d9 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Mon, 2 Jul 2018 12:16:24 +0300
Subject: [PATCH 053/113] Add manifest import feature

It allows user to automatically import multiple repositories
with nested structure by uploading a manifest xml file.

AOSP project was used as an example during development of this feature.

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/import/manifest_controller.rb |  71 ++
 app/services/groups/nested_create_service.rb  |  12 +-
 app/views/import/manifest/_form.html.haml     |  22 +
 app/views/import/manifest/new.html.haml       |  13 +
 app/views/import/manifest/status.html.haml    |  57 ++
 .../projects/_import_project_pane.html.haml   |  18 +-
 app/views/projects/new.html.haml              |  13 +-
 config/routes/import.rb                       |   6 +
 lib/gitlab/import_sources.rb                  |   3 +-
 lib/gitlab/manifest_import/importer.rb        |  46 ++
 lib/gitlab/manifest_import/manifest.rb        |  77 ++
 spec/fixtures/aosp_manifest.xml               | 685 ++++++++++++++++++
 .../gitlab/manifest_import/importer_spec.rb   |  33 +
 .../gitlab/manifest_import/manifest_spec.rb   |  46 ++
 14 files changed, 1084 insertions(+), 18 deletions(-)
 create mode 100644 app/controllers/import/manifest_controller.rb
 create mode 100644 app/views/import/manifest/_form.html.haml
 create mode 100644 app/views/import/manifest/new.html.haml
 create mode 100644 app/views/import/manifest/status.html.haml
 create mode 100644 lib/gitlab/manifest_import/importer.rb
 create mode 100644 lib/gitlab/manifest_import/manifest.rb
 create mode 100644 spec/fixtures/aosp_manifest.xml
 create mode 100644 spec/lib/gitlab/manifest_import/importer_spec.rb
 create mode 100644 spec/lib/gitlab/manifest_import/manifest_spec.rb

diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
new file mode 100644
index 00000000000..2daf57986f3
--- /dev/null
+++ b/app/controllers/import/manifest_controller.rb
@@ -0,0 +1,71 @@
+class Import::ManifestController < Import::BaseController
+  before_action :ensure_session, only: [:create, :status, :jobs]
+  before_action :group, only: [:status, :create]
+
+  def new
+  end
+
+  def status
+    @repos = session[:projects]
+
+    @already_added_projects = find_already_added_projects('manifest').where(namespace_id: group)
+    already_added_projects_names = @already_added_projects.pluck(:import_url)
+
+    @repos = @repos.to_a.reject { |repo| already_added_projects_names.include? repo[:url] }
+  end
+
+  def upload
+    group = Group.find(params[:group_id])
+
+    unless can?(current_user, :create_projects, group)
+      @errors = ["You don't have enough permissions to create projects in the selected group"]
+
+      render :new and return
+    end
+
+    manifest = Gitlab::ManifestImport::Manifest.new(params[:manifest].tempfile)
+
+    if manifest.valid?
+      session[:projects] = manifest.projects
+      session[:group_id] = group.id
+
+      flash[:notice] = "Import successfully started."
+
+      redirect_to status_import_manifest_path
+    else
+      @errors = manifest.errors
+
+      render :new
+    end
+  end
+
+  def jobs
+    render json: find_jobs('manifest')
+  end
+
+  def create
+    repository = session[:projects].find do |project|
+      project[:id] == params[:repo_id].to_i
+    end
+
+    project = Gitlab::ManifestImport::Importer.new(repository, group, current_user).execute
+
+    if project.persisted?
+      render json: ProjectSerializer.new.represent(project)
+    else
+      render json: { errors: project_save_error(project) }, status: :unprocessable_entity
+    end
+  end
+
+  private
+
+  def ensure_session
+    if session[:projects].blank? || session[:group_id].blank?
+      redirect_to(new_import_manifest_path)
+    end
+  end
+
+  def group
+    @group ||= Group.find(session[:group_id])
+  end
+end
diff --git a/app/services/groups/nested_create_service.rb b/app/services/groups/nested_create_service.rb
index 5c337a9faa5..c2dfbac5414 100644
--- a/app/services/groups/nested_create_service.rb
+++ b/app/services/groups/nested_create_service.rb
@@ -1,11 +1,12 @@
 module Groups
   class NestedCreateService < Groups::BaseService
-    attr_reader :group_path
+    attr_reader :group_path, :visibility_level
 
     def initialize(user, params)
       @current_user, @params = user, params.dup
-
       @group_path = @params.delete(:group_path)
+      @visibility_level = @params.delete(:visibility_level) ||
+        Gitlab::CurrentSettings.current_application_settings.default_group_visibility
     end
 
     def execute
@@ -36,11 +37,12 @@ module Groups
         new_params = params.reverse_merge(
           path: subgroup_name,
           name: subgroup_name,
-          parent: last_group
+          parent: last_group,
+          visibility_level: visibility_level
         )
-        new_params[:visibility_level] ||= Gitlab::CurrentSettings.current_application_settings.default_group_visibility
 
-        last_group = namespace_or_group(partial_path) || Groups::CreateService.new(current_user, new_params).execute
+        last_group = namespace_or_group(partial_path) ||
+          Groups::CreateService.new(current_user, new_params).execute
       end
 
       last_group
diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
new file mode 100644
index 00000000000..57980cfd58a
--- /dev/null
+++ b/app/views/import/manifest/_form.html.haml
@@ -0,0 +1,22 @@
+= form_tag upload_import_manifest_path, multipart: true do
+  .form-group
+    = label_tag :manifest, class: 'label-light' do
+      Manifest
+    = file_field_tag :manifest, class: 'form-control-file', required: true
+    .form-text.text-muted
+      Import multiple repositories by uploading a manifest file.
+
+  .form-group
+    = label_tag :group_id, nil, class: 'label-light' do
+      Namespace
+    .input-group
+      .input-group-prepend.has-tooltip{ title: root_url }
+        .input-group-text
+          = root_url
+      = select_tag :group_id, namespaces_options(nil, display_path: true), { class: 'select2 js-select-namespace' }
+    .form-text.text-muted
+      Choose the top-level namespace for your repository imports.
+
+  .append-bottom-10
+    = submit_tag 'Import projects', class: 'btn btn-success'
+    = link_to 'Cancel', new_project_path, class: 'btn btn-cancel'
diff --git a/app/views/import/manifest/new.html.haml b/app/views/import/manifest/new.html.haml
new file mode 100644
index 00000000000..1f27dec1b2b
--- /dev/null
+++ b/app/views/import/manifest/new.html.haml
@@ -0,0 +1,13 @@
+- page_title "Manifest Import"
+- header_title "Projects", root_path
+
+%h3.page-title
+  = icon('git')
+  Import multiple repositories
+
+- if @errors.present?
+  .alert.alert-danger
+    - @errors.each do |error|
+      = error
+
+= render 'form'
diff --git a/app/views/import/manifest/status.html.haml b/app/views/import/manifest/status.html.haml
new file mode 100644
index 00000000000..3355bed056b
--- /dev/null
+++ b/app/views/import/manifest/status.html.haml
@@ -0,0 +1,57 @@
+- page_title "Manifest import"
+- header_title "Projects", root_path
+- provider = 'manifest'
+
+%h3.page-title
+  = icon('git')
+  = _('Import multiple repositories')
+
+%p
+  = button_tag class: "btn btn-import btn-success js-import-all" do
+    = import_all_githubish_repositories_button_label
+    = icon("spinner spin", class: "loading-icon")
+
+.table-responsive
+  %table.table.import-jobs
+    %colgroup.import-jobs-from-col
+    %colgroup.import-jobs-to-col
+    %colgroup.import-jobs-status-col
+    %thead
+      %tr
+        %th= _('Repository URL')
+        %th= _('To GitLab')
+        %th= _('Status')
+    %tbody
+      - @already_added_projects.each do |project|
+        %tr{ id: "project_#{project.id}", class: "#{project_status_css_class(project.import_status)}" }
+          %td
+            = link_to_project project
+          %td
+            = project.import_url
+          %td.job-status
+            - if project.import_status == 'finished'
+              %span
+                = icon('check')
+                = _('Done')
+            - elsif project.import_status == 'started'
+              = icon("spinner spin")
+              = _('Started')
+            - elsif project.import_status == 'failed'
+              = _('Failed')
+            - else
+              = project.human_import_status_name
+
+      - @repos.each do |repo|
+        %tr{ id: "repo_#{repo[:id]}" }
+          %td
+            = repo[:url]
+          %td.import-target
+            = import_project_target(@group.path, repo[:path])
+          %td.import-actions.job-status
+            = button_tag class: "btn btn-import js-add-to-import" do
+              Import
+              = icon("spinner spin", class: "loading-icon")
+
+.js-importer-status{ data: { jobs_import_path: "#{url_for([:jobs, :import, provider])}",
+                             import_path: "#{url_for([:import, provider])}",
+                             ci_cd_only: "#{has_ci_cd_only_params?}" } }
diff --git a/app/views/projects/_import_project_pane.html.haml b/app/views/projects/_import_project_pane.html.haml
index 8f535b9d789..7cb5d51bec1 100644
--- a/app/views/projects/_import_project_pane.html.haml
+++ b/app/views/projects/_import_project_pane.html.haml
@@ -1,9 +1,8 @@
 - active_tab = local_assigns.fetch(:active_tab, 'blank')
-- f = local_assigns.fetch(:f)
 
 .project-import
   .form-group.import-btn-container.clearfix
-    = f.label :visibility_level, class: 'label-light' do #the label here seems wrong
+    %h5
       Import project from
     .import-buttons
       - if gitlab_project_import_enabled?
@@ -39,11 +38,20 @@
           = link_to new_import_gitea_path, class: 'btn import_gitea' do
             = custom_icon('go_logo')
             Gitea
-      %div
-        - if git_import_enabled?
+      - if git_import_enabled?
+        %div
           %button.btn.js-toggle-button.js-import-git-toggle-button{ type: "button", data: { toggle_open_class: 'active' } }
             = icon('git', text: 'Repo by URL')
+        %div
+          %button.btn{ type: "button" }
+            = icon('git', text: 'Manifest file')
+
   .js-toggle-content.toggle-import-form{ class: ('hide' if active_tab != 'import') }
-    %hr
+    = form_for @project, html: { class: 'new_project' } do |f|
+      %hr
       = render "shared/import_form", f: f
       = render 'new_project_fields', f: f, project_name_id: "import-url-name"
+
+  .toggle-manifest-form
+    %hr
+    = render 'import/manifest/form'
diff --git a/app/views/projects/new.html.haml b/app/views/projects/new.html.haml
index 5bb1bfb7059..6c363345e38 100644
--- a/app/views/projects/new.html.haml
+++ b/app/views/projects/new.html.haml
@@ -55,13 +55,12 @@
                   = render 'project_templates', f: f
 
         .tab-pane.import-project-pane.js-toggle-container{ id: 'import-project-pane', class: active_when(active_tab == 'import'), role: 'tabpanel' }
-          = form_for @project, html: { class: 'new_project' } do |f|
-            - if import_sources_enabled?
-              = render 'import_project_pane', f: f, active_tab: active_tab
-            - else
-              .nothing-here-block
-                %h4 No import options available
-                %p Contact an administrator to enable options for importing your project.
+          - if import_sources_enabled?
+            = render 'import_project_pane', active_tab: active_tab
+          - else
+            .nothing-here-block
+              %h4 No import options available
+              %p Contact an administrator to enable options for importing your project.
 
 .save-project-loader.d-none
   .center
diff --git a/config/routes/import.rb b/config/routes/import.rb
index c378253bf15..efd0260ff60 100644
--- a/config/routes/import.rb
+++ b/config/routes/import.rb
@@ -45,4 +45,10 @@ namespace :import do
   resource :gitlab_project, only: [:create, :new] do
     post :create
   end
+
+  resource :manifest, only: [:create, :new], controller: :manifest do
+    get :status
+    get :jobs
+    post :upload
+  end
 end
diff --git a/lib/gitlab/import_sources.rb b/lib/gitlab/import_sources.rb
index 60d5fa4d29a..a13ee371e99 100644
--- a/lib/gitlab/import_sources.rb
+++ b/lib/gitlab/import_sources.rb
@@ -16,7 +16,8 @@ module Gitlab
       ImportSource.new('fogbugz',        'FogBugz',       Gitlab::FogbugzImport::Importer),
       ImportSource.new('git',            'Repo by URL',   nil),
       ImportSource.new('gitlab_project', 'GitLab export', Gitlab::ImportExport::Importer),
-      ImportSource.new('gitea',          'Gitea',         Gitlab::LegacyGithubImport::Importer)
+      ImportSource.new('gitea',          'Gitea',         Gitlab::LegacyGithubImport::Importer),
+      ImportSource.new('manifest',       'Manifest',      Gitlab::ManifestImport::Importer)
     ].freeze
 
     class << self
diff --git a/lib/gitlab/manifest_import/importer.rb b/lib/gitlab/manifest_import/importer.rb
new file mode 100644
index 00000000000..35b3bb1e0ca
--- /dev/null
+++ b/lib/gitlab/manifest_import/importer.rb
@@ -0,0 +1,46 @@
+module Gitlab
+  module ManifestImport
+    class Importer
+      attr_reader :repository, :destination, :user
+
+      def initialize(repository, destination, user)
+        @repository = repository
+        @destination = destination
+        @user = user
+      end
+
+      def execute
+        import_project
+      end
+
+      private
+
+      def import_project
+        group_full_path, _, project_path = repository[:path].rpartition('/')
+        group_full_path = File.join(destination.path, group_full_path) if destination
+        group = Group.find_by_full_path(group_full_path) ||
+          create_group_with_parents(group_full_path)
+
+        params = {
+          import_url: repository[:url],
+          import_type: 'manifest',
+          namespace_id: group.id,
+          path: project_path,
+          name: project_path,
+          visibility_level: destination.visibility_level
+        }
+
+        Projects::CreateService.new(user, params).execute
+      end
+
+      def create_group_with_parents(full_path)
+        params = {
+          group_path: full_path,
+          visibility_level: destination.visibility_level
+        }
+
+        Groups::NestedCreateService.new(user, params).execute
+      end
+    end
+  end
+end
diff --git a/lib/gitlab/manifest_import/manifest.rb b/lib/gitlab/manifest_import/manifest.rb
new file mode 100644
index 00000000000..87959d4ae7f
--- /dev/null
+++ b/lib/gitlab/manifest_import/manifest.rb
@@ -0,0 +1,77 @@
+# Class to parse manifest file to import multiple projects at once
+#
+# <manifest>
+#   <remote review="https://android-review.googlesource.com/" />
+#   <project path="platform-common" name="platform" />
+#   <project path="platform/art" name="platform/art" />
+#   <project path="platform/device" name="platform/device" />
+# </manifest>
+#
+# 1. Project path must be uniq and can't be part of other project path.
+#    For example, you can't have projects with 'foo' and 'foo/bar' paths.
+# 2. Remote must be present with review attribute so GitLab knows
+#    where to fetch source code
+# 3. For each nested keyword in path a corresponding group will be created.
+#    For example if a path is 'foo/bar' then GitLab will create a group 'foo'
+#    and a project 'bar' in it.
+module Gitlab
+  module ManifestImport
+    class Manifest
+      attr_reader :parsed_xml, :errors
+
+      def initialize(file)
+        @parsed_xml = File.open(file) { |f| Nokogiri::XML(f) }
+        @errors = []
+      end
+
+      def projects
+        raw_projects.each_with_index.map do |project, i|
+          {
+            id: i,
+            name: project['name'],
+            path: project['path'],
+            url: repository_url(project['name'])
+          }
+        end
+      end
+
+      def valid?
+        unless validate_remote
+          @errors << 'Make sure a <remote> tag is present and is valid.'
+        end
+
+        unless validate_projects
+          @errors << 'Make sure every <project> tag has name and path attributes.'
+        end
+
+        @errors.empty?
+      end
+
+      private
+
+      def validate_remote
+        remote.present? && URI.parse(remote).host
+      rescue URI::Error
+        false
+      end
+
+      def validate_projects
+        raw_projects.all? do |project|
+          project['name'] && project['path']
+        end
+      end
+
+      def repository_url(name)
+        URI.join(remote, name).to_s
+      end
+
+      def remote
+        @remote ||= parsed_xml.css('manifest > remote').first['review']
+      end
+
+      def raw_projects
+        @raw_projects ||= parsed_xml.css('manifest > project')
+      end
+    end
+  end
+end
diff --git a/spec/fixtures/aosp_manifest.xml b/spec/fixtures/aosp_manifest.xml
new file mode 100644
index 00000000000..cfd0094b735
--- /dev/null
+++ b/spec/fixtures/aosp_manifest.xml
@@ -0,0 +1,685 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<manifest>
+
+  <remote  name="aosp"
+           fetch=".."
+           review="https://android-review.googlesource.com/" />
+  <default revision="master"
+           remote="aosp"
+           sync-j="4" />
+
+  <project path="build/make" name="platform/build" groups="pdk" >
+    <copyfile src="core/root.mk" dest="Makefile" />
+    <linkfile src="CleanSpec.mk" dest="build/CleanSpec.mk" />
+    <linkfile src="buildspec.mk.default" dest="build/buildspec.mk.default" />
+    <linkfile src="core" dest="build/core" />
+    <linkfile src="envsetup.sh" dest="build/envsetup.sh" />
+    <linkfile src="target" dest="build/target" />
+    <linkfile src="tools" dest="build/tools" />
+  </project>
+  <project path="build/blueprint" name="platform/build/blueprint" groups="pdk,tradefed" />
+  <project path="build/kati" name="platform/build/kati" groups="pdk,tradefed" />
+  <project path="build/soong" name="platform/build/soong" groups="pdk,tradefed" >
+    <linkfile src="root.bp" dest="Android.bp" />
+    <linkfile src="bootstrap.bash" dest="bootstrap.bash" />
+  </project>
+  <project path="art" name="platform/art" groups="pdk" />
+  <project path="bionic" name="platform/bionic" groups="pdk" />
+  <project path="bootable/recovery" name="platform/bootable/recovery" groups="pdk" />
+  <project path="compatibility/cdd" name="platform/compatibility/cdd" groups="pdk" />
+  <project path="cts" name="platform/cts" groups="cts,pdk-cw-fs,pdk-fs" />
+  <project path="dalvik" name="platform/dalvik" groups="pdk-cw-fs,pdk-fs" />
+  <project path="developers/build" name="platform/developers/build" groups="developers" />
+  <project path="developers/demos" name="platform/developers/demos" groups="developers" />
+  <project path="developers/samples/android" name="platform/developers/samples/android" groups="developers" />
+  <project path="development" name="platform/development" groups="developers,pdk-cw-fs,pdk-fs" />
+  <project path="device/asus/fugu" name="device/asus/fugu" groups="device,fugu,broadcom_pdk" />
+  <project path="device/asus/fugu-kernel" name="device/asus/fugu-kernel" groups="device,fugu,broadcom_pdk" clone-depth="1" />
+  <project path="device/common" name="device/common" groups="pdk-cw-fs,pdk" />
+  <project path="device/generic/arm64" name="device/generic/arm64" groups="pdk" />
+  <project path="device/generic/armv7-a-neon" name="device/generic/armv7-a-neon" groups="pdk" />
+  <project path="device/generic/car" name="device/generic/car" groups="pdk" />
+  <project path="device/generic/common" name="device/generic/common" groups="pdk" />
+  <project path="device/generic/goldfish" name="device/generic/goldfish" groups="pdk" />
+  <project path="device/generic/goldfish-opengl" name="device/generic/goldfish-opengl" groups="pdk" />
+  <project path="device/generic/mini-emulator-arm64" name="device/generic/mini-emulator-arm64" groups="pdk" />
+  <project path="device/generic/mini-emulator-armv7-a-neon" name="device/generic/mini-emulator-armv7-a-neon" groups="pdk" />
+  <project path="device/generic/mini-emulator-x86" name="device/generic/mini-emulator-x86" groups="pdk" />
+  <project path="device/generic/mini-emulator-x86_64" name="device/generic/mini-emulator-x86_64" groups="pdk" />
+  <project path="device/generic/qemu" name="device/generic/qemu" groups="pdk" />
+  <project path="device/generic/uml" name="device/generic/uml" groups="device,pdk" />
+  <project path="device/generic/x86" name="device/generic/x86" groups="pdk" />
+  <project path="device/generic/x86_64" name="device/generic/x86_64" groups="pdk" />
+  <project path="device/google/accessory/arduino" name="device/google/accessory/arduino" groups="device,pdk" />
+  <project path="device/google/accessory/demokit" name="device/google/accessory/demokit" groups="device,pdk" />
+  <project path="device/google/atv" name="device/google/atv" groups="device,broadcom_pdk,generic_fs,pdk" />
+  <project path="device/google/contexthub" name="device/google/contexthub" groups="device,marlin,pdk" />
+  <project path="device/google/cuttlefish" name="device/google/cuttlefish" groups="device" />
+  <project path="device/google/cuttlefish_common" name="device/google/cuttlefish_common" groups="device" />
+  <project path="device/google/cuttlefish_kernel" name="device/google/cuttlefish_kernel" groups="device" clone-depth="1" />
+  <project path="device/google/dragon" name="device/google/dragon" groups="device,dragon" />
+  <project path="device/google/dragon-kernel" name="device/google/dragon-kernel" groups="device,dragon" clone-depth="1" />
+  <project path="device/google/marlin" name="device/google/marlin" groups="device,marlin,pdk" />
+  <project path="device/google/marlin-kernel" name="device/google/marlin-kernel" groups="device,marlin,pdk" clone-depth="1" />
+  <project path="device/google/muskie" name="device/google/muskie" groups="device,muskie" />
+  <project path="device/google/taimen" name="device/google/taimen" groups="device,taimen" />
+  <project path="device/google/vrservices" name="device/google/vrservices" groups="pdk" clone-depth="1" />
+  <project path="device/google/wahoo" name="device/google/wahoo" groups="device,wahoo" />
+  <project path="device/google/wahoo-kernel" name="device/google/wahoo-kernel" groups="device,wahoo" clone-depth="1" />
+  <project path="device/huawei/angler" name="device/huawei/angler" groups="device,angler,broadcom_pdk" />
+  <project path="device/huawei/angler-kernel" name="device/huawei/angler-kernel" groups="device,angler,broadcom_pdk" clone-depth="1" />
+  <project path="device/lge/bullhead" name="device/lge/bullhead" groups="device,bullhead" />
+  <project path="device/lge/bullhead-kernel" name="device/lge/bullhead-kernel" groups="device,bullhead" clone-depth="1" />
+  <project path="device/linaro/bootloader/arm-trusted-firmware" name="device/linaro/bootloader/arm-trusted-firmware" />
+  <project path="device/linaro/bootloader/edk2" name="device/linaro/bootloader/edk2" />
+  <project path="device/linaro/bootloader/OpenPlatformPkg" name="device/linaro/bootloader/OpenPlatformPkg" />
+  <project path="device/linaro/hikey" name="device/linaro/hikey" groups="device,hikey,pdk" />
+  <project path="device/linaro/hikey-kernel" name="device/linaro/hikey-kernel" groups="device,hikey,pdk" clone-depth="1" />
+  <project path="device/sample" name="device/sample" groups="pdk" />
+  <project path="external/aac" name="platform/external/aac" groups="pdk" />
+  <project path="external/abi-compliance-checker" name="platform/external/abi-compliance-checker" groups="pdk" />
+  <project path="external/abi-dumper" name="platform/external/abi-dumper" groups="pdk" />
+  <project path="external/adt-infra" name="platform/external/adt-infra" groups="adt-infra,notdefault,pdk-fs" />
+  <project path="external/android-clat" name="platform/external/android-clat" groups="pdk" />
+  <project path="external/androidplot" name="platform/external/androidplot" groups="pdk" />
+  <project path="external/annotation-tools" name="platform/external/annotation-tools" groups="pdk" />
+  <project path="external/ant-glob" name="platform/external/ant-glob" groups="pdk" />
+  <project path="external/antlr" name="platform/external/antlr" groups="pdk" />
+  <project path="external/apache-commons-math" name="platform/external/apache-commons-math" groups="pdk" />
+  <project path="external/apache-harmony" name="platform/external/apache-harmony" groups="pdk" />
+  <project path="external/apache-http" name="platform/external/apache-http" groups="pdk" />
+  <project path="external/apache-xml" name="platform/external/apache-xml" groups="pdk" />
+  <project path="external/archive-patcher" name="platform/external/archive-patcher" groups="pdk" />
+  <project path="external/arm-neon-tests" name="platform/external/arm-neon-tests" groups="vendor" />
+  <project path="external/autotest" name="platform/external/autotest" groups="pdk-fs" />
+  <project path="external/avb" name="platform/external/avb" groups="pdk" />
+  <project path="external/bart" name="platform/external/bart" groups="pdk" />
+  <project path="external/blktrace" name="platform/external/blktrace" groups="pdk" />
+  <project path="external/boringssl" name="platform/external/boringssl" groups="pdk" />
+  <project path="external/bouncycastle" name="platform/external/bouncycastle" groups="pdk" />
+  <project path="external/brotli" name="platform/external/brotli" groups="pdk" />
+  <project path="external/bsdiff" name="platform/external/bsdiff" groups="pdk" />
+  <project path="external/bzip2" name="platform/external/bzip2" groups="pdk" />
+  <project path="external/caliper" name="platform/external/caliper" groups="pdk" />
+  <project path="external/cblas" name="platform/external/cblas" groups="pdk" />
+  <project path="external/chromium-libpac" name="platform/external/chromium-libpac" groups="pdk" />
+  <project path="external/chromium-trace" name="platform/external/chromium-trace" groups="pdk" />
+  <project path="external/chromium-webview" name="platform/external/chromium-webview" groups="pdk" clone-depth="1" />
+  <project path="external/clang" name="platform/external/clang" groups="pdk" />
+  <project path="external/cldr" name="platform/external/cldr" groups="pdk" />
+  <project path="external/cmockery" name="platform/external/cmockery" groups="pdk" />
+  <project path="external/cn-cbor" name="platform/external/cn-cbor" groups="pdk" />
+  <project path="external/compiler-rt" name="platform/external/compiler-rt" groups="pdk" />
+  <project path="external/conscrypt" name="platform/external/conscrypt" groups="pdk" />
+  <project path="external/crcalc" name="platform/external/crcalc" groups="pdk" />
+  <project path="external/cros/system_api" name="platform/external/cros/system_api" groups="pdk" />
+  <project path="external/curl" name="platform/external/curl" groups="pdk" />
+  <project path="external/dagger2" name="platform/external/dagger2" groups="pdk" />
+  <project path="external/deqp" name="platform/external/deqp" groups="pdk-fs" />
+  <project path="external/desugar" name="platform/external/desugar" groups="pdk" />
+  <project path="external/devlib" name="platform/external/devlib" groups="pdk" />
+  <project path="external/dexmaker" name="platform/external/dexmaker" groups="pdk" />
+  <project path="external/dhcpcd-6.8.2" name="platform/external/dhcpcd-6.8.2" groups="pdk" />
+  <project path="external/dlmalloc" name="platform/external/dlmalloc" groups="pdk" />
+  <project path="external/dng_sdk" name="platform/external/dng_sdk" groups="pdk" />
+  <project path="external/dnsmasq" name="platform/external/dnsmasq" groups="pdk" />
+  <project path="external/doclava" name="platform/external/doclava" groups="pdk" />
+  <project path="external/dokka" name="platform/external/dokka" groups="pdk" />
+  <project path="external/drm_hwcomposer" name="platform/external/drm_hwcomposer" groups="drm_hwcomposer,pdk-fs" />
+  <project path="external/droiddriver" name="platform/external/droiddriver" groups="pdk" />
+  <project path="external/drrickorang" name="platform/external/drrickorang" groups="pdk" />
+  <project path="external/dtc" name="platform/external/dtc" groups="pdk"/>
+  <project path="external/e2fsprogs" name="platform/external/e2fsprogs" groups="pdk" />
+  <project path="external/easymock" name="platform/external/easymock" groups="pdk" />
+  <project path="external/eigen" name="platform/external/eigen" groups="pdk" />
+  <project path="external/elfutils" name="platform/external/elfutils" groups="pdk" />
+  <project path="external/emma" name="platform/external/emma" groups="pdk" />
+  <project path="external/error_prone" name="platform/external/error_prone" groups="pdk" />
+  <project path="external/esd" name="platform/external/esd" groups="pdk" />
+  <project path="external/expat" name="platform/external/expat" groups="pdk" />
+  <project path="external/eyes-free" name="platform/external/eyes-free" groups="pdk" />
+  <project path="external/f2fs-tools" name="platform/external/f2fs-tools" groups="pdk" />
+  <project path="external/fdlibm" name="platform/external/fdlibm" groups="pdk" />
+  <project path="external/fec" name="platform/external/fec" groups="pdk" />
+  <project path="external/flac" name="platform/external/flac" groups="pdk" />
+  <project path="external/flatbuffers" name="platform/external/flatbuffers" groups="pdk" />
+  <project path="external/fonttools" name="platform/external/fonttools" groups="pdk" />
+  <project path="external/freetype" name="platform/external/freetype" groups="pdk" />
+  <project path="external/fsck_msdos" name="platform/external/fsck_msdos" groups="pdk" />
+  <project path="external/gemmlowp" name="platform/external/gemmlowp" groups="pdk" />
+  <project path="external/gflags" name="platform/external/gflags" groups="pdk" />
+  <project path="external/giflib" name="platform/external/giflib" groups="pdk,qcom_msm8x26" />
+  <project path="external/glide" name="platform/external/glide" groups="pdk" />
+  <project path="external/golang-protobuf" name="platform/external/golang-protobuf" groups="pdk" />
+  <project path="external/google-benchmark" name="platform/external/google-benchmark" groups="pdk" />
+  <project path="external/google-breakpad" name="platform/external/google-breakpad" groups="pdk-fs" />
+  <project path="external/google-fonts/carrois-gothic-sc" name="platform/external/google-fonts/carrois-gothic-sc" groups="pdk" />
+  <project path="external/google-fonts/coming-soon" name="platform/external/google-fonts/coming-soon" groups="pdk" />
+  <project path="external/google-fonts/cutive-mono" name="platform/external/google-fonts/cutive-mono" groups="pdk" />
+  <project path="external/google-fonts/dancing-script" name="platform/external/google-fonts/dancing-script" groups="pdk" />
+  <project path="external/google-styleguide" name="platform/external/google-styleguide" groups="pdk" />
+  <project path="external/google-tv-pairing-protocol" name="platform/external/google-tv-pairing-protocol" groups="pdk" />
+  <project path="external/googletest" name="platform/external/googletest" groups="pdk" />
+  <project path="external/gptfdisk" name="platform/external/gptfdisk" groups="pdk" />
+  <project path="external/guava" name="platform/external/guava" groups="pdk" />
+  <project path="external/guice" name="platform/external/guice" groups="pdk" />
+  <project path="external/hamcrest" name="platform/external/hamcrest" groups="pdk" />
+  <project path="external/harfbuzz_ng" name="platform/external/harfbuzz_ng" groups="pdk,qcom_msm8x26" />
+  <project path="external/hyphenation-patterns" name="platform/external/hyphenation-patterns" groups="pdk" />
+  <project path="external/icu" name="platform/external/icu" groups="pdk" />
+  <project path="external/ImageMagick" name="platform/external/ImageMagick" groups="pdk" />
+  <project path="external/ims" name="platform/external/ims" groups="pdk" />
+  <project path="external/iproute2" name="platform/external/iproute2" groups="pdk" />
+  <project path="external/ipsec-tools" name="platform/external/ipsec-tools" groups="pdk" />
+  <project path="external/iptables" name="platform/external/iptables" groups="pdk" />
+  <project path="external/iputils" name="platform/external/iputils" groups="pdk" />
+  <project path="external/iw" name="platform/external/iw" groups="pdk" />
+  <project path="external/jacoco" name="platform/external/jacoco" groups="pdk" />
+  <project path="external/jarjar" name="platform/external/jarjar" groups="pdk" />
+  <project path="external/javaparser" name="platform/external/javaparser" groups="pdk" />
+  <project path="external/javasqlite" name="platform/external/javasqlite" groups="pdk" />
+  <project path="external/javassist" name="platform/external/javassist" groups="pdk" />
+  <project path="external/jcommander" name="platform/external/jcommander" groups="pdk" />
+  <project path="external/jdiff" name="platform/external/jdiff" groups="pdk" />
+  <project path="external/jemalloc" name="platform/external/jemalloc" groups="pdk" />
+  <project path="external/jline" name="platform/external/jline" groups="pdk,tradefed,pdk-fs" />
+  <project path="external/jmdns" name="platform/external/jmdns" groups="pdk" />
+  <project path="external/jsilver" name="platform/external/jsilver" groups="pdk" />
+  <project path="external/jsmn" name="platform/external/jsmn" groups="pdk" />
+  <project path="external/jsoncpp" name="platform/external/jsoncpp" groups="pdk" />
+  <project path="external/jsr305" name="platform/external/jsr305" groups="pdk" />
+  <project path="external/jsr330" name="platform/external/jsr330" groups="pdk" />
+  <project path="external/junit" name="platform/external/junit" groups="pdk" />
+  <project path="external/junit-params" name="platform/external/junit-params" groups="pdk" />
+  <project path="external/kernel-headers" name="platform/external/kernel-headers" groups="pdk" />
+  <project path="external/kmod" name="platform/external/kmod" groups="pdk" />
+  <project path="external/kotlinc" name="platform/external/kotlinc" groups="pdk" />
+  <project path="external/ksoap2" name="platform/external/ksoap2" groups="pdk" />
+  <project path="external/libavc" name="platform/external/libavc" groups="pdk" />
+  <project path="external/libbackup" name="platform/external/libbackup" groups="pdk" />
+  <project path="external/libbrillo" name="platform/external/libbrillo" groups="pdk" />
+  <project path="external/libcap" name="platform/external/libcap" groups="pdk" />
+  <project path="external/libcap-ng" name="platform/external/libcap-ng" groups="pdk" />
+  <project path="external/libchrome" name="platform/external/libchrome" groups="pdk" />
+  <project path="external/libconstrainedcrypto" name="platform/external/libconstrainedcrypto" groups="pdk" />
+  <project path="external/libcups" name="platform/external/libcups" groups="pdk-cw-fs,pdk-fs" />
+  <project path="external/libcxx" name="platform/external/libcxx" groups="pdk" />
+  <project path="external/libcxxabi" name="platform/external/libcxxabi" groups="pdk" />
+  <project path="external/libdaemon" name="platform/external/libdaemon" groups="pdk" />
+  <project path="external/libdivsufsort" name="platform/external/libdivsufsort" groups="pdk" />
+  <project path="external/libdrm" name="platform/external/libdrm" groups="pdk" />
+  <project path="external/libedit" name="platform/external/libedit" groups="pdk" />
+  <project path="external/libese" name="platform/external/libese" groups="pdk" />
+  <project path="external/libevent" name="platform/external/libevent" groups="pdk" />
+  <project path="external/libexif" name="platform/external/libexif" groups="pdk" />
+  <project path="external/libgsm" name="platform/external/libgsm" groups="pdk" />
+  <project path="external/libhevc" name="platform/external/libhevc" groups="pdk" />
+  <project path="external/libjpeg-turbo" name="platform/external/libjpeg-turbo" groups="pdk" />
+  <project path="external/libldac" name="platform/external/libldac" groups="pdk" />
+  <project path="external/libmicrohttpd" name="platform/external/libmicrohttpd" groups="pdk" />
+  <project path="external/libmpeg2" name="platform/external/libmpeg2" groups="pdk" />
+  <project path="external/libmtp" name="platform/external/libmtp" groups="pdk" />
+  <project path="external/libnetfilter_conntrack" name="platform/external/libnetfilter_conntrack" groups="pdk" />
+  <project path="external/libnfnetlink" name="platform/external/libnfnetlink" groups="pdk" />
+  <project path="external/libnl" name="platform/external/libnl" groups="pdk" />
+  <project path="external/libogg" name="platform/external/libogg" groups="pdk" />
+  <project path="external/libopus" name="platform/external/libopus" groups="pdk" />
+  <project path="external/libpcap" name="platform/external/libpcap" groups="pdk" />
+  <project path="external/libphonenumber" name="platform/external/libphonenumber" groups="pdk" />
+  <project path="external/libpng" name="platform/external/libpng" groups="pdk" />
+  <project path="external/libtextclassifier" name="platform/external/libtextclassifier" groups="pdk" />
+  <project path="external/libunwind" name="platform/external/libunwind" groups="pdk" />
+  <project path="external/libunwind_llvm" name="platform/external/libunwind_llvm" groups="pdk" />
+  <project path="external/libusb" name="platform/external/libusb" groups="pdk" />
+  <project path="external/libusb-compat" name="platform/external/libusb-compat" groups="pdk" />
+  <project path="external/libvncserver" name="platform/external/libvncserver" groups="pdk" />
+  <project path="external/libvorbis" name="platform/external/libvorbis" groups="pdk" />
+  <project path="external/libvpx" name="platform/external/libvpx" groups="pdk" />
+  <project path="external/libvterm" name="platform/external/libvterm" groups="pdk" />
+  <project path="external/libxcam" name="platform/external/libxcam" groups="pdk" />
+  <project path="external/libxml2" name="platform/external/libxml2" groups="pdk,libxml2" />
+  <project path="external/libyuv" name="platform/external/libyuv" groups="pdk,libyuv" />
+  <project path="external/linux-kselftest" name="platform/external/linux-kselftest" groups="vts,pdk" />
+  <project path="external/lisa" name="platform/external/lisa" groups="pdk" />
+  <project path="external/llvm" name="platform/external/llvm" groups="pdk" />
+  <project path="external/lmfit" name="platform/external/lmfit" groups="pdk" />
+  <project path="external/ltp" name="platform/external/ltp" groups="vts,pdk" />
+  <project path="external/lz4" name="platform/external/lz4" groups="pdk" />
+  <project path="external/lzma" name="platform/external/lzma" groups="pdk" />
+  <project path="external/markdown" name="platform/external/markdown" groups="pdk" />
+  <project path="external/mdnsresponder" name="platform/external/mdnsresponder" groups="pdk" />
+  <project path="external/mesa3d" name="platform/external/mesa3d" groups="pdk-cw-fs,pdk-fs" />
+  <project path="external/Microsoft-GSL" name="platform/external/Microsoft-GSL" groups="pdk" />
+  <project path="external/minijail" name="platform/external/minijail" groups="pdk" />
+  <project path="external/mksh" name="platform/external/mksh" groups="pdk" />
+  <project path="external/mmc-utils" name="platform/external/mmc-utils" groups="pdk" />
+  <project path="external/mockftpserver" name="platform/external/mockftpserver" groups="pdk" />
+  <project path="external/mockito" name="platform/external/mockito" groups="pdk" />
+  <project path="external/mockwebserver" name="platform/external/mockwebserver" groups="pdk" />
+  <project path="external/modp_b64" name="platform/external/modp_b64" groups="pdk" />
+  <project path="external/mp4parser" name="platform/external/mp4parser" groups="pdk" />
+  <project path="external/mtpd" name="platform/external/mtpd" groups="pdk" />
+  <project path="external/nanohttpd" name="platform/external/nanohttpd" groups="pdk" />
+  <project path="external/nanopb-c" name="platform/external/nanopb-c" groups="pdk" />
+  <project path="external/naver-fonts" name="platform/external/naver-fonts" groups="pdk" />
+  <project path="external/neven" name="platform/external/neven" groups="pdk" />
+  <project path="external/nfacct" name="platform/external/nfacct" groups="pdk" />
+  <project path="external/nist-pkits" name="platform/external/nist-pkits" groups="pdk" />
+  <project path="external/nist-sip" name="platform/external/nist-sip" groups="pdk" />
+  <project path="external/noto-fonts" name="platform/external/noto-fonts" groups="pdk" />
+  <project path="external/oauth" name="platform/external/oauth" groups="pdk" />
+  <project path="external/objenesis" name="platform/external/objenesis" groups="pdk" />
+  <project path="external/oj-libjdwp" name="platform/external/oj-libjdwp" groups="pdk" />
+  <project path="external/okhttp" name="platform/external/okhttp" groups="pdk" />
+  <project path="external/one-true-awk" name="platform/external/one-true-awk" groups="pdk" />
+  <project path="external/opencv" name="platform/external/opencv" groups="pdk-cw-fs,pdk-fs" />
+  <project path="external/owasp/sanitizer" name="platform/external/owasp/sanitizer" groups="pdk" />
+  <project path="external/parameter-framework" name="platform/external/parameter-framework" groups="pdk" />
+  <project path="external/pcre" name="platform/external/pcre" groups="pdk" />
+  <project path="external/pdfium" name="platform/external/pdfium" groups="pdk" />
+  <project path="external/perf_data_converter" name="platform/external/perf_data_converter" groups="pdk" />
+  <project path="external/perfetto" name="platform/external/perfetto" groups="pdk" />
+  <project path="external/piex" name="platform/external/piex" groups="pdk" />
+  <project path="external/ply" name="platform/external/ply" groups="pdk" />
+  <project path="external/ppp" name="platform/external/ppp" groups="pdk" />
+  <project path="external/proguard" name="platform/external/proguard" groups="pdk" />
+  <project path="external/protobuf" name="platform/external/protobuf" groups="pdk" />
+  <project path="external/puffin" name="platform/external/puffin" groups="pdk" />
+  <project path="external/python/appdirs" name="platform/external/python/appdirs" groups="vts,pdk" />
+  <project path="external/python/cachetools" name="platform/external/python/cachetools" groups="vts,pdk" />
+  <project path="external/python/cpython2" name="platform/external/python/cpython2" groups="pdk" />
+  <project path="external/python/cpython3" name="platform/external/python/cpython3" groups="pdk" />
+  <project path="external/python/dateutil" name="platform/external/python/dateutil" groups="pdk" />
+  <project path="external/python/dill" name="platform/external/python/dill" groups="vts,pdk" />
+  <project path="external/python/enum" name="platform/external/python/enum" groups="vts,pdk" />
+  <project path="external/python/enum34" name="platform/external/python/enum34" groups="vts,pdk" />
+  <project path="external/python/future" name="platform/external/python/future" groups="vts,pdk" />
+  <project path="external/python/futures" name="platform/external/python/futures" groups="vts,pdk" />
+  <project path="external/python/gapic-google-cloud-pubsub-v1" name="platform/external/python/gapic-google-cloud-pubsub-v1" groups="vts,pdk" />
+  <project path="external/python/google-api-python-client" name="platform/external/python/google-api-python-client" groups="vts,pdk" />
+  <project path="external/python/google-auth" name="platform/external/python/google-auth" groups="vts,pdk" />
+  <project path="external/python/google-auth-httplib2" name="platform/external/python/google-auth-httplib2" groups="vts,pdk" />
+  <project path="external/python/google-cloud-core" name="platform/external/python/google-cloud-core" groups="vts,pdk" />
+  <project path="external/python/google-cloud-pubsub" name="platform/external/python/google-cloud-pubsub" groups="vts,pdk" />
+  <project path="external/python/google-gax" name="platform/external/python/google-gax" groups="vts,pdk" />
+  <project path="external/python/googleapis" name="platform/external/python/googleapis" groups="vts,pdk" />
+  <project path="external/python/grpc-google-iam-v1" name="platform/external/python/grpc-google-iam-v1" groups="vts,pdk" />
+  <project path="external/python/grpcio" name="platform/external/python/grpcio" groups="vts,pdk" />
+  <project path="external/python/httplib2" name="platform/external/python/httplib2" groups="vts,pdk" />
+  <project path="external/python/matplotlib" name="platform/external/python/matplotlib" groups="vts,pdk" />
+  <project path="external/python/numpy" name="platform/external/python/numpy" groups="vts,pdk" />
+  <project path="external/python/oauth2client" name="platform/external/python/oauth2client" groups="vts,pdk" />
+  <project path="external/python/olefile" name="platform/external/python/olefile" groups="vts,pdk" />
+  <project path="external/python/packaging" name="platform/external/python/packaging" groups="vts,pdk" />
+  <project path="external/python/parse" name="platform/external/python/parse" groups="vts,pdk" />
+  <project path="external/python/Pillow" name="platform/external/python/Pillow" groups="vts,pdk" />
+  <project path="external/python/ply" name="platform/external/python/ply" groups="vts,pdk" />
+  <project path="external/python/proto-google-cloud-pubsub-v1" name="platform/external/python/proto-google-cloud-pubsub-v1" groups="vts,pdk" />
+  <project path="external/python/protobuf" name="platform/external/python/protobuf" groups="vts,pdk" />
+  <project path="external/python/pyasn1" name="platform/external/python/pyasn1" groups="vts,pdk" />
+  <project path="external/python/pyasn1-modules" name="platform/external/python/pyasn1-modules" groups="vts,pdk" />
+  <project path="external/python/pyparsing" name="platform/external/python/pyparsing" groups="vts,pdk" />
+  <project path="external/python/requests" name="platform/external/python/requests" groups="vts,pdk" />
+  <project path="external/python/rsa" name="platform/external/python/rsa" groups="vts,pdk" />
+  <project path="external/python/scipy" name="platform/external/python/scipy" groups="vts,pdk" />
+  <project path="external/python/setuptools" name="platform/external/python/setuptools" groups="vts,pdk" />
+  <project path="external/python/six" name="platform/external/python/six" groups="vts,pdk" />
+  <project path="external/python/uritemplates" name="platform/external/python/uritemplates" groups="vts,pdk" />
+  <project path="external/replicaisland" name="platform/external/replicaisland" groups="pdk" />
+  <project path="external/rmi4utils" name="platform/external/rmi4utils" groups="pdk" />
+  <project path="external/robolectric" name="platform/external/robolectric" groups="pdk-cw-fs,pdk-fs" />
+  <project path="external/roboto-fonts" name="platform/external/roboto-fonts" groups="pdk" />
+  <project path="external/rootdev" name="platform/external/rootdev" groups="pdk" />
+  <project path="external/safe-iop" name="platform/external/safe-iop" groups="pdk" />
+  <project path="external/scapy" name="platform/external/scapy" groups="pdk-fs" />
+  <project path="external/scrypt" name="platform/external/scrypt" groups="pdk" />
+  <project path="external/seccomp-tests" name="platform/external/seccomp-tests" groups="pdk" />
+  <project path="external/selinux" name="platform/external/selinux" groups="pdk" />
+  <project path="external/sfntly" name="platform/external/sfntly" groups="pdk,qcom_msm8x26" />
+  <project path="external/shaderc/spirv-headers" name="platform/external/shaderc/spirv-headers" groups="pdk" />
+  <project path="external/shflags" name="platform/external/shflags" groups="pdk" />
+  <project path="external/skia" name="platform/external/skia" groups="pdk,qcom_msm8x26" />
+  <project path="external/sl4a" name="platform/external/sl4a" groups="pdk" />
+  <project path="external/slf4j" name="platform/external/slf4j" groups="pdk" />
+  <project path="external/smali" name="platform/external/smali" groups="pdk" />
+  <project path="external/snakeyaml" name="platform/external/snakeyaml" groups="pdk" />
+  <project path="external/sonic" name="platform/external/sonic" groups="pdk" />
+  <project path="external/sonivox" name="platform/external/sonivox" groups="pdk" />
+  <project path="external/speex" name="platform/external/speex" groups="pdk" />
+  <project path="external/spirv-llvm" name="platform/external/spirv-llvm" groups="pdk" />
+  <project path="external/sqlite" name="platform/external/sqlite" groups="pdk" />
+  <project path="external/squashfs-tools" name="platform/external/squashfs-tools" groups="pdk" />
+  <project path="external/strace" name="platform/external/strace" groups="pdk" />
+  <project path="external/stressapptest" name="platform/external/stressapptest" groups="pdk" />
+  <project path="external/subsampling-scale-image-view" name="platform/external/subsampling-scale-image-view" clone-depth="1" />
+  <project path="external/swiftshader" name="platform/external/swiftshader" groups="pdk" />
+  <project path="external/syslinux" name="platform/external/syslinux" groups="pdk" />
+  <project path="external/tagsoup" name="platform/external/tagsoup" groups="pdk" />
+  <project path="external/tcpdump" name="platform/external/tcpdump" groups="pdk" />
+  <project path="external/tensorflow" name="platform/external/tensorflow" groups="pdk" />
+  <project path="external/testng" name="platform/external/testng" groups="pdk" />
+  <project path="external/tinyalsa" name="platform/external/tinyalsa" groups="pdk" />
+  <project path="external/tinycompress" name="platform/external/tinycompress" groups="pdk" />
+  <project path="external/tinyxml" name="platform/external/tinyxml" groups="pdk" />
+  <project path="external/tinyxml2" name="platform/external/tinyxml2" groups="pdk" />
+  <project path="external/toolchain-utils" name="platform/external/toolchain-utils" />
+  <project path="external/toybox" name="platform/external/toybox" groups="pdk" />
+  <project path="external/tpm2" name="platform/external/tpm2" groups="pdk" />
+  <project path="external/trappy" name="platform/external/trappy" groups="pdk" />
+  <project path="external/tremolo" name="platform/external/tremolo" groups="pdk" />
+  <project path="external/turbine" name="platform/external/turbine" groups="pdk" />
+  <project path="external/unicode" name="platform/external/unicode" groups="pdk" />
+  <project path="external/universal-tween-engine" name="platform/external/universal-tween-engine" />
+  <project path="external/v4l2_codec2" name="platform/external/v4l2_codec2" groups="pdk" />
+  <project path="external/v8" name="platform/external/v8" groups="pdk" />
+  <project path="external/valgrind" name="platform/external/valgrind" groups="pdk" />
+  <project path="external/vboot_reference" name="platform/external/vboot_reference" groups="vboot,pdk-fs" />
+  <project path="external/vixl" name="platform/external/vixl" groups="pdk" />
+  <project path="external/vogar" name="platform/external/vogar" groups="pdk" />
+  <project path="external/volley" name="platform/external/volley" groups="pdk" />
+  <project path="external/vulkan-validation-layers" name="platform/external/vulkan-validation-layers" groups="pdk" />
+  <project path="external/walt" name="platform/external/walt" groups="pdk" />
+  <project path="external/webp" name="platform/external/webp" groups="pdk,qcom_msm8x26" />
+  <project path="external/webrtc" name="platform/external/webrtc" groups="pdk" />
+  <project path="external/webview_support_interfaces" name="platform/external/webview_support_interfaces" groups="pdk" />
+  <project path="external/wpa_supplicant_8" name="platform/external/wpa_supplicant_8" groups="pdk" />
+  <project path="external/wycheproof" name="platform/external/wycheproof" groups="pdk" />
+  <project path="external/x264" name="platform/external/x264" groups="pdk" />
+  <project path="external/xmlrpcpp" name="platform/external/xmlrpcpp" groups="pdk" />
+  <project path="external/xmp_toolkit" name="platform/external/xmp_toolkit" groups="pdk" />
+  <project path="external/xz-embedded" name="platform/external/xz-embedded" groups="pdk" />
+  <project path="external/zlib" name="platform/external/zlib" groups="pdk" />
+  <project path="external/zopfli" name="platform/external/zopfli" groups="pdk" />
+  <project path="external/zxing" name="platform/external/zxing" groups="pdk" />
+  <project path="frameworks/av" name="platform/frameworks/av" groups="pdk" />
+  <project path="frameworks/base" name="platform/frameworks/base" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/compile/libbcc" name="platform/frameworks/compile/libbcc" groups="pdk" />
+  <project path="frameworks/compile/mclinker" name="platform/frameworks/compile/mclinker" groups="pdk" />
+  <project path="frameworks/compile/slang" name="platform/frameworks/compile/slang" groups="pdk" />
+  <project path="frameworks/data-binding" name="platform/frameworks/data-binding" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/ex" name="platform/frameworks/ex" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/hardware/interfaces" name="platform/frameworks/hardware/interfaces" groups="pdk" />
+  <project path="frameworks/layoutlib" name="platform/frameworks/layoutlib" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/minikin" name="platform/frameworks/minikin" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/ml" name="platform/frameworks/ml" groups="pdk" />
+  <project path="frameworks/multidex" name="platform/frameworks/multidex" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/native" name="platform/frameworks/native" groups="pdk" />
+  <project path="frameworks/opt/bitmap" name="platform/frameworks/opt/bitmap" groups="pdk-fs" />
+  <project path="frameworks/opt/calendar" name="platform/frameworks/opt/calendar" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/car/services" name="platform/frameworks/opt/car/services" groups="pdk-fs" />
+  <project path="frameworks/opt/chips" name="platform/frameworks/opt/chips" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/colorpicker" name="platform/frameworks/opt/colorpicker" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/datetimepicker" name="platform/frameworks/opt/datetimepicker" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/inputmethodcommon" name="platform/frameworks/opt/inputmethodcommon" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/net/ethernet" name="platform/frameworks/opt/net/ethernet" groups="pdk-fs" />
+  <project path="frameworks/opt/net/ims" name="platform/frameworks/opt/net/ims" groups="frameworks_ims,pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/net/lowpan" name="platform/frameworks/opt/net/lowpan" groups="pdk-fs" />
+  <project path="frameworks/opt/net/voip" name="platform/frameworks/opt/net/voip" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/net/wifi" name="platform/frameworks/opt/net/wifi" groups="pdk" />
+  <project path="frameworks/opt/photoviewer" name="platform/frameworks/opt/photoviewer" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/setupwizard" name="platform/frameworks/opt/setupwizard" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/telephony" name="platform/frameworks/opt/telephony" groups="pdk" />
+  <project path="frameworks/opt/timezonepicker" name="platform/frameworks/opt/timezonepicker" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/opt/vcard" name="platform/frameworks/opt/vcard" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/rs" name="platform/frameworks/rs" groups="pdk" />
+  <project path="frameworks/support" name="platform/frameworks/support" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/webview" name="platform/frameworks/webview" groups="pdk-cw-fs,pdk-fs" />
+  <project path="frameworks/wilhelm" name="platform/frameworks/wilhelm" groups="pdk-cw-fs,pdk-fs" />
+  <project path="hardware/akm" name="platform/hardware/akm" groups="pdk" />
+  <project path="hardware/broadcom/libbt" name="platform/hardware/broadcom/libbt" groups="pdk" />
+  <project path="hardware/broadcom/wlan" name="platform/hardware/broadcom/wlan" groups="pdk,broadcom_wlan" />
+  <project path="hardware/google/apf" name="platform/hardware/google/apf" groups="pdk" />
+  <project path="hardware/google/easel" name="platform/hardware/google/easel" groups="pdk,easel" />
+  <project path="hardware/google/interfaces" name="platform/hardware/google/interfaces" groups="pdk" />
+  <project path="hardware/intel/audio_media" name="platform/hardware/intel/audio_media" groups="intel,pdk" />
+  <project path="hardware/intel/bootstub" name="platform/hardware/intel/bootstub" groups="intel,pdk" />
+  <project path="hardware/intel/common/libmix" name="platform/hardware/intel/common/libmix" groups="intel,pdk" />
+  <project path="hardware/intel/common/libstagefrighthw" name="platform/hardware/intel/common/libstagefrighthw" groups="intel,pdk" />
+  <project path="hardware/intel/common/libva" name="platform/hardware/intel/common/libva" groups="intel,pdk" />
+  <project path="hardware/intel/common/libwsbm" name="platform/hardware/intel/common/libwsbm" groups="intel,pdk" />
+  <project path="hardware/intel/common/omx-components" name="platform/hardware/intel/common/omx-components" groups="intel,pdk" />
+  <project path="hardware/intel/common/utils" name="platform/hardware/intel/common/utils" groups="intel,pdk" />
+  <project path="hardware/intel/common/wrs_omxil_core" name="platform/hardware/intel/common/wrs_omxil_core" groups="intel,pdk" />
+  <project path="hardware/intel/img/hwcomposer" name="platform/hardware/intel/img/hwcomposer" groups="intel,pdk" />
+  <project path="hardware/intel/img/psb_headers" name="platform/hardware/intel/img/psb_headers" groups="intel,pdk" />
+  <project path="hardware/intel/img/psb_video" name="platform/hardware/intel/img/psb_video" groups="intel,pdk" />
+  <project path="hardware/interfaces" name="platform/hardware/interfaces" groups="pdk" />
+  <project path="hardware/invensense" name="platform/hardware/invensense" groups="invensense,pdk" />
+  <project path="hardware/libhardware" name="platform/hardware/libhardware" groups="pdk" />
+  <project path="hardware/libhardware_legacy" name="platform/hardware/libhardware_legacy" groups="pdk" />
+  <project path="hardware/marvell/bt" name="platform/hardware/marvell/bt" groups="marvell_bt,pdk" />
+  <project path="hardware/nxp/nfc" name="platform/hardware/nxp/nfc" groups="pdk" />
+  <project path="hardware/nxp/secure_element" name="platform/hardware/nxp/secure_element" groups="pdk" />
+  <project path="hardware/qcom/audio" name="platform/hardware/qcom/audio" groups="qcom,qcom_audio,pdk" />
+  <project path="hardware/qcom/bootctrl" name="platform/hardware/qcom/bootctrl" groups="pdk" />
+  <project path="hardware/qcom/bt" name="platform/hardware/qcom/bt" groups="qcom,pdk" />
+  <project path="hardware/qcom/camera" name="platform/hardware/qcom/camera" groups="qcom_camera,pdk" />
+  <project path="hardware/qcom/data/ipacfg-mgr" name="platform/hardware/qcom/data/ipacfg-mgr" groups="qcom,pdk" />
+  <project path="hardware/qcom/display" name="platform/hardware/qcom/display" groups="pdk,qcom,qcom_display" />
+  <project path="hardware/qcom/gps" name="platform/hardware/qcom/gps" groups="qcom,qcom_gps,pdk" />
+  <project path="hardware/qcom/keymaster" name="platform/hardware/qcom/keymaster" groups="qcom,qcom_keymaster,pdk" />
+  <project path="hardware/qcom/media" name="platform/hardware/qcom/media" groups="qcom,pdk" />
+  <project path="hardware/qcom/msm8960" name="platform/hardware/qcom/msm8960" groups="qcom_msm8960,pdk" />
+  <project path="hardware/qcom/msm8994" name="platform/hardware/qcom/msm8994" groups="qcom_msm8994,pdk" />
+  <project path="hardware/qcom/msm8996" name="platform/hardware/qcom/msm8996" groups="qcom_msm8996,pdk" />
+  <project path="hardware/qcom/msm8998" name="platform/hardware/qcom/msm8998" groups="qcom_msm8998,pdk" />
+  <project path="hardware/qcom/msm8x09" name="platform/hardware/qcom/msm8x09" groups="qcom_msm8x09" />
+  <project path="hardware/qcom/msm8x26" name="platform/hardware/qcom/msm8x26" groups="qcom_msm8x26,pdk" />
+  <project path="hardware/qcom/msm8x27" name="platform/hardware/qcom/msm8x27" groups="qcom_msm8x27,pdk" />
+  <project path="hardware/qcom/msm8x84" name="platform/hardware/qcom/msm8x84" groups="qcom_msm8x84,pdk" />
+  <project path="hardware/qcom/neuralnetworks/hvxservice" name="platform/hardware/qcom/neuralnetworks/hvxservice" groups="wahoo" />
+  <project path="hardware/qcom/power" name="platform/hardware/qcom/power" groups="qcom,pdk" />
+  <project path="hardware/qcom/wlan" name="platform/hardware/qcom/wlan" groups="qcom_wlan,pdk" />
+  <project path="hardware/ril" name="platform/hardware/ril" groups="pdk" />
+  <project path="hardware/st/nfc" name="platform/hardware/st/nfc" groups="pdk" />
+  <project path="kernel/configs" name="kernel/configs" groups="vts,pdk" />
+  <project path="kernel/tests" name="kernel/tests" />
+  <project path="libcore" name="platform/libcore" groups="pdk" />
+  <project path="libnativehelper" name="platform/libnativehelper" groups="pdk" />
+  <project path="packages/apps/BasicSmsReceiver" name="platform/packages/apps/BasicSmsReceiver" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/Bluetooth" name="platform/packages/apps/Bluetooth" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/Browser2" name="platform/packages/apps/Browser2" groups="pdk-fs" />
+  <project path="packages/apps/Calendar" name="platform/packages/apps/Calendar" groups="pdk-fs" />
+  <project path="packages/apps/Camera2" name="platform/packages/apps/Camera2" groups="pdk-fs" />
+  <project path="packages/apps/Car/Dialer" name="platform/packages/apps/Car/Dialer" groups="pdk-fs" />
+  <project path="packages/apps/Car/Hvac" name="platform/packages/apps/Car/Hvac" groups="pdk-fs" />
+  <project path="packages/apps/Car/LatinIME" name="platform/packages/apps/Car/LatinIME" groups="pdk-fs" />
+  <project path="packages/apps/Car/Launcher" name="platform/packages/apps/Car/Launcher" groups="pdk-fs" />
+  <project path="packages/apps/Car/LensPicker" name="platform/packages/apps/Car/LensPicker" groups="pdk-fs" />
+  <project path="packages/apps/Car/libs" name="platform/packages/apps/Car/libs" groups="pdk-fs" />
+  <project path="packages/apps/Car/LocalMediaPlayer" name="platform/packages/apps/Car/LocalMediaPlayer" groups="pdk-fs" />
+  <project path="packages/apps/Car/Media" name="platform/packages/apps/Car/Media" groups="pdk-fs" />
+  <project path="packages/apps/Car/Messenger" name="platform/packages/apps/Car/Messenger" groups="pdk-fs" />
+  <project path="packages/apps/Car/Overview" name="platform/packages/apps/Car/Overview" groups="pdk-fs" />
+  <project path="packages/apps/Car/Radio" name="platform/packages/apps/Car/Radio" groups="pdk-fs" />
+  <project path="packages/apps/Car/Settings" name="platform/packages/apps/Car/Settings" groups="pdk-fs" />
+  <project path="packages/apps/Car/Stream" name="platform/packages/apps/Car/Stream" groups="pdk-fs" />
+  <project path="packages/apps/Car/SystemUpdater" name="platform/packages/apps/Car/SystemUpdater" groups="pdk-fs" />
+  <project path="packages/apps/CarrierConfig" name="platform/packages/apps/CarrierConfig" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/CellBroadcastReceiver" name="platform/packages/apps/CellBroadcastReceiver" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/CertInstaller" name="platform/packages/apps/CertInstaller" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/Contacts" name="platform/packages/apps/Contacts" groups="pdk-fs" />
+  <project path="packages/apps/DeskClock" name="platform/packages/apps/DeskClock" groups="pdk-fs" />
+  <project path="packages/apps/DevCamera" name="platform/packages/apps/DevCamera" groups="pdk" />
+  <project path="packages/apps/Dialer" name="platform/packages/apps/Dialer" groups="pdk-fs" />
+  <project path="packages/apps/DocumentsUI" name="platform/packages/apps/DocumentsUI" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/Email" name="platform/packages/apps/Email" groups="pdk-fs" />
+  <project path="packages/apps/EmergencyInfo" name="platform/packages/apps/EmergencyInfo" groups="pdk-fs" />
+  <project path="packages/apps/ExactCalculator" name="platform/packages/apps/ExactCalculator" groups="pdk-fs" />
+  <project path="packages/apps/Gallery" name="platform/packages/apps/Gallery" groups="pdk-fs" />
+  <project path="packages/apps/Gallery2" name="platform/packages/apps/Gallery2" groups="pdk-fs" />
+  <project path="packages/apps/HTMLViewer" name="platform/packages/apps/HTMLViewer" groups="pdk-fs" />
+  <project path="packages/apps/KeyChain" name="platform/packages/apps/KeyChain" groups="pdk-fs" />
+  <project path="packages/apps/Launcher2" name="platform/packages/apps/Launcher2" groups="pdk-fs" />
+  <project path="packages/apps/Launcher3" name="platform/packages/apps/Launcher3" groups="pdk-fs" />
+  <project path="packages/apps/LegacyCamera" name="platform/packages/apps/LegacyCamera" groups="pdk-fs" />
+  <project path="packages/apps/ManagedProvisioning" name="platform/packages/apps/ManagedProvisioning" groups="pdk-fs" />
+  <project path="packages/apps/Messaging" name="platform/packages/apps/Messaging" groups="pdk-fs" />
+  <project path="packages/apps/Music" name="platform/packages/apps/Music" groups="pdk-fs" />
+  <project path="packages/apps/MusicFX" name="platform/packages/apps/MusicFX" groups="pdk-fs" />
+  <project path="packages/apps/Nfc" name="platform/packages/apps/Nfc" groups="apps_nfc,pdk-fs" />
+  <project path="packages/apps/OneTimeInitializer" name="platform/packages/apps/OneTimeInitializer" groups="pdk-fs" />
+  <project path="packages/apps/PackageInstaller" name="platform/packages/apps/PackageInstaller" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/PhoneCommon" name="platform/packages/apps/PhoneCommon" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/apps/Protips" name="platform/packages/apps/Protips" groups="pdk-fs" />
+  <project path="packages/apps/Provision" name="platform/packages/apps/Provision" groups="pdk-fs" />
+  <project path="packages/apps/QuickSearchBox" name="platform/packages/apps/QuickSearchBox" groups="pdk-fs" />
+  <project path="packages/apps/SafetyRegulatoryInfo" name="platform/packages/apps/SafetyRegulatoryInfo" groups="pdk-fs" />
+  <project path="packages/apps/SecureElement" name="platform/packages/apps/SecureElement" groups="apps_se,pdk-fs" />
+  <project path="packages/apps/Settings" name="platform/packages/apps/Settings" groups="pdk-fs" />
+  <project path="packages/apps/SoundRecorder" name="platform/packages/apps/SoundRecorder" groups="pdk-fs" />
+  <project path="packages/apps/SpareParts" name="platform/packages/apps/SpareParts" groups="pdk-fs" />
+  <project path="packages/apps/Stk" name="platform/packages/apps/Stk" groups="apps_stk,pdk-fs" />
+  <project path="packages/apps/StorageManager" name="platform/packages/apps/StorageManager" groups="pdk-fs" />
+  <project path="packages/apps/Tag" name="platform/packages/apps/Tag" groups="pdk-fs" />
+  <project path="packages/apps/Terminal" name="platform/packages/apps/Terminal" groups="pdk-fs" />
+  <project path="packages/apps/Test/connectivity" name="platform/packages/apps/Test/connectivity" groups="pdk" />
+  <project path="packages/apps/TimeZoneData" name="platform/packages/apps/TimeZoneData" groups="pdk" />
+  <project path="packages/apps/TimeZoneUpdater" name="platform/packages/apps/TimeZoneUpdater" groups="pdk" />
+  <project path="packages/apps/Traceur" name="platform/packages/apps/Traceur" groups="pdk-fs" />
+  <project path="packages/apps/TvSettings" name="platform/packages/apps/TvSettings" groups="pdk-fs" />
+  <project path="packages/apps/TV" name="platform/packages/apps/TV" />
+  <project path="packages/apps/UnifiedEmail" name="platform/packages/apps/UnifiedEmail" groups="pdk-fs" />
+  <project path="packages/apps/WallpaperPicker" name="platform/packages/apps/WallpaperPicker" groups="pdk-fs" />
+  <project path="packages/experimental" name="platform/packages/experimental" />
+  <project path="packages/inputmethods/LatinIME" name="platform/packages/inputmethods/LatinIME" groups="pdk-fs" />
+  <project path="packages/inputmethods/OpenWnn" name="platform/packages/inputmethods/OpenWnn" groups="pdk-fs" />
+  <project path="packages/providers/ApplicationsProvider" name="platform/packages/providers/ApplicationsProvider" groups="pdk-fs" />
+  <project path="packages/providers/BlockedNumberProvider" name="platform/packages/providers/BlockedNumberProvider" groups="pdk-fs" />
+  <project path="packages/providers/BookmarkProvider" name="platform/packages/providers/BookmarkProvider" groups="pdk-fs" />
+  <project path="packages/providers/CalendarProvider" name="platform/packages/providers/CalendarProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/providers/CallLogProvider" name="platform/packages/providers/CallLogProvider" groups="pdk-fs" />
+  <project path="packages/providers/ContactsProvider" name="platform/packages/providers/ContactsProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/providers/DownloadProvider" name="platform/packages/providers/DownloadProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/providers/MediaProvider" name="platform/packages/providers/MediaProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/providers/PartnerBookmarksProvider" name="platform/packages/providers/PartnerBookmarksProvider" groups="pdk-fs" />
+  <project path="packages/providers/TelephonyProvider" name="platform/packages/providers/TelephonyProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/providers/TvProvider" name="platform/packages/providers/TvProvider" groups="pdk-fs" />
+  <project path="packages/providers/UserDictionaryProvider" name="platform/packages/providers/UserDictionaryProvider" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/screensavers/Basic" name="platform/packages/screensavers/Basic" groups="pdk-fs" />
+  <project path="packages/screensavers/PhotoTable" name="platform/packages/screensavers/PhotoTable" groups="pdk-fs" />
+  <project path="packages/screensavers/WebView" name="platform/packages/screensavers/WebView" groups="pdk-fs" />
+  <project path="packages/services/BuiltInPrintService" name="platform/packages/services/BuiltInPrintService" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/services/Car" name="platform/packages/services/Car" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/services/Mms" name="platform/packages/services/Mms" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/services/NetworkRecommendation" name="platform/packages/services/NetworkRecommendation" groups="pdk-fs" />
+  <project path="packages/services/Telecomm" name="platform/packages/services/Telecomm" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/services/Telephony" name="platform/packages/services/Telephony" groups="pdk-cw-fs,pdk-fs" />
+  <project path="packages/wallpapers/LivePicker" name="platform/packages/wallpapers/LivePicker" groups="pdk-fs" />
+  <project path="pdk" name="platform/pdk" groups="pdk" />
+  <project path="platform_testing" name="platform/platform_testing" groups="pdk-fs,pdk-cw-fs,cts" />
+  <project path="prebuilts/abi-dumps/ndk" name="platform/prebuilts/abi-dumps/ndk" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/abi-dumps/vndk" name="platform/prebuilts/abi-dumps/vndk" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/android-emulator" name="platform/prebuilts/android-emulator" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/build-tools" name="platform/prebuilts/build-tools" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/checkstyle" name="platform/prebuilts/checkstyle" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/clang-tools" name="platform/prebuilts/clang-tools" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/clang/host/darwin-x86" name="platform/prebuilts/clang/host/darwin-x86" groups="pdk,darwin" clone-depth="1" />
+  <project path="prebuilts/clang/host/linux-x86" name="platform/prebuilts/clang/host/linux-x86" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/deqp" name="platform/prebuilts/deqp" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/devtools" name="platform/prebuilts/devtools" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/gcc/darwin-x86/aarch64/aarch64-linux-android-4.9" name="platform/prebuilts/gcc/darwin-x86/aarch64/aarch64-linux-android-4.9" groups="pdk,darwin,arm" clone-depth="1" />
+  <project path="prebuilts/gcc/darwin-x86/arm/arm-linux-androideabi-4.9" name="platform/prebuilts/gcc/darwin-x86/arm/arm-linux-androideabi-4.9" groups="pdk,darwin,arm" clone-depth="1" />
+  <project path="prebuilts/gcc/darwin-x86/host/i686-apple-darwin-4.2.1" name="platform/prebuilts/gcc/darwin-x86/host/i686-apple-darwin-4.2.1" groups="pdk,darwin" clone-depth="1" />
+  <project path="prebuilts/gcc/darwin-x86/mips/mips64el-linux-android-4.9" name="platform/prebuilts/gcc/darwin-x86/mips/mips64el-linux-android-4.9" groups="pdk,darwin,mips" clone-depth="1" />
+  <project path="prebuilts/gcc/darwin-x86/x86/x86_64-linux-android-4.9" name="platform/prebuilts/gcc/darwin-x86/x86/x86_64-linux-android-4.9" groups="pdk,darwin,x86" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/aarch64/aarch64-linux-android-4.9" name="platform/prebuilts/gcc/linux-x86/aarch64/aarch64-linux-android-4.9" groups="pdk,linux,arm" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/arm/arm-linux-androideabi-4.9" name="platform/prebuilts/gcc/linux-x86/arm/arm-linux-androideabi-4.9" groups="pdk,linux,arm" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/host/x86_64-linux-glibc2.15-4.8" name="platform/prebuilts/gcc/linux-x86/host/x86_64-linux-glibc2.15-4.8" groups="pdk,linux" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/host/x86_64-w64-mingw32-4.8" name="platform/prebuilts/gcc/linux-x86/host/x86_64-w64-mingw32-4.8" groups="pdk-fs" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/mips/mips64el-linux-android-4.9" name="platform/prebuilts/gcc/linux-x86/mips/mips64el-linux-android-4.9" groups="pdk,linux,mips" clone-depth="1" />
+  <project path="prebuilts/gcc/linux-x86/x86/x86_64-linux-android-4.9" name="platform/prebuilts/gcc/linux-x86/x86/x86_64-linux-android-4.9" groups="pdk,linux,x86" clone-depth="1" />
+  <project path="prebuilts/gdb/darwin-x86" name="platform/prebuilts/gdb/darwin-x86" groups="darwin" clone-depth="1" />
+  <project path="prebuilts/gdb/linux-x86" name="platform/prebuilts/gdb/linux-x86" groups="linux" clone-depth="1" />
+  <project path="prebuilts/go/darwin-x86" name="platform/prebuilts/go/darwin-x86" groups="darwin,pdk,tradefed" clone-depth="1" />
+  <project path="prebuilts/go/linux-x86" name="platform/prebuilts/go/linux-x86" groups="linux,pdk,tradefed" clone-depth="1" />
+  <project path="prebuilts/gradle-plugin" name="platform/prebuilts/gradle-plugin" groups="pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/jdk/jdk8" name="platform/prebuilts/jdk/jdk8" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/jdk/jdk9" name="platform/prebuilts/jdk/jdk9" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/libs/libedit" name="platform/prebuilts/libs/libedit" groups="pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/maven_repo/android" name="platform/prebuilts/maven_repo/android" groups="pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/maven_repo/bumptech" name="platform/prebuilts/maven_repo/bumptech" groups="pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/maven_repo/google-play-service-client-libraries-3p" name="platform/prebuilts/maven_repo/google-play-service-client-libraries-3p" clone-depth="1" />
+  <project path="prebuilts/misc" name="platform/prebuilts/misc" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/ndk" name="platform/prebuilts/ndk" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/python/darwin-x86/2.7.5" name="platform/prebuilts/python/darwin-x86/2.7.5" groups="darwin,pdk,pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/python/linux-x86/2.7.5" name="platform/prebuilts/python/linux-x86/2.7.5" groups="linux,pdk,pdk-cw-fs,pdk-fs" clone-depth="1" />
+  <project path="prebuilts/qemu-kernel" name="platform/prebuilts/qemu-kernel" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/r8" name="platform/prebuilts/r8" groups="pdk"  clone-depth="1" />
+  <project path="prebuilts/sdk" name="platform/prebuilts/sdk" groups="pdk" clone-depth="1" />
+  <project path="prebuilts/tools" name="platform/prebuilts/tools" groups="pdk,tools" clone-depth="1" />
+  <project path="sdk" name="platform/sdk" groups="pdk-cw-fs,pdk-fs" />
+  <project path="system/bt" name="platform/system/bt" groups="pdk" />
+  <project path="system/ca-certificates" name="platform/system/ca-certificates" groups="pdk" />
+  <project path="system/chre" name="platform/system/chre" groups="pdk" />
+  <project path="system/connectivity/wificond" name="platform/system/connectivity/wificond" groups="pdk" />
+  <project path="system/connectivity/wifilogd" name="platform/system/connectivity/wifilogd" groups="pdk" />
+  <project path="system/core" name="platform/system/core" groups="pdk" />
+  <project path="system/extras" name="platform/system/extras" groups="pdk" />
+  <project path="system/gatekeeper" name="platform/system/gatekeeper" groups="pdk" />
+  <project path="system/hardware/interfaces" name="platform/system/hardware/interfaces" groups="pdk" />
+  <project path="system/hwservicemanager" name="platform/system/hwservicemanager" groups="pdk" />
+  <project path="system/iot/attestation" name="platform/system/iot/attestation" groups="pdk" />
+  <project path="system/keymaster" name="platform/system/keymaster" groups="pdk" />
+  <project path="system/libfmq" name="platform/system/libfmq" groups="pdk" />
+  <project path="system/libhidl" name="platform/system/libhidl" groups="pdk" />
+  <project path="system/libhwbinder" name="platform/system/libhwbinder" groups="pdk" />
+  <project path="system/libufdt" name="platform/system/libufdt" groups="pdk" />
+  <project path="system/libvintf" name="platform/system/libvintf" groups="pdk" />
+  <project path="system/media" name="platform/system/media" groups="pdk" />
+  <project path="system/netd" name="platform/system/netd" groups="pdk" />
+  <project path="system/nfc" name="platform/system/nfc" groups="pdk" />
+  <project path="system/nvram" name="platform/system/nvram" groups="pdk" />
+  <project path="system/security" name="platform/system/security" groups="pdk" />
+  <project path="system/sepolicy" name="platform/system/sepolicy" groups="pdk" />
+  <project path="system/timezone" name="platform/system/timezone" groups="pdk" />
+  <project path="system/tools/aidl" name="platform/system/tools/aidl" groups="pdk-cw-fs,pdk-fs" />
+  <project path="system/tools/bpt" name="platform/system/tools/bpt" groups="pdk" />
+  <project path="system/tools/hidl" name="platform/system/tools/hidl" groups="pdk" />
+  <project path="system/update_engine" name="platform/system/update_engine" groups="pdk" />
+  <project path="system/vold" name="platform/system/vold" groups="pdk" />
+  <project path="test/framework" name="platform/test/framework" groups="vts,pdk" />
+  <project path="test/mlts/benchmark" name="platform/test/mlts/benchmark" groups="pdk" />
+  <project path="test/mlts/models" name="platform/test/mlts/models" groups="pdk" />
+  <project path="test/sts" name="platform/test/sts" groups="sts,pdk" />
+  <project path="test/vti/alert" name="platform/test/vti/alert" groups="vts,pdk" />
+  <project path="test/vti/dashboard" name="platform/test/vti/dashboard" groups="vts,pdk" />
+  <project path="test/vti/fuzz_test_serving" name="platform/test/vti/fuzz_test_serving" groups="vts,pdk" />
+  <project path="test/vti/test_serving" name="platform/test/vti/test_serving" groups="vts,pdk" />
+  <project path="test/vts" name="platform/test/vts" groups="vts,pdk" />
+  <project path="test/vts-testcase/fuzz" name="platform/test/vts-testcase/fuzz" groups="vts,pdk" />
+  <project path="test/vts-testcase/hal" name="platform/test/vts-testcase/hal" groups="vts,pdk" />
+  <project path="test/vts-testcase/hal-trace" name="platform/test/vts-testcase/hal-trace" groups="vts,pdk" />
+  <project path="test/vts-testcase/kernel" name="platform/test/vts-testcase/kernel" groups="vts,pdk" />
+  <project path="test/vts-testcase/nbu" name="platform/test/vts-testcase/nbu" groups="vts,pdk" />
+  <project path="test/vts-testcase/performance" name="platform/test/vts-testcase/performance" groups="vts,pdk" />
+  <project path="test/vts-testcase/security" name="platform/test/vts-testcase/security" groups="vts,pdk" />
+  <project path="test/vts-testcase/vndk" name="platform/test/vts-testcase/vndk" groups="vts,pdk" />
+  <project path="toolchain/benchmark" name="toolchain/benchmark" />
+  <project path="toolchain/binutils" name="toolchain/binutils" groups="pdk" />
+  <project path="toolchain/pgo-profiles" name="toolchain/pgo-profiles" groups="pdk" />
+  <project path="tools/acloud" name="platform/tools/acloud" groups="tools,vts,pdk,tradefed" />
+  <project path="tools/adt/idea" name="platform/tools/adt/idea" groups="notdefault,tools" />
+  <project path="tools/apksig" name="platform/tools/apksig" groups="pdk,tradefed" />
+  <project path="tools/apkzlib" name="platform/tools/apkzlib" groups="pdk,tradefed" />
+  <project path="tools/base" name="platform/tools/base" groups="notdefault,tools" />
+  <project path="tools/build" name="platform/tools/build" groups="notdefault,tools" />
+  <project path="tools/dexter" name="platform/tools/dexter" groups="tools,pdk-fs" />
+  <project path="tools/external/fat32lib" name="platform/tools/external/fat32lib" groups="tools" />
+  <project path="tools/external/gradle" name="platform/tools/external/gradle" groups="tools" clone-depth="1" />
+  <project path="tools/idea" name="platform/tools/idea" groups="notdefault,tools" />
+  <project path="tools/loganalysis" name="platform/tools/loganalysis" groups="nopresubmit,pdk,tradefed" />
+  <project path="tools/metalava" name="platform/tools/metalava" groups="tools" />
+  <project path="tools/motodev" name="platform/tools/motodev" groups="notdefault,motodev" />
+  <project path="tools/repohooks" name="platform/tools/repohooks" groups="adt-infra,cts,developers,motodev,pdk,tools,tradefed" />
+  <project path="tools/security" name="platform/tools/security" groups="pdk,tools" />
+  <project path="tools/studio/cloud" name="platform/tools/studio/cloud" groups="notdefault,tools" />
+  <project path="tools/swt" name="platform/tools/swt" groups="notdefault,tools" />
+  <project path="tools/test/connectivity" name="platform/tools/test/connectivity" groups="pdk" />
+  <project path="tools/test/graphicsbenchmark" name="platform/tools/test/graphicsbenchmark" groups="pdk" />
+  <project path="tools/tradefederation/core" name="platform/tools/tradefederation" groups="pdk,tradefed" />
+  <project path="tools/tradefederation/contrib" name="platform/tools/tradefederation/contrib" groups="pdk,tradefed" />
+
+  <repo-hooks in-project="platform/tools/repohooks" enabled-list="pre-upload" />
+
+</manifest>
diff --git a/spec/lib/gitlab/manifest_import/importer_spec.rb b/spec/lib/gitlab/manifest_import/importer_spec.rb
new file mode 100644
index 00000000000..55f3c347386
--- /dev/null
+++ b/spec/lib/gitlab/manifest_import/importer_spec.rb
@@ -0,0 +1,33 @@
+require 'spec_helper'
+
+describe Gitlab::ManifestImport::Importer, :postgresql do
+  let(:group) { create(:group) }
+  let(:user) { create(:user) }
+  let(:repository) do
+    {
+      path: 'device/common',
+      url: 'https://android-review.googlesource.com/device/common'
+    }
+  end
+
+  before do
+    group.add_owner(user)
+  end
+
+  subject { described_class.new(repository, group, user) }
+
+  describe '#execute' do
+    it { expect(subject.execute).to be_a(Project) }
+    it { expect { subject.execute }.to change { Project.count }.by(1) }
+    it { expect { subject.execute }.to change { Group.count }.by(1) }
+
+    it 'creates project with valid full path and import url' do
+      subject.execute
+
+      project = Project.last
+
+      expect(project.full_path).to eq(File.join(group.path, 'device/common'))
+      expect(project.import_url).to eq('https://android-review.googlesource.com/device/common')
+    end
+  end
+end
diff --git a/spec/lib/gitlab/manifest_import/manifest_spec.rb b/spec/lib/gitlab/manifest_import/manifest_spec.rb
new file mode 100644
index 00000000000..a0b7c3f65db
--- /dev/null
+++ b/spec/lib/gitlab/manifest_import/manifest_spec.rb
@@ -0,0 +1,46 @@
+require 'spec_helper'
+
+describe Gitlab::ManifestImport::Manifest, :postgresql do
+  let(:file) { Rails.root.join('spec/fixtures/aosp_manifest.xml') }
+  let(:manifest) { described_class.new(file) }
+
+  describe '#valid?' do
+    context 'valid file' do
+      it { expect(manifest.valid?).to be true }
+    end
+
+    context 'missing or invalid attributes' do
+      let(:file) { Tempfile.new('foo') }
+
+      before do
+        content = <<~EOS
+          <manifest>
+            <remote review="invalid-url" />
+            <project name="platform/build"/>
+          </manifest>
+        EOS
+
+        file.write(content)
+        file.rewind
+      end
+
+      it { expect(manifest.valid?).to be false }
+
+      describe 'errors' do
+        before do
+          manifest.valid?
+        end
+
+        it { expect(manifest.errors).to include('Make sure a <remote> tag is present and is valid.') }
+        it { expect(manifest.errors).to include('Make sure every <project> tag has name and path attributes.') }
+      end
+    end
+  end
+
+  describe '#projects' do
+    it { expect(manifest.projects.size).to eq(660) }
+    it { expect(manifest.projects[0][:name]).to eq('platform/build') }
+    it { expect(manifest.projects[0][:path]).to eq('build/make') }
+    it { expect(manifest.projects[0][:url]).to eq('https://android-review.googlesource.com/platform/build') }
+  end
+end

From c1af6e4b13a283fa908fa2244c33fd5abd8bb83c Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Wed, 4 Jul 2018 19:26:10 +0300
Subject: [PATCH 054/113] Add changelog for manifest import feature

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 changelogs/unreleased/dz-manifest-import.yml | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 changelogs/unreleased/dz-manifest-import.yml

diff --git a/changelogs/unreleased/dz-manifest-import.yml b/changelogs/unreleased/dz-manifest-import.yml
new file mode 100644
index 00000000000..b0d29b0869f
--- /dev/null
+++ b/changelogs/unreleased/dz-manifest-import.yml
@@ -0,0 +1,5 @@
+---
+title: Add ability to import multiple repositories by uploading a manifest file
+merge_request: 20304
+author:
+type: added

From 1885a3014cf84e460693a2ff97562328b152d26f Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 12:54:46 +0300
Subject: [PATCH 055/113] Fix tests in import_sources_spec.rb

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/import/manifest_controller.rb |  2 +-
 lib/gitlab/import_sources.rb                  |  2 +-
 spec/lib/gitlab/import_sources_spec.rb        | 11 ++++++++---
 3 files changed, 10 insertions(+), 5 deletions(-)

diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index 2daf57986f3..639431690bb 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -20,7 +20,7 @@ class Import::ManifestController < Import::BaseController
     unless can?(current_user, :create_projects, group)
       @errors = ["You don't have enough permissions to create projects in the selected group"]
 
-      render :new and return
+      render :new && return
     end
 
     manifest = Gitlab::ManifestImport::Manifest.new(params[:manifest].tempfile)
diff --git a/lib/gitlab/import_sources.rb b/lib/gitlab/import_sources.rb
index a13ee371e99..374420b9061 100644
--- a/lib/gitlab/import_sources.rb
+++ b/lib/gitlab/import_sources.rb
@@ -17,7 +17,7 @@ module Gitlab
       ImportSource.new('git',            'Repo by URL',   nil),
       ImportSource.new('gitlab_project', 'GitLab export', Gitlab::ImportExport::Importer),
       ImportSource.new('gitea',          'Gitea',         Gitlab::LegacyGithubImport::Importer),
-      ImportSource.new('manifest',       'Manifest',      Gitlab::ManifestImport::Importer)
+      ImportSource.new('manifest',       'Manifest file', Gitlab::ManifestImport::Importer)
     ].freeze
 
     class << self
diff --git a/spec/lib/gitlab/import_sources_spec.rb b/spec/lib/gitlab/import_sources_spec.rb
index 10341486512..7734f48de86 100644
--- a/spec/lib/gitlab/import_sources_spec.rb
+++ b/spec/lib/gitlab/import_sources_spec.rb
@@ -12,7 +12,8 @@ describe Gitlab::ImportSources do
           'FogBugz'       => 'fogbugz',
           'Repo by URL'   => 'git',
           'GitLab export' => 'gitlab_project',
-          'Gitea'         => 'gitea'
+          'Gitea'         => 'gitea',
+          'Manifest file' => 'manifest'
         }
 
       expect(described_class.options).to eq(expected)
@@ -31,6 +32,7 @@ describe Gitlab::ImportSources do
           git
           gitlab_project
           gitea
+          manifest
         )
 
       expect(described_class.values).to eq(expected)
@@ -48,6 +50,7 @@ describe Gitlab::ImportSources do
           fogbugz
           gitlab_project
           gitea
+          manifest
         )
 
       expect(described_class.importer_names).to eq(expected)
@@ -63,7 +66,8 @@ describe Gitlab::ImportSources do
       'fogbugz' => Gitlab::FogbugzImport::Importer,
       'git' => nil,
       'gitlab_project' => Gitlab::ImportExport::Importer,
-      'gitea' => Gitlab::LegacyGithubImport::Importer
+      'gitea' => Gitlab::LegacyGithubImport::Importer,
+      'manifest' => Gitlab::ManifestImport::Importer
     }
 
     import_sources.each do |name, klass|
@@ -82,7 +86,8 @@ describe Gitlab::ImportSources do
       'fogbugz' => 'FogBugz',
       'git' => 'Repo by URL',
       'gitlab_project' => 'GitLab export',
-      'gitea' => 'Gitea'
+      'gitea' => 'Gitea',
+      'manifest' => 'Manifest file'
     }
 
     import_sources.each do |name, title|

From 237a35975b2d2fa5b4a25219e8a9437883f5e8a3 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 14:34:57 +0300
Subject: [PATCH 056/113] More reliable manifest parser and group-only selector

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/helpers/namespaces_helper.rb          | 11 +++++++----
 app/views/import/manifest/_form.html.haml | 10 +++++-----
 lib/gitlab/manifest_import/manifest.rb    |  5 ++++-
 spec/helpers/namespaces_helper_spec.rb    | 10 ++++++++++
 4 files changed, 26 insertions(+), 10 deletions(-)

diff --git a/app/helpers/namespaces_helper.rb b/app/helpers/namespaces_helper.rb
index 9be93fa69ae..9008db1b300 100644
--- a/app/helpers/namespaces_helper.rb
+++ b/app/helpers/namespaces_helper.rb
@@ -3,7 +3,7 @@ module NamespacesHelper
     params.dig(:project, :namespace_id) || params[:namespace_id]
   end
 
-  def namespaces_options(selected = :current_user, display_path: false, extra_group: nil)
+  def namespaces_options(selected = :current_user, display_path: false, extra_group: nil, groups_only: false)
     groups = current_user.manageable_groups
                .joins(:route)
                .includes(:route)
@@ -20,10 +20,13 @@ module NamespacesHelper
 
     options = []
     options << options_for_group(groups, display_path: display_path, type: 'group')
-    options << options_for_group(users, display_path: display_path, type: 'user')
 
-    if selected == :current_user && current_user.namespace
-      selected = current_user.namespace.id
+    unless groups_only
+      options << options_for_group(users, display_path: display_path, type: 'user')
+
+      if selected == :current_user && current_user.namespace
+        selected = current_user.namespace.id
+      end
     end
 
     grouped_options_for_select(options, selected)
diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
index 57980cfd58a..6261a2b6864 100644
--- a/app/views/import/manifest/_form.html.haml
+++ b/app/views/import/manifest/_form.html.haml
@@ -1,21 +1,21 @@
 = form_tag upload_import_manifest_path, multipart: true do
   .form-group
     = label_tag :manifest, class: 'label-light' do
-      Manifest
+      = _('Manifest')
     = file_field_tag :manifest, class: 'form-control-file', required: true
     .form-text.text-muted
-      Import multiple repositories by uploading a manifest file.
+      = _('Import multiple repositories by uploading a manifest file.')
 
   .form-group
     = label_tag :group_id, nil, class: 'label-light' do
-      Namespace
+      = _('Group')
     .input-group
       .input-group-prepend.has-tooltip{ title: root_url }
         .input-group-text
           = root_url
-      = select_tag :group_id, namespaces_options(nil, display_path: true), { class: 'select2 js-select-namespace' }
+      = select_tag :group_id, namespaces_options(nil, display_path: true, groups_only: true), { class: 'select2 js-select-namespace' }
     .form-text.text-muted
-      Choose the top-level namespace for your repository imports.
+      = _('Choose the top-level group for your repository imports.')
 
   .append-bottom-10
     = submit_tag 'Import projects', class: 'btn btn-success'
diff --git a/lib/gitlab/manifest_import/manifest.rb b/lib/gitlab/manifest_import/manifest.rb
index 87959d4ae7f..7b1e6a22c3a 100644
--- a/lib/gitlab/manifest_import/manifest.rb
+++ b/lib/gitlab/manifest_import/manifest.rb
@@ -66,7 +66,10 @@ module Gitlab
       end
 
       def remote
-        @remote ||= parsed_xml.css('manifest > remote').first['review']
+        return @remote if defined?(@remote)
+
+        remote_tag = parsed_xml.css('manifest > remote').first
+        @remote = remote_tag['review'] if remote_tag
       end
 
       def raw_projects
diff --git a/spec/helpers/namespaces_helper_spec.rb b/spec/helpers/namespaces_helper_spec.rb
index 460d3b6a7e4..343e140f5fb 100644
--- a/spec/helpers/namespaces_helper_spec.rb
+++ b/spec/helpers/namespaces_helper_spec.rb
@@ -28,6 +28,16 @@ describe NamespacesHelper do
 
       expect(options).not_to include(admin_group.name)
       expect(options).to include(user_group.name)
+      expect(options).to include(user.name)
+    end
+
+    it 'returns only groups if groups_only option is true' do
+      allow(helper).to receive(:current_user).and_return(user)
+
+      options = helper.namespaces_options(nil, groups_only: true)
+
+      expect(options).not_to include(user.name)
+      expect(options).to include(user_group.name)
     end
 
     context 'when nested groups are available', :nested_groups do

From 68f8ae26bf7ae73b70ce31be1fae9fe36cd012f3 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 15:24:53 +0300
Subject: [PATCH 057/113] Improve manifest import logic

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/import/manifest_controller.rb | 42 ++++++++++++-------
 app/views/import/manifest/new.html.haml       |  5 +--
 app/views/import/manifest/status.html.haml    | 20 +++++----
 lib/gitlab/manifest_import/importer.rb        |  2 +-
 4 files changed, 41 insertions(+), 28 deletions(-)

diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index 639431690bb..c183bbe1ded 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -1,17 +1,16 @@
 class Import::ManifestController < Import::BaseController
-  before_action :ensure_session, only: [:create, :status, :jobs]
-  before_action :group, only: [:status, :create]
+  before_action :ensure_import_vars, only: [:create, :status]
 
   def new
   end
 
   def status
-    @repos = session[:projects]
+    @already_added_projects = find_already_added_projects
+    already_added_import_urls = @already_added_projects.pluck(:import_url)
 
-    @already_added_projects = find_already_added_projects('manifest').where(namespace_id: group)
-    already_added_projects_names = @already_added_projects.pluck(:import_url)
-
-    @repos = @repos.to_a.reject { |repo| already_added_projects_names.include? repo[:url] }
+    @pending_repositories = repositories.to_a.reject do |repository|
+      already_added_import_urls.include?(repository[:url])
+    end
   end
 
   def upload
@@ -26,11 +25,9 @@ class Import::ManifestController < Import::BaseController
     manifest = Gitlab::ManifestImport::Manifest.new(params[:manifest].tempfile)
 
     if manifest.valid?
-      session[:projects] = manifest.projects
+      session[:repositories] = manifest.projects
       session[:group_id] = group.id
 
-      flash[:notice] = "Import successfully started."
-
       redirect_to status_import_manifest_path
     else
       @errors = manifest.errors
@@ -40,11 +37,11 @@ class Import::ManifestController < Import::BaseController
   end
 
   def jobs
-    render json: find_jobs('manifest')
+    render json: find_jobs
   end
 
   def create
-    repository = session[:projects].find do |project|
+    repository = repositories.find do |project|
       project[:id] == params[:repo_id].to_i
     end
 
@@ -59,13 +56,28 @@ class Import::ManifestController < Import::BaseController
 
   private
 
-  def ensure_session
-    if session[:projects].blank? || session[:group_id].blank?
+  def ensure_import_vars
+    unless group && repositories.present?
       redirect_to(new_import_manifest_path)
     end
   end
 
   def group
-    @group ||= Group.find(session[:group_id])
+    @group ||= Group.find_by(id: session[:group_id])
+  end
+
+  def repositories
+    @repositories ||= session[:repositories]
+  end
+
+  def find_jobs
+    find_already_added_projects.to_json(only: [:id], methods: [:import_status])
+  end
+
+  def find_already_added_projects
+    group.all_projects
+      .where(import_type: 'manifest')
+      .where(creator_id: current_user)
+      .includes(:import_state)
   end
 end
diff --git a/app/views/import/manifest/new.html.haml b/app/views/import/manifest/new.html.haml
index 1f27dec1b2b..056e4922b9e 100644
--- a/app/views/import/manifest/new.html.haml
+++ b/app/views/import/manifest/new.html.haml
@@ -1,9 +1,8 @@
-- page_title "Manifest Import"
+- page_title "Manifest file import"
 - header_title "Projects", root_path
 
 %h3.page-title
-  = icon('git')
-  Import multiple repositories
+  = _('Manifest file import')
 
 - if @errors.present?
   .alert.alert-danger
diff --git a/app/views/import/manifest/status.html.haml b/app/views/import/manifest/status.html.haml
index 3355bed056b..39aba9234d3 100644
--- a/app/views/import/manifest/status.html.haml
+++ b/app/views/import/manifest/status.html.haml
@@ -3,8 +3,10 @@
 - provider = 'manifest'
 
 %h3.page-title
-  = icon('git')
-  = _('Import multiple repositories')
+  = _('Manifest file import')
+
+%p.light
+  = _('Import multiple repositories by uploading a manifest file.')
 
 %p
   = button_tag class: "btn btn-import btn-success js-import-all" do
@@ -24,10 +26,10 @@
     %tbody
       - @already_added_projects.each do |project|
         %tr{ id: "project_#{project.id}", class: "#{project_status_css_class(project.import_status)}" }
-          %td
-            = link_to_project project
           %td
             = project.import_url
+          %td
+            = link_to_project project
           %td.job-status
             - if project.import_status == 'finished'
               %span
@@ -41,15 +43,15 @@
             - else
               = project.human_import_status_name
 
-      - @repos.each do |repo|
-        %tr{ id: "repo_#{repo[:id]}" }
+      - @pending_repositories.each do |repository|
+        %tr{ id: "repo_#{repository[:id]}" }
           %td
-            = repo[:url]
+            = repository[:url]
           %td.import-target
-            = import_project_target(@group.path, repo[:path])
+            = import_project_target(@group.full_path, repository[:path])
           %td.import-actions.job-status
             = button_tag class: "btn btn-import js-add-to-import" do
-              Import
+              = _('Import')
               = icon("spinner spin", class: "loading-icon")
 
 .js-importer-status{ data: { jobs_import_path: "#{url_for([:jobs, :import, provider])}",
diff --git a/lib/gitlab/manifest_import/importer.rb b/lib/gitlab/manifest_import/importer.rb
index 35b3bb1e0ca..8ffeb0a4143 100644
--- a/lib/gitlab/manifest_import/importer.rb
+++ b/lib/gitlab/manifest_import/importer.rb
@@ -17,7 +17,7 @@ module Gitlab
 
       def import_project
         group_full_path, _, project_path = repository[:path].rpartition('/')
-        group_full_path = File.join(destination.path, group_full_path) if destination
+        group_full_path = File.join(destination.full_path, group_full_path) if destination
         group = Group.find_by_full_path(group_full_path) ||
           create_group_with_parents(group_full_path)
 

From 98d29f6e78526d9bc35233a1049a502294f56384 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 15:46:39 +0300
Subject: [PATCH 058/113] Add ability to disable manifest import

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/application_controller.rb         | 12 +++++++++++-
 app/controllers/import/manifest_controller.rb     |  5 +++++
 app/views/projects/_import_project_pane.html.haml |  9 +++++----
 3 files changed, 21 insertions(+), 5 deletions(-)

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 21cc6dfdd16..07089ada51d 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -30,7 +30,13 @@ class ApplicationController < ActionController::Base
   protect_from_forgery with: :exception, prepend: true
 
   helper_method :can?
-  helper_method :import_sources_enabled?, :github_import_enabled?, :gitea_import_enabled?, :github_import_configured?, :gitlab_import_enabled?, :gitlab_import_configured?, :bitbucket_import_enabled?, :bitbucket_import_configured?, :google_code_import_enabled?, :fogbugz_import_enabled?, :git_import_enabled?, :gitlab_project_import_enabled?
+  helper_method :import_sources_enabled?, :github_import_enabled?,
+    :gitea_import_enabled?, :github_import_configured?,
+    :gitlab_import_enabled?, :gitlab_import_configured?,
+    :bitbucket_import_enabled?, :bitbucket_import_configured?,
+    :google_code_import_enabled?, :fogbugz_import_enabled?,
+    :git_import_enabled?, :gitlab_project_import_enabled?,
+    :manifest_import_enabled?
 
   rescue_from Encoding::CompatibilityError do |exception|
     log_exception(exception)
@@ -351,6 +357,10 @@ class ApplicationController < ActionController::Base
     Gitlab::CurrentSettings.import_sources.include?('gitlab_project')
   end
 
+  def manifest_import_enabled?
+    Gitlab::CurrentSettings.import_sources.include?('manifest')
+  end
+
   # U2F (universal 2nd factor) devices need a unique identifier for the application
   # to perform authentication.
   # https://developers.yubico.com/U2F/App_ID.html
diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index c183bbe1ded..1af686bfa83 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -1,4 +1,5 @@
 class Import::ManifestController < Import::BaseController
+  before_action :verify_import_enabled
   before_action :ensure_import_vars, only: [:create, :status]
 
   def new
@@ -80,4 +81,8 @@ class Import::ManifestController < Import::BaseController
       .where(creator_id: current_user)
       .includes(:import_state)
   end
+
+  def verify_import_enabled
+    render_404 unless manifest_import_enabled?
+  end
 end
diff --git a/app/views/projects/_import_project_pane.html.haml b/app/views/projects/_import_project_pane.html.haml
index 7cb5d51bec1..8472714b8a5 100644
--- a/app/views/projects/_import_project_pane.html.haml
+++ b/app/views/projects/_import_project_pane.html.haml
@@ -38,13 +38,14 @@
           = link_to new_import_gitea_path, class: 'btn import_gitea' do
             = custom_icon('go_logo')
             Gitea
-      - if git_import_enabled?
-        %div
+      %div
+        - if git_import_enabled?
           %button.btn.js-toggle-button.js-import-git-toggle-button{ type: "button", data: { toggle_open_class: 'active' } }
             = icon('git', text: 'Repo by URL')
-        %div
+      %div
+        - if manifest_import_enabled?
           %button.btn{ type: "button" }
-            = icon('git', text: 'Manifest file')
+            = icon('file', text: 'Manifest file')
 
   .js-toggle-content.toggle-import-form{ class: ('hide' if active_tab != 'import') }
     = form_for @project, html: { class: 'new_project' } do |f|

From b42b3796aec4c5d8ad82c1e5bf7c9b91efe0a7cc Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 17:30:22 +0300
Subject: [PATCH 059/113] Add documentation for manifest import feature

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 doc/api/settings.md                           |   2 +-
 .../project/import/img/manifest_status.png    | Bin 0 -> 34878 bytes
 .../project/import/img/manifest_upload.png    | Bin 0 -> 17455 bytes
 doc/user/project/import/index.md              |   1 +
 doc/user/project/import/manifest.md           |  44 ++++++++++++++++++
 5 files changed, 46 insertions(+), 1 deletion(-)
 create mode 100644 doc/user/project/import/img/manifest_status.png
 create mode 100644 doc/user/project/import/img/manifest_upload.png
 create mode 100644 doc/user/project/import/manifest.md

diff --git a/doc/api/settings.md b/doc/api/settings.md
index e6b207d8746..b6f2101fc7b 100644
--- a/doc/api/settings.md
+++ b/doc/api/settings.md
@@ -105,7 +105,7 @@ PUT /application/settings
 | `housekeeping_gc_period`                 | integer          | no                                            | Number of Git pushes after which 'git gc' is run.                                                                                                                                                                                                                                                                                                                                                                                                         |
 | `housekeeping_incremental_repack_period` | integer          | no                                            | Number of Git pushes after which an incremental 'git repack' is run.                                                                                                                                                                                                                                                                                                                                                                                      |
 | `html_emails_enabled`                    | boolean          | no                                            | Enable HTML emails                                                                                                                                                                                                                                                                                                                                                                                                                                        |
-| `import_sources`                         | Array of strings | no                                            | Sources to allow project import from, possible values: "github bitbucket gitlab google_code fogbugz git gitlab_project                                                                                                                                                                                                                                                                                                                                    |
+| `import_sources`                         | Array of strings | no                                            | Sources to allow project import from, possible values: "github bitbucket gitlab google_code fogbugz git gitlab_project manifest                                                                                                                                                                                                                                                                                                                           |
 | `koding_enabled`                         | boolean          | no                                            | Enable Koding integration. Default is `false`.                                                                                                                                                                                                                                                                                                                                                                                                            |
 | `koding_url`                             | string           | yes (if `koding_enabled` is `true`)           | The Koding instance URL for integration.                                                                                                                                                                                                                                                                                                                                                                                                                  |
 | `max_artifacts_size`                     | integer          | no                                            | Maximum artifacts size in MB                                                                                                                                                                                                                                                                                                                                                                                                                              |
diff --git a/doc/user/project/import/img/manifest_status.png b/doc/user/project/import/img/manifest_status.png
new file mode 100644
index 0000000000000000000000000000000000000000..b706116a2accb5ed94cc218a68cc909a532f61f0
GIT binary patch
literal 34878
zcmc$_WmH_>x29VJ4;EYsNstiS3wI3~Ja}*`G`PEj6z=Zs?oQ$E7J|FGUw(c1oPT$p
zwsFU}<JO1$VfmPA&bimK-&LXC<R#JG6TJrj0BB#O#FPL4cpw1qP7ew8tz-b@+z9}H
z1$>iL5r2JseSUqJo*fz9zP(uO%FJn8e}0)AY;EjsU%GyNeAp@}Em&%fwX?DEwDGN;
zJAQrs<6JoR{QPn~o5;w>C}L56`}#T-`&Bu9s@mpL^!WL5zV7S8T~Y1C#dsuZ)Wq$<
zL}7jFN|}uXq+xq|du4qVS{yiX_4;^s`TBZQ;AczEB-FV5`1&wy!%6*TV<%sm@)Nm7
znlu%?SlrRWQ_9S3v^OLsA)$En?)CMsEF(0gai}HMDy9AJ<?H3!5PqT7Mgb{jXJ-!&
z4?C@%p7zpqX+3p*GV)%KumBA*Ia`+Ru5zjh`N5hNdVCCw3W4PvuKaSbZk)W}EIs%7
zhqWR;A>o9|<{$$`F|*$aj10Uc&RR^&lyceov!%ULs~i1!zXr|@kB;me>SI`_V$1So
z(iEBLb!<bt+_H;3sHp3jt06X@1lj0c??ylBMbLulqmtcKtz9OrUW4)?UUusw<EKyF
ztb8@{$)J$guT#daCHXt`?Lv0_&{ERM1hrQ|X`!L<XBuUnEbEGO(U{50z4hzsYmun#
zTxUhE<{feh8{edsoFu)T<Ch;fi$8+AW-@-f9Ci7sQrg7DU)?|Y1~;haYdcAPmf*Ab
z#ILI%^rd5W9K!dx)1P)GMWkbAh>|>3C#9QIF(9(FhD^lY*i2hFp-ml<OD>w8HPB}i
zRhpOQ8l6zrQJ!cdPg613Dq60OA0d_6okdivYTew|(*KLF#IbU=Sff-uY+|fqIj?DV
zqM^ehYWtR;rcicpCb3pEuRg>fC#G#Y&2xBcX4FBhWGJV<+@^P|WwJ*vzdUAcykouC
zue-l+Z6fXOMEiDQ$KQU#*3nNC8lR|WK2gfzh4p=+6e45y<))&MqM{)KrK(bW`AA_z
z__MivcdTl6!lA6aW4EVyxlhBg-l)7M^EXdcq;%oV1QQhvS5OJ3MFUIfAke&?$h@U~
zcS4Mcrg>w6(5CAX6{l=MjY@Vmfon(o7Bqi)_!Ffn5S;856VUKyRE~;9L|=!Jm!}T^
z2)O?$CamHDbF>t!1ysiqI_E`z?Uq8=KY_E=3F)GU+(Rx6tjlj)UfBPXogayC5)0Sb
zVx4>Y$Nj?e#GQ@R?|UR^UMiV!P{FW&MVgI?&|8rGZ+>Sb_8{EBifoskp<H>!p9Tv&
zWTF6_WUAs^#NpsLRay$wYKdBxp5J{}WaS|%`Loq(khvicM~2$6ZgUT=VZli>S><EK
zCmJL`VM&Llf@q_n+T!65k#4KSCJ4k4Mj72uTh-ckuDL92gjUhka~<K%vyIqWs|LvY
zcu*`hw5b#4yh3<#a<9(SI)1IRYB265{uKCJWZNj9^K^RVOFnq8Jk`OYU;hjC=I41P
zh{T~yG&o{!vW(T1-a#rQ+*v*STbY8)`BxI2?Rz@%Xs%VOos+2+PO9tlX!p~WR~S!b
zO8LG@ff@Q+lM~tS-{>W3$N-#TNL*C8*jDFvQ(9IK>B;rRs{BFccku<{qwd}lDbFx`
zL5?IhE(Q(bk_`f7E4p({)e?77LN|wRmZSGo6g<&h;9{0M<p|FCJ#6aQ=8M4`1^%*C
zv}qG@F_WO<l_cR=Sn4`ZzMIRp@n%@Jqm?TaL)q&rx9O?Nws(NQrh-2zL=oCjVnkG!
zCm=n+R>41MNY3JIE^#^`co9i#`=J>Jv4v8M;gi}xCV2(zDan|cDNaI?wDKEG-ksLD
zDDG*A0>|F8ae9XnuWE`YKIIwC{Uu!FC9_?uB-1V3vhe+y4F-9RWaq^q>>HUVs$(p`
zmxVP0beyl`_Fb=$?$02JZizUJ@2-EiNYN!3hks4YT0JQodcV%s?+%qFDD~9ZQCbPg
z0^9ncnv&=&97bk~4rU{D2J0usMof#T?2JMA^J4XK9LczgMe~N5T7P#TfX0IQCs0s|
zID+3H)VhEFloK%u_^AW3lluv4NC(6yQx4I&(KjS#bN`xgtgX2$A?Q8M{mg0YTz`A)
zs;hUlBso>G#1)f-dx<%HxG^KkQQtujo!D+$1JO}31DNID3x1#tS8+YJX3`~FB601a
z$H5KOvsJoI3ze$iZJ&a+tD56rSNF!{?+{Ky_giG}Ypk@dmd!BukL4a|gYZp)#%psO
zx=SV#L@X<S&!7Wrro#d4G+j^H#VhFvXquZ#2@VcmiGVd@WBp9Vd>Z-}e6pj@_hh^D
z$6YVp!(fR4_j<oKPQ6XExB^Z6-l~-FYX_+|=Md1QnAE+`{M)Qs&0;NCd(!VUsMu8P
zxwNC~+R)yldaq0o`t?w>Agi~g^VfBlPWuiig;p6#i*die(&ORqQo7~`JqnvNEnRdc
z7p*zWX-4V=@6&2JZ!W;!J_^W%`(w`QB0S(h`+k+%JG(^ue-p+3RCOMED*`@x!~Y+e
z{adxq>bbMDSn3pm)-NN&m)|5z-o>SCr;LEJf=I6ClhvOFqZtBT3Yr&<a*iUcq81np
z_7Cw?k!e+%ypDw|Ym9<@e+1Ou!vaiLi**dz%6V9+T~YVG)r^>4WsQp4mn1%W={Z5e
z`yGn^Y3n;*Okw_(AQGFh-R3Z(hNvCe2o@8t)oW!gG=}Q!jG^JX<~ceqMOF^*fcJCI
zEOjxXf(NS=Pcc<8dMu6R)2`}Um5TU*sq<T=+&`+%A6Mx6{7s%>>87U7vJM{G<og`X
z{6b>h*5(EL*%Pk=au<l3$@-IyUEH7C=l;^}X_8W;o6;SmU$dsh64tNBlch|CR(#NM
zT@DcPT`H_t8fNc+ToTsh>qaFaj5U9D5GO0)z-(#S@yKouRq*!@xhfrz<ygYdAjG5l
zuA5iZt2HAOcU4<_nhX~vnju$mexC{u(qD2}F_LDK<4j|>TFIAd^TaJ?TBs&z(@q`<
zI)UC*dQ}yj8uB+^LqE-y_u@X2w>|RnyHn)t1j@7cC5@$69cd8iu0ommiBzutrthj+
zT1Ak7i@seB`5Yw0pa15*#2;onWs*AxOVEM?yq|$qq|a!&%Hk{KLzWYCUMDxfH#YRJ
zixcqUSf_Q9zmummF74|29OKu<_-%emJQFr8LRZcXKu)G)l)CSi?i@p<(zwee@kPmb
z{rke3`~+>_gn%v9(>0%iv6p3mY3DX4$~j9m8jKE3<!T1Ws>gN3c3#1T^A>%(<6G@i
zob+=;^13BDUlSMq%I>gfwiKe2cXV-hSDkqmAP51O_Gh>~tF|1mbLLgA+c$x==XWj8
zbK3o{XeH;rYZQSsJ@;>+Zn^muEH&k1BkCw?5&$Hky2ARPe8?ldW0n}!;FHzJs^Ft_
zY<mI8PnMSW3P{sB+LD<~2BM0k)-jtxi}$fK5Z|1_$FF{JuBga058|%eEDxm1m|+S_
zoz!ou&wcQ736@=ElsoJ)rdD|K3Sg~b$1!kpZ-UOT`1UPrj;EH@o=4W>wlM?(0K%8i
z&3~6bW1iV_ZdS28btChkxd#)q2afJ!rJ5-PZ<C+a+1WV)J;%Rp_aBs?>(<v7*>59d
z`iuj`p{MlK>sq$M8S1mj7<(nvM!Y-T^<<0OMFi+C9DEN@*y5!tB~7Cz(b@79UAnbs
zV7>jYE<_EnMz_SvSwt11nSA>u*F3{e&r7xRVi)C)1RzBE$6F2no_(g~t?`eEak@YZ
z&Z#DSy>Yc!TQ*3F`TAmt2=D{F1I(Q*IjR8w8o-qfSU~o>|83NtAv))Xdu3g?RCuQ<
z=sx~gQrIBTOpMV&mF1|or0^a9Mn!J1k?r4j&y4T9%Io%Us#d2@p4~^@W4_n`{*LcY
zk9*60hU(cH^I!JVD7p5--wQtO+^_Uji=FEt4px;jI3jO~N$kB3B^JZt_8$<I3czor
zBs4`Sz}S-2iODkRNG1N$aW_`W=Vlo-ji@?W<nF9i#=k15yiG<5Y*u!hw$Ll;oHAy#
z)EBrUa+#Hs@RA>8c?~|)u8^4Ilwsw#OnNFLC28k4znT2}I}$FChJqqz(p$14B$Le4
z&@ww%<ow~*LXU1ZyYpf>mU=u`a&B^W>lrBtp-C6=K<X-RCn?S7@ulh)vj`ReAt5d!
zP&D}U?svpk$9NS4hv$h*BeWRn3GZ;F3Rb%#j9XP^;+*sN{D;-o#9Q3yzbW#qtEaGt
zh{_|9bm$e?O}zN5<A<ZwRkUO7-k*?knA+-}qx6z&;(MIMpKumCJ%}v(V0Kp1%y8YH
z)He^;MjUjmc%u0pD)y0vyg3@6KVn1I?9PEGl{Fb(SVv3yw!O;2KN=0mEks6#QdPLF
zam|;^^skkMUYa}bhiMXKi>4PlgAG}?R<Nxys(&1>^mRGcso4MWufx+onMF){uRxiC
z*@r|qu?YG7{#y{F44D*Y`bQnvD-YY_c*wH6;P|`3IqU;ut(->Sb>t=I+t_eb3~yrp
zTwZwzljnl^m7jmjd|o|!-sbg8_st;eifL95dO<}iI^$;~Y<Y#o_=`Np*6ew@m*8#R
zJU$R%!}FZf(UuYIK2S%Ih496)NJatrb6m!b5l!}9g!5*UyR#v84K3FbiqVRi4|!V5
z>#$VDCxJP)$2Pgh8|-DBw;g(+;L@&8a_4rrU}?};rEw3R$utpg+eWIO8fc<kDrXpQ
zc)<Y~aapUMtZOdRYrEpn$DdUWncU5UyqZ$K?YxK)MI~$Xh<LxNs%7@5WRz?*dCr`#
zQ7yb<cD(na)Yq;r4mk>mU%)u-5yTW)xWHrTfH1N;seDM`=am>LH2VH~zwU8bCc$q^
z)@a3byw~iNt)tnCqIjAb!|q?QsZs8j#U7{ZN>4Vx9fxf=8tJ8t9uXqzJbv#ghr}g)
zlocv}{mN4oMYVZ`Uene&WK?CVld5x=-EgC1h*_t(XCE*5X)Q(~v?veo;agEy<9G9p
z%@C{)$V*5_1P(w^et9VZvf4T9!f*g4)aeHB1n2FW1<|_8OaLW#YG9Z6z4z6)BK$;M
zVIFqX!GX6enJ{bDuxW7##s$31QK--~u$O4?Y63N!pDbFf*ilmfN-rFJGpoJBhTWH&
zD>1}&SCNFTV3-r0nd&BDWdHNpYgsTlw&B3h&0|lF%~5W!jmUp%?#<2u#+W7V?io)C
z%S{4*{8_D43JR;lbn|y`Vr6Be<pUj57<bEAZulB(b`&h!RkB4us`x<lvZjV%54e3F
zE3iN(TCi3llikBwDp}t>I1=0gqA+Ji+PM3y1V$zJHPU;;AAJf*Mli0N9S@Q&taVF#
z3dU!C`SZMcTNY&xiDmeL*ZPkdf5`WrtpP+Xrw2DjWj_^ab+l%RyT`V62RPQdX&ySj
zg7+VRj!ysVxv3$Uu|mmrSRdqr3&>XRqS<;VJ#bsL%vPM8b4RiaVOJ-ccN-nFf%P5h
z`T{<CeP&v?E`QU}7oIU2b6KztO2n^GqxeW0|6L`<e7L%5G`n-kh&_7Ia}$pS9wAy_
z=FlGV?+o^o-3P~(W1A}8DtS}GlhiVSoA<R+ZT%8f<AxN25kT7b0X@vV^?On9%%XXe
z_}h-cL!q@X5KfoUz4iwZ)HzrWnS&o_WVB<Zn;+NcmpTW{h`_S_ua4+ee;*DfMA}b8
z(QYsCz(R;ppT$_KuEk-WdWXBNPb!Zij4IpF1&W%U&Qc#2SraPHPem2~%Ziz8zN!{W
zK2R|~0_KZ<)Mtn>cno;{`nT1JaF(Z~^!oR^t~CYnr9pbm7m`Ve5g-e%b{%7Xcy7g(
zFBca^=f_n0V%iB?Ny!}I0>%w<#{P_Y8W|a>NLk!DvpeLFntk<yMJ5i)2u^a=#98S4
z?x{pggnmiyhj2X(+<j-{VsKhy#E#=79i{VRI-B2zU|Jp*Q@oEJDVupkWAcc9fv{{m
zTd@x&fZz@1(xN}qVbmC9dNEdhxK1etcgR#Ey>5syTh~b8bSt;$3C?1s%JXDwESR*G
zcR%#^YH~<78|E$Y`nBN8!<-XdF0eH@o`lw0qNvqbnE_1&R=;LFqONFRk*a;K)|K=-
zaS<eZOW);NwjQ_eG#r1fCkyKK7`bx^IFhfpe}!G}uC&RJUO;*B>RRg^R*Rq*_qpLl
znv3q-pfEnA!LUqf_MvR`0_o2~p~?OVsd8x#nR3I?yZq_m_out2oNsP#o2QKLb<-gP
zHW7UO2=8?M>rX|*-x=oqxuf+hYQDGamPik2d2&CZ62<eB&&nr5$c7GvUQ|FLE28!E
z+IX%6oemZdU<eR=GEJqrD8Z3|*wnBhGNQr8xh=T54+U3eXqyZ#14#dqceM{$ilwQc
z`zWCBhRaoJ7#px{?GE#e(dH*1V7nEw6A1IKhky%(kUwYp0ypfagdcOb_cAnENE8{p
zz^pV+mCIor?-msXX&#Ylpbw$=;$7IgJ#3tnfdtw7wv!{ueO-5RcV}lNhnkpGnFbnr
z=St^xveAx9;}_VwL6w@0LE8WidRrYvM#Az=LER{z%zNQTV9v864mF~9lei<Me>cav
zyv|=+Kk?jID$bYb4{%LYjl-pe>g&z6zOB>U)XZwSoLF$e*0DE1XuQ)ORxqXAcXC5r
zj{OVRioqgSFr6&<+HgCodBExFk~_T4@Xp4Yb=;ZjmD1@IHbN2^V5jnzk{@-~?en7&
zVZq2I{7**y%O+b;R^bm@5@bu%cvsdu=~Er2D_oI(8B)<j(lBQPOI-Vb3g56rjVlqK
z`>n6CSn=FXw$s)OSvsF}GPemdZ}IC3&L&d$;R@(2&VRND;IS5twhQ4K+Hy*?#{8Iz
zak4qX#j-an`iNw|SwGe+v~R)bgxNH07%q>x#=_6pLXdwJ`cf6+2aLEzq1=}d1esHX
z)xAa+6b$$}<p|US61X=1JS--72w8%-Du5iuRFhVu{;^9`qS(De3kyq+Yo!#XBZ{{T
zaXJaH20Ul}HbJ<PbHqm$HeIVcb1;GLeCo#?YxaIAy5;$=7o?{`$0^;_Em3dFF^ng-
z;CI^8D&*)u9B-_0%~x!~z7!+2ewZ*8=LE%DkGKt-77ICB_<fW<g3fI)TAj=U%Wzh+
zySV)N@@%@YASnhlXk?A)Tjg1R(y-z0uRwPE%EOv~m!$KC*3QER5`G^CATYHBT9JRl
z=<%(8uO>0Kv<=Sq;&R&e1LZ`I`OYLRiwmZ%SL|>bZf93m{I=I$0=|~qzI2^dtw4r#
zwNRg}><yFtS?Sr`Ps3>hvjQ6*<2sEU33Ji(Z$)@3iSdeRFs*dI%V1-^@P_?{joJS+
zAD?#?Z1Yk;-SU&#6+=O29KNY4^#h!z>4XQW(K}@>!$xTV52y09gocF*k7|X|n+r<L
zcwE1aoSMil+$>+*=6b!6-hA@@er-W69KI>)W5|W*_?O2)dCw03q#gj^Q1%BbCU&do
z2ehYzkO4zL#Et}j^IaomCj?*(XS=x#fcE@6q5zb~=Py0@*CoULwWs+{(fGH+#3$kx
z32Uch(|_$p;RA$OLHhePlr_vh&wn5A`vPZ9Mt(V0I5iGUTPMI35aNUcpf0V;OwhL_
zSRXcu`msZ-NJcQjl}cs7YHI(f9z%5jPWj!cTxvdnq4rVgv*^u=p1P*>y}HvF4M^SL
zi%l7KM!?E)3O4CU!YTC=I^s4oZ%kfq7uO?l(um>4Xb=(o(AGE9W}mIg#sP=qJz<mV
zKzL2D#S+|aThC7lyxSS868qU-GO*82-nvR))gImfENA?Zg56tJ3yQ1(M+Y6YF@FR7
z*X|U-UusJzze@VNb94@^+3!k|#ctK(@qw7~fE$%DzewYPK5shuIL_vDrh5k2Zyx1W
z<oxtI*`#oJ07p14CgN=C_v5YSKhTlPF1pqbtQImSc#s(KIcBu+wy9Lq930t^q^4*H
zVz^r-09&%YsQS%}ZRWvOmSlJvWyAq5anFMAv#vj^{_NuN-h#;s0;p(RCF<27XWI}X
zy{r>ZG%H42e92pOY(II(*;-@L7V6=Mh%Ft3FaSXH4%<)z@mxmij-!SBF<LGw^N3py
zZ)Q;kVSE|5Z9QyHJs4;ElP_sy;xyT|)5tzl=nVqdOr(;v>8KF*#G@L!cCyx$)w^}#
zys^E?oE5WoL3IOe`wt&U=F!5eNBPMGm+m;EhfBE~S)xKyJo1x6cf3%`Ok?of&6c+g
z89U1H@K*LpTrz+ualo);2;aGSD46lxn5Mn~sQP8DYvfG-XFo)juK)4{%{qI%t8}38
z>KoiX*bL4m-sNJ$rzEMIx>O+Hh;3ZUI?<(PJmQFmY*w~SNn=oF0gF;FU>4Q#PXJ!Z
zl);7@r`N$kedtA`Erm&w<a{*d{bQg$1K{mM<I*Fya16Z}8ba3eu{UICVUZgCupGwP
zDuAE()4F`<Q?vcF1<lAz@^l>=>`d5f$+y^#M|9*wWUR)5Nz*W``<FmYqDA9Q?y?m#
zLkOIx?X-*BDE9?Wjo$}are?{pmc$~B7QA(c?WjL$M}qXr(W|O_eEah_uQg8X;Sfap
zSi*S;)~rh0mgwi|4;J!^uyTU>XNele%AIkbosPV*L0vWucjMO4;J26~>e}A@Wa_Vr
zyMDkn7$WcEPOZYEW<RU5_(pRVpG}rh;})QLGs{mN(aRkz>(mivsg*065X33SDxei+
z9cuhi_kJ6i?UW;hlf3tS;`43J$ln(0)Z8lt*vUp+=AvvdmbNMeokqp5$#K{Or=}>B
zOXA6D`_1zBQmqS{p$nnx)VR9u+9+Vym4JewUfH<cA@lPC^J6>BzKT4b{uF(8;r1YV
zXD-%M#1uE+7K7PzUid|g6BN=rUnA#35WnjPFr-oV1F_EsbrIqs977ISb*nTL{n*P_
z5GGQcbBHq}W2(nD{83%am&A0yK%1PEFX&7bRWn~rWBDW!b>sOnjbDyb7vak0;MGLN
z%rayet01I2pZ8r0!}70Mf%iE^a9B1zr14a})@?IKxhpmv8mg*}--EM}Rtx*4sM92;
zNs);5=h!1WyKtJyO;6=gYMNmAS|hby2xRxIvu(C5#F1Htw6x|#QGWD;M9bE-UMasM
zoYrtgKFZYA`<^&{W(}*%x&a0PwP2OqEMvcL!}UDy%Q`?~mm4;CE(7-L7>F9Lh9aik
znb2pWFcRqRLwReh$Q4{;rP42Kl?6MYN~D~~Gg<2!h9E|z4zbvhzyQan5UqqJ3yi&_
zb_qXmki^v!?+J89NFw!EDV7|ug_Sa5FDrQ}$|8MhUnHYOtV27jlCeps>HPWkZ-7BM
z7Uw&V0bcs@kDGDfi=0lSV2oc_24bI6gYP{aUg>G!Y(x~ZE73CsCew4Dd$Q7W={Qfi
z+@Kv5-r`H8odrIA`WQIxw<WB`sv-m&+nm;?C9}SL;Uwh?cs`?hF)RoV1pxE`Az5f?
zA>tyz*508Z032&LEZcvj?|)C+|5oIZ0~qTLd-uPrM`Hf@Pgj9QlMmS9H^;AW$SI3x
zk00VYdX46+6BB+2xuUN}MRAUdB~IQtza!vOz+)JLib=^bOZ}y%CAT0zrOXfYHSw4G
z0M1M~H;~zINkPanFSSlY_|Uobn!4<mY+;4qE#^ITH^v!LT<kv1zq=wj-|yby*6siz
z4S=jVa~v^M!=7beh@hjbqz|-vd-W4uhGE>qs!n41!qQyL(tBWu%Z!SZPTf8^E8Oma
z);cUU_2RM?^%T{@@T=M9zYC&zGp=^yJ(m2<Kb%5bOim`_whaKwcvinqg}jJsw6(QG
zxN#gY=x>(Tpk_Jj(P02c?CIR@usXYE3AQFOFZ^VdIta!u(zGUb)(mYwqK)*fD@#4j
zGLK)AFnqDGz7)iFn^HaS5PYKIsJr4p(QWQ4Ut^l(e)L~7OB-sO55~eAnEQTw=r3uj
zb-?$SjW0&_`MEHGOjBtY?w?uN$ReSptz(}G5bz{FEx94v7oC#W?&++3UC`3(>0)mu
z4pztxVt*`~yM3-WvKkxG;Xnz?f6WGuto2Q2!Bu1G*Jr%PV!0C<okc%wex*PzjllI~
z2yG$zGHHH&O%V)<aCZ-mf8EM(*54G-ic+GAY8TJ52-=GTH!q7ZWVV>9XmNMuXc2My
zgtfv@7Q6=RA3pAn{4Pc($6ubUBHt!?J=c7!rB*4PIR^xIUHMsSs!;W%J&Cc$;ZO(-
zuEVjDgu$S`;Fvuyk=?ng9H^7<SG{kp4O(#v@$92@Y;(cQbl33YMDYN1Ey=&`QGs~c
zKdO|f)CJ3Bt8xu>i>^7Fn()M|3YOGs{LsSM&Um2ezJW4cmykUp*#5Yrx=3&f0XwiB
zJ|cz#U(Z>n@EH2O!JM${?2YNr#t6s{H{})co2kFvS^G^-Iew3udX=yK<bk)%5I4Sz
z4;utgGi1;`z*{cYNommgIQIVH7+;r_r@6MBMNrFJ&tuwvy0sO}Tbi0*&3xIp^0$L-
z&wYk=wVrIJN?t>xY|SU<>bdr*#&q_2raDIpwEnf0MixO-;$e&0W4ah_3fa0J35XXK
z{+TG{cd0^*GSZ&rM!#Ai4DkBJAN*^7@5N&RctTdD3gVO+oH^ayel&f4{_wKlmVXb+
z2v$kK2%9bLFss@+g5|lxn_;g9?+dHiXHjp5z9`TFnk`T=_1U=ETkk7X`t(2Ss}@_>
zKJs~z><2U|&CVN+7Ux=<OpBsgDfKhemV_I9mR?R0@-J?mNIxJ`!Ok4lfwZ~d5hk*9
zl@+7w?YTCR=}t=1Fa5H{W0CUbamtcx8%cc*Gb%#`lIT5X-?^<C6pXX5&}s3Y(mEcy
zHBS!L?;kfN0b9gc&P2PlCJlly=5zj-vFXzNJ~qO0^Fp35b74LTO<v?j=HVCG(MB&&
zF@yJ+wzn>_$Z94Fw{o`AlvgDO-z6=C@X=Ms!9_u&;#0QoL%$0f8#rb2y^6bLcIq-!
z)Ou6o@Je!C9M?&tXkrPQ7Tu?GDR~*xPkN#KlyUI-wY)?pNozH((oV?to>Fd41a|?y
z%8LJMec%n!il~vnR#Bef5$n!pWOx2(3P0<wBk83&x7$>FwRgX{e6{13a^?R3AXhZW
zMBzD9mE0k}-5Q+Fq|Bb$IeR2j`b;9zLzO)K+$W8BbOu6FghNRGOl=P50Cp;wNisz%
zX^4IH_P^=`qvV`7Fu{z?nzi<`@jvTM;Et1{nB}A(sV4~C7WMnoYWJnN?%B&>i3Ibq
zfuHy#6agaRn_0sN6Kk}`jWk>;+K^9<kFlC;W^C4(HY}t(+MA-;4j0@_%%fc!M|4Zg
zd0pONav-xl{65&7;PWrRbE@?mt{;8Y1tV-KhlM$QHEB!xTi6oSG@2X0ng-R*v9DE9
zr_DJ(uZaE^tD|2;kChcAL&4edn%{BB0+{K6UW_1e73dMBfuVXQGkjCbA7!nA^r=2K
z)`$<mct3uCB%ImVN2Lx2DC=J_xnq$&JUyJtS}EUiEhOvRHhm0k_*yx!{)y;U`^Ay|
zNG6%NMA-rdtHk}*cDU_9QBW1dlD^>-@>V^25gTw?xn$HNM{3-&V#sO5%m@UMbsxF>
z6ML|0nk@LY8>&9QRE*@kCS~(2TBR8|SM_=kiD13ww~Gd>%QuIXBU86Vf23s7!JlbH
zGL07-g!3j+xm<39-*w?HuQvUZiW=8DJMHhF5Y{^J3I_yL!8+AK?>~)M-J~5vx_gCp
zdKV(r?*^)e?Jk5>JpZN|wsdU}>fzFQyx>)u|6UAPVTI)WX7B+qUX}ANMzwvd%<hp?
z&Rj@lJ5<i;wM!Lr%%VT}^pi1InHJI2!}27D5oE6_zzM`AHJG!kDG<>3o?)|)NE!ce
zQUZxHgqa-U9MXJ7E?4f}%RlqoQ2%+#?Six$(wGzsTw4qw1cyKszs;C<tkfJH9v%lE
z!oE4k)QAJ2nqF@Cn!Q9Nw)1B|B1HaU0~JTh0zqbxagCx;;diI5Knasgkp;u_P=W33
z|6(%<H<2Rp7O?i+=V->XjzS$dL{_+CQIqSUnR_<=q`+|r+|6GI=s~anKJ=iVgZhSs
zVG>Y%nsAypb<fpp=lbppheh&lU9Xi^9v4TmC0K+iYmk8JR;s@>sG5nOxvkJ*fqlVk
za3ZO2%Yb6pPn_`^p?iM9*K1Z5=27D?Hc``Fi`pD)+UbAuEi>`DEiGk^9tr9)Fo^L9
ze!(oQ`Y-}-=Z9hBZzOKUn~6;JQK(suPE$JAZXtwH^avg)5BjGy8Tw{NyG;)qj?gjc
zNk|H04;6O+7pD2W<#B<4Ne*@hLm-5#*vh!~&0{oG)eTh%L2jMT-`;&)xcjxh^<D^3
z1VKo7VS3qE8etAyEDH9HUNY17VE(8win9-GMB;ktsS|os)X)jm)KN5JLYsI*piz8w
z8m*mF1Bwt7kmm*UuX(LT1(5u94Sv@T!6+$?8UI@INtYRHq&JuIm6(sjRu-hm>*=!^
z1mThwtu>3cGAIAMc4EWExC%Z}e%`0KGu`M+(&vzOxEs)ObJDy1iIMb^yHe$esiJ&n
zMQN58q@)?^DB0^V-5Hc&r@*hyYtVk(GyD!8Sax3kAWBMzffzaoMw-FZay@Rnb9Xs{
zod0sSAjcApx*77ZCr;*fL?vneM9pc(<<`rH);wuhKm9N&U5=zvTPLxj|M3lHwyL+D
zDvw{O`0nIj2wR~(0=MoilTHYb5s8N|rxGr%ac0kg^yhCx$iV$NsX+!Sbd-aIeIC`#
zl5Y`YamABnmnI)>TTQqnm`G0WFNfiJVhkG&VlSo+@oS~h+9H_v_e@~WN>qYVATvSe
zrxRobKb`L;WD78!bs-v~7PwY>o&&Cz0!CeMTH9=_bRNfW@LJ(D6%&`#4JWtSkmF?C
zj<uXA@Qj?9a_QW{oNT~F-z_8f)P$leL6j>nt6|TFttYcrtTwEE>ZqIa--4`IKowFD
zp8HcqmCaH@K1>%T?H&eg;jE@D?A&RTny(l7bWK5RmlNjWejl`e6nsRd1CdJ925)5y
zX9jbyYexKDJjAB9TDjlYlW=#TB}2q#Z4T-RA+FCvTe`{67BSjazEPGV<&JlxT|eeA
zMzj}ONK}w@P@PJM#ov#IZDNq~!dptymUeLn^V}}9>X4XcYN0)+H?T6znrszlwH0|L
z4Y*=k5k3q!3Re2lM_@5~m)&=e62eU{OW_kP*Ugo#6v6Q#!7J6Vb;&dpqx)Nj`fNQN
zeWP%U(t)Y??1r`cJ`!Tmy8|}?VcA+c%at3A_%WkHW@X;s&}?NUQM5_g`N{6m2A`dV
zY3X^z3D39hre#w;xA@R@_0EH18g%7<4@0*We)~mrwf+5PK{|InIk=#BIiY%L-X3Va
zDG-k3tbtB-DjY2}Ni}fTtoAZ-Q7++Ugg$9P4-GCn_;7zqtC;BfsNLUM+oRjHH3rXk
zqn`0TXi9w=0qE6ITDUAN(|BctuMH<3vd6z%KkxC^V@(RIt&of||5<f<_)rAQG|+Gy
z7PFJUb|b?d*8z&~=XmwoC0VAbz5a$j8N+8^+9W+<`p#Z_pa;P80NF-aG2r!Gh+dQu
z<nF$q!U)$YPU|eEad3s-r5-YCDaBs_i{-UL0J#~VU)}JkNu~8SAKhm6Q<h++W>OKb
zo}<T~x-sKUraG&g_L4bve=`Sx`^baoPTPb<y%$ME#j$HS^r#-us&{KL+F{M5;3pQg
z!-y-9*DTUVBF2d$k5>tk^O$Zg;ajHocu(|yrcx#Rq8@Ef;gC!<zSXe0nF8Or1}seT
z3Yc2+T;6V84voFvnj<bFT}1lE?$O^gzi<3`^)dqE=W=sjRU@@zfGpte+u1FCZpo#Z
z=#d68&v!CTHI@9z?6B`8VK2Q9k|K^qDUfvAud20D-%#!5cyi*2Yt_epEn7_XCr&T0
zVpT0I%DW3+<}{<{Z_Gl+M$l-@;6^)#>aZI2Ns;>uEzs-p_F}rf$o04kyXvFX4y*Uo
zUrcoCB8ByIw?TB`kF_7|1(AX3PYr+cPW8j;-o1Vf{53Q*=G^t@_Dx&OiT|B9zT#}P
zG1}^vM^kPOlTng;F^<~sR+zb8FMJ$K6%`$qUnjm`fezwu(K57%Jerp4Fkb#lW!BMS
zzxdT)BLh2-LdD3VDitZQLIWV=QBss(oVNn~94SgHWT5z4!NM1;P_b@_w;C+aum7Rx
zQv{RBKYb4WsgCBa`@ib+-;cky`JZQ~dMppZh&*XW`71~kKupxgALaS_6u$Y0Pj*C8
zl1=drQE9J4;|^y^IS<=C-gwW+@xu*Hd_I27!`V!YG+|$3hVZ|mU8^2MbHTtHcZI#5
z1MShGoHdb`%KieGvf9nvo$T6TLF?@#vL@!k{u0;Ey`^$>M&%P&!ZMI0ygj<pYrwbc
zY#lM$(f?P7C^58$I!X`CG@(y5X}jL$HXSu?r%P93zq$XkK!D)JsQ(!?S<~%UBod>^
zbpG}fk>$}}dA8v9qi86x<7Q-OYe2B_(7xDJ)zyCsc6!MGHr?Gw8MhyHIN4<h_BYpU
zJrZq)yvXh{mRymM${BBf0$Y=z?5t|yigSY(XEI(|+LQ1{A#HKMP7nonnZzr`yoP93
z`0>1}Xlxc8IPQJ-v4A-@3?eK~Q-D3$A0<%M?zL5UZfA2kQN7gC+6@h?C(n~6_Y9Ms
zMV<V#=+F?VDdap}Sa0tm*}yIY%XoqC0qX@jzv8rjjqMjG$@BQ&d(=hvt4o>Z5;m>s
zfeS!H&`p?=p*VU&9zj<5E6clBVtJwIDuT|x3cmTT7rq^md0w-V*d>`VmIGzM0Hso;
z`7m{u=7d@2nod*f(&MWL-FLq?QAGNrRoxdTHS6B*Ox&&}C5;)~ju%_uEyRo67kGtM
zwpGbIA4qn<07~wsToxCxY56P{r0N&r>~<2;>E)5zoS2ljE7=oO9jo38I^~7M^nBku
zJ|MFqg*3?uB7j)Il+LgG<{KusNS$B#NSNF<7{9qjhqonZO|uYl-RS_(Gh6d6TptZO
zeFiK_`(#!Pmg_7pZ%`-|h1;LIWh5jM<~Vmu>5ju}G>-xj8fFxH+5e$G^8HIqxT`^`
z$38e&RX3EySe9R4`ii=WUe<boshvoQqc2P>zLSsBV0t0bo>Q)-X@dxR#DYX8qcly}
ziCf0c`!_>IJm)coT=W$;X%`{#ba~dN);Cw3_K@-WRFib`-7L5dpyJWsK8sns+VA!^
zFeDx*7DQV0SDCa;6EPQJuhh5zow`7e71VGh8v%M%I|4DcxMHGXz0~$_2NCANgTpEl
zRVB`v{ZB!lqD}lIRY_Ltykpr+VO2ddg=>sr<cZyKs4jmP>PX^WHPv9IE4~$s3Nsj7
zD{;;+f?Q#emWdo)ld%`^YPBFpIFl!%N1Juk^loBe90LhLT(cAZ>YlMy%~Kl7Ps0Q=
zd@m_Ddd;J=PmQgx!wZw;t-TVa<t=fGwmYVud7CoBtvXco9U9^pN43CvUBDYimF<&S
z;mO<GC~CwiQtBBvASN(p^guJ};P<zc(s#ZwE;FI(zN&=YKvQ=%&dW(CIcW%FpzvZz
z?1OMXK(j`AMhLFTXA|n7OTAdc_ea+k(vO_1%|9I|)^sgvi>PYKA0hH;{{q9}%cFmR
zp#-`F#$srK*`}e^s^4S+7AbZ#iGD5Jj1-u@k|{gp#W}T=i|B8-p97AQ1IGEFa@9P=
z=W{-3Kb|S9YwJ^hnaJjC8zCs07UVy+t8&S9%ohvjhK_y|!>}>0F=r1B+y{{O$*lv#
z6ci4cqmcxXna&kUCtV_TO)-m0%U$p^gn(w`+B(^7*M>qqWgDN_9hyEPXZ55Jf?h~-
zz5udz&nLEJ_H5$LM7v<fJjG-(lq?afeym(EKt+QsJ&>B^1*q}!xxc4+ifc8n-`P|R
zN>~z~$sXMp@C{`-##zacBK^1<-vl1ne}fn>65tA>`A-jc9U+mNoax*1&C43Qc$rl1
z469=!6!_<Ly>k+?&kcLZ&m~=%>J<V>lLH?kGq!x+A|(Xdd1Kx6-SNX>dXNtd`Plvs
zuvjN#kpeEZ+~>Y}{K&&x!79y78vpRCD1I$-i14A}?Voub*3e^bF?6bTK7|JbZ1r;6
zn?EeQR!zZ3IVOiI<Di|?a9v&lk?I^i_g;1bp%K6YGQyZW7VJqSGjA)Q9r3y=LBWim
zL_;D6mAuIjELHNOZrrgC3S<NtWRBr2f1k7yth8|V{$3n+{S>&*Ar>vo>04VY0ED5a
zf%j++8h4pIuFlw>L?<^(ry6&RW>_BzGu6J>+gtxPOq613k5#g3_Ve97g8+>!!V3K&
zc>ZUQcy-i2h^Tn&`!oC)A<Wc6weaj-t23X)gkn92=qsTXz)IUJt%{nrniE;g;SQRx
zkINemd+J)QowRzN#6IXZB+^s#mWsk19%JY4g0m`^5t)E}wp*DNIjyZYoFzi3T>TX2
z>4(27`L|J%J$_(fkQ;oG9qj<QAH)P+-v>dy8c<BxQbNc@g*87b;p^rux<oXZ{xQR!
zV=ALQ{glUU9~19cgUPm#$%q~3vCgn~w1fblM-}(dr$0tolz_xesd#0#xBu~aZ%u79
zOo9{G8y@0&Yu4rx)$E<qJBm86TW-Xp^Y1L#lcDUDf1iZ|niBnryJ)=G%^Bse|0I5F
z!4vt(jEuEJA#W^WpJkYos9CYEG27RF9S}tm2FYqZK0dbJowVWg=LwS!+CTN}885P&
zVJB>RYIJoxd%FbKFYFfvQ6S~s%}jwDp#)ho6%&Ebrn<4sMJDX4qO7{e@e6<R_l)Mc
zx#Ggy5{#g|^#9x*YTQj2m7qndIUj_*(b+bkI7zC&O`73mu0H46o>j1`dEXoQlg|w~
z{LI+>y>vJ=Epw;uVu%<^7<<c$nLauQVH%)A<k%>N&;A9H$FkI*R!*%I>0FyH);qf#
z>LXlKRe*hc&ahNjW>-oAs;1~+Ij%hKQ;fy`<Je6y0@aZW{W?O2!JqYRM%Fh78A>j>
zJQOlH0G@e6&L{3S+$NL$hz!)j1WLl}2`MoC3pr1K>d2XxW|<Ehyx=W4JJ=e<HuerB
z7WV@NW_L+-9L*QNRlBf@YKIP+Rc%bb2WXL0(fWCVo-?IBqT!#cPP@&X;)AW9Q{WJM
z)E^58*JfCV3W&rpkU9AbU!3jWO?I&`lg0SY1{cRKpv|dKsK9K5VOs0?pCmeU=<wxm
z*PFqt`#HXkCOI^Lddz$z#yyxT_lzmtg9Xy&a&UjA=zNq<-SpL4m5{A&E8@pL?{q)l
zuJKLN?EVh|<&J+N&@rXo5&)u4qUTUjQg_4Fjr3$QaoKD+rjGC%0${y3uYIZs1@DGL
zcirOq7|90g+HG`MMStt73xbh@&&@3E=FcX9SOxTqSRxwP$EZX}kSqLSHM_s#G=kGl
z|A6PHWmL4*67d;T&wm2XTH>5v@hePfB$(xf89YuU@-$3sUczBBi;s7VzSejXmC}xl
zi&9p5XXwwLK+eG!qYe)fr?ZK(rD~Hwy27bUN>`F>U21Hmud;Vb$nWckP4%*N6|7fJ
zn~0V<+PvP*AB#wGX8tzP|2=y4uNm|s*Gb&+sVn1bWx0DTg4y%B=DA*<2hz%m(BeNX
zEjiI?us}rP5+G(qSGITbpMjl?i|`x0+@wFmKNNv&b|l18Z-`?d^$nH+>nvflZ$N65
z`_=dP0<8)YeNnxc=ooXLPvWJF-0iz)&h<cIn}FREw2dR&x;D7r!p`>7r(yaPpS8Y7
zIp`dZ_~fw<@?bb~Uc$mc1kF0Y0yya8$8C#PFc2Q;f1?Z`mUC&5UmR=3Y)fI2sZ9%%
z$mA@$b2_{IvGa3ioLw-s8w!8<ZSH@;pn{#3Oz5zgzC2FZ6pNfBy^3jH_jFa(kBzl2
zF&PnT|ARsal!>*AW1A0i^w7ck4$Bk2mHPR8L^pQU7~N+5oCF)v#D7%rXH0q*H>1x(
z#?{%ZL<JMcDld**B9vy2OMYC`RQFGd{V-dEGjgwH1B2b_g&)t)w=Ku3M3psM%JaYM
z@Iuc=o>FP9^A@G@y5<g#rJpyX=X;ZLy;GIbVUFm`Z%uw9V1i*2j~rZaHcjwDuy<Wl
zk`e&no^IBe&lWOdu@FuxUKUj4Mr?+{I_%nm<dlYUIi_mGwHhn;QN*!ZNREk~CF3_Z
zg=lf63Y4n0k8AZz^4%&~5Zh_xd&^6%?=9X)p?nNth8UF$vZ~2@`;p-}t-bW0S*2<0
z5EkW`@tn_+NV1Z;&WTs$6MOf=UG}5@#im04Vd~rK;%Ux0*xVv+G|C5<^!q@H_bru*
zu)|C1mQ&hpaKPqf;$XT+2L1%}?P@e!xd}D<xFgPi^l`5T^xRLlLWT)Un?7=PYAu__
zeRV5un7~>hyd?Njf=_*bL$INdoychlmJ9!QC8m&RI3y;ok>0txX(Ov`M`UuI1QB~m
z^pxPnY$%GNax*Rscc6@0lfQcMq_(zc-X!Vk?FpGkb=5N7c(SOy-sjStVdu0;w2T_!
zs@EeXbg{>;hpXd7V{Tu5N-Y%bdnXKgX^vzUS<tQ4kDJZU!n~>{n$evUncC9bmp{>Z
z9M>QGKH9YGXyj=a{2N0sq3*~1`0Al1Z;sBa7v8e#(?<Ng??7WK6I_eYOt`j-=&xKi
zLZNF$s*UK>jiTkj&&V@y={xliJVNtYb}P*m$T0W*DFug?mX3EVj;>~-y800FF5p+X
z*Uv~(7x<Ue>I3u_a=ViO>f$VcYOS`oh;t8;g-`)k2P`o%jcRM{N$)1_{_g_MgGsQj
zh`H-w^S=Z-DaE^?9UX7@`JZX={|;SW`tfQ1fmFwT$aXMY^Zy0!UfKO;I9~8n?|C8T
z1-#yW+?wb-4n2C@bxvjJxci}?flGqP6)B=O+D)xkJ0sgm>pAXy>)>sD`CI~eQC;*h
zdE(@19Q8G-bNM9m6LQ^iwmZcDuIhMi-OT72Sypr(1uHpFKSO<}cVft`M))*ee7-$=
zaD41JQ=)J4_HObtM9LG@a|P^0YEAYe0PxD8AA=F%@U^F2`ds2qSAKzBN&R8Xe|$#I
z5Lv1SaxFhK6L$TX^7;l7<x0Dcw=A1HBr7{YZ_t_s&$MbVf0}TR`rHMsl{a2F6b&6{
zX)N~iJVUaUNi)@3iLh`*9!FH&98U0>8OC5JvU+zDUwNK{A+`ArzAD3p<$SPegKL_(
zMd!LIKczfkC|mzQq!->pttguOtakYLqJ9H1-7ZfK6koQ<)-Ld0CYDmZZ(-+(6#|iu
z+$al^Bajs~Ev@U^dfVQRF}>5mau!4YRuSp7%a>G;af3ZpmU(NRs9#%AfcQ(lVrfIK
z7-&`5#Da~cS3g_8tn%k94Z)DEP7T0lZ=rqUex{byTT?JKQE~jxv``+7OLKY`F~3y6
zpQV%+j`;B^2j5{jo0jHei#od~mjFf@ojP;>JL-?K0-<T|`_8o-rH+HWP}PY%j;%S-
zBRaLB!@d&0>hM8}#@`y`Ij09nrmD$v_$-4rSrLp?)~$#~`q0kHHl1|zqER>cZaMnP
z>kJcSJ*QKV-t!)(4{QokRL6{{QBI7;nxO5<T|@*;l^IRYd)o*WN#_%#q$@kkF$UFR
z;g*MfXYADY@}A<@7w2d+wv{lU+xeQ*0vbH^#2!yE(9VC=D-r%L^vZLO{}1&_zQzSE
zkayoM+|US`r`^>nHhAV=@+Fin;7YdjF%(umXUXGxsoJx67?mm6L{~#*ewDEdMsYL>
zKaIkbw-U^Rsuln(rR#iqG&qkI-CwFgN!5ROcmGg|x;L)4ozzl|%8@OF)W9r;$16+6
zk&;buX$<b|KR<ytDzBNz0M8Q()KF$-Lq9E5lJ<#9Tfx@sxbL;NtMmqu2#!Z05pGG`
zkNAU{gl|gnRnysZbDw;Mp@CYx1A)rH(zQcQg4Oi09UG@psMC6IKtpyPI$617+oVaW
z8o}}){nZmz=H%Ir1#FHQcPs}tpOGeF`J#y-pRqR`Iq<-XtA4f5oLe=tQvXdJ@NL}T
zldEd%CO$E&#&lKFO+g|@i=^iqzQnHb8|pn0bA1WB5b|x))ir;WkZ=yS-deVVfa)my
z#x@Q({qvrB!8y-FJMnu@I1P2`;VMh%MILM}I8sED;<S}a2Fq^IV3cFb#^8b80cDw-
z1>+GptQ$8<Nx0SMM1GBy6Vb-W4Ymz9dku>i9#@KY2g>Xm#F8>Uc$k6yKkvQaxIc^^
zznABqzB8_=a&||I2!Nitvw_7_!3g_FUpU6yZ>Z4&{y&g4GhCPce^E7AfxOL_kbmOE
zHjsNo(wIWTc!cy5$O#@*Ig)puzs~W1MyHhe63MO?#g9-kg4GDMDO}dzkt|9y6wp;c
zHa-K2i|{YIcg#SscS(UmAtCL~+M*jLg`z%0nJh@_P#DH4=$;@Iq+1a1W|M$ErwLih
z#PHOx@YgNfE-nbZ_EXwst~TkjuG~@8DE=qG)B6^i8tf7Hl>O`M7P4?5_b-rjOB5ZS
z2aw{dGCn4eo_zG%(YVm2Uc@SIb%AnVV9|u@BE+kA@jW+Ys?b_<F;^0|+vUhwP12<a
z&nj5q9%OJ@7gqLH1mW}0z9h6prT|zs>{C5HsFHE*E?8H(K-B}^XLP`Wi3~yH4YCw8
zhA5d3lr~ERCnFoI(!H}uoG<k|BM&oQ>{E9XbiRbS52OyS$Nq}iT}gf{41;Lnnoy{l
z3Kz+*S*IiTYwM%mvMeT^eW=k*;lCd2e(>mlQdYr*vWPSa2VlB}*vtgto7=C7o<u>3
zP!1F3Vs7VRT;wXNDn=wmeu%P%`>|SWZKmt!>Df^85fH43MVjOfS3ZzCKF729r8Tm_
zbb=k;H8B(|_CW!1ki`(w<@%~5^cG*IT~Gu25JZm^h=x1N*f=o&)<$w4VVf*yJ@wiM
zfLx6ziaRYfp2<<_@OUe>B%>Q4Ed`GpC>LFty0M~UKxm=3XvC<9NH7{;)LAPVn*?4k
z_}>`z{8adVWLQL0gH^D{#Q-<r>YEnG?BK3ATWMZ-9i7FdIM^pq4<DwT$$BHp6mwu~
z@FRH`&opQ(WY$cQS|vaD-*Ut+i@}C`iy(-+<|0`8@4-hPejH~Eb<HH~36>`jNVDMR
zAt#V~fq;@iBs`3t{fk@;%Tnw=%t{O*AN=4B;}0}csK~DxAC*{XCKZ><zWnO2X+psx
z3U4p&Q{JulSQN3i2WK$sxrhW`v%Ostpz=6mojI}+a=&tCd|K2HhnW+#Xr`(IQDp(H
z-S@)$ALP;zumk9SE0-p%8X|3~<j$PkEm!bHSNgM@e*4>auCMBN!EFxeMG1l&4ZE?2
z`WL{4zkQJ^z^Gh~gzq;G!5gh+kn7!Aezt<<r9eE31^MA$Wr?}iN}-|XWcM=TCnaA0
zD1M0Xzh1XzRg<)elY1nj!>Uh05^abUn3dBew)X+M`vy5BVr1_BC+T!0p`At7PC-tL
z{L7Rs;kR(nnu74G9?q?;&*+j73wgqvZlieW9U6nUSz+~a1AM4r8r*NUK2pi*pF08&
zJ7_-o&l61a+o;zrdXaT25{K-Xpsz^H>9G?N{!2(bJ8Q|{qR`KAWl*x0N$K(9acY*I
zy`!Dkl+3eWUuq@n<*(2PpOguH?0aJEI@?+(<H>8idVpt8GCkcKhHKUk>Y<%oH=(G@
z>fyZ#URWU!V4vO>?NB#VtI-q(x{=wp4}dx3Dpdt2YP#p;zg2E?J-+Anwm<Y5pIs>5
zzkcMW9hF!O0QFfwtVYGY=y{xW-&ljD+_(dj3EaZax!6#pWyM;|=tdcj)=61+?YZ&}
zlxJNIq<G$>t{RiA+CAKfB(ez~H0P4d3~s#52cxQ}9?unLmOth90l^E29bQ|M$DAlf
z2{s`R+ky6}*^q!YKYwXL{cj02jp;uKHph}c3aXE?lxg)kNF|1M@-xHYVxX#28QEr@
zhBuO;8|q<@T@u}%+bY#SJYZ#hQ8RI}rPQ6H_4X~+>XD<_Yf&}S6sseTa7Rc3yai=S
zg;c(g?d8K+H}bXnhpBN}$&1zhr@6O)YNPA>wXq__N-2dBtWZjk;tdpcibHXy#U;2q
zrC702yl8RP1b2$NLy+Je-1VfrpXWW#{XY7hb-s1JwZbe|N%kbe%$|MyuixxZNG`K$
zRV?fzeys)*>;Le96xq@0apz%-d(j~mRQQTE%_l1L<l`=nAO5-HBT1*1KRlEIs^jej
zf~+`cfONjrVbAXa=|C3VXqkIgW-|5JV<1ruY4UR<ypSZH`gAF`k-d$oN=&9I7`Y3z
zs&3Fu=SE>-)ep*ke2q)z2Fd*GGga10&6yQ*YF4lnN(KMSGa!(EmMYk<SvUWiv(;jM
z5rd9IW=dDTbzQOt&T$Q5Wbn#BTY(Ptexk)90yQ_lu=)PZdaLpUpss);Z#ntN{Cg8k
zTCIx&s|NGgkPpYrIZwu+SX!L}17k8Dpur1&fUJxC&(71VTHD6C;gh4fN3+;RpzGzV
z%eAoE_X=yJ11kmt&5Leb&R8J+aq*KEkz|%7kB<|5bqJ1FTSC1JFHx$e<*BNSfTIc#
zWnMl0D{&TdWtI<h^;$2Dr-LiyekKd?aXBn*s)Vy>%^Ei@n$R$ug3zdLWo4VrLkNLQ
zrRph7`Q%h`1LjmCESLQ(WJ+7ixJ;HoC7KR{n1<bIO!hTL3jofOcsQF1r?B?1Y6XnS
zL*ROg_iLaE6{x?d8#(Eqcyi|Oq91u?A?1hWmA#;T8RJ0Z3I(uB(>~vI)Kf;);isl^
z+Jp(qKp+!dyW5f1%cw{OG5>|bx56iQlFPsS>(i!MB;Yawe3$#2r}0Uq$KBxvYwbAR
zr{}A|U$KzLUiE$J%MPb2EKj?~k3aV>ubvCvM7bN1vb<~e9Hx{1vxCj8@NgR3yZtu~
zcHXGxZyoG9-a${SsR!P}2|<<-6}U}e-_3}>BzH}=K!C?KEiY1r4^h;$%yi9i^XZ*C
zzIGAO1sA=Fikfp1_QI6^AADOMToCu#a#LbPuy2XO@;BT%t>TucoowX0xq01^3$M^2
zENf|z*~Q%GV&8m;*TH!lda-fhL40z`A55$7`#%@3zg_BzPp}yE2r+{u*DpW2oB!{u
z?VkngA1kMn{CmZV$kuxLI-cwP32w<?e}>!Kuc-`g2+O5m$1whR{C)Z_>prHMul2e|
zbqsG0yx&-S2)$Lc9dp|9w?YITb}5BVdW=rb&IGn6%Bnwymo|kUncpx*I&|l6F3BKa
zs~dh5_3y>Dz9e3mX>#zey5mR37;TXy69~DnNZ7cFcpAf1eF@W4mMN`V%+}t$^1g5w
zn4#n|^|F|{{UL@{@kZ_XYLP$;V=`0E+e`{X_-h?Qp60+o*A!9aEx!(>;3~b|nW;a6
z>K&&Qm~?cvS_^jG{B8DTf1uNotHBf9<T@WARvl6c$rqgNB_C^0(tp}S8qJ-UiX;OH
z?7_*k?xKAb0>ZID;?l8VS5IRL5SJlWY*`aReD_k7Kx;^m*5<zG{~bxwOLfT^-!B|e
zmO>OfM6#vH@r5=eSvGUTRo~C`D2V-Ar#h|v51i`9%>Ri~eS9gyF9zgEJiSHj3ctTd
zcpMt{F%RjS#K8qnC*BtXFQ}{52r#WIY0bx}I#pyyQ+JbDJ3j01{g64K5gK3DQDr%`
z4kr$-{N#BZ5FZx7Tx`=nqy{C1fv2%pY+Tb&%!@{=_QggwAefucGH0P!2?ZxlE9gb>
zt}Wn<;X6`>*YCA+C(Gaq9pRTB7B$o|LHddP5kjB@8p(9W-T201XAsrS_v_qO%Cbue
zv^>Qzb&d5iW2k*^1nv%wI8rWsu>lk7?H?iAELu!&uYK{F9=r*Et?jNDtFtNPmT@2b
z(6<CCB4CZ)70*Q(SHO)!-6*XZe#RoNFUj+~MCJ5Uqmm&%Y3AgSXwvv0HoSl)F=W*F
z<#2id3pn=*V*+i{LEW%4RUF+!*0!*qo!FgXFGwByIJ7DwNgQW1JwkU=i3L%8rq*O^
zm*|QYAa2sDp5Ahh?eC4l^Ox4GPqjX&DAv3iOsFlF0b>ikfD*rUzOd!r4hOD4+NR}A
zer&`eVYBg(oQVzWrlO@#P&ruBRA+0jGoj*1!r)`V=T77KIFO0gHt2#JfT)*ikPxa0
zf*-Dxe1Zgwd9wZTF&oXV@SjZYti_($7&&fiN;EZ2nkmarZ!*2{;aKcd=m$beKUjwh
zDmbNjt-Z^JC-!prOSX3V>G*jO%uYrdX`4m1@Qb~aNYx_kU^cY=RyIYmhgtW)K}Q<R
zg=X07TG|a>H{>;NOLFy4-YBy73nCPY#QEd!dI1NZM3j_>&muUMh+k7ikT$;g!M#Wl
z8F7~85ehO;=0+MBi$;`+Lso3`QIZS)xd9#I`zHp}dF}}rLrLe?Ixp$sXJ9|Ov1$^0
z@{+^nn>?4vItl9rc4tJO`O(GZj+X%Na_BPhal31b=nli|cfLn02Weeg(`)IZ9XhNG
zpGeVj*+P?E0&Pv+S;`&bdW@QTO%3sPCeO;6<a=jSm9*5J(U)F-XB0Kgm_uX{2?Pz#
zFw4sseb2G*t=-2wEOy3~>ogSB36_UZaQZtpBLZ`_49OFJo(WP1Jx2bdFPNGSLS)Re
zk9PzN4XGsm2*i>}|0NJR6I?w0I}lq-GYrREuNfaAFpCM8F~}e|e{-HBn@<xj<^U_K
zAUEKwo1SKcFa6q}H^{`mCJ}EX@r!E-cmHo$qjFTm1w#@om@~frm4-Ev<_=DGi{qP;
zszO6yNwovzWCpEl8XLF~`ECX=(q=C^K0xhT0&w+?KW!X+rgA&3_T$cNCGergjfLxv
z%w?Y*>{=|UKIVU-I_>*7zp+;#L2HJ24F547=E>qGRnBtaH|8+;67TKE8pr96LQfqk
z2{eO~hNnyvyei5BU}bDlR$`<P2{x35flA=uOy-7n(L1S26pbUyMfzF_3!*jVt0ojB
z%O*4?WglKj3MT@?1@>kTQ>Qt%84ff{a1j_~Zn2X!ywh#2r8dy^mH$qo$P+_pywbGp
z9lb?XA};O$&;BnAylC$m;`Bj;v(X+DbTb2pn?kZ=Hdrjw$NX@FufJ+~F*x1H;+Kzz
zigFc@sB_w~l2Nf6m$Ru<H#X|-m6gMBwwZXIbv9$*3g(t5jTxOBt*lS97K)Bhum(FJ
zlqAgtnPX*?SL-lbT(vz%Sj&~#KiHTVSn*n86(ts-gG~%K|2`Hwr`BPW#XhWa*yaT<
zz<E7*|IiAI11MH@z8z^Jv%(>zfnI!Pb`bU-<pgBnx~#cZJm@i+j4=!kZuCWtLHNou
zHb6cu*Px_Q^rq+I`I?#FK}BR2G?QQbVnWcK<z6ltZmWYdxHyai!6>>;Z#pUU5IPqX
z@5P4|#*ZtnkjOEgA<2DEu!*OCrosD29FIzfW?1Od(getpw2W?&>2B_AV0bpJZ2&AT
zc?FI~-}Lf7DDbW~ftnTKJ`Yoldf&cc)4cbt4X?97)Nf_gzpQ;DYvvIP2_hZ5Gx7p2
z6_5KRpg2XK#kyUBEcdw<XI~X3LA1?z^|N?u;936N$&(unyT$%8QaT>bRTlpG(yLko
z8V}I7ALv;*ss?_!QJ+>Gnn3Iww+9t19TJvz=HK7Fo#8e)M-7n>3awONE(_{fAStcM
zML!X#$!KIxCkrxBAQug?>F$vui=Zf%K?un2aIkk}8-cR}6OQfY#_8_cm%=>3XP;;g
z@cRz3jZlz(98X-2f#0X7X{*6+neq&CcT~blMfkl{3M4WIl7#1uNA1HHwCtNToWyD(
zytaQ+8(2Z?w}Kq?|91+~HkoT*^r`H>rZzK?q>qr!Dii7$mL``E9$WzPMzS_~oJMhs
z<Y(x#B|mh*u_nZ4w)lzlv)i^+sLT{~r5v%Bp=Bdyf6BYMx?R2;09;F}XY!-ePIn6`
zi{V?EfhnF<PSMFjYpOd(!ZGta$#mYS&~)RX_HbJX1Hf>>TJWA|(Tu_yw^fbF{Lj@p
zG32(AW%3^)VzKZgr$fW%ngsz5BCI)48qFJjC0o(%4)6kDZm-sK!+xkCAfc!!B%!^H
z6J>MyMc4}csm6*8*#AUE;C`7Ei8RlUj^~@#m@wHy;^#eaq6NLqH<bMQsN5eNP&PYB
zj%-{<bJj6fwo4+t-<JIuzBW~{{~B%el(^5|=F#C2&>sNf-Wqtf^j5F%ORH9we(D+O
zrBERB`(aG@72Y#gR=zb8=ti(=qh63j4&de}d>B7cX9G3dX44(yS27#~b;4f^%=L$!
z4eVKhS9))V&c@H=X612`?%!mmPs$IoTU#%5#!q%5CM2qYzoF!YaYcL|VB1&2dUu1G
zbo$p!E30a-zutEK4aAMC=#rRkf13G6aZp`w>S~nXfa*s9!o>(A<t<=D3yf_W#VB)!
zCtCPUz{6t1S(62EcuIQ#knavgE5Dv9J_Nv~3guzrcwckYIlpekd#)2lyxMJ(_zO#I
z5m;?*+mn?DRh{VY#Pk6XECm?;Tb4o!*KG<z1ukjBBjSms>}R9N`--->pEoTwIGQ*^
zPs%Q>XCv}utjp*1#k!w1uAs(9>4=``8yK5Dun&bfk<h&B>rdK)XjYH#-^;SagW|ZK
zp4*~TP3~dVcHCz82Mf;UeCFBt(f|BI=KB3uB;!VrV?os@=sL_<pM2LRAf#$J)&1oJ
z{(f(1+mv<TV7GVESxBKn5{^I!e4j3;_O8W|^F}r1Z}`Z-agmlx{E-)h*xtQntW)Ow
zq(^pQ+f&O2cXAJjVq;VGdt){2G-sU9t2fiX^B#p*<VF5Uq@qV{Vrz4iY&Op|8{Vg-
z@a7<sU?RWzg3g(aMsK<<tE!Vry7|UjWMNkG-33i#U#nN^)5P9;2_z8O@IP7X{y_T3
z`KOE1yBoI~Ask5STZ7RR&KNCxv3AsqNbC7&>&RdNApkPij^w|Z>qO=9u(=ptP3*W$
z)4pg$$s=J${v`gz0_QPy7(JG%GFdTn67;%Hi&w%pH;|~S=5=96$pMO#?sxz)w0OH<
zg$K?A8CAcgJW=TG>HN8v1naNl;9W@?l;234CmwoBd>;E5QyVPKe(I?=$910Kkg}7E
z`04XPEmlyt1azXnkvi35TF5@DyPD|Z<0TqSLJjni>+cCanP!0P089@TB!(J{-!|MB
zVD)3fuM<Tu&<X06O=wpOFR=QM?*IhPZ}uq`D^{5xXBkjm(0Up@{v(iM$t*RrhSeH|
zg{*vNk>-{_xF2MRWTE}V0B?I3Zzfq@#XsYV*HBPpVk1BHk`da|fU(V<*P$h{tWLMR
zH$ArI+YTAaH`^ca43c#k8>p)zBul4T@>+@HSXt&!5e2kt6P7yMm;pYHHH?h#*h%Y)
z4>eoj07|H@9c}$UdvX}v+@e*AN6>kumjFy4fwJA#lqNwdD`m39B89N7M79_AxIG&y
zry#An^u48_Ws|w6HMtF}+<4OEj$(NJ+m3iO@@&7LvK|%GEQqr6)K3@8cCcvq6Y}E@
z?c>G=feX@w=@yrk>90Sz)KQ*Lupv2rv-%uu{c27;4dhp136ffk?{Bj?*qbtQfeU)S
z***YLQ!x2{xwR%uZi(=bzXEU10VH^17=v(gznBFuM{?e@q6h37dd4pCH$Mz3PI<oB
z+^_YXE$q-GNF6yQ_uvZHos93}Z*%vtImzYw7Pj>H^S!OHmxJGxkmzvXb!STUqw3!N
zHWu0)+;Z;@E#s|-^;K)0!59|l8hvWceBOkWgQNiiI+YBD>s--R?NBdQFJm_pA0iZH
zIo1g&QT@K3LYL*hIC~)1u@vB{G({210WrY`;Yqdw*K*HFlAUrST|Ikr$!%B3#|_4U
z7X=t7_)tREAHmX#AEKKcLP)oOiolsSZ_KbVX2)e0mN2~BX+LLANNnpep6*F8f*hcG
zY64?=VC%Za@8{=_;ZlW=vGWYe6%zSozA({Kct}M2c<a-aO+T-TMx`Kfx|hp%`$2~U
ztQHhXFopP<_hT$J9hfSk-uHw8z)r#u!z}qTgNOJFEEb&}%01?i+)@)={>JJf`!YlJ
zjl~9Zuuv}5jHDaLlX-6vQU&>Vc!!c{I81E>0Pth*wmq&|wuAajlo2YVB(%tE9dG?S
z>EnnNZ#gj@|A{9{djlL3<G(!k@%V7;nu7}tRg*G&zm}u>O?Q`sezDQ{2)RVXg<G6b
zr^9+uf&&q4tV+5Zc)=U!(udCG?E58Gnvg6DFvF(kofW=daug9Gcc+;DxJgIEiPPfX
zLZu*kb@S&*xnDj&KZa<tH}B#5obx7$-q0rEJPMLb_czOi+F#>Hwm&wEH;^KBZ#ieV
zowDPf*PB>5gWQ(GDSB8R%prFD?gduESA%{Zb{?S>@nf864n13;JRvg!-wk3?R8TZD
zH{HIVZ^gc!<DSPD#HW0=ovlQUGD0B0P5Q2=p+meg5c1p>*BN!r-D>zviuqWkc8X;W
zdZ$Lo;GxU}Efq2#JA4Jszk|9zaN=N?o*m3ArO${yq;gX7+$WPs5W@L(&VruWd`l!Q
z*1@1|OIpRlMxe^?yrFrV?-~U$4U*WkeU$)vy0=i0l}&gVbGh@Zxj@9yO<vW5k1rPn
z;ZWK&;qqiu#KbP4XAhKbTIHI<KaJIH_Zl6o7^zA-@eKr7s+fPuuY5jwDvPuF39Muq
ztq$#ezVyg)r2-|}?ooQYapozGD@SZO>em1*%8IH&3e2DHrb(COqyhB2JeA?rsK(K{
zV^=iju@P2xw?3QJ?zC}FM<gcd)%NBw(cC3`@glSYxU4K5QY`N|liT~>G(?^BQ9V$c
zFTtzczi_>Gy&^bo06%zgW3Ms7i>3%`TJDRE7HG=3U9Er9Q^lk{@0f!jyM2%8hLtOU
zoWA{oB|$_ioA8l*M;y!j<K~Un{Pvek)c`@gCNjf_vCVw``fFZdw-IZ1nqG`&rCdX_
zZ?<}<&Gl7Dc1V27fKrx*<3Fs~&9#w4JFuUE^nW^Am7+APRX<P`HBvog6`SHw*G-i5
zW{|B~WIwQF#ubkx_n(xY5KEIhk^&f#jT(qGZpk+`-JlcsRW7BQs-kl%>zQ1&4fa&b
zA!DyufjAujuaY$1y!LjwWa;sIWcSMQ_r_Q_iQPY7PhqRBpK$0?*kCT?cMY!ReI;n4
zf?EU?%nV1q(=`&TlL9meyQ>%$<k{+i`|4TmW~;EW!}%QRzZKS<=zV~jO+fQJJ#u?{
zd(mY<o|WO#=($R-(eS$zwgzvhZT4YFl8o9-Yqyv=-_1Y`4GVnd#+I394?0Te4(v3N
z4z8JeI94y%p?RRz9_C<h<5Mo8g2y#79N*=Cf9KsBdvKI=CgjjQB%*a(g5qcVC934W
z1GOR8h289REi{iYvtm8+0(%en&K(crxc$5TDel-Q_5R6Ng+=+qSWToG0OCY^LA^{!
zl&TU~$&!ZhlN1*crK<-j=TEY<hPK&sfSQklheyl<PBdP(F3w!YNSDoO+1MQ8tr5<W
z(HmWr6L0)QJ_Q+r=P~qf32%-2tj`VbXJqfsFJ>sD%~K1w-F5uw%-xueW+|=<Oel*?
zve#$g-TWfW^aoFG767-Q<`uUMFbQf^kif?1b(O;o5Y!ifmP5aHB$%sfvcJM?l~KN-
zaraUa(K9<4?`mGIS<u7>>UEjdtvll601JdydT!iv*S|i_yy1W87BU$LF7F+e&~=0n
zLb=CKjih(rN-Nu7;HO`Eyy_Ud7(f3hRz?0^TV>OUG^SftxJ7;Q3g*cHsTRK$U@b+<
z((qMsgY8enAhw&22B@i!`L?M^8}aH&x4OvGlXoM72bHZ*<LhC{QRsAlOQe+$ILM9A
z&8AbIae<6-DHLfz`;6ksYo;=6Nz49S+m!DZN4vt<!BG}W!dv@G@&NZk2;XyO&(9ii
zXXj=W&%Is-gh1fSJ?{zNg&F5ZLWg29QNa8*mry!Ia~cH)Kg6jj7IUq$xqjrVGSzPH
zYYXmjb3E<}ZPR3JK}MN$)^Xp2gz9(Ohxg)VnI<?|fQfYBeiqQ`*9^RZOv{7uD0;nc
zbkAy`+o$yP?2iUVCH9c7zya=t>?$L?{EDeBh@~KZ=|646n;90udUKEq$H=KxBY_c`
z`*>DmsgRVaCUMhdmLf3QO)D&dgryERS>Uo=3Ea1CAbcMr6oa;@f>pC1dWQ-yb&$cj
zUxK-|p|<$!+MV+^m!_prqNpq#p>;-NZzd`bop}A+iftj*1J22yKQxvevJJin#5Le^
zLR8;eI73{^@ZUw><)uodBhMS1?^x=mM4Daq*Iely@&gc)qIZv+<H3X)n%KRzz6;G&
zx;^1;nmbI!B$Ge<d=*!rd|k7&<g6BGustSx)v{QzsiUg&iQdE6+eBKIgS{pDM}1c*
z_1znCR6yCaUEQqRn^G{_o&L{P8*C3H&2RNKUU99EnmWAcFTgP^c${5VlaFzc@{xro
z8-Kj*wy8@PefQTm$7pJtIA?WVR~6W4ePXsD6JnN$fpSB`emgf^*=Lar$CJd@EKZ>{
zaq)1`-v4ahg<XAH6;A9o<2r)$>Ha|Bb`9FkpU`1poLQS!YL9!`IOp|2=LUy~HFWeW
z_6De4oLt!`K)k^6gLRo^rpdJzj3s*a<jQ2P0ewdML~<r<N8J?uoa;e~K64$XyS>0#
zPJ+5h=au7G?M`lJod2F*Q3f|ewKKeGWOY)c^yg!0DEGbdM)9Fw7q-Np53xiZjB?5o
zV+g~Bu~C^$6UBj~OJi2g{fB>mq2B{#ms(7!<jufbx@t~0d2*gb^CgN4DJv$b)p+0n
z)@#QGMQ#HjJiykV1%QuEdREY<KGUG2n-q3;)B99|>6Mg?9Tp#dZFY~tw*JG`vC0uw
zXTWnGNK|#b*$O^2Z00h4o8{3bv&;tuTM(s3Xu@~*;h(55GycIskY!SHvCDt}^aO2b
zqdS5;j*=#v*V&f}vuy~!uLD+u_>Ve_pdjA-A3Rp+c+rF(dFQk|ruk1^{_8bI`#28~
z^M^GnG@c;-EUIjYY^}ii)rfbI_VVH1f9A_bvrNQi`J08|ozh)kxe%}KArUPr#u8EL
z%#^?AdIAKPK)kVc|9LU-6=)7U^i%Z+hm9s4i=YO|acj0)KxS``0&#z>Q<A-4I_LyL
z(Adt~^RK|rO^?k2Im(#z1#wqDcs({~Mu<724M^Fk3I;NV&AN!Rs5C%LDb{~pFOm8}
z<ERt-dBCE;T*8U;ypOQsB`Xt~ArbCpe&S1reWovikx*8*ncat7=es+CPMYfyP)X=i
zBj@k+L79RY@9flUYS2POoXI2g%Keo58NpfuW4{?fP0tZfhPzRfZd@RKUUV6-@#8m2
z2s6!{WQ5~`T57({uYZv5B(%1zD)Fn`l)UzA@?sSXL>`i0g}j4Kw|t8E2P`30TRH{2
z@(*|t6yT)PU9tk_t?IuTgrU}H+c$0k4FH3n4}C^{n#b5fk^uNYdyPO@C=i{(GrR^k
zo+h-**N>s!4gg%>kpRA3tV{d0(V(};e+#!A#SN(6tb9G}RQx*R=9}gP?!ql895Em-
zl^|b``04*Zu^cAnPdI%zB$cL?;?ZsvWWQFnq(V?UycQKGIGujr6;{gLu%Yf(4&gw%
zjd#;l#WB2@Us6R{qi<-!W#4FrEhaTj@2|_5UVR$%3ih}Hhg6z8X^|4GFY$^=K8Zy<
z4UH=g8~gmE*}2F0P&FXwuo%T#<2uOlUcH@UHU~V?|E7@L#G9iBSTr9rr5;Cjp#FSu
z6iqpW^8_M`6GPc2MsMoCkuhfpn3S0E#vg)V?4F8Xo#^ule=ytUoGvQgVX&^-^G$oi
zPdHT$W)s%uaiK}&YkJ0Y>RQ3bu?6+nWpHlFkj`+YI!NdDBmN?Uq5ngTW*)sahh2IP
zX7%xWOKX#MxG}qdvT0J1P*#y>;>L)Uj}nx%0C~Tk3NFDt{HAd!>oI~DvA#RiAF8G+
zo|K1$mV_H}-yX5zO;pqI=)K3#M#{uETRN8@cTP?S=53(tlx)d!6Y~<(U6z(>ZXlvj
zl)AoExR@qU5Q~iBnenIRb8XIhwl7DUOTP3%l@dQrSG<{pzwfl_Q;H|cf=Y<>(bRj#
z>knppZ*{APB~#vbYm3`hp%q-T4$OY(GRIJBm*;c(h{BRRluJ0qG9>#Hc`ROuke4;~
zU{;p!bhSN5`lrJF&>YxOo2oOKfeZd^_hZ*P<b6mqzHN40JN?xngL5VDd#wpW<$S-*
z%Ne!?ZD4RYstTX#_eHAt?g+ml8mtpwv`d!NbYs;A5YGG9i+Sjb?AEeT-unQ%S~0hc
z<%BoPDRqY(_v&bZ&l3}=C2%Ryq#-e6DG35VA;Q={0EGzwC|?rCwN6_|CJG5CXB`ig
zvb1pL(XHBPc%jis7?znO0eUF&+P%Etxme7y**Oz8j7x8yL%B`(Re@$+8!cr{m?)E}
zsMkdsVTbtcc$`{3rfB$@_zU_l?{6`S0Y28rdzsZ$l7a5#DnUYypYbEmA2Zt6MU{U5
zVe0tLBUMuX9OX<Gs;!+$XaOXKwLD!cs`0*PRx!Yc>hmJ}2ClK8aKAX}x))x>Bz(#v
z^?^6x6*uFftG0#N!CBeZnref7TRDtM@W#t&^o8TQ_s6@~Vy8v~@V=R=Zr>|pP(|aL
zHjgOCto*SZ&W0r9^&^f$XX`0udi*bIWMyB4b-^qN%lOt;peM<Ls_HMJDd`H|7p$0H
z#Kub#%BJ8(m6(2{B7Wh=128y;cIHB&26eN3u6FC@<Ji4(+i0!pl-PN8AvMBL4rFFj
zB*j2>*IW;2NbFT~HTp3bR0KzWbooo)K-Xxz)IqCEL|@o_%b@ylQlj#yJJx7p$ATLl
zU0+Y(Wg2ltc!5jtTs;BiNf;728N}0idi)9B&)W^2RrE_Ynyq+YUPY&Rp1G!#mD`mq
zNknluu79YD!956Rdsf}k&3?3NYJ8|kJKCzxenQUFy(Mda=sC;M_$wq8{*wpF!Fi4-
zZTZtjYx>LQ4eU<SKhK?4y87Y``|U{iA*L=q8`LaNIUBJ{s+H6A+N_uSnlIpm4-Lst
zA5FeA2ZiyB%e@3)8|1mRX23(IBjBpO)i+fJ7VkR9Gb~dIOJrXP61~*6edfv?ADA)9
zW@Jf&pD{$!vImh<iUX=GYxl+9KdxsqwBk-UEV1lw@_v6JOBU|3eY(b#hnbA4z*)%N
zQf`ZR5}-@l2NThFWonuEW7gMZq_&4Cda|?Merw_5zE#mn5;{}9`(qJs6qnZ;?_9lU
zKW(|Y_2t%_F$4qO?*75rMz{rG!P$_Rp|20|Or-T_pbaYziYyUPNvN|Mai`BL@CP_5
z$XeZAHGYAyh`d+}5NorqqNzFKn;&jdMKHU_c_fmzbU{B~tG^1r^*A;&?yGJvY*8UB
z4v(Ko+Gw%@jW?xVoT3TfSrU2&t=I&TrA>B*z2=^I5LGp`oFk%&;$ki_wxzXEz!;sP
z9|3%C4hHHmvl$LUyZtZT*G>T|!R7w#j0XD2Rc9rZ4Vch8)8!4Dn;Q774rn}9N%L6p
z=D|6V4}TDl#|d%9D%OwgO%P<Y{1H!uIPmJ3MObN}HAYY~=8(VOj%B9VUvXy#<u~r2
zw6J&<3TB>B7$f7h%I|HhgMn8U;bhL=J+jlno+lUOgnn7rM^4@_$71@-o;}}<zmpd8
zwVK~wbelqOR+N4~nMg9y^5DhmA#v|nL;Z<e|A`_5@UycVAdaNkRG3Gm51U+7+WD+m
zp=#1lZ6wZJpUB_Rj-??naAewn$tSuf+@z$A{p>g3$%vM&aOyg|M8B0UP7N#Yo3{kq
zQ6)EI>6uRKWFHghXS2(O3FL<hUh+ax>4}ttcVB>t*da>9^XH#|gC|IdqwXG#2kX2L
zYt*VGb?5(m;JlFmT(%rz%VdOGNG;f*xx3;PQxu0E$rnS|p2+KQf6Qwq@n$PS9)emg
zS?*M4%+B!5ODec$nVDY97{DvMHu1N-X8*!KwOx%|E2Ts>5s?StNc*on@Nb)TH9Kuz
zzkRV}*|L?mlxyzlHflrD{91g_ge*WS^%1XtNYTq{56+pd0?}<hq0Wa!`N3zZBOY$)
zt{K_yl2n%JI|%c@QMt7(T##bv&-N>@d9!OPP*I~O3Rm#G9xyEa0<oKXX}ji1(JuiO
zjDA+WV5y*dgV<H_&~Zm;>!*NxWf?B+>3q*<{iiMaUfO0oo?+d_6wD9DNB4feG|Zty
zuIry0A$w@Sxmf>To1W#*fRyD=hpLC@zKz=VqWZ>vQf_K(W=}O{L)eNSQ5zT^u)v7&
zl8b@=X%QTJ`kLq3>qB<<68@d@PuCGhxmu%g8pO?ICFLs*TE+{ZT<MlmiX+Nt?j&vL
z3;g>|LJFii!_fNuORw9Tn@8yn<LOwPnZ$=Y3)1&#<V(?-4l0)P*cD$Xy9bK?<g!9q
z$#>}NZ_JeX>F*`<{Y3JV4+VGgWxc-s^|q(jtZC=O{+In3U*|jVh$fc{^ySmoEtx5_
z<<x=9mczA(4Y5VrFLdM8F)5>+fkCsH&pzcVU~HlK_hmS!iZ7iv72Wj5)R};zWJFye
z^~G;2dC-9d=PQoYD;AK)6rlFwf;k`9iZAPoWVNvIO|#>m>req(C;0(khUqd7MfRyj
zO6FXcW%9rTYau(sQ#`-z<s6DdmoJSfF#^M_(a0VnAR!==8_3aEeb4DNSbbi5HwB*$
znOFU|-9Z>Uf{J`ckmzl_J7WwP{nj!fs%B{#GUKx_Kgs)J?ywEi3|bL40P1o2E;jck
zU1Cc*;hU6e&6qK77wU+54WU=EF?*xGjj1YKH4U*?ONO7;9(ZE~5K#7<btvb^k-!yT
z{V7x3<q8}n`YAK*eDs?)_KTyNJ*V_s;?8NuKcYp3>C3WC>|{eDQ_Ukzlj_;)FieQV
zG1A}?vu4CRx{YXc)t|G+Ixnm17f6pIiS6&|Sw(K|YSwvO1zfeaQh0hEC$w{SLeECA
z$@v~U)p+F;ABxl#V(qH+RE5;}9u<Alw__vGbeZDf5ICoO`Pqzyr3a-8JFX2G)qeV&
zi`wksTP5h-<t+JwgBJneHa_0Q*i28+H5xi-55P=d&Q5&HKA9gI;Fclan8b=CbaSDX
zP7L5C^^`}iOlaXFllvap>g!SMPd9?S2tE-5JopETV@lyipPimwuxb2y{^D(gVbEIF
zyOjuX1hO0)x7#0b?WCr_bihL1)c+A6wc#P!OQZjf;Okd|GLbjD{=cb88T%6z6Wb2c
zfniw@>aRv9cj62@y?=2T^wqyyB;3a|e_$HMGw>A0>KAqmFg-h6{QB0U7<av+_FC|{
z>q}`sb!)~V=%imeuDuUGuEo>VT(2kO%kkI)?Z#g`#VWbVn<-bu$*0tH)j7m}Uyo74
z^j4<0F%Ll)DUN$u8xJzV2c5LV0K}be-sc7kdT<VWhvi#aTp^GQLBB9L^m)=)h=rm`
z`TnIXu(I0pd2(1whAk<7t?@`KR!)h2qTn-TIWKvYWPRO!<gn;M$-R4<h=CDCV4gS^
z6K-7u&*MyVb+eSz+&`^1$J4#|7-^(a+LG&rwZY;)f+${YI!E2a7{Gdv456&5V3dCL
zWanhCy?!Z;0wXIC3`OR1NoK^0#-`(Q-@P~;g!P%0pi5B|C=qY^e<){W3qF#p?BkW9
zyi!;?1$})>d4~?W>G0;-mlz|C*%O@`%au!hlZhlx3Uz{Ku4a|qpu@(izSw>Lx;(`^
z!`xJ0%h9CTqTqgS3%|D@F`SM0HI7&9{56aZgj^q7^&X+!F`(&uHz<e>Y>Er<J2Fgs
zwPs~45#tdt$9t2GsPYJN`~oDM38!NGRF>N*`Ml3>zZboWu<4ZJPu=a6tvjQv|B_Og
z_brbClg~_HF@T!EFG%i+Vca5XR%pg{bOm<PDlrjhjjAd@S?aVv1%20OnZ3Yoo(+<p
zo$ob;hEB?<ixkv*H1V55oUim8L1gV)@j-TZP5dK=-*~1`NchX}o4K~jR(^`jE#0yT
zphyhRY+r9ZR=2oXD<<)ihVJ{cb#=N@yN8YUP{=N|UW*U7+AzF@W76ecxt8rRTzPG2
zmQ)k%u6i8iNIOP1$7Rgoi>~x+RWx#M7ah(rxEs<acHmntsPW13mXSIy=MxgT(t8P{
zBzU`-RA44Fg?*p)%l`~B`JP8dDWF2_?e4RlqdUuBE?Y1MmZ=COr+LsYB`?qtyN#E-
z>0dZK05x0xp5O1x(VS@1bznV1)rqHgi0};ljx@aJy^%(3v$6|O6(7!9$Df(v)`gSu
z3B+2^zvW@`vZ8JNB%sfr+7>U97cmosBRhYQQ6!`;q574*@%+tuy^}_vzk<;x@K2$r
zplFLXh?+Y<+MVw-JqwRlp&>FgF*QR=2(gL(BO+3R|0W{Tji5-J)6qOUzfDX^GTawx
z3(M4o?a)Ux==I3f{J_ocgW#=^;z5WJsv(p5#zpq_<FCHqqn(Fmsi%JDCRep=!|%o7
zvr38lO&Q#$zBVhxrD=U9vxYp00y{qM>wU{Q??_wF$VEBZ;<2D_k?Q4_m&%mk^;Vnm
znWA92TvfG%M!ZHnoRhN4)>~y3g^kc=!x{eVC|$!$ZK1(wq{-lmV9i#wlI<UMBDqL9
zKO*<iHk?6@)d?t8mm1=y^Hp}!%AoVM`5u43jEPaP7X{f}yjTYXQNgthhOqHI{(Fb>
z9SPxZio(g>rp!oG`&HzJ-QD}+OQ+uj3#(QZ_S(IsvUvnjX|!Bh2p38>McZ7=TXSg7
z$yt29XFc_tt9u9_)r|8VX#&1&dmRyZ9+^vNHzcF&s|2XYaKTJ(^6H4Eqx15VyY6wZ
z{07o2soRppPXO0auhJ%yKJYCFYBG385GyalO{Cp)BXg6go`aWkv0#1UdTAf_Rz5TL
zY<F*8XH~p@EBqCu5kh6ek7v<^W_hW8C^AH9gT5#ZR|=}@$pRtc5V2^05edig#)k)S
zu&1)PQK}Q|k92ns<$d<ceAbyyeJ$;^oKIpSo@)c#5UB;^HSb4JFOl}gclvCG$Dv&g
z0Vb<o(P_x+oL`Wg6!jvR_V&r@PphVHUq*hmuL2@U+80k#qPj#53;TSes;4=d!Ak#|
zc;MEjb4O#feHQo#vxV0?1W=v&Gx2<-oCs!M&>@B&F^An(fkez{@aIcb3z!?#HF&ik
zKnB=CenmwEvN8Z>MN`#ku7cg#eyCjM(A+(HeZD@@8)q|-%03}xxw3|!Ko)HPgyoet
zzh7iK^fS!#GU<6&{D=eyTi#hX3l6EtSB!1Z{XXJYH~CBLZNz7WtB@j4N#>W=IHGDw
zwrj?sJRs!so;$mHY>_ESlt4Wh)juhrn+PsBB%VXPIVFQ`j)Pi&Md25czFG};+me?h
z;ThrU&ec#$FtCE*3(x|zD$2TrzKCjL;~SW;60PnEaBSZmGP8-S@C`Je+fVra3UJ=}
z77T3YxWk;S=W{@BqgpsSbniC6eO92|wwI(H5o<QzAW9n+YMrUSIM3dE(<wQ}QohT;
zB9oLewJ7k}`Gl_PB(c0+MnM#{>g#Y|0YdMnbnU+Dr!&w^)Bz=LA+u+np5@s&X#s>0
zwRu|+Ro9-`tFOIZ4M6=nE*2vaka^hu3DKA%K3}~gkP6z~5Yq7fhG-a~23gbrs^)F<
zHwXsbCXofH_@i%qn|D~n)qs=oIT?Mi9QNIR$`k;!f2V{Y&cXQjR6A?8SBP5%fbbS$
zPq)K+6vg*XgxtRAyqK`qL@2-H6F2ua!QQG3&*163@zu~*h(5NFx2)BD(iwX7H08Fb
zY_#(L!-w}{!zNUta3OyP+E9Ne|Bf6*>2bO;?V>yWCB9Yiz-!u@AfFX1e5CvGuKDwu
zCU0+VOvQjcLK5D%3{wHs;d6pqbrgNq8C#ZTuVU!=+n+B3fWC+0Zw=QMMqVtp3Q);i
zWx7-Np*u#;mzH`t31q-IR<>O_&aH%a@2MqWyq>6sSG_0MmMC^Z>q?6k_FWFtw%i?r
z+uFVI=7#O<@FJYn@m&8CzgFWBg#1ENMzHa}pqGfb>G0G{70A?O<v>j!D3vAl@Sa*i
zy}+!3#tx|7Ueuc>`xd_-G|Al;Mt}BR=}PGJ+`b2yQ46Bf{VGYCbZZ-=so(~yx4=*p
zIE$hS2D($V2vQ?zX#Dj>YS2B~ldls{&5zF2F4d><uUr~zXKiL(2@=AIaj7m?j!o{`
zl;-_4i`0PML$4U76k(OER$-xOeh*BPpiSRk>jkk6RZ|;n*R)S0JYUQbD<lFxbf-zo
zBY=g<BlPZ7lHKig5&vpV`f;ClyoADFZt@d|M|ePCl@UVtu+MCWv8x+9;`cLrQPwt|
zGXvmmq}T)l2b<^JEN@B=KSdqG0tmLxyWYTBk6UM@_s6B;TF5%tCadE0HVu|E3|hx^
znNcw5>XytkHO!~IQWb;nT(xR2Qd?i%6Mz~BwKiRU*tYnR0Y_6NfUfc}RX%sllC3&X
zZ<=l|V_%nPD1KX5evF_TEmG8@&sXsx2PamXi1)$>K&$Yk;lodB;)C-?BE~GiKrN&=
zy<cFmdJp?2gZzWzk0}qlaS*Wsgky==ojx@DIZ|PWfgpmLn=+l7fjZL-F5=f;(|*y!
zzkig8K0;eEeaOW2?_c_t=I#g65x?DBkIO_N6cZ2j4GGhZ5TcQdt~y$hG#Fx?!9au%
z`WK6J!8IEaY%nT`z7mSVBfX_WFMe*L2u(|WH@m$%1<cft(N0j=D^~#jaopO$kv}af
zrOtPCdqiT(u{Bw{+WcH*=*FqY=4S4=*@G&VsbL%%YJpni=P3amskII@TWPEDqC=DI
zDD*<;l?KWZ<UA1lr?+{cyhaW@O1NJb&iE+@P0r4kK1UO1Jdw|&t7fWWZyi5nJf>^U
z&L2WhP+{m>UpxC#@bwK<?%yTDCiPShHL_KXKXPIJNahUApWm9L4OQc>cd;(cVCFoP
z0su6M9Ym&LrD{KT*KoF~oDyEDT7ay=&CV}H<o_-iCge@?pXS0woABu76>CBTW>Ivf
zpx?S#5(8k1^Q9wuP@fx%@g<NLp9T`q^*krHANhUqiTOk=SD5oFbv%GP(a1wx3iAtp
z+=sBP3x;+NZz2+HUeRHnL`c^E0eXZPC%??PfXGyZmNLwR*$^E>F9_;fH<NZw1G5nY
zIn7wM<0Pr74{(8orV2j4=7-4fFB7)2ev}%2Oux|p$h=KTB3Pq%=o3=T<*8uQ*|cmk
zJ^HLIW7G%!Svp}y1DcS|l2T8gKmiL&a_5_gO>~3{Iur5gE72<PKXM&TZNU~-LBUTt
zQO%ophZx&Qo#V#y#0W%}Vlil#xWzvlk=Wz<9TY3Z2DubEnWPjYm3&rlIrsD!wSb>A
zZbG>O$5`-J6umq$R%o5d9<aI_P<q>pf9MJcscFCd;E5LYU2^<<jJ9O_q)(d-C3bw_
z{{nm{sQnM&1BESBrPe&&h?rO6p=)W1r!V6Kx%>!*dU+BAA;**x;lJ!y#L|3)a2R>|
za{ee9#+HOL!i<?`Rwp*l7`N}~`n%Bk|CsB~<FiSfj*WfJ#1PA{)JLl#nTZ~$kgX*h
zAume_NT@p$*Yv}a`o{pGNW7B0J~0eRx9V?Nde5~?BbwGT6_7vfDCO=Jk2BKAwv%5W
zyu*tTSS<Re?2K&Ml;1SWXV@Wq<cgQZwcGvR?&>T$3ytN*Va1V>ThP-eFJ8h4Q%v$=
z(TuA6=;@dtlFu0BE_%)Bbh;(aSdL^h&(t^EuyUQ0mG}Y~p;?drn@*<gClr)>$sKr{
z34I!z=*nAd86ShuVUMTLoz4s;mOaGax&=Oz|5Z@$iHugIpE%^CEKx#4ItK&aO>wY&
z#U7PN!7aOHZB8X7=8JlEnSn`@&Y@%V2Y}dV`i*j94);}zxT800_1Zr9Z#HIBqBr7~
zj}e+l@KTnkEz1`uESUJgtNWE!6s&Yw66+D~Uh<zZh)^p_5K*Hj(kYy=iSO;!iX~Lx
z{|6$bH$wQgh|x5>SR#Sd=_A!95=GJD+il|zYXUTT-hFxd@i&zy67*vls2TfmtQqI9
z>?RjoJ#7<ts|`RDkb6yXY{vP46Q*mHeCAVq*fN1;G&WbgE;TMg3A6LtwQCzr6;S`6
zntK1EV+lxy>a{7Dt))41SCY%Tor{DVIp@p6DRH^^fJ0c7+$+%PkJ$;65}AFXy(_ii
z@ZM^df}$d;mhn!m*<g?@>4eCE?M=+y9Lv$!U85VgVoiG?(x4z@va@ezz(KzXXrZro
z<BmcZ1i@+^I^q(IV95-JK8?9}WbX0Wnn8uuHr|9YrNjxL9cC`q%xGdI5DfE}+&@2@
zFPLS9UuuMffQ3IQF<-XxcvK>Yq0IfRGjeueXhK5wS?n91pZd1=2U8AanaYTsi|sma
zzdT>y_|c?BW5ZYcVBq)Jd5h8!Xm`OYXdWaAzcmZsi{F5_d(y`U1-+%zy}*gIk%d2$
z%L3bgIq2jN@OGCI(EJaS%WcblDHl(LMj4U+fpWS3x5|Y_z49L@7mD}-zd7Xsbd@>J
z6EPF5M909;qHu<+pRar(rSvjRX%Mo7X86Zt>TqWw1(mXvO(dy$E`;D$d85*%--E(y
z687=rNW_~8npbtr8zF>W8a<H-QCi4{00Y~4uqAPvNZMJ@fs2~6uRTGxYL2`~x!0Rg
zkx$?_f`B63D*W5$#o@ZH=iTUH9ti-L2gjY(;ra!pKH9-T#rg1lU#c<A)VKEMzUaxR
z&%D0}#?##bk7nPmT6HSrtzng~(EPNhXqJq|-Qu8^EdmiM#C<W-Cu)qx_(G@k1uR9>
zq|N6i4RHI8?WsIlAohyuZa%zfXtEQ^`@+`$V&AykHKf$3q~KLU<rpG%m&qW<9dJ*5
zt@LZBuo$M&t+@8SnPOZE;ZQKjfhd{QOd}$w;^ZolQ;YdD$_=Er7uJ4PuirZxQzd7I
zkE7n0W1n^!<^8rYQq14}r~p;kn1Oo6_s2HM^24{*2C&5dT}5Dl$;zs+$?8qnoveQr
zJgeHse{9<rbb|pLT#tKv*Vl0P8N>H}dS%bUTVGI65G}854J(XXW`rY+Ve>k8jM0y!
z!Kx-6=Sgo&>e8dA`}fBGEqF%3{I7y%ckPe<aqtW}ePGMWD9U=eMdf8+tLcc?RwwKU
zDQSuCr^0?=?cQNwu#a3<3;M2i@}9F!v0B^83*=U8@!BYQ{lRq(p7xH(&I=!c%;c_D
zWPcVa$@$VTe<M^BvCpq5FrJkWBO(Qv*XR-N^Lb^2(q@RSrC9bKKZkDmA>9Yd3UZz8
zR%j_4@{m_(o$`#_K^CyqB8aW8K>!w%%EJs~oO|QctAC+VFv9+wN`VB;J#qA|-9)IA
z%b4g4=b^D9acdLOl%<dN4dn_7NtNCX>JsNIh%nli8Wa&m^U9Pd9;)rDfAX79PI(3d
z^|~+j+b~bBSHABrUM_;N<4ab_P}m~Ms~S&4FckbAJe8hbqxQAU0Hi);9zdBNQjiY}
zl}2RJ@)4P|Lm;B5li**WG}{IPdNNk3pm0Z12yQB3?&P%Qc_kzT#2mC|8|qapA3ykZ
zXzQRT^ohtA3gHdC6%Fq=9jy%BmsrUyAL&aX4h9}M>u<WYqPT^YZ`KlCCjFr5zR%pf
zhbU8`Afd4#we%_m($M$zs9ZnuE=8k8LfmNaFL&JP+(0FH=8*;PV<~_}8>&5MIX4<A
rpWh8L{nPErA1-DtqaiMIX+bePLQlM1)`I=I>P1RiUaUmK;M4yCCz$z3

literal 0
HcmV?d00001

diff --git a/doc/user/project/import/img/manifest_upload.png b/doc/user/project/import/img/manifest_upload.png
new file mode 100644
index 0000000000000000000000000000000000000000..385df3aa8ce1f7893bcac80dd7caebaea8ffe2dc
GIT binary patch
literal 17455
zcmZ_#1z4LwvoH)pDbOOtic=_7910XKP~3`pa48Z9PO##|tw?c-TW|^P?j9sK6u06|
zKKi`p`rq@P?|j*7uX|>8W_NSX?99$)6Q-ghgN;FkfrNyFEhj6fhJ=IyMM6S;c!lyz
z5m0sye<mQQeASRbAP`$yTX%PNPft&KyE~hkn+Lb|*LT|$>0veFds}^(AeSFqf3BBj
z`kI=Wx_f#Sw@we?ZLzU2o^dI2*NEuy(d(PLn~nAWKfk-%(^7AHM+XNdXYbsB?fZ+F
z07rZGf|;e7sN&h<{_3Q(mW7+cl{8<FU2Nsr_2Zw3inF^rTX1+rZBIdA(bUPqToKsL
zHBU}O=l8_f`tjX#y0N5s_5}jbJGK0PKmd~mj!*vX@9*0=$CNGKE>*eNdP3*(j5A?Z
zS97^H2*iB3Uu$lJePG(i_DzDjZ&7WZooiBfVe|D0)XUZTWMecn$me@P8RBxu*46tG
zUKZK5-4biJ+Wf11<*+B!(>A7QY#_6yws!S!ud1WJ_@{Htz}!e%IRbG3R?&7(>DWJl
z1N03vZ9JhX7nT-gJ5Pw){VA)^{HQ2!(ZcgIkEGS?udi<|FRy?B4H@P2p5@C4X(e~3
zLya~0OVz=!k%sX4<%Xh^0w+aFWhE(%011z(r-N>by!p})eVybfTU*fj(&WG?0&%}E
zIW@i28@2lUwI8>lt;NSL5s2IIj)N!1inWCzptx16lvUwh1R^6NJuEEpSzvT$ytKSL
zVPHRg{On>TDK0U2eSQ7x>@1@1WM&Rlzx5F7uCoAN7+>G@YuJ_#>&(oH9VrOPi3`wh
z%b3YE8W|a~wCG`HXCF=wXA}PI!^#3nlX%*x{ldY<tdP#a`sK5*h}0Jo9|LhMWd$X6
zb~aYSY+ZV3X=yeVHvl^;y;V7*B#4bwN#WPjR;xd=jNeaTdMhs0;UqQKZw-3wEJpsM
z-%3oafugh?Ed}0QtE;O#JUq-y5&Yo;KLAWg@*l+FCp=^sO04L=iz?i0<u|y~FzJU-
z(=(~iGxF0jSyIzUKO64zhcyN1wJj2=SXJQn09Wr^eX$ByonnPOag1z4Zvh!ZlQmf<
zVQyTcL?iakm3oP$ZcAR}a4>0!lSP>pSyg^&t%hUc_wf;Djp3OUSm68S7J_lRJ0zqp
z`*M<E8t%x4)BdO(UvOV`G(SFhDWP`aizM%vp#7hbk^H7!v|m>9*7EZ33QVuj&93MV
zTRhu?4VzbRDs*<GHV`@suwi?yWl){xI_uL7u&Mfo_WmQy0!sh2|E~n9t3fdtvyY)U
zgZAW5P<iY9Q$=m~P6;_7LwaNVF=>=<3KrV*0tKBzP_<4u9CYMavrNc-g3~{pMHF$K
zU(cJt!h2Hoh|Vxz#OT>kNinj9;m?3-&LCe_rKL4sq`@Wt8%J~3E8rOv$vnd1a%_El
zSl0!Z!wH`WKI0t;rxk7USMc!inv=3Qp`x4{nr7;SpY3eIP1%%w)^ZZcu`6;~9dQF*
zM7?kRdj|Bg8!kg_xjivP!E*h%975#_?gJPv%;DTyJg(Hm|2S=B3lgx)P%Zt8%;(7N
zBls<NjUKFGV)3CcJ3!sS!lD3iYLPbp#c7LldI(HhQ7yS%P`1#{Y9O6-rANyDHg#Iz
z#PCN(zLh1XtE><<!-_Nx*ehdI!D)a%#N_g&rNSxI<5{ArOJ`rZdM(dpX$5++lkt{;
zE+oGcM5<A@%dw}K+oSo}4oaIZ%6>anYwrEVc&-szFe;T>_=5(pP=A8a&2iQ+`kLnm
zuVtjT?0ENO{%}@Zn(1^tQ7QBVR2bW9(X*;zRp28(9S|0!+l|6TD;_C`*RNKT`{@O@
zJTAI|vm6!4^&5tm%^veXq&HI=^Oy_blGvMX2}>HjE+4-uNX~Z11H-j{@zx~bf&99c
zfl}oXsLJ(2dv3EUNPR1HBsoGf#z~4O$t;=LxkB<;y;?;LM{jG8(q`56bXBhF+)DD_
z*_4T~Ju*!XTQ|PC4H?eK`Y=}9ll<YG<1xr4Rr|V6szX&PioHWWNkN;pOQ(fkimB8^
z3^o6Az+XPX0;9uI&Mwh0(xU=FbaO6fkP5--YYA$Af{GV~BhubZfBxGLBl~nl!M%R5
z8WiOW={&(bl+7TDSRaZ)Bqjsm4brMmcOplvx3n*UtXPv@O?$JAk`!F&2P8<+XcqsV
z4%xTnbt~_kw0q2Q>^Hse7^0JpENE!0Oo65trlur>nwi5(YjuCX!<Vw)O|=GUhANhd
z@qcLO`+8fM)OgAD1!i8WFKo~l;WUJ^%vSTv#8N8;?Ij&Mau>Ji7y7x5krJz>IZsL>
z<SjyHX=cX46&jAtewC=tm0z1S>74YFk2aK8oqbyQ^JZ!pU`UPLhk073XBFv0yRu*y
zTF8E(w2aH}xOnHq89yZChFL61p*=v(VR%?>A<3QBdT%&|_OzJEzSSaM^Ezu~$?23`
zDUdp94^;4acsi;Gmi39rnu6CxJ_U9K?TyT9T&0VA+csfPAm?exy`(Jvq8Icr#hN*W
zEYCTR6~ny?W17Qz6)*z4YFud`>_x6}0S{nJ0s;YDQI!N5)WG_vQ1pJsbH~05{NGJ0
zUORRZPkbN8kZHnk<{lN2inp@<d{3P1!+FfZ#mRdQJPAH%15;Xr!CkF?>Q4;LSje04
z!u(V0!v(Uf1dFCtI%dj^3c%%AYm>QLiURgLKyvC}%=_bSL<&@szrZOU91B~KF>dyq
z5$MpK2SmZ_-(i)s84(L0jzf7qJ-Cze-_(A<ZNz5qfs*uP-kGmXH44E(2QL~E`xSv4
zr|aS;YVy>tAJxZ?SABWsPTIM<hAQ*HT7|rUMKDWcjgQb8!zP9^;nPp}`QcuTc&HMB
zPy&~@9d>L+(U=vM+;iO^c>KhUX(00jMZ?(OZrO@yYR~o0C@B}E0IY(<gyy`bq@(uY
zjGqNY*)vyi_>LVBp9Bv+n+IF5$+8_2yb=7gR*H))Hq$n9>F@Z)_@m4#kaN&?#n0}p
zv04Kay+M53Gj0s5C)D=gF-9sTvW4J7Q@%s&9Ns{DCFbFqv7u;Iah*c2Fb}{anEYTW
zp?v-mzw$SkQgz2^y4Ce+G-x#`aHS92rCJd2?r#g5zvnca({|=-+aA1M(t*X_wo346
zS%1JiVCQ2OEC~RN-5>o+cG1V-uHw&D7(TOsCi+bdyGo<C`20<~5{Od?reDDIv0U9N
zpE&85wr#GvenX>^oF;k5vh_x6<et-)@#~57QPj+ws|V6h|C+v6LgDdGM?N5hF{}3e
zJ;0|HnMdz}NnrowBd3f~p{g{p>$BB(5&fiIU|;c7J0O6nJ=@&(b<!q0v*R!2*qTn=
z<dS8rDR!^OeNbnD$3rwRDo?T5DX;jsC2F;@t~#xAW=qtYC1+NiBERR#{kg?U3hqIr
zotteFQ+tg^!qKCfOU~(9IKlY6I%VHTO%f-GyK$qFp=Z?OiL!dx@*cr~)Z&gevyCQt
z%L$R5vrB`mSk)rTVj_lrVt!KOif;Bs(2iYipqIY7n$#CS&*<C1oCKUkNds_+7rZ?$
zJ26+ssL1$yM2upMRg_hi+ZLr{YV@JNtpoqei)w?l`d5hDX|)+81oiVChN?}`Rt)&K
zc>FZt7;w(A(e~^5r|;}V8T@p0As1p6QOgVU9T|TDDY&b8(YM*`j8l!Xa1gM}JbjxQ
z8%pw=UY9D<xg74JDphGd^FA87h9WF7-#qVT#gP20@i9|ikssDNV*<;%EB}9i7yRn~
zM&JJvii!Sr!heg+iH`#Z)&F`xg@n(tXEEAz0y>^cCDFf9iu$kEAU~H*fbr1(-g4dn
zN9%xli3nY-eUrhLaeNrlnymvZ)*S`TKR@=M9{pM;^XCj8*Vcs<?ctVmk-|5}47*C&
ztxv9Tx6$nV?ae-e3>@N;)x}pLD}lM3w<BJsCto=gC~x#iEJbc`@%7{fX$QhXA;L|+
zho0KTIWD9gG<)JKV;L)omay;!%i*deNgO&_m#6a;5S#MOU^vs<tmgRdm-;uFQZN>`
zdCZCjovQs@j4}7a4@i4=&93!6nwJ-e*9VOc=4(*L2!EW!s%^nP(L17l;apCApO8-2
z&AQ>%D?avlp>Op;v<s5ekl&*_pqOPUA20AXVZDuPO#PaK+8v~+%h1_%={oirbV=K8
zf<OFD4B*DiR7)#i?DuXPN7vHgk{A_WcKAY-hk|AI-H}0E=iCN_qxp8ZW;)3Uc2y1;
zc0>~X{9-uo08i++QjFKW26`oe>o^)*KFgtMxXM`<aXoLgwK8BR)0N?VZ$C&C77$hh
zpM6)kV4`8xU3X;Q9e*fyrh59yR>!8!P4js4{_Z;Fl6DZYlIa%YwbUX|O>VX#TpnG9
zz8Njo;lGJH*^1vtV2@C|rB(fir)e`RR|1V~0^Z*We8o4@K0)zVwE-VkLyyY4%D2z;
zq1g8vO}pv!eSN>;jXhu@NWSeE37SwENZr1p{$y`IdIJW@K*^Ob-IS|#_K{;;#MBnZ
z-g)i9s1K~^9d-ouqO6?Dyev_?UX3$(mP-82V6nAgIiOcx?fQ5%uh|??<_1FhS>B9M
zpHRIe?^NjJ!AX7vtG@O(tvf#1c&|0<{P3~@?t);{^cs<bJ&kxtW6wLSD3%;G_#ZZ)
z@Y8?L`(V6lb`%U~Iw8+Lz|%%<FlEtoeUfkww)yzz9VeO*qI&EeFGT6DX*hZB*S<;~
zCLUS@7$(V!lg(^(C&EV;xj&?KZ*lE6p0ymOdF_Jj7eUpCYO%X}dhJDv$&dpSK0mm>
zB5E`Isw9C+0|5^Y;NcLq`JAT{;{}I8f;jtY?Qs1<A&<l~IY22%Sa=ZtPZjzP)+l=(
z=N}B29r3JX{2^mWilFXV<-bWsaz+`!`AGlJp6cay2zflj3&b6v&Ai3Id+O`ld6`UZ
z?BmC@j({zpm}?(>4E#9q@jr48|4q)@537VtoKfn@`i49tlfcx@?-se>2SQsS7NQA-
zXu;63fSP6hKwiCP3<A(B`7iu`BJdQ*)p(7}&-31sC4&%ca_yw{-;Sbn3BS_7zgE(w
z0xz?%`?HSNjpSmMbWZ-D5WjHr%zu~Gv;6iQ=`dIF#jZYIXQ>zwZVG+}c3?9i(ffK-
zf6%lHS^RIJk!gEw3g7k0b@MgfNo(wP=|@BnAb-%Vo{uShuRpa9fq-11wZ<RjOCmS3
zP{uUdW+glrmKLX;Bg%mXz)nA{-jLbF2b%(vmtz;iFQ^fIHwj&J&TfxS8%{P&<&A^`
zZ@VSjkWBW^I~X7DZ*$4&Y)<9HTh3Y>Z;}1UJb!iB{d5Oqpih~&E}0_5%jX6e@#v7w
zVFoaN+`fB^;O_ImgunkdXHV-i{kK!t_np~e39n@BY2kx)&)>Iij1L2$XB)Gdzfuj5
zd&>oQma*}rsD>+3mQPFS%qt1iOq^#nP1to4A&kQzR%_$u*@IdjeQtQMj-|z^HQo0Y
zw+xHzZyx@>?(q5iiqFJyk%@%LqT*b4x~M^=E8jeP{cjMNX}#qul6wL@>Cu>IF?)WB
zD>O&kKU<6w)i}{IENkPg%E%PMe}{rDHfQFh#_6W4j^^}?@%#7r!(J>qzo(U+0$+c`
z_^!*JLp&QZ*lvW3jmM+%u<eR}XgU%I9os<G&cJvH9rO5t-ZlJ=@vj|qjgSwlYvv<A
z4`q2?RQzW_=g97`cNV&o(p_n~8pZMDa5Tw^KiyG|KL<KFGI2^t?5uzIp`URW-q|xP
zEvO=I26)<b0HEOtZf`L7U6bOdgUw{BLw`>f+R-@n7u|-@(!M!6t65lSOfox<5{EF<
zh%^umybHVs+@wg7u{}aiLx(|N%ZC;LOZ`q%-P@YQRGaq%(i2)Pc%rAH?kF;$%=VEG
z*Ob@l`s_6itHW1H8AEx|u9dTf7>PCz0Ygnp;sK9}vPakPNbRb~g?C9nLcM`w5h@Jn
zjlgIWi+Ph18&C$tb<qgtovF}B^&z>=-eZi@l43sh9>n#1lYbU9uS)Y#k*vU^8k(}N
z+x52@--XVtI*{wz_GDVFzthxTS=XTE<gEc53|HEWccpj7zP@MNUq8!+2z>+-cMK!;
ztZbgJI6W)2@L%a=>u5$~6E2gQ$`<oh7~uXo&$ss-@g;3Gsvl9N=VGR2x@+r6EYo&A
z&k2R;dM_hLdNVQNrA;Qmwz}GkMHT+{7v7b-FIzDuc5T)zyFN`tyuN<omi0XV8t=eH
zlTHhNp(PRd1cr(M2|qeu4<l&|SX;j}#EMu#^9kJuhQV|-ycVCLSA497ocVa>INny<
z>wrn^A3`sehMS%+C%*WbLaqdU8k=!MP%KnzpBbx5o`(&e&RXiNUg~-bM$5eazT)nV
z>u3?!LCPuKB*$aP*=zwxHW)7AnZY~q6l2Swlne59&k8R4{1`%oyILwYC9@Xb)pTpa
z89iVA2}WkR4ENf<Dw<t)n8Rq0coVYfjx*Oe!{yjl*t(oX#WT$2@D6cdEptC7<aH|T
zK+=wi48^?mac|6bJec%PrTA`ViN1m>Q4&Hi`DT+P;7xkH%aOx~@Nl>^c2eLE0w@+I
z1v#U}+kDvx2~0vjC&o0n2q*$n#dY|l2QK@LMi2}31~pt8>v}G<(fM&?H`w>G)h{f+
zq-wffT4B*NZTOURv{OK59giw7q;lln8xHt1MR7Y&2s%0+d<1?z!22vxP1bumT=j0&
zjb8f>Q^^C*5)gT`Ms&4i7@P8x`uJM#sxZZBq~H4tBeiPY&HB^TQ+MdNBgX;M;uRh;
zo<z&c2<i)RAxe6YDiHyl52?zw_cQMvutGj3DsUQ<InBa53=S%bo5cAVr!(5{4pWOw
z!DWX$S$dN^njC&F9=9tih9BYycO`Vuf75xt(07<gv2&)?JjkW*1*wA6KVw0nLzVnw
zZO-b>`Fzq4u4hzP3t_{cV^Nf<wwl};>A$n-QWux$JjWkB_$xMra0|azmKFL+$5=%u
z@mk8+OvunyFZsa5x}rUUNesWB5ISXxhx9^%S7P-nzRkywRCLKwsLC@T=<uDads$3J
z^K(EiQ&Z=6<9gWFOPc=bAoOlB&=V(2??!^e_n+Th&ZntJnS;1K`YJXqiXoA7Jg6IX
zX3Yw6!=8PBI#Fx`-QTLwZC_@b_Fsn%%}0#iwoSQ5p>u!V6GK|MknR)T9(H;j^C-bY
zO03JSKSW)svP9CO4@;iEMp9)!2}(Q+-c%`s2dbcNAl#FQ6%QVH7s;q<hKsotpw-$z
z(M*A^KMUZlU@w6;^kpjUbaDmb`qF6{Z^Gg#NE*fMjJ_cpNSy6MfD*fEonfKiWQZAo
zpQj>!qTT`ZS?2hb^z-4+9x&<%m%evT%MDDYU;g5=LUof0V?w1~`6rQGM((D=Le<#p
zs*<ZjPFyBl|J*`5H4yDGkCHCrwPWQVCw6SG^dVT9#zuKfArEjT;pXk6JuY1lA8Iuv
zZhIxRhShfDl&z8sYXfh5>Uv5vP@9-~<Y7Jwbg3A||1qm~qlpcp>HPL~^8042p0F+*
zxM7)zTfCOONA2-l(!op0KP>M@`JiuEuB*xF310iXEL2@+pMeQbnVa3u>o`?@n2b4p
zjY~HTGJOk!FKN2sLaG~ep-H=1Av8Q6ng=yf4gm}52BD`Pis52fWv7fx)?4#_SoQ?d
z=+9Q=L^7XT4sZr6pw~-4#d-jhwEN*XCh6d9X-{D(;UwwA#X8FGLbbx0cIV$tj#U^n
z?%#ij&W78|L1lEH=S*_BC0e;Te7iGiiJYOcmKG6T)uc}BNe!U;8G$5jeR!BNf7-Mj
z-vc@!JTzVl8lX(ouRn-ChL4Lqxu!EnUq9t)K{EKG^5AS-B3epZykOgBby-<W$hIZ?
zkOmwLA-|3=mFO(P8#hshA|&O~y0r(0gKJK_wRNCN!%pScsSxZBNvYN-q{Z;tbYT%O
zyqWGIND!JHc)%v6s1%U;8zqk_-arW^AOGyPj!2l%)Ijv`)W}L}ZtX;QcPimmW8L}%
z%HWLvq3E<X>Nj#QJHq&|`L3;LyL)gE5oE(k+r=e-fTc#PT>Fm}C(dxg5<j8P;t#s!
zq9sA$pB(X+wE!gdU5_d!cOd{Z@KV8(b>Z{ouI^6*M!8S7fD&F3j)?~(A8gKK>fo7a
zMlQK)CsTke6$`88;u?07ez{5>avUT`O^dDU=b$QaTaWZNBEx(2(JET*=x}wX4-e<>
zsw;kFhE3|c@Ni;vb++2hb?Acte8>pJ^6=2)b2D^%+)TA8DH9GIShNOsHiD_SX?o*)
z{XD~4y!UdOY&pzVXW|kXlAyq}udv_Bh`!J$QlU4c%5M_Gwh8`L8(U#PP<v;A>PUG&
zrZ)S0z+KH(uz==B`L`Ld($PeSEA4EmNyM(&Yd*UIFMOe75!|%^f}v#_pVf*XGbgNs
zG90Tw+4EuZ5~414ZwSHBlbG9Cw(ntQfv+T99bKMR)I>j;@5h@8x9b(12PCz|^(5@A
z4-2B3w2BoQ$2k$E9Pc4z#C(z>-S&G9KPUsITf_McJwphi!igZ~!<UH#=Ar(YUUKR8
z#p{}f#H#B7F};BwhaY}iG-V0v6bg0B&w&>oGOy${Up?`$UbXlg*-&<Dlks{|G!u*B
z9$kkKs#)tfuRFF>-IUc?WFFdVS<-xB?_A1>U^8V6W9!O%RVZo`3E8sup$OC|ezC5N
z_gCMuNqt6wNDu6&Fph5HRh4P3J`?ZmaQu<%V2ZoJ?X-VU3Nn8^+|`5g97Jtwok4Vp
zP}{FRlV5>|`{Dw><=pnn=2r2<4)Eoc%pOp<c*aAPXKDBC*o3dm!J`_S&52vvU&PXY
z6)!^Py9X;P)^Q!Wj5>~a5TO}u&mO)wU|7uORnsLSJIK?IQhV@)H*#iR+x)iiM}8YF
zO@&uP^B2rzuSqzrX*O00k?wjv|0S!l#aka@>p5inz#Hy#VBkr5iX$TNs)A-i(CE!}
z*X-~pmCMKhA(e37x|jD)hFg}_NQuP3@mXdN67@_qcW-5n1}Ny$<M792Xgl%gA&Npb
z?<eEHndu_8<A99TOBIc16dv!R5M2Auzdm8axXQNwxnlW@TC=#DJ2^KrE@?$~e7q8U
zmR7y+=SekO*-$2CgjMr^P4<2R^@ZsBEm};hi0eW?@-n>XVvbffA+|XL+deLy54Y-@
zKgS-qA;D>*kl}{mtc_ypP;uaK?H-;wH0?`3RN3mv*|eysFb=QOr_9|i$fq8kVB(Ho
zPCCtl+jC1R$^Jtp$k*pkxiE3$dba-_TB+TOmR5GrtMq=w{gWIOwWdS9`z#9nZ#A*F
zhbL7cM#U$upANukP0XF;VVf{KY2*DF+Xlk3h$v%CM#ERkBsYtd97l7n*8Bal5^mxQ
zzP!66juJ~V<}T9d@1RuRr(ExbSE_~m5F#81-H7{?>+kUTqsHA0zi;Ikw<DQC*O_rv
zp7~O{RU`)vQQ<%e*Ei20Q%J^R9{LMy9m-(hwyrc(=KJlN=T(S+Gk?S_4ss#sBWmSf
zMzCZvQL++beD18&Vhhw%kZIi$-ComhywHNUqCy)mBK33xW)I^XxxDvK8RkZ@D(3D*
z&+UD}$GcAgadOb@Ph!?!s@Psfyk1v-5aB)>pOm;9z5YsDk+`i|Ao7!6z3bXe9bxdP
z0m4?FBDiGq-4>|1Z_sNIy({nB`#k!PDU6oAYP0KXux;bn!*oXaNMavJbozei;d$A3
zm!!1Hl~;x`x!UkSXk|Jrw3*nrD|BdmRN3cT-4>V6<l|~S)y~$6Argg8yqZgg7yS-|
zZ8q<NyqvE+eHp&D$i*=zS8GUK=h&q$D6?F)k$9#3@*Lk@Vli9ZBq%H!AHRx;iAi5L
z53+Ri25n!gD7+RS7r93}uu--7cKqvY$wsDH@mrwkFvR^S2^FXs0hq}lf)+`!{V(95
z;Ar{up<pY*Eu*e-u{DV8`p9tpiQ?Y*XuSRty@&99W?f+sFAp2~Q;fObukQp`9JapE
zkBzfCdda2;&!cw#s~LDqC~FBl%?v&sFib^3vgjX}of!HbP#gpVOwEQrm6nW#s@$(2
zS0yj7C5OTdj99d|&%@xDQ0pqd9V(4@S<rv@kM#dboCqrUJl}sE>djcRkLO(7hN^g3
z*WIeLTqgEB^3yu5j=5Kt;B?LPP_=!e^SZRQqv1ykkh{aAK>f5cW9*+6?rgROZ%!=)
z#456Los<d<6A|0#{2v@sJTDvE3W-X86hU#bwTSFSB>^Y9Ka(+1^BAHBOh*+yH(zNh
z9KmkVUjT)uvg?Wpb|(;uHvXYCWt!U6kMtRWbO!Ad#k+3h9xmfHja+mn_0WgLP;ULn
zt+qpn)_MxgBj#eClZ>0bh?%=b$T>1lh$tJpGqK=Vm_R(3;FN8%ODU{Vfr`pTbuuT~
zV|CbS&^nt`tl@hj7xE{4Y+QsDhf?22nEaNaK{XXIrMDD1L-s(mGNFkBmCR7N50}oc
zg<RHe*Cl<np7D%=SBZrc5xHoXbI&qHVV|4Ac&O$A+`8pXmC?p#^$%FgoekANNo02{
zf<Q4gylXf*>d|1iXlUr2k?W2R_VTU@nIaS|zovMzQGv{QHY_%&XH`{iuzrTfg*mA?
z%Yz&k)-ZR+x1&|tKXE?ilH-0$1&u&FJLTNojaVChiYIr2?m>nU?;5Ky0rUS1AYh$v
z;46K>^~;RrgkeTLmnhU6ed}+QY|?gSDOjUN_pfac{f42<g|#6K^irlU7@DdglvPsb
z$)d1Q5Y4JTQ}Q%>CbPm0eFE@vfsMRM|8XDKmZPZ^HJy3Nbsx`OLluNXqvDjAAx6z{
zt)-{-em=9+<RxW0Zezns+SvCmp_1>knuQo1=TA4sS3zw*+gQQ?I|l9S0f3ybGRlw3
zUa>F~-x@b64WzD*NT?|V08P#xT5l`)TF?I)ty;xN8LQ!_uoY=RvjAV94pgug5L6h1
zNCUG$5Sv~jZC@`}k<g(M&g<lxMgc;lC?-;2%L1sdshC6kfXJ|b=lW0JxoTkkt3}U}
zMbA9{Y8HTB>Hm{U2npx*PVay4|C9OhpNaSZ#r`8oiT?lY^}o2_0<_KGb(mIapW}mD
zYP7<#R^KwusEU2xvUgLfrg?~`%z=_T$)FN*cB-RH98VE-=ROhhIK2loqOVQP&d<dp
zUH$$!#@$gq{@&U4vl($0imVE%=XV@>ZwkF0c=~MBoVOC~!khUrX#+j>kutBjuHP6v
zbk|&yg&b*wm)^Mlb)*}bP~=(opkaCk1GW<Gq+AJao4M%MNa7vYUKU+<yWzmJd|T{9
z&~KlGp@OxZ6q3L8uMIO%FQ(2XLnt$8xwaH>CkG+C{8;5GEpX;oxq?IR&4pP${?Z>_
zlp0!^YO6LT^*XuMe$Y@2A~6_KiX4?jP!2|vie4%1M00s%STFM9)}muG{;qV%X<=<P
zhIH$jf+`Eu7txRV0<X<I`bA8y_j<%68A{;oyor|}R=s@8-YDg7W3hhG)%YY#Hf6x`
zD5v6N{wg_9<M6Ldy(pP4Kflk3*F0j({A_b<Sb$juQ#4%B$Sl43T?=Hurnnhoh>vY8
z)G+s@ETI=HhLsy=(QyrdW;5Lw8(!1D(>PeB&qQ7jK5na%QP$VesMF9sc!`%$3shyn
zrgWoQvrgDF;*o0xDjql=S;dOX$yIhR5XMAV!{KgiOz|HALzU#AtGhr;QCH**FV`<o
z12tg=&F?{TFNjlVgxLK~oz$J$-d7Vzy5K{g{I;^G`;sBH(tV!uNIeXA84tj)P#8X5
z3B4&)vgbc=hDK>(s1DmRiAGC7@)?G~3*PANAU4a$xnO8C`{BUC<I9SED*IO76AfHd
zZ4IHGnDTY17ynwWEjl*Hn(v~>k@P(>QQ9Y<2OGz{V3;K~37puP>x!n=ef_p>(P%6s
zjG%>o#XoZmUV|oCS_hNXVUJ`!!dMHj!12kZ(pa*~ZJ{40)`Kq$eiTRlSuGxoAl$R<
zy%%2LSe3H0NDC3`0qU{UTgcUJ(VJ6g*yl7Xgc%hzH17PQULFscLpEY<-;C$kRM7)B
zO&~-II_-W4a!ii`i&08vy;!wyap*irdfChpQjd`hBO&uVexs=?9J#=LBY$KQ!sf16
z{kTzZk2n7~X~is5rMTk0Aj8(Vm7}wN1J-6W6g?Q+rrm^u^2Ej^JZz<pL~>%3UDC?R
z+WGD_boG%D6NQF*S;iu0YjbWjDcnt$%{3H8mVFe4+xljvIFXbE_5w@0-w3m09I%6N
zd6~aHKXp5qsK-}=I$Q1vn9eQX8G=pklvpU=$2$+x?|hGy*BF$s4+>1{dul$M#Y{~3
z#@#ot-h(mQ?gHIu)m9hYM6(jnHBPV}bxw17B#GTD>Hc<Gnkd)>bY3i1iO@US#A_B`
z%oq@!`Tm>di1w0q?8s3f!-uRNP>nRdKa+@f*vWL;10FTOCxIwy>Nbm+p8*yx#(6Zi
zgTW}nG$E>US<3fX=$@tP1$Drqm5h+s+LDbEE{rfWH_&Les_rnb*lY<3g7Ge{3(tNQ
zYGRE2%WSiKn~>_Fkm#0_n%t<<n<&l_jZMM-H!PwI=na&y*rtGHKMuATBd;+F9`dpf
zaf~G_pNjh*o@WlQV%Jviip1$t7yl>+qqwYty#rxt3=K8}+I1_JJ0BoYRpnrRO_0+z
z?R^P|S<B(;<=%3$!z}jTI8=$QK=UZ@E~P7C8d9bM)YLQ3nZKu+qk{-Dccx+Dd?*>k
z&etyCPDBmu$9P)<*rzDzmA(Az7q{!L0o{=Tqez<_)EX@kOb~Z^9=sU8ur(NVEC#w-
z_ZfQK5uTwLx9RRN3nHz-n+fQ(de!Z)mNY0G_L*50A@BYmiC|d_ebiDAje#}M0$ULK
zR;BM_b5?%;7W{R7bPq&UJ5S!PH_s;1%z>b{lYzhhp}OVrQS9FG#y>xqt$eFl-X2~n
zNiv^CwQTr`iO44G#%uGkCwMBCeFhJTRY8{T_`JdnrNf@E^lL>UU{m9!(1yb-HDEvL
z7X#BdJ2x_pUG!sT8XgY4Vtn7TFoaOw=_0OnQk_lgyV;5xo4djDZW@7gdGGMhNH^0w
z_DLN^r|;idAFBgtj6#U%D4W#+6ck3rqxv2_NZ2r!@C-l(?{z`u$e}tQ7GE^A@^^8_
z=yA4h$Xk{R1d!chli^vHVTG*+_TnKeE7sFL<JRjb(`Tt>n=@od&0Fo@ij@mLH;_u3
zB{R&R%SpL5tS8asUwVLrYzXkHCwGZ90}(>W8A2F*_TEeXuK!@&$Q}jHRSN1?wm2iI
zUvFnH$NJy=&Of*G?1L_9p1n~Ofacjlm0tNC>ia8@TNC-(%mdRrmye}4#hJHf)t2Y+
z?Wm<gL(>#_mADkoYA36)mHry5a%4vdfY|(y%0j5?G4q6K*BrIM!^{^kgO7w`zK$o}
z@gceUVZ5kB+x^Gix$RfH+KoiE=T0zVPru)iekb|-Ye(BZR(bSYlmV8-hRM0P%O~(7
z>yUHh*>#5c*0zxWF+?GN=U1dr@H*?#(r6TJ5TnC-PPfgGo4O)D72o}a1JRi$_P(2U
zC1ugOFazBDz`xPfOM*mfYkx=+c1(C@_=Tgt6$A_i@{Dc}YsUmheYVwu&(BFxV+djq
zm)m42Nv-MstRDv-)oBKTyze9rb3W!8Q$Bn*1$~Y<`)n@WHod810l`7G_9U~TjEQqs
z<$L}0Sr+G6_Pp4X$T<d|qzU!*&=e=wos<+hqa%C0mPrumFYx{bI@jcO<AV`@-9dGQ
ztgjayAM}9SlYcxDqcZ;q_dd0*OxpFUp}qa@{^}~}ErD-Qexe?<K_%BnH-a)|!eY5N
z7!u367eEn{D;u{<i0ED*_}$XDsTIHJy=id>jHn=SFqrJpZ>sCVJA7vve_>jzPiPL8
zUi)8q$aOwI8bogcqZ{!E71|i~UY;)?^&O&43oxj$)8{ey8+sFH$(}g8{Te8;`+bE7
zC+h>P_}jcMwapHbCUbUr$tz#<TVtbc&xlqUV|%&u)i;gahr;2lE2UcL^~4YrM=B;^
zmHd$E&Mif!-J_^4o{lOU>fq8F3Wl7wxo;ZDbx)M*hClK-Zy`s6jG-ynp0rs<36#c}
z*)}51)Eb|PR;P>Y%#5M#QprsApkQ!HKG<LxVDLQ}VRx<fs7|zM?v7}|HPj+M%sdK|
zeLqgYwU%rW<Ti^^Me3xQqG>rH)NQSYT$a2>;%Awde0|D>o9;}rr6!*0d2KC@=2|u%
z==?Ea?^^eSmi~8B(O@V6DiiL}T9;IzfzZoJ;uU03B|AL=$D&%uG8>r!I!yL?C3RlC
zNdc+txZG#kCe6(hIHVbn+aSIB{<fs{1JZsm8SdM_%=A|^{3)G!-%o>|Q06gg6W@Hu
zaq#*qUp5j*rtw2pH%>N>y<+-igS&aP`@@b)VepR}$^8BI_(f_YU(0DK2*o)%)m6$h
zmv0qX<#$NduPRjUT=r-FqmUV0MOm@M_4F<ABIIAb`X;9#LgoehGjG`SUEt8^!{JxL
zc3U8u=m0NuU+BuDY-0XBIPnOc98;G4LPozN>DE_>Bha2Hv0nTF%{(3H1*Zf5pue?Y
z?t%^JiNgDsSz{cDJr7v8-cC?T<2+PNTiL{EoBY<$X6I%1aLvs$-dy<0^0&cpr$D#&
z+j>P1y>F_@RChLE$hp_Y#~fG1&PsVp?5g=oolD&uV7J)i$j06R8tt_(EA>$D^D?X{
z|5b>!Yrg1-(vpP*Uzz;guTL(x4PV2XoBF2CHZTMooU1TGIB5Ph!zdK^D?C?av(O5z
zS<yyL4~?)1(%qUA+s`un9__B6B|f&W&{gkcE3`lzFCq0p6GI|Ds1f>DXJd(DFq}IL
zMg3Y1nlBs^h;?GZn`2)i+e_6AUL;2$u}R+tOdfaj_PZRtocB^DQ}oPZ8sin|hNhb|
z*R@J)E1FUN$<-0&F>kMbn1II5oW;uqC;h(cXvR9BM88bE-6QmC)yX}AH+_t-$v+-e
zwno5#70b27yi^*r`C3Yk+_|6n{qsX#Lf!_qC<(0geHV)oG!)tgtnf(uG+hd)YeitC
zJCr3*IkQcO<9um%J3m-{<o8askrHx|>I{l_)5PoB15JK{qOX4O?|V5`%rCm%J>=8k
z8D{e+TOr&Jq_c+&knOEDDB^1OV}B>v(Lug{x+HXc&loJvQhSpV#KFC5aH!Zz_KPTH
zCFwGO7m-6~s8x;~BlF{*K0{m;Vt%6nA(=r6h%E|yqFh#K+z=!4Dl{5@<{)bO<=Ytl
z)bW^-c2dUjd_gkpiwU?$|0^#}`FiDye~X5ud^ra^egS+CqIjb7kC%VooD08VOGhGR
z7u<rsXq;t6d0F!CF1oJHhN-8GF`-SoXT2dDr8LiBci<Yp%*{l5%jX0F63D+!-!I_p
zoZks`lm61%AYrs*NWOq^%W8VaY~JE#{SaF|$Oix1F^Wu9!BU`l!TUV*oA<5-VyF4v
znpbs(j$5N^_n95E*e{jnisVg5u#I=!nzpN~TE8*FGNgx2x3Ruy;?&Dp4(I4>OAh7#
zkbZhtYb+)psJh6yLk;Z}vUvxeyQFql-=KYb$7S!Dd4ZC9;7IZLFJj`7gyJt!$24#W
zPs3i+ZDY_3YIu@-M6Uc>5@!=@{Ix~Dcg*0>A8Bn-KX^)j--#eSKgq}wBfm7dmW4D@
z8}w+~|H+3xdU|+G1=p`op~}4jx$r6m<Jt40qf9#>>u;aXT2>(^1@8PvvkJ2}6c0c-
zAOYMjKT5%RsTQF5*Q*`qYftWP$0U4O%!oLnQeuZ?9Za`;4;N8lC>$w5PFD*oG!}Vx
zO0&SZ@PBuP@Mh{jQmd^V^cm{qlV~vCxSbl_%;oi#3?U(W5Ua6b>kHKMrivH8uNAhD
zU@x)&&q=Nd8xjPyi0B^*7e&tkAZcJeQz58dph!hT{}Y8bq2F7Q_)TamI=ANaf9sxN
z`vN8R78X=d_B2K6QauuCr8G+{7b5pu1%5vSq!Jos9b_ynq>>Yi#GTNUH3^hol^v+}
zlOXXyGHw(JSREKw7Ard1%!~6cR=kS6Eh=j5%`}=AghxIiv1{lVn_Y~dJ@2{qep{Pe
z9q4lFZI%4`bxmatjMoHJ)=$nE9^kivXOJ3H%F3EZG=#X-JzJdGe<y<?eGF|Rj`tmW
zp!R*{8CB!Y93cPFFCf{j`3Sc&$Y@k;l+w1AmuvI$E?*;UEB}~}dok0)QbGy(1f|ov
z+yqQ{WDJq*Ehl+P^BBpYbwmNRZ=1B%3u=3+A)}BR#~@<QWp)FyTM1p5d}~fq(=t+n
zYMG`U#~wg;{0e<56?>1xS}*Xh+mf#a;;p6ZSvQ50R4Hkem$6miZWWG-p%HmKVw;N)
z%-wj4iR}kPw~$`7t;a<!0vqg!{SJEd1*(hm-<0xybyT;M{UatiEe`kfuOCdPha4|p
zeN>T|`eWAUo0vL9Z$m}ReesIwCbFHPBi>g2WKx-UqER{OcPfwgff$X!&H_9iWT>${
zpJ^07tMz}tM8(>L`d_yQ(jLuE*wYu?%lZ9`a-}hxe|rUeEFwmeNKQ#f(S4J=@FtMc
zoMq%j9P&bK&UTpM)63xOCzd-f8;h2V)1GDWO&hmIy<4-h{Vumm6?T*8)qbNC^4z-R
zS`F0lDRp?IV;VeBiuWa!?+rXFloT<{LXiPfCwI(__><6vV+Jk)!afN=(L@zULu)tw
zN;;19D0{jG#sBu63K$OMZb;!N#j3_hq^8%`<EgAe-qlhHbYX)^%KvOtF9Sx|kI7%@
zf5(-~PmTiRLNurU%mf$#KK;f0+-sOlL+p(fstgnLI+kY3@ShRU?vVPk#D#m>;RWy@
zjYgqeQ5P&Aw8|zyyin(S)6_aZT3Rv?33Y=g9{tG#@@ZNuL_o9@)iu%_(8|33;7Y3F
zs5XHpNdi*5k-!z?$hanQ$c;HK8{pCQlP&U?ntH;!vuPh~gH+Oz&T*@JFB6Eca9ER1
ziJN}6jq!h|&qRL5frW<ewft8YirL|Q9&N`<!;EPCV$<_h92EXGL%-zR)F!f7N!$-W
zj9%pB9J}XmaF9XHnMFwL=Y)4R5p;?MB)!4o!VZXc2k=ui%(PR?63tu))THYh`SJWs
zuV-F9qmT8?rjvkSh~))Nb(!VhmTUQJx2bR~<uqYiR2RMkDm#{v!ciA2TJj)UkK{E>
zL22VR*l2_$03;A1O>%1Av#{38)8qM-oekNKK6ym>_0J^ux4cUdKlb{sE>2}&8ZT!n
z;pQC)U`z;QGAuwU^9lz$jVE|$i*$iCdzrLOBis@_dL;QPi@<?3t7AAsYn0=A8TQUx
zllg#eITD8podLBB>X4CMJ@So`5Q7|1vA1m$Dv9aJDgXJ0j)9lni-bshBRY;{`Gih(
zO=_)lBHTnSM=~Vg)ksaJ*9K^`G=2X1fDfJ@2=vQm$<mTMiEd0L2czJ8{d9Y$X*GFZ
z1VJkuq1Ok4(#S+QLnZBC<=882PftZGA$qy^1(Cg*Ij^{clN36bb$Qgb=Cpn;1e8@Y
z4($o8d1+|H@Wx7`2vxqGxK>?1>u<`*L#hC2{B5EP@k30q+pO6}W8xdqaLjiK1G`uL
zo<eGP%LIse_vP~0xI+{9suKE>_r$-#l-ObTVjORrD2ji9>u<U<S3EpH8$b^MVlp|F
z&{CZq?NFvR?Ig}xdu3Z52Dq;Zj8{?v`Yk;+9^S3Olk=5#TIyViZna&jQ;yxS2)4Cx
z#bS8~yxnifR4{((cB<_YoH_eB?B&GNo<+vFFz%$?f;=6w!;wSO%1Ds0q;De}-vF00
zKO;0F9?Nu8BWIWa7aKvR&`lMrGH)P2a<1oJOdYqRmbee(2cJ(!WziGY-el|O6V*6o
z&a)fwXLb*Ri(CO*h&TQ_Nwcg-4Fw(UKKe4e=loNavu1)#86QgbhVUadBTvqh>}KNR
z<j6RVf7XQMzg3esvi1>eDW0D$`3-Zbdr=0dL(YY~3vfOT-LUKyRu&(aH2XTaWf68#
z6z~WCp~{4e$ZE%QEO@2hh3I0;RcloNT)aQd^w3iXBV;(AlzdkwOuWB!@yxl6Ys+2q
z%M<5o?RVIn<`chC?_a{z#?O?>VZaUD`Cx0-?-(hcs@eE*bWEoThAOcQH-?ozANbOQ
z_sU(CX-U|=21ykCTOkXXHo~?)!id{z$9Q|#Fz_gkO;XJf(Ra!Eb@CElNw72*Nh_Cr
zq<G0aJBe{|!)MDgzb2J*)<%6XK_N8fq`Yp^E09fyjem)B#w9p`f&@;Y1-K!dygXi!
zUN&VF8&|XgNayN>8BRI%joCpW^9~N>`*dQMrX(4lo7NTO=l&DCegGZ_fcUf~uVZ)e
zJ(mbnVf3U3&2g#f@?DvqI*_&Tio^K~Rs!JkExSGGnf-fTLi;7M+-E||)#;vh=rrVj
zhfKstiF=hvO+s?|s~U_qt_Vo`b?)6}IKE%}pS|{&&NaI(&NYd`XU()dxMeziQhY#2
z7puYy7x}x9hqW;$B3)n}Mbn}S%@X7<O&O!R$8%&+8R=ep@I#fYq$8nVotUXX^JkjJ
zBVx2hbr|%{6mW!!-kw!xrNKiEG$RyRxe&k9q&<q!k8Ly~fSM%$jS_%L8Bnzhs2SnP
zexPssdK&*jw}mTw|I>dz*{)UnKS$s2hjcrwlM~OnD9VhJbJwZc!egg4j!kmP=4mz&
zfy0<n`yyU8!@~?@1@Z-=er0UslHxkhW(1BJXVLR@Z;o2rc>LGAz-c;(5jk=;sYo5h
zS<6b*QYg|34Jvsne;4%T`GDG>w|6FIY$Nsa&c`ER<~hwn%pF|5#wSZ&Pq(YNBlbH=
zAUwI3oq)WT4Dn``6ZB7gU7VS6HY|mu6z#rf74=;nR#zSEWjl5h?dOmkx>orgY<fH5
zN5TDwS9iV}BB~@o1V9CH<WoJ&exHISr~M&Ez<JWz_dIkl(VJJk%J`1#)!)=hlDyMC
z@Ean?dz89NvclW6ilRJ~x=-c&w3%G4P;dP=uilTL_N=N5v`eHnVD8O~NMRJ2Is4_X
zi(PGh?tr;ZCSyQrW6=ptwqG3IWNE!}V9sxTWcRCUEb@AA!XiFqUL_HPy5a^pq5Q#_
zEuIx(p!(Wx_@bfTU~fJ{qd}H_GaxOk85PQ3qdQNUJBhmRo9NDcNi*qpluG*`zkQoT
z@xmBqr1Be;8v23qotw1x0(~D=HGia79h81k7xKczINNpbBi@`QK7C!gK03_QqD{`7
zeDlkRsF^4C>%Q-%+=yhaJ=-VY-m!EdxBL=j<I|sj@brdsCm-1jg^9w4^KFfyQD)!l
z1WA3LrLv&HRTIYK3&Pu~v52sAhPKg}Iz*(ha=2JyZms^6J%I*GbzA=A7^#tCNjO1F
zn4k*rsPgF;Ib34HV$|Z2Y1L&+J+xd3;ADU~J?gqgN`aQ;L+UMmxgjn?=zSsOTVT`8
zAOMU<XYTs?gFA^W4Nlm2(P!{c@AVc-HX|D`V1)B0z1<nYehi;evadyK&0&<PmT2iF
z1!v_zPZMK68)K3T`W72&R;d(y3P#1HIdk@F9fyuIj#ZRuG1MV5qBy^oJS#_cMYh($
zxE|lg{BK|>3ou?}qezBqcm0PKl4N#|T+Keh@KHhxE>~zT=Ph`x;0?hom=#sVi<mi(
z`5QOBj@?Wr1H%9FO75jz-B=79DvosF^hfFv-FZF9Q7DX`Q+;aK-P<0=TdL8m*QlB(
zZcH&tDAoAS4hLzREP#%8T61+}g$L`@JF`<UC3ObB-x!GuJeiw3^}3{&3|i}-)qS4o
zzf8AMjb1=QuPd4dewi>Mh2QTnju#ehksaCAlPAAzA4YF*c`w%X<;>yZ&)5n97bB<0
z<p!ECOAb9=Xe@q=kv%zI7T*+Tg3Q+>nqBZ3Y;tq_mi^>dq_Czy#pcdl4-@O<))e*#
zPT!>L8tgneI{H2werix%*M;_c*OmJHv>;H1R3#hSoi|%TL|#mY60rab6OO$kgMMZv
z#Y|okrjkqlggNmv7?@q8qL-vZeE$t#m6s^UQe4>b$6@(Zf+WA$LUnNvD;22;?0hoo
z=gNU8^;)x5-xma-&wk|JM%*Xo-j~KCJyexMaq07Ac+j^UGPdtg1A9JXenP%GneOxq
z_?cKN2WmSjeJS)^Tq~<@PZY<|2v=$2RsF3*Q5iQ0yhFJsy0j3wip&)?qqcJw1W5l>
zf+!))qF_&*0Zc{t#N;I!;Z%zx{h?4}37dHPPg!vQarFDPmNG%Upe{8cg4MpiuLt<U
zy@~rA+);?z+F_CPGj?pJ!i+vP)JBeDwf*U7&qlQ-TE&_0fwyM<Hb03b8#@dm#VJTK
z0&~2%(wHKc$(2!tfN#wEU`y(cM!=UMLX_sMrH&Y0-PN$(kQJbbHlRq8_%_^r+Z&aS
zUMZFS`p<p1uc7Jz6^72#;>3~wC|~RLw-kN<d=xEUqz4<zpH0tFzKr&fK=sj_p+u=A
zd)JnO?Ltbd??OsLbfFPKz2ZXpJ<=qP?kV^MLmz`lNfU*{Ar=O-%9Xa7Ti!)mLhL7#
zc0xJWb$L(o1p2vHZJ%voko!rrt6w0L#OJkq3zTFYv`;Pi*W3UKrC={85ie_!Eo3Yp
z1Ug#O)bd3ob?Ck7KoX2dywJ?^q5mOlm(BZK@s_TCDT;QaN3#swc0o`bC}%|Vxd@>d
zr>O8UF|u~%LU17P>2B4S@SYsA;uhsQprGrt-DFnqUGnQxjs*F;skn7jiK+Ushy~N4
zVv5y7*F+e{C>yN5*doeRBD&ATQ^JoHsuil{>ngz7Z?fSrkf>OOGA6bB8;}22bwg!Z
z&iQ%lkTKqq{>3$o)>__11A)R0!Apu_RptjX^Wi5x(VF(-?&7?9qkB*eVYC)v!f0*X
zorj+wNEF_T{+@4|A88Z8E4)}Iu(EBtC=IH&q!p^Mj*~cc()Rjn1ZuV{A>m$V>9k9~
zSm84Qnq3~9v#g9pU}Y{iw6%UawyOv-Y&~&WXbjQ2Ca+#g^JG^aK+dpZWKa69+}ic!
z|9{^7e^b2wq~Xu#VlXW<iXGpMg^gm3%t0az#i1K%&PVGYd=~OSh5Q%M8xrr<1HYVh
zp9>!?7ETzQ=~Nf;k-pOx{iCaTH~>Zm%nw3=Q!EMn%kZDmJvh;u|AL+qzak<lv?AW8
z?*TwPDu}Cxk@tH3@VA)X$A3f`U>_b`f#dt?&3jx&C1ZyliAPn+x>b*2xmiJ#hl90L
zfr_f2YEQT3DIs<XdKu`LG<4ds)Kl8?4b%>9233c=@q{i=_RkF1-1@mN7TJ!TQ*tvC
zR>ZY2wfb~Ts>y~A2<8*Eu2Y`rlyhYqe{d>q<P^@XPEy$QsG()_#)L3#oXx=w8d>l)
z4rDdR?>s!d;5_lL^xU6e9kk~5wu2{(W~*r>??k@o8ZFT}!S!usnT~^t>*UKro4265
zP;ci2X72D~r5H-#4_j3Z<tsbbg+s9L7E&Bf?kkt~7Zxoce1&na6x+X54tz|%VwP!x
zY(HOEFfVQ{?FOkinM1SSZ$#N#lMY-%X7ys)TFo7!e8XS|m-LuQ$A2?j7Z%TnGaou1
zP*<btMQpQxGK}iK;UrTqC2i&-54MfTT#Oq6i<Lup#@r$yE%Ieluja<sGUk+f+5Nan
z9g#$lro3v9GqYESVa2#mEkNZ6qbex6QO3N-DaLm&)3esDdHL?^pD=+<I|GO6fpOmp
ztDitc1J6&zDX$c}E`<*{<Mrz=YgSD|(#y~OxDI_Kme>xqG-w1guJ;n-9Fg<%W2uAg
z%mofdBc0rz?-=ZPP3~Ea>aCq~kkX!YKCIJPpdN-yXwB7(RVR9pwZQ`nK=~_88JY(r
z8jB_+K#5h7$+hRdxVSt>#Rf=}pu*rB*fAnA&G3Cer=oK3lLH<C-=M6p#iZ4BY9Q7K
zyRl`xgy$F9170TS|Fis0x3A{?=D7LB{PH*DCvwVXZhm5ZS)%gRn19V<&AsZ&FIC!x
zZay~=IPmba__e3t&xB+4|9(z(2@6|w_5a;G;QG#AFW!q^@31M`V^Xozai<b+7|bio
zZTGFD7e9MqbMJ@zJy~1)^yL=!`yWbA%-k$}SN_Rj+c@u@jr}jP<j;sd?ey4kY9Y|@
z)yt#is>N(c2|KVq&G~ot8r`ek{#IYp%>TFhj`7`F7ykYHY5X1-q|MR)*ZtknenPbB
zq0`0WMM1gS+_b*_Q+qa7w%Y2oaO}pvUSS(oebSpyt7Gf8%D7OlQrCHFLE6@$cLAr3
z-hY|VAFcC#?dsUzx|W*g%EW_~RdxGPYYW%jsVZ1~xAEs*>6O85R+9p58(n?2ZD!w;
ze3kgi|AD%G&dhpvCTpvA-j28)zQ1=j^)fC#Exhnzc-LCT)urNB@<hr%O<exPLh|5t
z_6u68OU=9U`IkJl+$w#uAWhvps52}`_kj6VhE+=;xfx7mRD^H`=!QRMnp0Q0POMDT
zr$IY$SM;^e<&5jB*6xhG^dcsYal>`c7$30EkpT|zVI9wdkM>>2;e?)D0Hqv^KiMmE
Vc|Vkz{9ryv$kWx&Wt~$(697L^;8g$s

literal 0
HcmV?d00001

diff --git a/doc/user/project/import/index.md b/doc/user/project/import/index.md
index 72cc58546b7..b55435e5b4f 100644
--- a/doc/user/project/import/index.md
+++ b/doc/user/project/import/index.md
@@ -11,6 +11,7 @@
 1. [From SVN](svn.md)
 1. [From TFS](tfs.md)
 1. [From repo by URL](repo_by_url.md)
+1. [By uploading a manifest file](manifest.md)
 
 In addition to the specific migration documentation above, you can import any
 Git repository via HTTP from the New Project page. Be aware that if the
diff --git a/doc/user/project/import/manifest.md b/doc/user/project/import/manifest.md
new file mode 100644
index 00000000000..16c7e77d033
--- /dev/null
+++ b/doc/user/project/import/manifest.md
@@ -0,0 +1,44 @@
+# Import multiple repositories by uploading a manifest file
+
+GitLab allows you to import all the required git repositories based on the 
+Android repository manifest file.
+
+You can do it by following next steps: 
+
+1. From your GitLab dashboard click **New project**
+1. Switch to the **Import project** tab
+1. Click on the **Manifest file** button
+1. Provide GitLab with a manifest xml file
+1. Select a group you want to import to (you need to create a group first if you don't have one)
+1. Click **Import projects** 
+1. You will be redirected to the import status page with projects list based on manifest file
+1. Check the list and click 'Import all repositories' to start import.
+
+![Manifest upload](img/manifest_upload.png)
+
+![Manifest status](img/manifest_status.png)
+
+### Manifest format
+
+A manifest must be an XML file. There must be one `remote` tag with `review` attribute
+that contains a URL to a git server. Each `project` tag must have `name` and `path` attribute. 
+GitLab will build URL to the repository by combining URL from `remote` tag with a project name.
+A path attribute will be used to represent project path in GitLab system. 
+
+Below is a valid example of manifest file.
+
+```xml
+<manifest>
+  <remote review="https://android-review.googlesource.com/" />
+
+  <project path="build/make" name="platform/build" />
+  <project path="build/blueprint" name="platform/build/blueprint" />
+</manifest>
+```
+
+As result next projects will be created: 
+
+| GitLab | Import URL |
+|---|---|
+| https://gitlab/YOUR_GROUP/build/make | https://android-review.googlesource.com/platform/build | 
+| https://gitlab/YOUR_GROUP/build/blueprint | https://android-review.googlesource.com/platform/build/blueprint | 

From 0f9dacf4316072ed11e9bd6f328585c469b1ad9c Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Thu, 5 Jul 2018 17:30:47 +0300
Subject: [PATCH 060/113] Fix icon for manifest import and mention manifest
 feature in API

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/views/projects/_import_project_pane.html.haml | 2 +-
 lib/api/settings.rb                               | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/app/views/projects/_import_project_pane.html.haml b/app/views/projects/_import_project_pane.html.haml
index 8472714b8a5..7f4520fa50f 100644
--- a/app/views/projects/_import_project_pane.html.haml
+++ b/app/views/projects/_import_project_pane.html.haml
@@ -45,7 +45,7 @@
       %div
         - if manifest_import_enabled?
           %button.btn{ type: "button" }
-            = icon('file', text: 'Manifest file')
+            = icon('file-text-o', text: 'Manifest file')
 
   .js-toggle-content.toggle-import-form{ class: ('hide' if active_tab != 'import') }
     = form_for @project, html: { class: 'new_project' } do |f|
diff --git a/lib/api/settings.rb b/lib/api/settings.rb
index 02ef89f997f..1ca7d23203b 100644
--- a/lib/api/settings.rb
+++ b/lib/api/settings.rb
@@ -25,7 +25,7 @@ module API
       optional :default_snippet_visibility, type: String, values: Gitlab::VisibilityLevel.string_values, desc: 'The default snippet visibility'
       optional :default_group_visibility, type: String, values: Gitlab::VisibilityLevel.string_values, desc: 'The default group visibility'
       optional :restricted_visibility_levels, type: Array[String], desc: 'Selected levels cannot be used by non-admin users for groups, projects or snippets. If the public level is restricted, user profiles are only visible to logged in users.'
-      optional :import_sources, type: Array[String], values: %w[github bitbucket gitlab google_code fogbugz git gitlab_project],
+      optional :import_sources, type: Array[String], values: %w[github bitbucket gitlab google_code fogbugz git gitlab_project manifest],
                                 desc: 'Enabled sources for code import during project creation. OmniAuth must be configured for GitHub, Bitbucket, and GitLab.com'
       optional :disabled_oauth_sign_in_sources, type: Array[String], desc: 'Disable certain OAuth sign-in sources'
       optional :enabled_git_access_protocol, type: String, values: %w[ssh http nil], desc: 'Allow only the selected protocols to be used for Git access.'

From 4cee5d2e8c78001a1affc53175833641253adbb0 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Fri, 6 Jul 2018 13:59:48 +0300
Subject: [PATCH 061/113] Move manifest import to separate page and add feature
 specs

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/views/import/manifest/_form.html.haml     |  2 +-
 app/views/import/manifest/status.html.haml    |  3 ---
 .../projects/_import_project_pane.html.haml   |  6 +----
 spec/features/import/manifest_import_spec.rb  | 24 +++++++++++++++++++
 spec/features/projects/new_project_spec.rb    | 12 ++++++++++
 5 files changed, 38 insertions(+), 9 deletions(-)
 create mode 100644 spec/features/import/manifest_import_spec.rb

diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
index 6261a2b6864..8ace2b7bff1 100644
--- a/app/views/import/manifest/_form.html.haml
+++ b/app/views/import/manifest/_form.html.haml
@@ -18,5 +18,5 @@
       = _('Choose the top-level group for your repository imports.')
 
   .append-bottom-10
-    = submit_tag 'Import projects', class: 'btn btn-success'
+    = submit_tag 'Continue to the next step', class: 'btn btn-success'
     = link_to 'Cancel', new_project_path, class: 'btn btn-cancel'
diff --git a/app/views/import/manifest/status.html.haml b/app/views/import/manifest/status.html.haml
index 39aba9234d3..653dc249182 100644
--- a/app/views/import/manifest/status.html.haml
+++ b/app/views/import/manifest/status.html.haml
@@ -5,9 +5,6 @@
 %h3.page-title
   = _('Manifest file import')
 
-%p.light
-  = _('Import multiple repositories by uploading a manifest file.')
-
 %p
   = button_tag class: "btn btn-import btn-success js-import-all" do
     = import_all_githubish_repositories_button_label
diff --git a/app/views/projects/_import_project_pane.html.haml b/app/views/projects/_import_project_pane.html.haml
index 7f4520fa50f..cfbaebec876 100644
--- a/app/views/projects/_import_project_pane.html.haml
+++ b/app/views/projects/_import_project_pane.html.haml
@@ -44,7 +44,7 @@
             = icon('git', text: 'Repo by URL')
       %div
         - if manifest_import_enabled?
-          %button.btn{ type: "button" }
+          = link_to new_import_manifest_path, class: 'btn import_manifest' do
             = icon('file-text-o', text: 'Manifest file')
 
   .js-toggle-content.toggle-import-form{ class: ('hide' if active_tab != 'import') }
@@ -52,7 +52,3 @@
       %hr
       = render "shared/import_form", f: f
       = render 'new_project_fields', f: f, project_name_id: "import-url-name"
-
-  .toggle-manifest-form
-    %hr
-    = render 'import/manifest/form'
diff --git a/spec/features/import/manifest_import_spec.rb b/spec/features/import/manifest_import_spec.rb
new file mode 100644
index 00000000000..8f5416c4c27
--- /dev/null
+++ b/spec/features/import/manifest_import_spec.rb
@@ -0,0 +1,24 @@
+require 'spec_helper'
+
+feature 'Import multiple repositories by uploading a manifest file' do
+  include Select2Helper
+
+  let(:user) { create(:admin) }
+  let(:group) { create(:group) }
+
+  before do
+    sign_in(user)
+
+    group.add_owner(user)
+  end
+
+  it 'parses manifest file and list repositories', :js do
+    visit new_import_manifest_path
+
+    attach_file('manifest', Rails.root.join('spec/fixtures/aosp_manifest.xml'))
+    click_on 'Continue to the next step'
+
+    expect(page).to have_button('Import all repositories')
+    expect(page).to have_content('https://android-review.googlesource.com/platform/build/blueprint')
+  end
+end
diff --git a/spec/features/projects/new_project_spec.rb b/spec/features/projects/new_project_spec.rb
index f23ec11a458..1bbbfec2a4f 100644
--- a/spec/features/projects/new_project_spec.rb
+++ b/spec/features/projects/new_project_spec.rb
@@ -23,6 +23,7 @@ describe 'New project' do
     expect(page).to have_link('Google Code')
     expect(page).to have_button('Repo by URL')
     expect(page).to have_link('GitLab export')
+    expect(page).to have_link('Manifest file')
   end
 
   context 'Visibility level selector', :js do
@@ -201,5 +202,16 @@ describe 'New project' do
         expect(current_path).to eq new_import_google_code_path
       end
     end
+
+    context 'from manifest file' do
+      before do
+        first('.import_manifest').click
+      end
+
+      it 'shows import instructions' do
+        expect(page).to have_content('Manifest file import')
+        expect(current_path).to eq new_import_manifest_path
+      end
+    end
   end
 end

From 85b0240c4b58a49b22c9dbff9451127ae817652a Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Fri, 6 Jul 2018 15:06:44 +0300
Subject: [PATCH 062/113] Add feature specs for manifest import

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/import/manifest_controller.rb |  5 +++++
 lib/gitlab/import_sources.rb                  |  2 +-
 spec/features/import/manifest_import_spec.rb  | 22 +++++++++++++++++--
 3 files changed, 26 insertions(+), 3 deletions(-)

diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index 1af686bfa83..0be9cc2468f 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -1,4 +1,5 @@
 class Import::ManifestController < Import::BaseController
+  before_action :whitelist_query_limiting, only: [:create]
   before_action :verify_import_enabled
   before_action :ensure_import_vars, only: [:create, :status]
 
@@ -85,4 +86,8 @@ class Import::ManifestController < Import::BaseController
   def verify_import_enabled
     render_404 unless manifest_import_enabled?
   end
+
+  def whitelist_query_limiting
+    Gitlab::QueryLimiting.whitelist('https://gitlab.com/gitlab-org/gitlab-ce/issues/48939')
+  end
 end
diff --git a/lib/gitlab/import_sources.rb b/lib/gitlab/import_sources.rb
index 374420b9061..af9b880ef9e 100644
--- a/lib/gitlab/import_sources.rb
+++ b/lib/gitlab/import_sources.rb
@@ -17,7 +17,7 @@ module Gitlab
       ImportSource.new('git',            'Repo by URL',   nil),
       ImportSource.new('gitlab_project', 'GitLab export', Gitlab::ImportExport::Importer),
       ImportSource.new('gitea',          'Gitea',         Gitlab::LegacyGithubImport::Importer),
-      ImportSource.new('manifest',       'Manifest file', Gitlab::ManifestImport::Importer)
+      ImportSource.new('manifest',       'Manifest file', nil)
     ].freeze
 
     class << self
diff --git a/spec/features/import/manifest_import_spec.rb b/spec/features/import/manifest_import_spec.rb
index 8f5416c4c27..a0bb1df6fe2 100644
--- a/spec/features/import/manifest_import_spec.rb
+++ b/spec/features/import/manifest_import_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-feature 'Import multiple repositories by uploading a manifest file' do
+feature 'Import multiple repositories by uploading a manifest file', :js do
   include Select2Helper
 
   let(:user) { create(:admin) }
@@ -12,7 +12,7 @@ feature 'Import multiple repositories by uploading a manifest file' do
     group.add_owner(user)
   end
 
-  it 'parses manifest file and list repositories', :js do
+  it 'parses manifest file and list repositories' do
     visit new_import_manifest_path
 
     attach_file('manifest', Rails.root.join('spec/fixtures/aosp_manifest.xml'))
@@ -21,4 +21,22 @@ feature 'Import multiple repositories by uploading a manifest file' do
     expect(page).to have_button('Import all repositories')
     expect(page).to have_content('https://android-review.googlesource.com/platform/build/blueprint')
   end
+
+  it 'imports succesfully imports a project' do
+    visit new_import_manifest_path
+
+    attach_file('manifest', Rails.root.join('spec/fixtures/aosp_manifest.xml'))
+    click_on 'Continue to the next step'
+
+    page.within(first_row) do
+      click_on 'Import'
+
+      expect(page).to have_content 'Done'
+      expect(page).to have_content("#{group.full_path}/build/make")
+    end
+  end
+
+  def first_row
+    page.all('table.import-jobs tbody tr')[0]
+  end
 end

From a4b6707e63ca10eb64a92d45797eaad49e9c9f46 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Fri, 6 Jul 2018 16:21:22 +0300
Subject: [PATCH 063/113] Refactor manifest import code

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/import/manifest_controller.rb |   2 +-
 .../project/import/img/manifest_upload.png    | Bin 17455 -> 11595 bytes
 doc/user/project/import/manifest.md           |   2 +-
 .../{importer.rb => project_creator.rb}       |  20 +++++++-----------
 spec/lib/gitlab/import_sources_spec.rb        |   3 +--
 ...porter_spec.rb => project_creator_spec.rb} |   2 +-
 6 files changed, 12 insertions(+), 17 deletions(-)
 rename lib/gitlab/manifest_import/{importer.rb => project_creator.rb} (73%)
 rename spec/lib/gitlab/manifest_import/{importer_spec.rb => project_creator_spec.rb} (93%)

diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index 0be9cc2468f..42e661325cf 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -47,7 +47,7 @@ class Import::ManifestController < Import::BaseController
       project[:id] == params[:repo_id].to_i
     end
 
-    project = Gitlab::ManifestImport::Importer.new(repository, group, current_user).execute
+    project = Gitlab::ManifestImport::ProjectCreator.new(repository, group, current_user).execute
 
     if project.persisted?
       render json: ProjectSerializer.new.represent(project)
diff --git a/doc/user/project/import/img/manifest_upload.png b/doc/user/project/import/img/manifest_upload.png
index 385df3aa8ce1f7893bcac80dd7caebaea8ffe2dc..ea68e7ffc6a390a9c010b095dfe6386c036bb0c8 100644
GIT binary patch
literal 11595
zcma*Nbx<5l`z{O*?g^gY5Foe**FccqZVN2#&O&e}xCM6$7GQC=;LZkHoZzxJEDnd~
zJ>OULo?o3mPFGjg-S<qj+;a6?GZU$*EQ^Er9uolp0Y_d=S{(u59~c4xq9QudtELq5
zT_*wp5`wCtrp(K0dEV<E95}vxe0h1CAFKlpEnV+I+S=QDR?gP`3=KjzUoSM&miO=6
zy}*|fy?kAqoqc}%T77tdFO`)qUBA3s?7a^1IAg`k!p^2Ybn?W`&d#D&bor{h8CPOs
zV`l+9Y=Y&Jre0o7M!FloGl#L_EX-_iXRrP77^d){`x9tob=~&uQ;3UGa{Zs3ot@2<
z>1>d<ePHeF&CSaLbo%;5pPkL|*J|T830B42bJ*I}$=&TjZt~=XXcDB@fZ=*B-Oa;q
z?)0%a&NugG!MCav2luGdpwRp64%@)o>BEP=UD=5pTX`J|=jRtUxA%-fSwJaX78&E4
z)dp2Q4Uf-kpPdWrd|KAq68$S?b4Cu9>terraShVqWaE&qaWB7mxfW+<=P`@Z4$95|
zY0a*+RK(hd==;Q`X12v!Rrd~U?84SJ*84L2d_4Soa{KK)l1`>e?Sk8OrW#l3!tC91
zXSdGwMvEIZZnFMdt=GHPl;yCqT3$d>oc%+6>Nc|V87CXE+|A`pENuGP%Whv@_PT-<
zZDPvOB4RBiW8+*#u3o5QKvoH@r>ou3zXoRhK<rZnYlD5lTDD%TT<YV!0DpNt8gM9p
z^g^Hxi8Z7i?avRlkj$^g$1t5#$o<WkbVzs1z;Q@!%d5kT^X8k}XrC`3FOTcRvsduz
zo5fPIfhbWH7UfI@#+%!{tGmbcgGW2}y0PLg8F?)|UEQe?r<=18uh7i79OG(#?JqJ?
zjzA;(?>{HD|1jHCXV$g)FwkwTWadWrme%}kDvGPL7p0+RQvLCVnoeJUo{3B$i;@bY
zMgKA4n;*>wvDDmJdk??Fq`1YUMFa%-*O>evh@gUi!2T*Buy<Cb2YL9}dxTcaR4dgw
zlf=tK4Hl4OD7~-HVole5S7G7W5vWzE^}fEuy;?)3r?_n@Rdr}2Z!k!rLNn^`Ib^~O
zG}4^3d#5(GaDPzrzS8quXJ>1#ab~@`!^~RR?09B7u&`16J6OZK(Ii6>kqH5T8C70d
zQqv0&wi*_YtV4o!hJ?(7Jo<U&M>s)|E_i7PnYnk-pg5|7?pH5;i`_$EZ_czHh11?i
z*OT69t4e68fe;h${$cXuMD#}ScIPfzsJEN&->v+2xjGULRPW_=egoN{vH6jmEf;39
z&sqPMO4Juwln&v5j!%g!MG}>mE!i6kpDJ97ootF#YlfcWQ)aV!4(jfb9|BiyF^bCw
zw76W7BJde53GazCN|hJ`yX2-O#yCFuPJUKNk18uQo%q`6cJCE#m^ng^dsyBOGrFiE
z8Vj1BEl}1B^JqHHY~0XE7Lh$cypnNoWXKqt%;67^Jdt`YqV6LW`{yNDl8CNRCOR^;
ztkmDT`X}2lzwr$71fdpR)zTZdef5ZXVzaQdJlld&zQq{HuZ@(MDxQ~z;OK8eYzDne
z2pQV#w*wdh*W`v<)PGcpO{+pz8@wrMj1_79WPW<=hR1fe&R`nx08+DdqWs;yW;U$0
z{dP?B!77hO05XoPe4}w#hF`6y34?6SqCCINxOtwYcQe}6XzQuAI34>tOv91T@F?cv
zRL9@Qx6{CUf5g>>uKqTNtFb=&#Qoxgk_XOZ74*oQ(iHOZz&aG1`As%?&yeD{-L?uW
zq(78q)`U)--(gi}vie<|8(3Z5N00j`*Xy@&)E-|5cDVv`lp0rEuQS_Z{r*9JxF*|j
zbE@w2FyQWHjHdN;{0e28;@9dfwg@+3$h=o*@zNon5cc}6Xz85<?_WCbX?*58>c3|E
zN<MLCkx0C}BbZHBJE2CP(E2RY0%%Bcdw*xEXO|Ll>+tHra$T10JbO|I<tE)ZIL+(J
zgOD|Avz}Eu&o*eoJS2_5ZIArq`|1&y1e8yyJ&UL{S>Ao4)ra?FQVQb%Q7OaOj)<vF
zQUi<cxGiGyo`W;=>A5z%p4>}y)5|L{!@=lXrG*Y&yM7Zm=~50iq;lN#O<v~~FmFP^
ziWY`jTBBq{_^0P2!5MAVn87V>#cMQ!f^!i4C}&7IHH0#1MIG2oKF+O{_$zX$IcqK%
zK>W}+q*Avg<C3IU8qH`SFW27s=jwjy_u2$vvdCq5tB1)GSz5_sDKKCr2lA->ygUfr
zlO|IfP5Obh=FTsFckBhtI~>79_mK{JDgbpJq8w9TJbcwRS^!Q6>t(6F_r5W5akTKT
zUJvZ`E?2i07AiLv+jvM!W`?y-wfPgnG1o2>zN?ULWuY)S7?qxmQrFYK?i+O?=DYtM
z-<dCvosDjFZ3wS+T-ZCD<yb?>zI}dwjVR&G+dDynA$+{R%a*Ug=3}8HpLoOTFohlk
zn<duX9&Okv_>j#V%CXF&5_Sa??RFX2Z3G*~?%HBP^7_8ca~WTYEDe(zDkQ#HC=+{)
zocYm47n)uE)Gx*Y{vMUO`a)Vr%Qm|u=30A*>JE|Hd0f#5xtZl36*ajQSPo9P3Cg=w
z4b}Lb+Gu&`A%;W@5Tlf<h6REVzZTJ7%_*o%XeJQHwW4n1qbxp3Zx8~l)|C!qPA0(a
zzwzR~<+~SN1myo#{7*SS=%<Do;~U8AUo7T{t1-=3BQf_SusPsa8sR6>X~4968=koC
zvw&XM%m5!{-7mA;ZTWj7pFYB(1>X-lc8nLliUIy;8d@ZX#p+n~tCFVfpX&3Hysj8L
z(@WTI&#B$&s6J27<NlGc(`>bGqCdV69tVmkATV8F@KDjX#3V-m$`U~JIZ2V@mOkk}
zq+>IZLIDmh>^oD`ut4zM8%PWPHCR@8j(Y)smwY{QQxjqSE@93Ji$yH$m`A5?{$`#l
zk4jQ{ft?$zJ6(r0Kn+cruu_j@2Lfh{BAS!AUSTy*iYRgQOlNJ}>+UFf7F#<#bf+D=
zxU{mnd$w&g@Z3d5Earvb7>$q~0iA#VGCdVn&7Z%P80xugj$u$rEpYWN-H5q;di;W1
zD<#||(p1JHQ5@THnmo>xU(L)u<?V9zwGc}Va>8%$!rX;J;liCC$wPGgUFGKxm5XB5
z5ti;Yy8i5<q~+7WQkehFwBT-K)q|hCr@Px{{cVKH#HYo>K<Qs!QjUND>WZ{Y6YW@s
z88z4jo16F%+d}C&&WU&a-I3$pO7iLqHL^S(sF-m^uE~(lsl$LTho9Nc1^gbb`C+Bi
zw0^$LfK(HIA_k0tTth7@JXy-&%KVJBotCWiGIEItfaTVBwe3er(C1njm~n=g)3?c(
z@TX6ZBBz#ZgWY$wKcXB#Km9GyrjhOwqvOf9GXL0PJj|Yo=?;y5s-ZlWb}dnMC8hfO
zp?in*@C)0gF8(hy@`hZ51n-0=5>KR8nHM1S#7$qJJlCivKlf{y&BPIl6Oefy1Nmn!
zV<2L1VZZU-8$f4-=xxwNVH!No@~v;_0+=i+ISep&$kG@S(V4ZnW<?6>NnVANi3j9d
zm^*EoNLa9cgKB~M2(8$l<FGWv<>c^H)fFFTYw~QFW?kA{s5igmBN6p`4e>#QTo`2}
znWri*j6C0t#T!GI!pw-s|40L5CCAER4HJUPTGk0y3CTlo2D;zC!!gu*1-YA-85#nH
zSKbOU%suWf^ZXkI%xUo>2W9~SZMWG~Yg*}E5kP}q%G~94MUIxwiid+`DWhH;I-5}i
zy8X?uz?<>EW&DHFg4&wme8WTHg;|@DsAp@WXeCrHYmx(tNw<CMyVv62WwN`(Q`x*B
zTcXOMt61i&1qwnnD$Y$d8|irSu@kR9UsJ}Y9KucCuBR#!JDz<RDivJeG^F*jKz>UB
z=eoQfI5(>;Zo&(}mN*o9spxE+BWJUBsG>cu9O%@T^3u@K>M+(KLVQd~*U<U(Tls|=
z0bMw-94oI5_kZU3|JQ#p9dkvJ)`)j{68G_ZoS7v;aegFpVaGNkWOMKD!o~Q`oNPZW
zVTf4R#yQ8Fjz3o`;F15;<9>{RRST`qwsIay6ZI*sxEiq%pYN^7h}`U@0@JEJht^B_
z>hgtsBcw%_I5T?+uk$)*_xXy*DR;t*y;w|YmhU6d9;J-V?=xaY$OWQyuib8O6{?gv
z2dE~uhVkuA=--Qm>jd%LF=bN2y(fYs?^?6%yH;AzTqe*SihNj*`pa7+1<ioUeqBF4
z&z&_C$5#(y!|@r{03?7L1MDkcmlF&%z1ivcNBYN%Q=t`dt(G5oEfCvppz$MFf}O)>
z-$317@#%|qn>_^5<O@hNOvLRstW8oSo@}FW1o5u<I2Il_pwBszc00A7+3p*5-cKQP
z_XL!q8c)^estl1PW!A<AoSr5=ibkk~2NMv`_0ht6-ui>j4@*rsQXjoudO5u>Y~PSQ
z8{u%KC)E<%k5qRb*bFfvjh?7oJ<f#IwJ@M6!1PB>MZM4VXYS}xZVunN&<rT6t2Nk=
zPwfJ~`sby3W|R6<ha1aHwU{bCpp&QUZ&Dqi{A-~~g%z_s;NCq_1e`Yh$%_|0oU!`b
zEW%)abs;qR#M*g^gTX$`|H?N9C$xAe1As?H2|9-Yz;4)`R<*y?m`wLV^kKv|i;b#a
zs<$d0y??#?d*F&6ouq1r(B**(qulGaX9w+&IVeWxG(jZ>P3Rjb^#7wt!XM4vHMz*h
zv5*)ZSGUA{PjeR|$up;HNow`xr|dLF==jH7-DI~qZNmfPvWE(+wK?W`&Li{v?}wMM
zXPBk$2;=x_Gw#=hg}f%3qBG8jE7m~>G^ZT5b-$ltuqc8`XjnSvu0IfXKj@_pR{PIP
z=66wKu??h#y4P?pDR+BftV#dTLZUgH!qvFfGmG5XJM)U$>F)0uKX6Z7LkaAM9_Ksv
zo00%OOTi2pYU4j7JrWAbTf%mLd8r(XdX@A)h%B2#5VUyA*xbyHv<a}D%21#qLtz@V
zvOI=o<wpJ0ikqIG(}A8aTCwGypA8C%@R8aa1=izkW#aDT`2+9eQR4ktF}fQMBp+Qo
zac6DjcQWTQ!L{z_qGU{<q-|)4GY9%Y&u{4C%#`oI;d{`vi-5V-{0jIuf<_zB!QM0V
z;7-C9mYR?<^zTgUWxe85bfeSZrFDuyL5o%$c35LiYu%YHF5B*X#$GT_quFK36zL|Z
zv?5CpgNv;>OKF4Dk;+o2ysKF=xFYS;3m!sK8AO3J9I&fCKWrQklc$+1y15>7XbmfP
zxQXaKh#LHN9;3ja+p+Xt%$q#TUqV+gP;5GmvJ5~2rVBqW=?_z7MG6!zICh<e>hDms
zUd`nQ3)h7eh@6`?e$RtcjM!SRQCZ+zE`$)`dbl^#=UT&>A|oRs79r3S`Nzq|AVkVL
z>&ESy@htveQCj;z!BRZXzVCT$H2o+bl=}?oBWbwj^buZMWEO)Z5K*6;MivW@Hs;i;
z`jzhunS|0a+53z-D2NPxOuo%wqjb3?sa=Lg>V4So#U@`}AdKzI-*1G@HA7IS4=R3|
zE~vpiwANl`%4|(f>8C((HU;RyNLY??Oc+`ieO8Lb5KQLMB5PS*hr)qkIqNa9)XVia
zP_jtGIxV;uGs^i35<kQ$20lv&vll~0cn5KbiI;vr#(nkaL37)eSoN}bcpoc+_%Z|h
zv~faUhR))Z>224fB<<Xh>v~#*x`GBF+}N~vK$#CFSh@9h1vR%qM#I*>%b^Zb)|a(t
zhqrhB?((<;%0Ib40_2u4d?3kVP1u<%fmwl+s`d~f7f0mt>CC{SHH;e_^=&)Lr^w~I
zIt-V1`CT6A?RtMous1pcWSI!xV&HO<sdnfKY*fB!Zy`WJb>Fd-hKadYI!(;A1SS;w
zhYhG5W~0>X^H>hnEW|kZG3(mnzm#NMbxmOKv_MGSNv;E^w_nt4BMyKZVei5cxZ77T
zM)n$($4o3~`biZZIPd-he@S;iUo=eh%?kRT87`$h*$vByG|<pl>M=%-{>tks;mq1B
ztm_guRr1CLFeph6EB*xd*fOc0XWGvOGJ{$Dgvub(v1_4*Y4@Z25S#n7Rfab`uHXZ!
z$A3;e6?HnnkPgWk_Z17jf6nz*Y1tD!^*Px|+ZtiR8+0e#5I5g5rIP~*?5(*uVy5Gd
zZcr-Y_@;7w8$rvM@7yz3as8>Wl`ELB)_D>vFBjRV5l;VS4S<k{yd{{4_QKEgP-&tL
z0!-vTD*$u7aDNWhKK?^E>$h+<f2@pYj4zcgg`KOzlOtrS%!RWV(fUTg`C?>q@E=y7
zE1|@PUauugN@;jg$Aj**Wpl*+=c(RV$+xSXI-kNh$~RAhtC+I$Fa;PrdV!4Hc3)Ac
zTm4f-FU&a{-Vsk`)ZP`+BPo!alGKGYsL|km?a}nAoW4twJePD4rY4XQ#gTRP`uuKb
zM)pZ&Vc7?BD>KYPvZw4;l1tkWnQt6hn4-{&0r{(H&nEWw$dXI7uxdn_i!mu?1BK>x
zt->-OP1};BdgqQr7gUVHVbuTu+^w~=tg-(OIzLJUCvCP%phMUGdq>zHrv~tt+6W`g
zj@YcR&mz!d$JeC@`OWx`9a5Hfl{W+QwgN^2AAh=iJ^*P1-}VUV091Vo!0c=9(>pro
zO~+l3zsfCY$rbn1=|q$9d<ks?>1GcsDBH)Ai5^LRZR?9%=SmcqO%zi%v_mkL`pD*Z
z5m=|uy=u#KH!!j<<zkcxn*96Af!I88Tu8G{=ffA0xDwQ_!+~lLTSa03B*ct3xlhDy
zT2Gj#_@V>gWVs({`u<nr!CkE5XoQBBPD2}-bMj2GDuP^fANCtdOie@;J}i<SQOP`*
zGG_eYKzOx#HxE;ZQo{yWg!;zXwssqp1}z9UPza46nme;qi*ZQt@8y|AxsF*8;9{Qq
zvu#1_ElH0l0pKCvs&mRf0|CQ%SGskC*#ckBN;Udsh^*_=kPX=ka(}2QxqM%V7L-Hj
zv!uZ)bYXwcEk(J(5@BlxyejY2MnuhAz@%HK-c({%UZRavOz}z1fW^fJU;mp_VUsqU
z`Q#^cF*{})HhjzMNh11(RSi`l?P24X4gOL#yW>>ADj~@5{qdhl6mw&JT8$0T!{FSv
zF}<EyV%h9s%#r}-vtY$IKZLJ0)7uz#!3u<BZ%k+rEGi#&k&TRxf1Wk~*kx^Gv0R__
zu0NVe?MpA#LX=pL2rnnFMfj<0ZEcauKlds6+bK;@xQOT$7Q8i>ZIt`o--2z!G7zSn
zn_w-W8<1Z0Gm$2uuxqG5vP-)zLRnHPQ18^#qJAXcLqg*3>1j9IdcX1Dxl|N(4thVo
ziSP9}=AM6K)LX=|jg(tVJS5e|`mYNb3E#OUtAdFBQT#A!<j40p)A}b0dr1`nMW!ZP
zBu2nH4W<>84{&lE5S7%{o>zspzy|c>48h3dUfA@b*&#lr(Mh5W7yZ)p^LtzKGCOq9
zmCaWWg0J*G`-GZd3Tlsi?FDrjUe)W0PE{Y1DAs|rT$Orht3vF;ICymJZTSsX!cv-H
zDS$A}w@mFTb*cKx$D197cbPw6N<ecb_ab)Q?EC8p#Hb}`>|TZE6w>}LjlSuRu#mWv
zUi>*_d(ZDIEQiG{dnvGjlp%s|siX*~&St^W%IFb=BS%&4sEToOUd-;8-eDOIEj71#
zT^W{vGq|I15wvOyl_bdOn!sDpI;Xjab+*@~ObXFSQ#jx-wqqg=2cZXAOkt$}2=fF2
zkF1s;wJmxWX5|b3_~znjU}$(M2L<6(XWCQo^mpsKT0!tA1p&Y1kkI=folOOZdOX#3
zF#Sgf-px-Xz9VJMBMK#jz82Oy=hA){?N%HVv*JkKS6!`9z2*<>L{DOJ7)>cAr<uwy
zmB&B6Q1(=N1e^08)R_fWdxo(;438`xNR2qE)m8p2sM|x~D3i0ViJsudA5r<Sy3L_V
z1I_&Vwr@HUunNVI88z9Xpi#C&O3w^)o|Hx$4}=l9I$_Zi{FJ0=!;jn8t93l&keYdH
z#t+rCFLo2ANH3?D<vfFtK=&v)T!uLeDnjFlElS)lXgM0V<1{02W6{+__!FG?2UikW
zJ-_=&^ppQCGtmAzOsI*HZ8MhtP94>mP|UkOLmjj-xbcg8L1n+aA?NOQn;5lE;!=HD
z*J4%pSgY4O<S8k(joP-Y4k=l-td2G4<_o~B+!>L;24?G?cZfn;x`2MeSV|?8AM56H
zW**~RE--hbO@9?=^yF(@Vs!0cO`8qrH=G^LiHeK(PmqHbuih<F^Li|0XCR2X@gB%K
z{N>QY!IJ^J`BY(Y`-XwG;AQ0b)Q$b+v5)<&evK-xk_TqNh8w(EFmC8VUVuP+8U00!
zDMCjKhF?%VKh#<(5~f;+yVAPWNKA=E%799#LmCeJf3A^w>fQL1NTilSsCiR22a31l
zeVoz0UGeh)`<Ja7r8s?8EASmj>}<GS?#1!x`s&%X#*qKz&8cTi*ou<XiplyJ@rQ2E
zh3DD=ai4nxFv$;V59K**_=orgXm_O0%D0C7=BfVaAmE7($^YPi<@x-sL(G^!(T#N1
zZ(Te$`14Wy?yMtVOZbwI{oHEBX8o?q%UdiLZ}|B@|90tSTZ3~Is0*6CrLA78u?Jjs
zVmW^^#yOK+H%@_Fq2)d=h$owP_i;|$J=+9L#&vcDyxzl)RSbaVpy(Elbt#NI*WZ!y
zbpq4NNSxRI;d0tS(_|86zZgO^l3ILe<iuE`S$yHbJC?mJ6~`9$_MNNkz3F7x!BdBu
z`{LgfoT}TN_^ww{-50~4FIIV{ShtZqXD^zrL3{K}!my{bN6h8!hprcnq^FxK->xYy
zpp`$ZIJ+wU`B)St9d)VDJz}B{+{pKuwC8LqGp}z8p|9WE@;GSdpZ}|W3}j^eif5K<
z&GjJ=tVDDTwRK>$^PzAIXB8(%Qv&%nYdKg(=xfZ(X|)vc@7ZPATpJ+n*koNj4Ewd^
zVHF;m1jAT``~F)|r_&5yK9OCATz*=nIdZD9bNJgk+2}VmYJbCMHJ@D|`sste^1PxD
z4~w03iM{Yl{pP(Eed-g<@47srbR`E%V5C3#jvx+E2N-;zUg3aG3{dEVk6!}YgYUTc
zZHC`wIn>x^sXjN?`Z-mvxy?wV=)xng#-5{smh7go=kN*)y*`c1f4d_&Rbdwf0Sul?
z!GK<0k_Kjj$Dd(~8O<cAS5>X<1Mn_*#^31+Mx3T-=w)1LsgCI)6$9%-=|m=o+h^#L
zl8;%92x*t2!*s(`ol8K_L);{vc-mxjYTeC~@{Cw!v>DuK+K6rFX)GcWZVHls$K%?n
z{8$X8Vd)xZ3Qc;yY4xii#qo4VeX82e*ubHl$YE^k?qU&?b(}L%?RGh3k|>^kt;v)P
z<9gut;!oX*R=2PG$N0q`@q?2Hc;rD1W9+#H3|qH8UA>P@C0XyN^4d=jAyu|hS-H=F
ze|w=lwg@?1ay86)xy?n1JuxiGA@|?y)HM7az-N^Vg0EcMaGrci^6P>RW-suiVUFBg
z{HcOCaB!6PlJK>5+`vz=17^-92+D8cy#A8pq=^r?jV$Sn#yf?8DhRdVGHb?Dx3LS@
z0asmITlqJv{(js~8#;NvF1!h3JIR*yK)XRYpoZqlu&k$r)UC{~5i=^|DG{@Zcja!0
z4VPnCPu5qstqV;~4~3^Fh7k|Al&8@~k$@WWnNj~Q>`*H$xxJmNr>4&?LB&2*>3Gd7
zOC>DUjRWEBg?s1XA`$*Yr=Kdmr2HPu{q`HZl?*OJA+i<TaGL9Tm{X%p!z|>J(u}<!
z=rlvey^Jm=JJ67nV==TNyjP-AH*^ClC3){mR~?|=@!fQ9%`s{0<{_(QSnKZ2Zmb*p
z_Ix7l<=d`B$Wnb#8#D4;m%Au?i`D6X_}8L{yl?Zg>-q|yL-wU6{WJ=eurvw~ZrtNy
z`{_!!i0{+HV6l14f}UNV*1pJ9$8)Ky8(I+_8RU9@pFGvC%}-*WPkOPw1on|8%10Q_
zldKH<<LQr~h>PGypSq^IkW8gE*wl;(k!k(F^UbGY26_ss#HM?SJHZ8aGK)0Z?)c?&
ztITZ!Ti_=xOqK_f(^I?56xb_v;IBUxc$ytn)UbYhz>5C@U$btY0Mz8=vIvjGfo6i5
z-jhs^M)?yi(ficPgJRck1GrZQMHTki20ol*zIlCi-TRwjeMV6JV@f+HPr~K9yRhEp
zl7Pr5Y8B%)skaS`N$<+lbr-vR7I9R3Zmv6=QF|``B&$?GkxXu?jdlPy&f{5V@#7#@
zzx$ENx~)&U3yk*%XR&abV=%n9H;zi3gLV9;1IB2ak)xx0fM5L>yb*rX*FBR-Y{Q5b
zP$`-rDhVPoZF{meg#ENyzV@wjC~Zs@AMAQIvR&Vqc=gy;`$4Ni-X!Jp<Zwh%-qS5b
zm#lfoS)K8UE?N6XJD$#MazsFc&(+M@z_pXlL}iC@%1~F=Ie{1Nwsi8*j65jy>7Nn*
zndzIVCeAF}(!3tosBV3`dT}>YD)1Oy?w%TGMQey^w&8|&Bez|0ra}8NqnOd-Q!gV9
z)WhMKq`?X=9JZQolgAEL>#Aw=yZtAkBZ}fYi&LWdZ^=ciIX;6Ana^6C+Utt)guhP#
za8E*hpw=urq>?FipL=)f+Z$fbQPg;D{o|#1Rd_T506i~~J`U?cfOK&q4#UE?hN`7S
zMR`k6xJZ0NO{$vcjh;C*l|^yc_uk~uS8U})pRDAc6kf9pL_37qUv9+TnA7>C2e0h-
z>Y8qgP|;^m4<5Zm7A5oNl0&@tDImdZ-RKwZ02T5>$&L7G@0lAY)sOMXP&;AG=(F_m
zteK@d>X?{^F8qPxx8PeQVbUNAtJ}RrD#U*g`hVc`i|Nd8&v4yk&97&Ei_>(+rdMe<
zASUpIEBJfF|K$u%CxSrgR}nJAKlEzK`FJ8KhUG-ZzR6|M{(`$I-%o>ws3G-kC5>XT
zl@kCIc|ZwXmujEmMsZm+aV6{#h1CR)Kt1@7ekaGIluB2xw+bLpq7GeP<ug`NFqEjL
zQ=L6aQ!1829nZ)woHDGMoBEJ~H`^dB3@v0T25Z}9Yq0P$#S(7FmS=BY(U1$}Gtd6B
zG`XUtRFS)Lg!5t!gl=<CKkz>+b8z`q3J8di{11I(5~Y^**Q<UpuXkog@At4sW(e5~
z*#v#3A~b8cAO^%Mzu{M47_N@^S!IBYfK;{04PGJr@uV93QA};0n`n*MUH|GZH=Hgo
zg8L(&!}xnDcGMV2VWR;ay7ZXmar7kuY!V-OFl3`d3guR;blC`N!%R_D`oxerDNEEQ
zRX3BbAA#jGo4>NLA=8+JX@@3bIs^u5OR4}3>%p5!=$doU(@$zQY^ElYf^fCyQ4E(O
ziRb8dxgLe|tAFiv9Hxe235qsZVMLLTFtc(}GM@hsMNjE$=`0P=Bj;={HQV&mf0?Ji
zp7VTMlr|lMy<kGOu#F*zNC<2}nf?XS+@$`aMjh3d=R7VJaPm63zremz=m|iBHzx(B
z<R2A%&VH<Jsq#jUDcUtjQ{cCMJr_&)K2|W`k~1TQ8kJS59?Y62%jjHfqz`O!MwpjM
z2FMGr&$J`-PEcywza!fG;$Bd{x;<nYwkfi&g(S28T=p<1jamHNJ8VfupG~GvA<9#_
zk>L)c+s1foUHRyfkCBi*%D?jol}I4Xi5-70#Kv?9+^x>u@Jb^=8ToSA6ls7k;sSw@
zO@$I33=;{5{B40H0u58G)fsIBYP>mUG+GqwJSzl|kS$UlMDC5B>745*XJfbWp1f?$
z@j~W|SyPB_QN0r74=$N2#cl#D2-1Ew?aW6<E!@?~d5MtAoaE-<VfN>XR%6!Y!SntN
zPWtx(YeP_FSXUaT)w`5}P1RwR+r`hCE&XvmGgEl81wRcA^P0COS*ZPNOP;{;v!FKX
z!c>Y$8?ic6ig1{Vnb$#&l9$&K`+H{Qdtf87`OUOIJ0ZGT`Jn=61=SNRO{csVGXbKo
z`wf(6dqGvOuxOi~U72}xt5xQ1TPGv+VbDT#7h}<e_ga?TM4w(*``1t5KsPod-j@j?
z@3{|ArE2$nX0#E8_v}HXzm-P+29Yb-u&A;*DxaXMSzM4<(YO$pb5I|{HqjQ<3eEB4
zd=y95*cX<A8?N5*SdM>K)Uw`5?Fy~WMRmdIen0wC;=5Yi*F_1f(p5Q3eH}l(5bqQi
zb70|Hy+3@@PzUv;@}Ppc%Kv!X#fg_To0z_RR5@h&zJs>GcqH!WLIkxCru9Sc(rEGe
z0adX-;m;T05cR*9qwJGoRldo#!bdT0JQ}o4@DYTx!xL9yQaKKAhu1#vqsd<ooTf+w
z`!@8H#j6!qFL*a#q?raz3aKuW+A-tKTj<P*I>b6M%RGdrM}45s3QPiI<_NeFTj$<}
zFIS+34^wvhn^zzi3WSroA28;2u{Kvv9!o41;oZLDuX#p|K8B#DuHJHg6I!GqfPl(u
zeAJ*Lz0dzoJuBGomyb*@vGUa$W-IXwUm0bIe46NS8K2`p{_O{9pL5uW+2$ZjH$!z8
z*;VD2Ay)V%<D52~YJL$!DW$|<-e5v1T}homi{hALhz12poF_o7zp4Ntl7OI3U`CI8
zdlq0Fo$XOw4ACk0Q$B+G{er&eci5scCBP?m$L38gzE-|DztRss<VrrX(h7xh_kgR1
zUA+h=Mg}Q?ZIY|~>A0^V6pGf_ZVYAf_2Sbi$EN%VX&AIqKb%A1Fq8NFEhrK&A~WJq
zFMNWys#0X3lrl+9caGz8Pa#flPLu+7)=(R6K8(&1UAvS9pj)x@EuxOrwVoV10V1R_
z=9!SWciZy?0P-&I))L~=8)u*j8MSBX+q4a5rXr0UY(i4owol`7&xOO9@j3Ij($oHv
z78CW3{9}}YUP40HZ={rKTugl`n#FI0A$>tEZ=@8RIM{;a1va}1xVY<S{n1yKxhz|)
zhzaW}A$}G7kGw=JI2hwRLsh8ZLA%AT7WwmSt9Y>}_3!dW>?==fKuAS}>do<aU@aDw
zVwjthquG0&pSLrpm{WmXT)xAzf5HlQjSVx*C-3%xfYg`LsEU!do;AiCdFC-({!MRB
z#>%e>>~D?XC#$GHYV^JhRON(f?Dx)yS0<j}Wj!dWI5@YfXk1AYfnn1WJm<DW952nC
zFDKWx_W}b=m&f>Lkrfr2RR8s<ZyMg0o>$;hq`A`0Q8lf6nN;)*6LZd;30Dq4AUsd6
zVy9XrG(b}xN3oSu%Jor`0xgoFHu^vHB@Q~k4(k6;&4uNlI4>&@483H!9x;U_lZ{wd
zg1b+-c>Ys<7^G#q6PYa-5;*hPm&7DVkO#2}M^bosGUj2j_aAR0Hz}QfbOIbU_9ij`
zP`jhU!vi(N7ZFW?<iFps9^})p+PTfgi%Kbs-7Yn9rGW7j2$tb-J@(`IE+66|jX%TC
zgSKby&Ezg@x9=vySHqq%e9-F+;wtsTe5HfHSuHJ&Dt+i|c~j<s(Z_-em5p7RMuAxI
zlJ-WiBI}FbcCfMU)D`7E9D_-a9i~$m)|<<&Kb$rwK`=*>e~EO>+vawT2Bj!;K`@r}
z{B&eS^)dMO9}5hH>-H?0dy6xX5>{kv$5bidgq2yWbQ{%NbYF+L$SL1<Io+1EF{3J}
zOb&$y8&c0tx@hKFuozvw64nY4{ctfhcGzTa=VjBeB*G3+NWO>{-nTOTQK#DrT-Re&
ziEp6^@!m)z>yjrO0~!Lbdo+wzvI6OFQ))ggfuw8fVql&+1rJhHTNGNIj6&9PP+(`{
zCsHr!O52WarS%qm6`$3u(Kh!rM1Oo1Hr2Qu6HMQN>QYDtTXMSPaZG2zZN8u?6{4!h
zp7(Uw1X=$5nt`G16^ic)^dy9p2zP<k?gwVRAsxJ=1xO_BGTuDx1o%lF=$Vgrt|4L(
zdmB@^iQlbb^i(TAw-m@MD4G|gllheU$8c;>Gd=hQgaax=I}`Wr7%dxT)X_pg)U8bY
z{H$-2LL$?*W@MNscUgpcku0n<)ItotyuP#0R$}5wGzk;IAOS`6J{Q5xMU9as*Tj@A
zYf#syv!X`~B+jonoc#O{!46)F^6nsIdaLO3i48McJWg3Db{&FJ<#gxwp{&PW7k~Ht
zGeW2oEK1!yv+>CV9z<K7R+Y*5m#bJ8#rpc9uxBSnC6+Xm!@|<0zQv>kEQ}48bQQkM
z$$J239Lzl01%|EhOm^{DPY7;z`accBZ5R<A<Z4g2NUc^HP59#x+B4r!to8R#Wi&$V
zzXHWzi2fT$GzwuXCR8rW@iMP-2)2YBL<>vW5On>}13wr-b5I}V=x*EUleuGjug(~;
zL8tEmcdfuW=h7xf-)?W#r(Qhld%>lp4x5~r)(RImSrEM7)!`%9cr!z~X!t}E;clN;
zN>$_W6*ZI%G;^$}qoO5C+49#?rTun`+LwvolCb9R_sIunZHghTyOGyaMy4m_84wo)
zKX9)@g?g!-?jS`4=EN76Ky3*9Og;4CEqT2`3w&jnG+;g%o%jYSWS=%`jb8=78U&9u
zO#hlt^B3MkE=mbg14$ye6BEEQ0$tT(rsfXd4zWqh^Y^r?f^~b^ycou#w|qNi!Mzjz
z2C(0u&UU%@+WGoB)|wX2bKz|dGLXek&Q|+Mt>2Qw@69z0v5(}S_Y{anKl{s==dEq3
z>yKpQYSpBufW68^R0sr%6&whtjI1t$Gp$;f#}XoF?Q$`WMW0|Z>J8c}OT$i)f1ADE
zcc7{qX-VwWl$SACSndt!6)?PRoD~Y$Baj-tD(JDeNjT2az8_`jC%uf4(_F*s*rwlJ
zbE{41GrH|VS*n`I_4dX#`_{JvTQnQG2pduyuHRm!e3!~C#(i#<gW8TI?0gtS)Ow={
z-*~g^T7vH0<+>063o>EQU-ePV!4MWv_L(g*0=zi+c&fhs)BIZk`)gVMr(tTn%D=hh
z-&f~~2#o(X3jXg_Z15ElDY@;VfHStqbNwpX@m9#iB6R<Sxvyei{rJsWdl`B~_kZ>B
MGRo4`QYOLw3+k8|r~m)}

literal 17455
zcmZ_#1z4LwvoH)pDbOOtic=_7910XKP~3`pa48Z9PO##|tw?c-TW|^P?j9sK6u06|
zKKi`p`rq@P?|j*7uX|>8W_NSX?99$)6Q-ghgN;FkfrNyFEhj6fhJ=IyMM6S;c!lyz
z5m0sye<mQQeASRbAP`$yTX%PNPft&KyE~hkn+Lb|*LT|$>0veFds}^(AeSFqf3BBj
z`kI=Wx_f#Sw@we?ZLzU2o^dI2*NEuy(d(PLn~nAWKfk-%(^7AHM+XNdXYbsB?fZ+F
z07rZGf|;e7sN&h<{_3Q(mW7+cl{8<FU2Nsr_2Zw3inF^rTX1+rZBIdA(bUPqToKsL
zHBU}O=l8_f`tjX#y0N5s_5}jbJGK0PKmd~mj!*vX@9*0=$CNGKE>*eNdP3*(j5A?Z
zS97^H2*iB3Uu$lJePG(i_DzDjZ&7WZooiBfVe|D0)XUZTWMecn$me@P8RBxu*46tG
zUKZK5-4biJ+Wf11<*+B!(>A7QY#_6yws!S!ud1WJ_@{Htz}!e%IRbG3R?&7(>DWJl
z1N03vZ9JhX7nT-gJ5Pw){VA)^{HQ2!(ZcgIkEGS?udi<|FRy?B4H@P2p5@C4X(e~3
zLya~0OVz=!k%sX4<%Xh^0w+aFWhE(%011z(r-N>by!p})eVybfTU*fj(&WG?0&%}E
zIW@i28@2lUwI8>lt;NSL5s2IIj)N!1inWCzptx16lvUwh1R^6NJuEEpSzvT$ytKSL
zVPHRg{On>TDK0U2eSQ7x>@1@1WM&Rlzx5F7uCoAN7+>G@YuJ_#>&(oH9VrOPi3`wh
z%b3YE8W|a~wCG`HXCF=wXA}PI!^#3nlX%*x{ldY<tdP#a`sK5*h}0Jo9|LhMWd$X6
zb~aYSY+ZV3X=yeVHvl^;y;V7*B#4bwN#WPjR;xd=jNeaTdMhs0;UqQKZw-3wEJpsM
z-%3oafugh?Ed}0QtE;O#JUq-y5&Yo;KLAWg@*l+FCp=^sO04L=iz?i0<u|y~FzJU-
z(=(~iGxF0jSyIzUKO64zhcyN1wJj2=SXJQn09Wr^eX$ByonnPOag1z4Zvh!ZlQmf<
zVQyTcL?iakm3oP$ZcAR}a4>0!lSP>pSyg^&t%hUc_wf;Djp3OUSm68S7J_lRJ0zqp
z`*M<E8t%x4)BdO(UvOV`G(SFhDWP`aizM%vp#7hbk^H7!v|m>9*7EZ33QVuj&93MV
zTRhu?4VzbRDs*<GHV`@suwi?yWl){xI_uL7u&Mfo_WmQy0!sh2|E~n9t3fdtvyY)U
zgZAW5P<iY9Q$=m~P6;_7LwaNVF=>=<3KrV*0tKBzP_<4u9CYMavrNc-g3~{pMHF$K
zU(cJt!h2Hoh|Vxz#OT>kNinj9;m?3-&LCe_rKL4sq`@Wt8%J~3E8rOv$vnd1a%_El
zSl0!Z!wH`WKI0t;rxk7USMc!inv=3Qp`x4{nr7;SpY3eIP1%%w)^ZZcu`6;~9dQF*
zM7?kRdj|Bg8!kg_xjivP!E*h%975#_?gJPv%;DTyJg(Hm|2S=B3lgx)P%Zt8%;(7N
zBls<NjUKFGV)3CcJ3!sS!lD3iYLPbp#c7LldI(HhQ7yS%P`1#{Y9O6-rANyDHg#Iz
z#PCN(zLh1XtE><<!-_Nx*ehdI!D)a%#N_g&rNSxI<5{ArOJ`rZdM(dpX$5++lkt{;
zE+oGcM5<A@%dw}K+oSo}4oaIZ%6>anYwrEVc&-szFe;T>_=5(pP=A8a&2iQ+`kLnm
zuVtjT?0ENO{%}@Zn(1^tQ7QBVR2bW9(X*;zRp28(9S|0!+l|6TD;_C`*RNKT`{@O@
zJTAI|vm6!4^&5tm%^veXq&HI=^Oy_blGvMX2}>HjE+4-uNX~Z11H-j{@zx~bf&99c
zfl}oXsLJ(2dv3EUNPR1HBsoGf#z~4O$t;=LxkB<;y;?;LM{jG8(q`56bXBhF+)DD_
z*_4T~Ju*!XTQ|PC4H?eK`Y=}9ll<YG<1xr4Rr|V6szX&PioHWWNkN;pOQ(fkimB8^
z3^o6Az+XPX0;9uI&Mwh0(xU=FbaO6fkP5--YYA$Af{GV~BhubZfBxGLBl~nl!M%R5
z8WiOW={&(bl+7TDSRaZ)Bqjsm4brMmcOplvx3n*UtXPv@O?$JAk`!F&2P8<+XcqsV
z4%xTnbt~_kw0q2Q>^Hse7^0JpENE!0Oo65trlur>nwi5(YjuCX!<Vw)O|=GUhANhd
z@qcLO`+8fM)OgAD1!i8WFKo~l;WUJ^%vSTv#8N8;?Ij&Mau>Ji7y7x5krJz>IZsL>
z<SjyHX=cX46&jAtewC=tm0z1S>74YFk2aK8oqbyQ^JZ!pU`UPLhk073XBFv0yRu*y
zTF8E(w2aH}xOnHq89yZChFL61p*=v(VR%?>A<3QBdT%&|_OzJEzSSaM^Ezu~$?23`
zDUdp94^;4acsi;Gmi39rnu6CxJ_U9K?TyT9T&0VA+csfPAm?exy`(Jvq8Icr#hN*W
zEYCTR6~ny?W17Qz6)*z4YFud`>_x6}0S{nJ0s;YDQI!N5)WG_vQ1pJsbH~05{NGJ0
zUORRZPkbN8kZHnk<{lN2inp@<d{3P1!+FfZ#mRdQJPAH%15;Xr!CkF?>Q4;LSje04
z!u(V0!v(Uf1dFCtI%dj^3c%%AYm>QLiURgLKyvC}%=_bSL<&@szrZOU91B~KF>dyq
z5$MpK2SmZ_-(i)s84(L0jzf7qJ-Cze-_(A<ZNz5qfs*uP-kGmXH44E(2QL~E`xSv4
zr|aS;YVy>tAJxZ?SABWsPTIM<hAQ*HT7|rUMKDWcjgQb8!zP9^;nPp}`QcuTc&HMB
zPy&~@9d>L+(U=vM+;iO^c>KhUX(00jMZ?(OZrO@yYR~o0C@B}E0IY(<gyy`bq@(uY
zjGqNY*)vyi_>LVBp9Bv+n+IF5$+8_2yb=7gR*H))Hq$n9>F@Z)_@m4#kaN&?#n0}p
zv04Kay+M53Gj0s5C)D=gF-9sTvW4J7Q@%s&9Ns{DCFbFqv7u;Iah*c2Fb}{anEYTW
zp?v-mzw$SkQgz2^y4Ce+G-x#`aHS92rCJd2?r#g5zvnca({|=-+aA1M(t*X_wo346
zS%1JiVCQ2OEC~RN-5>o+cG1V-uHw&D7(TOsCi+bdyGo<C`20<~5{Od?reDDIv0U9N
zpE&85wr#GvenX>^oF;k5vh_x6<et-)@#~57QPj+ws|V6h|C+v6LgDdGM?N5hF{}3e
zJ;0|HnMdz}NnrowBd3f~p{g{p>$BB(5&fiIU|;c7J0O6nJ=@&(b<!q0v*R!2*qTn=
z<dS8rDR!^OeNbnD$3rwRDo?T5DX;jsC2F;@t~#xAW=qtYC1+NiBERR#{kg?U3hqIr
zotteFQ+tg^!qKCfOU~(9IKlY6I%VHTO%f-GyK$qFp=Z?OiL!dx@*cr~)Z&gevyCQt
z%L$R5vrB`mSk)rTVj_lrVt!KOif;Bs(2iYipqIY7n$#CS&*<C1oCKUkNds_+7rZ?$
zJ26+ssL1$yM2upMRg_hi+ZLr{YV@JNtpoqei)w?l`d5hDX|)+81oiVChN?}`Rt)&K
zc>FZt7;w(A(e~^5r|;}V8T@p0As1p6QOgVU9T|TDDY&b8(YM*`j8l!Xa1gM}JbjxQ
z8%pw=UY9D<xg74JDphGd^FA87h9WF7-#qVT#gP20@i9|ikssDNV*<;%EB}9i7yRn~
zM&JJvii!Sr!heg+iH`#Z)&F`xg@n(tXEEAz0y>^cCDFf9iu$kEAU~H*fbr1(-g4dn
zN9%xli3nY-eUrhLaeNrlnymvZ)*S`TKR@=M9{pM;^XCj8*Vcs<?ctVmk-|5}47*C&
ztxv9Tx6$nV?ae-e3>@N;)x}pLD}lM3w<BJsCto=gC~x#iEJbc`@%7{fX$QhXA;L|+
zho0KTIWD9gG<)JKV;L)omay;!%i*deNgO&_m#6a;5S#MOU^vs<tmgRdm-;uFQZN>`
zdCZCjovQs@j4}7a4@i4=&93!6nwJ-e*9VOc=4(*L2!EW!s%^nP(L17l;apCApO8-2
z&AQ>%D?avlp>Op;v<s5ekl&*_pqOPUA20AXVZDuPO#PaK+8v~+%h1_%={oirbV=K8
zf<OFD4B*DiR7)#i?DuXPN7vHgk{A_WcKAY-hk|AI-H}0E=iCN_qxp8ZW;)3Uc2y1;
zc0>~X{9-uo08i++QjFKW26`oe>o^)*KFgtMxXM`<aXoLgwK8BR)0N?VZ$C&C77$hh
zpM6)kV4`8xU3X;Q9e*fyrh59yR>!8!P4js4{_Z;Fl6DZYlIa%YwbUX|O>VX#TpnG9
zz8Njo;lGJH*^1vtV2@C|rB(fir)e`RR|1V~0^Z*We8o4@K0)zVwE-VkLyyY4%D2z;
zq1g8vO}pv!eSN>;jXhu@NWSeE37SwENZr1p{$y`IdIJW@K*^Ob-IS|#_K{;;#MBnZ
z-g)i9s1K~^9d-ouqO6?Dyev_?UX3$(mP-82V6nAgIiOcx?fQ5%uh|??<_1FhS>B9M
zpHRIe?^NjJ!AX7vtG@O(tvf#1c&|0<{P3~@?t);{^cs<bJ&kxtW6wLSD3%;G_#ZZ)
z@Y8?L`(V6lb`%U~Iw8+Lz|%%<FlEtoeUfkww)yzz9VeO*qI&EeFGT6DX*hZB*S<;~
zCLUS@7$(V!lg(^(C&EV;xj&?KZ*lE6p0ymOdF_Jj7eUpCYO%X}dhJDv$&dpSK0mm>
zB5E`Isw9C+0|5^Y;NcLq`JAT{;{}I8f;jtY?Qs1<A&<l~IY22%Sa=ZtPZjzP)+l=(
z=N}B29r3JX{2^mWilFXV<-bWsaz+`!`AGlJp6cay2zflj3&b6v&Ai3Id+O`ld6`UZ
z?BmC@j({zpm}?(>4E#9q@jr48|4q)@537VtoKfn@`i49tlfcx@?-se>2SQsS7NQA-
zXu;63fSP6hKwiCP3<A(B`7iu`BJdQ*)p(7}&-31sC4&%ca_yw{-;Sbn3BS_7zgE(w
z0xz?%`?HSNjpSmMbWZ-D5WjHr%zu~Gv;6iQ=`dIF#jZYIXQ>zwZVG+}c3?9i(ffK-
zf6%lHS^RIJk!gEw3g7k0b@MgfNo(wP=|@BnAb-%Vo{uShuRpa9fq-11wZ<RjOCmS3
zP{uUdW+glrmKLX;Bg%mXz)nA{-jLbF2b%(vmtz;iFQ^fIHwj&J&TfxS8%{P&<&A^`
zZ@VSjkWBW^I~X7DZ*$4&Y)<9HTh3Y>Z;}1UJb!iB{d5Oqpih~&E}0_5%jX6e@#v7w
zVFoaN+`fB^;O_ImgunkdXHV-i{kK!t_np~e39n@BY2kx)&)>Iij1L2$XB)Gdzfuj5
zd&>oQma*}rsD>+3mQPFS%qt1iOq^#nP1to4A&kQzR%_$u*@IdjeQtQMj-|z^HQo0Y
zw+xHzZyx@>?(q5iiqFJyk%@%LqT*b4x~M^=E8jeP{cjMNX}#qul6wL@>Cu>IF?)WB
zD>O&kKU<6w)i}{IENkPg%E%PMe}{rDHfQFh#_6W4j^^}?@%#7r!(J>qzo(U+0$+c`
z_^!*JLp&QZ*lvW3jmM+%u<eR}XgU%I9os<G&cJvH9rO5t-ZlJ=@vj|qjgSwlYvv<A
z4`q2?RQzW_=g97`cNV&o(p_n~8pZMDa5Tw^KiyG|KL<KFGI2^t?5uzIp`URW-q|xP
zEvO=I26)<b0HEOtZf`L7U6bOdgUw{BLw`>f+R-@n7u|-@(!M!6t65lSOfox<5{EF<
zh%^umybHVs+@wg7u{}aiLx(|N%ZC;LOZ`q%-P@YQRGaq%(i2)Pc%rAH?kF;$%=VEG
z*Ob@l`s_6itHW1H8AEx|u9dTf7>PCz0Ygnp;sK9}vPakPNbRb~g?C9nLcM`w5h@Jn
zjlgIWi+Ph18&C$tb<qgtovF}B^&z>=-eZi@l43sh9>n#1lYbU9uS)Y#k*vU^8k(}N
z+x52@--XVtI*{wz_GDVFzthxTS=XTE<gEc53|HEWccpj7zP@MNUq8!+2z>+-cMK!;
ztZbgJI6W)2@L%a=>u5$~6E2gQ$`<oh7~uXo&$ss-@g;3Gsvl9N=VGR2x@+r6EYo&A
z&k2R;dM_hLdNVQNrA;Qmwz}GkMHT+{7v7b-FIzDuc5T)zyFN`tyuN<omi0XV8t=eH
zlTHhNp(PRd1cr(M2|qeu4<l&|SX;j}#EMu#^9kJuhQV|-ycVCLSA497ocVa>INny<
z>wrn^A3`sehMS%+C%*WbLaqdU8k=!MP%KnzpBbx5o`(&e&RXiNUg~-bM$5eazT)nV
z>u3?!LCPuKB*$aP*=zwxHW)7AnZY~q6l2Swlne59&k8R4{1`%oyILwYC9@Xb)pTpa
z89iVA2}WkR4ENf<Dw<t)n8Rq0coVYfjx*Oe!{yjl*t(oX#WT$2@D6cdEptC7<aH|T
zK+=wi48^?mac|6bJec%PrTA`ViN1m>Q4&Hi`DT+P;7xkH%aOx~@Nl>^c2eLE0w@+I
z1v#U}+kDvx2~0vjC&o0n2q*$n#dY|l2QK@LMi2}31~pt8>v}G<(fM&?H`w>G)h{f+
zq-wffT4B*NZTOURv{OK59giw7q;lln8xHt1MR7Y&2s%0+d<1?z!22vxP1bumT=j0&
zjb8f>Q^^C*5)gT`Ms&4i7@P8x`uJM#sxZZBq~H4tBeiPY&HB^TQ+MdNBgX;M;uRh;
zo<z&c2<i)RAxe6YDiHyl52?zw_cQMvutGj3DsUQ<InBa53=S%bo5cAVr!(5{4pWOw
z!DWX$S$dN^njC&F9=9tih9BYycO`Vuf75xt(07<gv2&)?JjkW*1*wA6KVw0nLzVnw
zZO-b>`Fzq4u4hzP3t_{cV^Nf<wwl};>A$n-QWux$JjWkB_$xMra0|azmKFL+$5=%u
z@mk8+OvunyFZsa5x}rUUNesWB5ISXxhx9^%S7P-nzRkywRCLKwsLC@T=<uDads$3J
z^K(EiQ&Z=6<9gWFOPc=bAoOlB&=V(2??!^e_n+Th&ZntJnS;1K`YJXqiXoA7Jg6IX
zX3Yw6!=8PBI#Fx`-QTLwZC_@b_Fsn%%}0#iwoSQ5p>u!V6GK|MknR)T9(H;j^C-bY
zO03JSKSW)svP9CO4@;iEMp9)!2}(Q+-c%`s2dbcNAl#FQ6%QVH7s;q<hKsotpw-$z
z(M*A^KMUZlU@w6;^kpjUbaDmb`qF6{Z^Gg#NE*fMjJ_cpNSy6MfD*fEonfKiWQZAo
zpQj>!qTT`ZS?2hb^z-4+9x&<%m%evT%MDDYU;g5=LUof0V?w1~`6rQGM((D=Le<#p
zs*<ZjPFyBl|J*`5H4yDGkCHCrwPWQVCw6SG^dVT9#zuKfArEjT;pXk6JuY1lA8Iuv
zZhIxRhShfDl&z8sYXfh5>Uv5vP@9-~<Y7Jwbg3A||1qm~qlpcp>HPL~^8042p0F+*
zxM7)zTfCOONA2-l(!op0KP>M@`JiuEuB*xF310iXEL2@+pMeQbnVa3u>o`?@n2b4p
zjY~HTGJOk!FKN2sLaG~ep-H=1Av8Q6ng=yf4gm}52BD`Pis52fWv7fx)?4#_SoQ?d
z=+9Q=L^7XT4sZr6pw~-4#d-jhwEN*XCh6d9X-{D(;UwwA#X8FGLbbx0cIV$tj#U^n
z?%#ij&W78|L1lEH=S*_BC0e;Te7iGiiJYOcmKG6T)uc}BNe!U;8G$5jeR!BNf7-Mj
z-vc@!JTzVl8lX(ouRn-ChL4Lqxu!EnUq9t)K{EKG^5AS-B3epZykOgBby-<W$hIZ?
zkOmwLA-|3=mFO(P8#hshA|&O~y0r(0gKJK_wRNCN!%pScsSxZBNvYN-q{Z;tbYT%O
zyqWGIND!JHc)%v6s1%U;8zqk_-arW^AOGyPj!2l%)Ijv`)W}L}ZtX;QcPimmW8L}%
z%HWLvq3E<X>Nj#QJHq&|`L3;LyL)gE5oE(k+r=e-fTc#PT>Fm}C(dxg5<j8P;t#s!
zq9sA$pB(X+wE!gdU5_d!cOd{Z@KV8(b>Z{ouI^6*M!8S7fD&F3j)?~(A8gKK>fo7a
zMlQK)CsTke6$`88;u?07ez{5>avUT`O^dDU=b$QaTaWZNBEx(2(JET*=x}wX4-e<>
zsw;kFhE3|c@Ni;vb++2hb?Acte8>pJ^6=2)b2D^%+)TA8DH9GIShNOsHiD_SX?o*)
z{XD~4y!UdOY&pzVXW|kXlAyq}udv_Bh`!J$QlU4c%5M_Gwh8`L8(U#PP<v;A>PUG&
zrZ)S0z+KH(uz==B`L`Ld($PeSEA4EmNyM(&Yd*UIFMOe75!|%^f}v#_pVf*XGbgNs
zG90Tw+4EuZ5~414ZwSHBlbG9Cw(ntQfv+T99bKMR)I>j;@5h@8x9b(12PCz|^(5@A
z4-2B3w2BoQ$2k$E9Pc4z#C(z>-S&G9KPUsITf_McJwphi!igZ~!<UH#=Ar(YUUKR8
z#p{}f#H#B7F};BwhaY}iG-V0v6bg0B&w&>oGOy${Up?`$UbXlg*-&<Dlks{|G!u*B
z9$kkKs#)tfuRFF>-IUc?WFFdVS<-xB?_A1>U^8V6W9!O%RVZo`3E8sup$OC|ezC5N
z_gCMuNqt6wNDu6&Fph5HRh4P3J`?ZmaQu<%V2ZoJ?X-VU3Nn8^+|`5g97Jtwok4Vp
zP}{FRlV5>|`{Dw><=pnn=2r2<4)Eoc%pOp<c*aAPXKDBC*o3dm!J`_S&52vvU&PXY
z6)!^Py9X;P)^Q!Wj5>~a5TO}u&mO)wU|7uORnsLSJIK?IQhV@)H*#iR+x)iiM}8YF
zO@&uP^B2rzuSqzrX*O00k?wjv|0S!l#aka@>p5inz#Hy#VBkr5iX$TNs)A-i(CE!}
z*X-~pmCMKhA(e37x|jD)hFg}_NQuP3@mXdN67@_qcW-5n1}Ny$<M792Xgl%gA&Npb
z?<eEHndu_8<A99TOBIc16dv!R5M2Auzdm8axXQNwxnlW@TC=#DJ2^KrE@?$~e7q8U
zmR7y+=SekO*-$2CgjMr^P4<2R^@ZsBEm};hi0eW?@-n>XVvbffA+|XL+deLy54Y-@
zKgS-qA;D>*kl}{mtc_ypP;uaK?H-;wH0?`3RN3mv*|eysFb=QOr_9|i$fq8kVB(Ho
zPCCtl+jC1R$^Jtp$k*pkxiE3$dba-_TB+TOmR5GrtMq=w{gWIOwWdS9`z#9nZ#A*F
zhbL7cM#U$upANukP0XF;VVf{KY2*DF+Xlk3h$v%CM#ERkBsYtd97l7n*8Bal5^mxQ
zzP!66juJ~V<}T9d@1RuRr(ExbSE_~m5F#81-H7{?>+kUTqsHA0zi;Ikw<DQC*O_rv
zp7~O{RU`)vQQ<%e*Ei20Q%J^R9{LMy9m-(hwyrc(=KJlN=T(S+Gk?S_4ss#sBWmSf
zMzCZvQL++beD18&Vhhw%kZIi$-ComhywHNUqCy)mBK33xW)I^XxxDvK8RkZ@D(3D*
z&+UD}$GcAgadOb@Ph!?!s@Psfyk1v-5aB)>pOm;9z5YsDk+`i|Ao7!6z3bXe9bxdP
z0m4?FBDiGq-4>|1Z_sNIy({nB`#k!PDU6oAYP0KXux;bn!*oXaNMavJbozei;d$A3
zm!!1Hl~;x`x!UkSXk|Jrw3*nrD|BdmRN3cT-4>V6<l|~S)y~$6Argg8yqZgg7yS-|
zZ8q<NyqvE+eHp&D$i*=zS8GUK=h&q$D6?F)k$9#3@*Lk@Vli9ZBq%H!AHRx;iAi5L
z53+Ri25n!gD7+RS7r93}uu--7cKqvY$wsDH@mrwkFvR^S2^FXs0hq}lf)+`!{V(95
z;Ar{up<pY*Eu*e-u{DV8`p9tpiQ?Y*XuSRty@&99W?f+sFAp2~Q;fObukQp`9JapE
zkBzfCdda2;&!cw#s~LDqC~FBl%?v&sFib^3vgjX}of!HbP#gpVOwEQrm6nW#s@$(2
zS0yj7C5OTdj99d|&%@xDQ0pqd9V(4@S<rv@kM#dboCqrUJl}sE>djcRkLO(7hN^g3
z*WIeLTqgEB^3yu5j=5Kt;B?LPP_=!e^SZRQqv1ykkh{aAK>f5cW9*+6?rgROZ%!=)
z#456Los<d<6A|0#{2v@sJTDvE3W-X86hU#bwTSFSB>^Y9Ka(+1^BAHBOh*+yH(zNh
z9KmkVUjT)uvg?Wpb|(;uHvXYCWt!U6kMtRWbO!Ad#k+3h9xmfHja+mn_0WgLP;ULn
zt+qpn)_MxgBj#eClZ>0bh?%=b$T>1lh$tJpGqK=Vm_R(3;FN8%ODU{Vfr`pTbuuT~
zV|CbS&^nt`tl@hj7xE{4Y+QsDhf?22nEaNaK{XXIrMDD1L-s(mGNFkBmCR7N50}oc
zg<RHe*Cl<np7D%=SBZrc5xHoXbI&qHVV|4Ac&O$A+`8pXmC?p#^$%FgoekANNo02{
zf<Q4gylXf*>d|1iXlUr2k?W2R_VTU@nIaS|zovMzQGv{QHY_%&XH`{iuzrTfg*mA?
z%Yz&k)-ZR+x1&|tKXE?ilH-0$1&u&FJLTNojaVChiYIr2?m>nU?;5Ky0rUS1AYh$v
z;46K>^~;RrgkeTLmnhU6ed}+QY|?gSDOjUN_pfac{f42<g|#6K^irlU7@DdglvPsb
z$)d1Q5Y4JTQ}Q%>CbPm0eFE@vfsMRM|8XDKmZPZ^HJy3Nbsx`OLluNXqvDjAAx6z{
zt)-{-em=9+<RxW0Zezns+SvCmp_1>knuQo1=TA4sS3zw*+gQQ?I|l9S0f3ybGRlw3
zUa>F~-x@b64WzD*NT?|V08P#xT5l`)TF?I)ty;xN8LQ!_uoY=RvjAV94pgug5L6h1
zNCUG$5Sv~jZC@`}k<g(M&g<lxMgc;lC?-;2%L1sdshC6kfXJ|b=lW0JxoTkkt3}U}
zMbA9{Y8HTB>Hm{U2npx*PVay4|C9OhpNaSZ#r`8oiT?lY^}o2_0<_KGb(mIapW}mD
zYP7<#R^KwusEU2xvUgLfrg?~`%z=_T$)FN*cB-RH98VE-=ROhhIK2loqOVQP&d<dp
zUH$$!#@$gq{@&U4vl($0imVE%=XV@>ZwkF0c=~MBoVOC~!khUrX#+j>kutBjuHP6v
zbk|&yg&b*wm)^Mlb)*}bP~=(opkaCk1GW<Gq+AJao4M%MNa7vYUKU+<yWzmJd|T{9
z&~KlGp@OxZ6q3L8uMIO%FQ(2XLnt$8xwaH>CkG+C{8;5GEpX;oxq?IR&4pP${?Z>_
zlp0!^YO6LT^*XuMe$Y@2A~6_KiX4?jP!2|vie4%1M00s%STFM9)}muG{;qV%X<=<P
zhIH$jf+`Eu7txRV0<X<I`bA8y_j<%68A{;oyor|}R=s@8-YDg7W3hhG)%YY#Hf6x`
zD5v6N{wg_9<M6Ldy(pP4Kflk3*F0j({A_b<Sb$juQ#4%B$Sl43T?=Hurnnhoh>vY8
z)G+s@ETI=HhLsy=(QyrdW;5Lw8(!1D(>PeB&qQ7jK5na%QP$VesMF9sc!`%$3shyn
zrgWoQvrgDF;*o0xDjql=S;dOX$yIhR5XMAV!{KgiOz|HALzU#AtGhr;QCH**FV`<o
z12tg=&F?{TFNjlVgxLK~oz$J$-d7Vzy5K{g{I;^G`;sBH(tV!uNIeXA84tj)P#8X5
z3B4&)vgbc=hDK>(s1DmRiAGC7@)?G~3*PANAU4a$xnO8C`{BUC<I9SED*IO76AfHd
zZ4IHGnDTY17ynwWEjl*Hn(v~>k@P(>QQ9Y<2OGz{V3;K~37puP>x!n=ef_p>(P%6s
zjG%>o#XoZmUV|oCS_hNXVUJ`!!dMHj!12kZ(pa*~ZJ{40)`Kq$eiTRlSuGxoAl$R<
zy%%2LSe3H0NDC3`0qU{UTgcUJ(VJ6g*yl7Xgc%hzH17PQULFscLpEY<-;C$kRM7)B
zO&~-II_-W4a!ii`i&08vy;!wyap*irdfChpQjd`hBO&uVexs=?9J#=LBY$KQ!sf16
z{kTzZk2n7~X~is5rMTk0Aj8(Vm7}wN1J-6W6g?Q+rrm^u^2Ej^JZz<pL~>%3UDC?R
z+WGD_boG%D6NQF*S;iu0YjbWjDcnt$%{3H8mVFe4+xljvIFXbE_5w@0-w3m09I%6N
zd6~aHKXp5qsK-}=I$Q1vn9eQX8G=pklvpU=$2$+x?|hGy*BF$s4+>1{dul$M#Y{~3
z#@#ot-h(mQ?gHIu)m9hYM6(jnHBPV}bxw17B#GTD>Hc<Gnkd)>bY3i1iO@US#A_B`
z%oq@!`Tm>di1w0q?8s3f!-uRNP>nRdKa+@f*vWL;10FTOCxIwy>Nbm+p8*yx#(6Zi
zgTW}nG$E>US<3fX=$@tP1$Drqm5h+s+LDbEE{rfWH_&Les_rnb*lY<3g7Ge{3(tNQ
zYGRE2%WSiKn~>_Fkm#0_n%t<<n<&l_jZMM-H!PwI=na&y*rtGHKMuATBd;+F9`dpf
zaf~G_pNjh*o@WlQV%Jviip1$t7yl>+qqwYty#rxt3=K8}+I1_JJ0BoYRpnrRO_0+z
z?R^P|S<B(;<=%3$!z}jTI8=$QK=UZ@E~P7C8d9bM)YLQ3nZKu+qk{-Dccx+Dd?*>k
z&etyCPDBmu$9P)<*rzDzmA(Az7q{!L0o{=Tqez<_)EX@kOb~Z^9=sU8ur(NVEC#w-
z_ZfQK5uTwLx9RRN3nHz-n+fQ(de!Z)mNY0G_L*50A@BYmiC|d_ebiDAje#}M0$ULK
zR;BM_b5?%;7W{R7bPq&UJ5S!PH_s;1%z>b{lYzhhp}OVrQS9FG#y>xqt$eFl-X2~n
zNiv^CwQTr`iO44G#%uGkCwMBCeFhJTRY8{T_`JdnrNf@E^lL>UU{m9!(1yb-HDEvL
z7X#BdJ2x_pUG!sT8XgY4Vtn7TFoaOw=_0OnQk_lgyV;5xo4djDZW@7gdGGMhNH^0w
z_DLN^r|;idAFBgtj6#U%D4W#+6ck3rqxv2_NZ2r!@C-l(?{z`u$e}tQ7GE^A@^^8_
z=yA4h$Xk{R1d!chli^vHVTG*+_TnKeE7sFL<JRjb(`Tt>n=@od&0Fo@ij@mLH;_u3
zB{R&R%SpL5tS8asUwVLrYzXkHCwGZ90}(>W8A2F*_TEeXuK!@&$Q}jHRSN1?wm2iI
zUvFnH$NJy=&Of*G?1L_9p1n~Ofacjlm0tNC>ia8@TNC-(%mdRrmye}4#hJHf)t2Y+
z?Wm<gL(>#_mADkoYA36)mHry5a%4vdfY|(y%0j5?G4q6K*BrIM!^{^kgO7w`zK$o}
z@gceUVZ5kB+x^Gix$RfH+KoiE=T0zVPru)iekb|-Ye(BZR(bSYlmV8-hRM0P%O~(7
z>yUHh*>#5c*0zxWF+?GN=U1dr@H*?#(r6TJ5TnC-PPfgGo4O)D72o}a1JRi$_P(2U
zC1ugOFazBDz`xPfOM*mfYkx=+c1(C@_=Tgt6$A_i@{Dc}YsUmheYVwu&(BFxV+djq
zm)m42Nv-MstRDv-)oBKTyze9rb3W!8Q$Bn*1$~Y<`)n@WHod810l`7G_9U~TjEQqs
z<$L}0Sr+G6_Pp4X$T<d|qzU!*&=e=wos<+hqa%C0mPrumFYx{bI@jcO<AV`@-9dGQ
ztgjayAM}9SlYcxDqcZ;q_dd0*OxpFUp}qa@{^}~}ErD-Qexe?<K_%BnH-a)|!eY5N
z7!u367eEn{D;u{<i0ED*_}$XDsTIHJy=id>jHn=SFqrJpZ>sCVJA7vve_>jzPiPL8
zUi)8q$aOwI8bogcqZ{!E71|i~UY;)?^&O&43oxj$)8{ey8+sFH$(}g8{Te8;`+bE7
zC+h>P_}jcMwapHbCUbUr$tz#<TVtbc&xlqUV|%&u)i;gahr;2lE2UcL^~4YrM=B;^
zmHd$E&Mif!-J_^4o{lOU>fq8F3Wl7wxo;ZDbx)M*hClK-Zy`s6jG-ynp0rs<36#c}
z*)}51)Eb|PR;P>Y%#5M#QprsApkQ!HKG<LxVDLQ}VRx<fs7|zM?v7}|HPj+M%sdK|
zeLqgYwU%rW<Ti^^Me3xQqG>rH)NQSYT$a2>;%Awde0|D>o9;}rr6!*0d2KC@=2|u%
z==?Ea?^^eSmi~8B(O@V6DiiL}T9;IzfzZoJ;uU03B|AL=$D&%uG8>r!I!yL?C3RlC
zNdc+txZG#kCe6(hIHVbn+aSIB{<fs{1JZsm8SdM_%=A|^{3)G!-%o>|Q06gg6W@Hu
zaq#*qUp5j*rtw2pH%>N>y<+-igS&aP`@@b)VepR}$^8BI_(f_YU(0DK2*o)%)m6$h
zmv0qX<#$NduPRjUT=r-FqmUV0MOm@M_4F<ABIIAb`X;9#LgoehGjG`SUEt8^!{JxL
zc3U8u=m0NuU+BuDY-0XBIPnOc98;G4LPozN>DE_>Bha2Hv0nTF%{(3H1*Zf5pue?Y
z?t%^JiNgDsSz{cDJr7v8-cC?T<2+PNTiL{EoBY<$X6I%1aLvs$-dy<0^0&cpr$D#&
z+j>P1y>F_@RChLE$hp_Y#~fG1&PsVp?5g=oolD&uV7J)i$j06R8tt_(EA>$D^D?X{
z|5b>!Yrg1-(vpP*Uzz;guTL(x4PV2XoBF2CHZTMooU1TGIB5Ph!zdK^D?C?av(O5z
zS<yyL4~?)1(%qUA+s`un9__B6B|f&W&{gkcE3`lzFCq0p6GI|Ds1f>DXJd(DFq}IL
zMg3Y1nlBs^h;?GZn`2)i+e_6AUL;2$u}R+tOdfaj_PZRtocB^DQ}oPZ8sin|hNhb|
z*R@J)E1FUN$<-0&F>kMbn1II5oW;uqC;h(cXvR9BM88bE-6QmC)yX}AH+_t-$v+-e
zwno5#70b27yi^*r`C3Yk+_|6n{qsX#Lf!_qC<(0geHV)oG!)tgtnf(uG+hd)YeitC
zJCr3*IkQcO<9um%J3m-{<o8askrHx|>I{l_)5PoB15JK{qOX4O?|V5`%rCm%J>=8k
z8D{e+TOr&Jq_c+&knOEDDB^1OV}B>v(Lug{x+HXc&loJvQhSpV#KFC5aH!Zz_KPTH
zCFwGO7m-6~s8x;~BlF{*K0{m;Vt%6nA(=r6h%E|yqFh#K+z=!4Dl{5@<{)bO<=Ytl
z)bW^-c2dUjd_gkpiwU?$|0^#}`FiDye~X5ud^ra^egS+CqIjb7kC%VooD08VOGhGR
z7u<rsXq;t6d0F!CF1oJHhN-8GF`-SoXT2dDr8LiBci<Yp%*{l5%jX0F63D+!-!I_p
zoZks`lm61%AYrs*NWOq^%W8VaY~JE#{SaF|$Oix1F^Wu9!BU`l!TUV*oA<5-VyF4v
znpbs(j$5N^_n95E*e{jnisVg5u#I=!nzpN~TE8*FGNgx2x3Ruy;?&Dp4(I4>OAh7#
zkbZhtYb+)psJh6yLk;Z}vUvxeyQFql-=KYb$7S!Dd4ZC9;7IZLFJj`7gyJt!$24#W
zPs3i+ZDY_3YIu@-M6Uc>5@!=@{Ix~Dcg*0>A8Bn-KX^)j--#eSKgq}wBfm7dmW4D@
z8}w+~|H+3xdU|+G1=p`op~}4jx$r6m<Jt40qf9#>>u;aXT2>(^1@8PvvkJ2}6c0c-
zAOYMjKT5%RsTQF5*Q*`qYftWP$0U4O%!oLnQeuZ?9Za`;4;N8lC>$w5PFD*oG!}Vx
zO0&SZ@PBuP@Mh{jQmd^V^cm{qlV~vCxSbl_%;oi#3?U(W5Ua6b>kHKMrivH8uNAhD
zU@x)&&q=Nd8xjPyi0B^*7e&tkAZcJeQz58dph!hT{}Y8bq2F7Q_)TamI=ANaf9sxN
z`vN8R78X=d_B2K6QauuCr8G+{7b5pu1%5vSq!Jos9b_ynq>>Yi#GTNUH3^hol^v+}
zlOXXyGHw(JSREKw7Ard1%!~6cR=kS6Eh=j5%`}=AghxIiv1{lVn_Y~dJ@2{qep{Pe
z9q4lFZI%4`bxmatjMoHJ)=$nE9^kivXOJ3H%F3EZG=#X-JzJdGe<y<?eGF|Rj`tmW
zp!R*{8CB!Y93cPFFCf{j`3Sc&$Y@k;l+w1AmuvI$E?*;UEB}~}dok0)QbGy(1f|ov
z+yqQ{WDJq*Ehl+P^BBpYbwmNRZ=1B%3u=3+A)}BR#~@<QWp)FyTM1p5d}~fq(=t+n
zYMG`U#~wg;{0e<56?>1xS}*Xh+mf#a;;p6ZSvQ50R4Hkem$6miZWWG-p%HmKVw;N)
z%-wj4iR}kPw~$`7t;a<!0vqg!{SJEd1*(hm-<0xybyT;M{UatiEe`kfuOCdPha4|p
zeN>T|`eWAUo0vL9Z$m}ReesIwCbFHPBi>g2WKx-UqER{OcPfwgff$X!&H_9iWT>${
zpJ^07tMz}tM8(>L`d_yQ(jLuE*wYu?%lZ9`a-}hxe|rUeEFwmeNKQ#f(S4J=@FtMc
zoMq%j9P&bK&UTpM)63xOCzd-f8;h2V)1GDWO&hmIy<4-h{Vumm6?T*8)qbNC^4z-R
zS`F0lDRp?IV;VeBiuWa!?+rXFloT<{LXiPfCwI(__><6vV+Jk)!afN=(L@zULu)tw
zN;;19D0{jG#sBu63K$OMZb;!N#j3_hq^8%`<EgAe-qlhHbYX)^%KvOtF9Sx|kI7%@
zf5(-~PmTiRLNurU%mf$#KK;f0+-sOlL+p(fstgnLI+kY3@ShRU?vVPk#D#m>;RWy@
zjYgqeQ5P&Aw8|zyyin(S)6_aZT3Rv?33Y=g9{tG#@@ZNuL_o9@)iu%_(8|33;7Y3F
zs5XHpNdi*5k-!z?$hanQ$c;HK8{pCQlP&U?ntH;!vuPh~gH+Oz&T*@JFB6Eca9ER1
ziJN}6jq!h|&qRL5frW<ewft8YirL|Q9&N`<!;EPCV$<_h92EXGL%-zR)F!f7N!$-W
zj9%pB9J}XmaF9XHnMFwL=Y)4R5p;?MB)!4o!VZXc2k=ui%(PR?63tu))THYh`SJWs
zuV-F9qmT8?rjvkSh~))Nb(!VhmTUQJx2bR~<uqYiR2RMkDm#{v!ciA2TJj)UkK{E>
zL22VR*l2_$03;A1O>%1Av#{38)8qM-oekNKK6ym>_0J^ux4cUdKlb{sE>2}&8ZT!n
z;pQC)U`z;QGAuwU^9lz$jVE|$i*$iCdzrLOBis@_dL;QPi@<?3t7AAsYn0=A8TQUx
zllg#eITD8podLBB>X4CMJ@So`5Q7|1vA1m$Dv9aJDgXJ0j)9lni-bshBRY;{`Gih(
zO=_)lBHTnSM=~Vg)ksaJ*9K^`G=2X1fDfJ@2=vQm$<mTMiEd0L2czJ8{d9Y$X*GFZ
z1VJkuq1Ok4(#S+QLnZBC<=882PftZGA$qy^1(Cg*Ij^{clN36bb$Qgb=Cpn;1e8@Y
z4($o8d1+|H@Wx7`2vxqGxK>?1>u<`*L#hC2{B5EP@k30q+pO6}W8xdqaLjiK1G`uL
zo<eGP%LIse_vP~0xI+{9suKE>_r$-#l-ObTVjORrD2ji9>u<U<S3EpH8$b^MVlp|F
z&{CZq?NFvR?Ig}xdu3Z52Dq;Zj8{?v`Yk;+9^S3Olk=5#TIyViZna&jQ;yxS2)4Cx
z#bS8~yxnifR4{((cB<_YoH_eB?B&GNo<+vFFz%$?f;=6w!;wSO%1Ds0q;De}-vF00
zKO;0F9?Nu8BWIWa7aKvR&`lMrGH)P2a<1oJOdYqRmbee(2cJ(!WziGY-el|O6V*6o
z&a)fwXLb*Ri(CO*h&TQ_Nwcg-4Fw(UKKe4e=loNavu1)#86QgbhVUadBTvqh>}KNR
z<j6RVf7XQMzg3esvi1>eDW0D$`3-Zbdr=0dL(YY~3vfOT-LUKyRu&(aH2XTaWf68#
z6z~WCp~{4e$ZE%QEO@2hh3I0;RcloNT)aQd^w3iXBV;(AlzdkwOuWB!@yxl6Ys+2q
z%M<5o?RVIn<`chC?_a{z#?O?>VZaUD`Cx0-?-(hcs@eE*bWEoThAOcQH-?ozANbOQ
z_sU(CX-U|=21ykCTOkXXHo~?)!id{z$9Q|#Fz_gkO;XJf(Ra!Eb@CElNw72*Nh_Cr
zq<G0aJBe{|!)MDgzb2J*)<%6XK_N8fq`Yp^E09fyjem)B#w9p`f&@;Y1-K!dygXi!
zUN&VF8&|XgNayN>8BRI%joCpW^9~N>`*dQMrX(4lo7NTO=l&DCegGZ_fcUf~uVZ)e
zJ(mbnVf3U3&2g#f@?DvqI*_&Tio^K~Rs!JkExSGGnf-fTLi;7M+-E||)#;vh=rrVj
zhfKstiF=hvO+s?|s~U_qt_Vo`b?)6}IKE%}pS|{&&NaI(&NYd`XU()dxMeziQhY#2
z7puYy7x}x9hqW;$B3)n}Mbn}S%@X7<O&O!R$8%&+8R=ep@I#fYq$8nVotUXX^JkjJ
zBVx2hbr|%{6mW!!-kw!xrNKiEG$RyRxe&k9q&<q!k8Ly~fSM%$jS_%L8Bnzhs2SnP
zexPssdK&*jw}mTw|I>dz*{)UnKS$s2hjcrwlM~OnD9VhJbJwZc!egg4j!kmP=4mz&
zfy0<n`yyU8!@~?@1@Z-=er0UslHxkhW(1BJXVLR@Z;o2rc>LGAz-c;(5jk=;sYo5h
zS<6b*QYg|34Jvsne;4%T`GDG>w|6FIY$Nsa&c`ER<~hwn%pF|5#wSZ&Pq(YNBlbH=
zAUwI3oq)WT4Dn``6ZB7gU7VS6HY|mu6z#rf74=;nR#zSEWjl5h?dOmkx>orgY<fH5
zN5TDwS9iV}BB~@o1V9CH<WoJ&exHISr~M&Ez<JWz_dIkl(VJJk%J`1#)!)=hlDyMC
z@Ean?dz89NvclW6ilRJ~x=-c&w3%G4P;dP=uilTL_N=N5v`eHnVD8O~NMRJ2Is4_X
zi(PGh?tr;ZCSyQrW6=ptwqG3IWNE!}V9sxTWcRCUEb@AA!XiFqUL_HPy5a^pq5Q#_
zEuIx(p!(Wx_@bfTU~fJ{qd}H_GaxOk85PQ3qdQNUJBhmRo9NDcNi*qpluG*`zkQoT
z@xmBqr1Be;8v23qotw1x0(~D=HGia79h81k7xKczINNpbBi@`QK7C!gK03_QqD{`7
zeDlkRsF^4C>%Q-%+=yhaJ=-VY-m!EdxBL=j<I|sj@brdsCm-1jg^9w4^KFfyQD)!l
z1WA3LrLv&HRTIYK3&Pu~v52sAhPKg}Iz*(ha=2JyZms^6J%I*GbzA=A7^#tCNjO1F
zn4k*rsPgF;Ib34HV$|Z2Y1L&+J+xd3;ADU~J?gqgN`aQ;L+UMmxgjn?=zSsOTVT`8
zAOMU<XYTs?gFA^W4Nlm2(P!{c@AVc-HX|D`V1)B0z1<nYehi;evadyK&0&<PmT2iF
z1!v_zPZMK68)K3T`W72&R;d(y3P#1HIdk@F9fyuIj#ZRuG1MV5qBy^oJS#_cMYh($
zxE|lg{BK|>3ou?}qezBqcm0PKl4N#|T+Keh@KHhxE>~zT=Ph`x;0?hom=#sVi<mi(
z`5QOBj@?Wr1H%9FO75jz-B=79DvosF^hfFv-FZF9Q7DX`Q+;aK-P<0=TdL8m*QlB(
zZcH&tDAoAS4hLzREP#%8T61+}g$L`@JF`<UC3ObB-x!GuJeiw3^}3{&3|i}-)qS4o
zzf8AMjb1=QuPd4dewi>Mh2QTnju#ehksaCAlPAAzA4YF*c`w%X<;>yZ&)5n97bB<0
z<p!ECOAb9=Xe@q=kv%zI7T*+Tg3Q+>nqBZ3Y;tq_mi^>dq_Czy#pcdl4-@O<))e*#
zPT!>L8tgneI{H2werix%*M;_c*OmJHv>;H1R3#hSoi|%TL|#mY60rab6OO$kgMMZv
z#Y|okrjkqlggNmv7?@q8qL-vZeE$t#m6s^UQe4>b$6@(Zf+WA$LUnNvD;22;?0hoo
z=gNU8^;)x5-xma-&wk|JM%*Xo-j~KCJyexMaq07Ac+j^UGPdtg1A9JXenP%GneOxq
z_?cKN2WmSjeJS)^Tq~<@PZY<|2v=$2RsF3*Q5iQ0yhFJsy0j3wip&)?qqcJw1W5l>
zf+!))qF_&*0Zc{t#N;I!;Z%zx{h?4}37dHPPg!vQarFDPmNG%Upe{8cg4MpiuLt<U
zy@~rA+);?z+F_CPGj?pJ!i+vP)JBeDwf*U7&qlQ-TE&_0fwyM<Hb03b8#@dm#VJTK
z0&~2%(wHKc$(2!tfN#wEU`y(cM!=UMLX_sMrH&Y0-PN$(kQJbbHlRq8_%_^r+Z&aS
zUMZFS`p<p1uc7Jz6^72#;>3~wC|~RLw-kN<d=xEUqz4<zpH0tFzKr&fK=sj_p+u=A
zd)JnO?Ltbd??OsLbfFPKz2ZXpJ<=qP?kV^MLmz`lNfU*{Ar=O-%9Xa7Ti!)mLhL7#
zc0xJWb$L(o1p2vHZJ%voko!rrt6w0L#OJkq3zTFYv`;Pi*W3UKrC={85ie_!Eo3Yp
z1Ug#O)bd3ob?Ck7KoX2dywJ?^q5mOlm(BZK@s_TCDT;QaN3#swc0o`bC}%|Vxd@>d
zr>O8UF|u~%LU17P>2B4S@SYsA;uhsQprGrt-DFnqUGnQxjs*F;skn7jiK+Ushy~N4
zVv5y7*F+e{C>yN5*doeRBD&ATQ^JoHsuil{>ngz7Z?fSrkf>OOGA6bB8;}22bwg!Z
z&iQ%lkTKqq{>3$o)>__11A)R0!Apu_RptjX^Wi5x(VF(-?&7?9qkB*eVYC)v!f0*X
zorj+wNEF_T{+@4|A88Z8E4)}Iu(EBtC=IH&q!p^Mj*~cc()Rjn1ZuV{A>m$V>9k9~
zSm84Qnq3~9v#g9pU}Y{iw6%UawyOv-Y&~&WXbjQ2Ca+#g^JG^aK+dpZWKa69+}ic!
z|9{^7e^b2wq~Xu#VlXW<iXGpMg^gm3%t0az#i1K%&PVGYd=~OSh5Q%M8xrr<1HYVh
zp9>!?7ETzQ=~Nf;k-pOx{iCaTH~>Zm%nw3=Q!EMn%kZDmJvh;u|AL+qzak<lv?AW8
z?*TwPDu}Cxk@tH3@VA)X$A3f`U>_b`f#dt?&3jx&C1ZyliAPn+x>b*2xmiJ#hl90L
zfr_f2YEQT3DIs<XdKu`LG<4ds)Kl8?4b%>9233c=@q{i=_RkF1-1@mN7TJ!TQ*tvC
zR>ZY2wfb~Ts>y~A2<8*Eu2Y`rlyhYqe{d>q<P^@XPEy$QsG()_#)L3#oXx=w8d>l)
z4rDdR?>s!d;5_lL^xU6e9kk~5wu2{(W~*r>??k@o8ZFT}!S!usnT~^t>*UKro4265
zP;ci2X72D~r5H-#4_j3Z<tsbbg+s9L7E&Bf?kkt~7Zxoce1&na6x+X54tz|%VwP!x
zY(HOEFfVQ{?FOkinM1SSZ$#N#lMY-%X7ys)TFo7!e8XS|m-LuQ$A2?j7Z%TnGaou1
zP*<btMQpQxGK}iK;UrTqC2i&-54MfTT#Oq6i<Lup#@r$yE%Ieluja<sGUk+f+5Nan
z9g#$lro3v9GqYESVa2#mEkNZ6qbex6QO3N-DaLm&)3esDdHL?^pD=+<I|GO6fpOmp
ztDitc1J6&zDX$c}E`<*{<Mrz=YgSD|(#y~OxDI_Kme>xqG-w1guJ;n-9Fg<%W2uAg
z%mofdBc0rz?-=ZPP3~Ea>aCq~kkX!YKCIJPpdN-yXwB7(RVR9pwZQ`nK=~_88JY(r
z8jB_+K#5h7$+hRdxVSt>#Rf=}pu*rB*fAnA&G3Cer=oK3lLH<C-=M6p#iZ4BY9Q7K
zyRl`xgy$F9170TS|Fis0x3A{?=D7LB{PH*DCvwVXZhm5ZS)%gRn19V<&AsZ&FIC!x
zZay~=IPmba__e3t&xB+4|9(z(2@6|w_5a;G;QG#AFW!q^@31M`V^Xozai<b+7|bio
zZTGFD7e9MqbMJ@zJy~1)^yL=!`yWbA%-k$}SN_Rj+c@u@jr}jP<j;sd?ey4kY9Y|@
z)yt#is>N(c2|KVq&G~ot8r`ek{#IYp%>TFhj`7`F7ykYHY5X1-q|MR)*ZtknenPbB
zq0`0WMM1gS+_b*_Q+qa7w%Y2oaO}pvUSS(oebSpyt7Gf8%D7OlQrCHFLE6@$cLAr3
z-hY|VAFcC#?dsUzx|W*g%EW_~RdxGPYYW%jsVZ1~xAEs*>6O85R+9p58(n?2ZD!w;
ze3kgi|AD%G&dhpvCTpvA-j28)zQ1=j^)fC#Exhnzc-LCT)urNB@<hr%O<exPLh|5t
z_6u68OU=9U`IkJl+$w#uAWhvps52}`_kj6VhE+=;xfx7mRD^H`=!QRMnp0Q0POMDT
zr$IY$SM;^e<&5jB*6xhG^dcsYal>`c7$30EkpT|zVI9wdkM>>2;e?)D0Hqv^KiMmE
Vc|Vkz{9ryv$kWx&Wt~$(697L^;8g$s

diff --git a/doc/user/project/import/manifest.md b/doc/user/project/import/manifest.md
index 16c7e77d033..136ba310da1 100644
--- a/doc/user/project/import/manifest.md
+++ b/doc/user/project/import/manifest.md
@@ -10,7 +10,7 @@ You can do it by following next steps:
 1. Click on the **Manifest file** button
 1. Provide GitLab with a manifest xml file
 1. Select a group you want to import to (you need to create a group first if you don't have one)
-1. Click **Import projects** 
+1. Click **Continue to the next step** 
 1. You will be redirected to the import status page with projects list based on manifest file
 1. Check the list and click 'Import all repositories' to start import.
 
diff --git a/lib/gitlab/manifest_import/importer.rb b/lib/gitlab/manifest_import/project_creator.rb
similarity index 73%
rename from lib/gitlab/manifest_import/importer.rb
rename to lib/gitlab/manifest_import/project_creator.rb
index 8ffeb0a4143..9ccd32c3a3b 100644
--- a/lib/gitlab/manifest_import/importer.rb
+++ b/lib/gitlab/manifest_import/project_creator.rb
@@ -1,21 +1,15 @@
 module Gitlab
   module ManifestImport
-    class Importer
-      attr_reader :repository, :destination, :user
+    class ProjectCreator
+      attr_reader :repository, :destination, :current_user
 
-      def initialize(repository, destination, user)
+      def initialize(repository, destination, current_user)
         @repository = repository
         @destination = destination
-        @user = user
+        @current_user = current_user
       end
 
       def execute
-        import_project
-      end
-
-      private
-
-      def import_project
         group_full_path, _, project_path = repository[:path].rpartition('/')
         group_full_path = File.join(destination.full_path, group_full_path) if destination
         group = Group.find_by_full_path(group_full_path) ||
@@ -30,16 +24,18 @@ module Gitlab
           visibility_level: destination.visibility_level
         }
 
-        Projects::CreateService.new(user, params).execute
+        Projects::CreateService.new(current_user, params).execute
       end
 
+      private
+
       def create_group_with_parents(full_path)
         params = {
           group_path: full_path,
           visibility_level: destination.visibility_level
         }
 
-        Groups::NestedCreateService.new(user, params).execute
+        Groups::NestedCreateService.new(current_user, params).execute
       end
     end
   end
diff --git a/spec/lib/gitlab/import_sources_spec.rb b/spec/lib/gitlab/import_sources_spec.rb
index 7734f48de86..25827423914 100644
--- a/spec/lib/gitlab/import_sources_spec.rb
+++ b/spec/lib/gitlab/import_sources_spec.rb
@@ -50,7 +50,6 @@ describe Gitlab::ImportSources do
           fogbugz
           gitlab_project
           gitea
-          manifest
         )
 
       expect(described_class.importer_names).to eq(expected)
@@ -67,7 +66,7 @@ describe Gitlab::ImportSources do
       'git' => nil,
       'gitlab_project' => Gitlab::ImportExport::Importer,
       'gitea' => Gitlab::LegacyGithubImport::Importer,
-      'manifest' => Gitlab::ManifestImport::Importer
+      'manifest' => nil
     }
 
     import_sources.each do |name, klass|
diff --git a/spec/lib/gitlab/manifest_import/importer_spec.rb b/spec/lib/gitlab/manifest_import/project_creator_spec.rb
similarity index 93%
rename from spec/lib/gitlab/manifest_import/importer_spec.rb
rename to spec/lib/gitlab/manifest_import/project_creator_spec.rb
index 55f3c347386..1d01d437535 100644
--- a/spec/lib/gitlab/manifest_import/importer_spec.rb
+++ b/spec/lib/gitlab/manifest_import/project_creator_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-describe Gitlab::ManifestImport::Importer, :postgresql do
+describe Gitlab::ManifestImport::ProjectCreator, :postgresql do
   let(:group) { create(:group) }
   let(:user) { create(:user) }
   let(:repository) do

From ca3d185dacc05f80238f0fa403ca90e0371fcee0 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Fri, 6 Jul 2018 20:03:45 +0300
Subject: [PATCH 064/113] Make the manifest import feature spec a postgres only

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 spec/features/import/manifest_import_spec.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/spec/features/import/manifest_import_spec.rb b/spec/features/import/manifest_import_spec.rb
index a0bb1df6fe2..98431463f65 100644
--- a/spec/features/import/manifest_import_spec.rb
+++ b/spec/features/import/manifest_import_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-feature 'Import multiple repositories by uploading a manifest file', :js do
+feature 'Import multiple repositories by uploading a manifest file', :js, :postgresql do
   include Select2Helper
 
   let(:user) { create(:admin) }

From 97751ca19ff48b50de4887d5c77df3488c04b759 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Mon, 9 Jul 2018 10:55:10 +0300
Subject: [PATCH 065/113] Rename button at manifest import form

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/views/import/manifest/_form.html.haml     |   2 +-
 .../project/import/img/manifest_upload.png    | Bin 11595 -> 11940 bytes
 doc/user/project/import/manifest.md           |   2 +-
 spec/features/import/manifest_import_spec.rb  |   4 ++--
 4 files changed, 4 insertions(+), 4 deletions(-)

diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
index 8ace2b7bff1..5fdc97537fe 100644
--- a/app/views/import/manifest/_form.html.haml
+++ b/app/views/import/manifest/_form.html.haml
@@ -18,5 +18,5 @@
       = _('Choose the top-level group for your repository imports.')
 
   .append-bottom-10
-    = submit_tag 'Continue to the next step', class: 'btn btn-success'
+    = submit_tag 'List available repositories', class: 'btn btn-success'
     = link_to 'Cancel', new_project_path, class: 'btn btn-cancel'
diff --git a/doc/user/project/import/img/manifest_upload.png b/doc/user/project/import/img/manifest_upload.png
index ea68e7ffc6a390a9c010b095dfe6386c036bb0c8..1925c3349ed448dbf6c4353f2c6752bc9d95fb52 100644
GIT binary patch
literal 11940
zcmajF1yCGK^e?)Q1QOhxKycRtf=kc^7FbvoCqaTc1oz+;f_sp~7I)X6A;{wH?!k2*
z->Y})e_z$D_fA#MOm+9n`SqEjGaar5lE=oNzyJUM*oq1=U;y9+3;;k;e*NOP=Oz0-
z>2n7_O<7YG`Akn+EiKLaHxEeUJ)*O$XL{rIa=pK=ABjAjAMN^gdwaPxb^Sc;ZZg)>
z!@<G9H8gYj5_vh1o;7iYMBY?e({pigWlvrr?-#u}SUK42p2wJle*HrtZMZmD)Qh@S
zF1a`jr*{XYvsJiwq(?81>qpmK4i1sk^IKb6)^5euH+RKG%=F&v+ikx0s}=q&I}i>I
z>9iS%=z&F;*6n<rqpSB^P3-AXpN(rs72+t)Gvr~d(Z)4)X!pS<e`uj8!}({`;yv<Y
zf48cp^6BxZ(ukRx8`^*N1eRrDQ*c(2(oHO>@sMRy^DWtYL^cKhJ<1owHBEHF8$6(V
z=L<D?eOr<G%uLeyijctN%LgULwAu{UcN#%+^K+SIQli@F?LRcztFxrJxZ;}DV6%6K
z0^f*|_L2F$KRXNUhe+@2#<CEvy@A}){u$?j8MBh*Vl9TJy>35au$rUykMg1G^GQQ4
zj=Igqny$X0P@~{@_%AQ8Zq9sGW@c=5QC#<d_4oSwXK^L;WVm^Gx_YzQ!8zCh4v@&J
zi|hVOV~x}?wT#&-<ju`Y>CN@^>FHVgpL2HoD!c5F>9T;88t3LD|AL10r6N=0>5Pqg
zT7kdU_2t9P%FM(BBDWZxHumq~?Dx$bvhjyyb|b>IcJmlf)|cyBwsf1H@Ev)39UK~}
zr3+<>9nA$YGU*o{{Ejm;GTa`mgDOZ)mWB?;39hWHG<&d4-6In}v0UFCS^HO71?N>1
zCetyp3No_NF^ErXUDD87wvH^)(d!1fd8dT=;!!8lFlyMidPn|9N?_%*e^$Hy$Rddw
zpacLEJu9SQ5dfedBO_zu>hJ36U6&ha?Oru^zI(Eee|XZn@o(9=JC-&{l{8j?qDYgX
z1d=jaZoj<MJmHSh-&cLGqg<j%R_d#O7$Jiv>Xm5z+&fuZOGxQdcY$k?6;}|oltUI)
ztNPVk=l(=jfs0S?L4WEC)&`5_QtUcCT2|}2MpePRF}lqfx%$yx0RVO*MHwkgca+0F
z?@%Sx0I#~x0mps@Z0{f5$GiP!G5<qm5Z8F_T7zsXlWg+|Q7-was|7QZZ&!!i@MxFl
zjT>$QS%Q$xQwF?zOTwbcH(dvukyA@b#VwRz!F;Ej<Ku&JzeS%F#ci9{P6p@qrKWs4
zsi7t-=OH})>^(eD%7W{r<a2Mtd=C3ghpEm0r`y|%%C`(1oq8;?BLRQJ$!sOIY4Vu*
z&;no3bPb48K(KQ2*V)Mh#Xp#I`wK8JjqKWlnk5Y}gJ>C^ekV;t;wSN8ZAK(~Iw#T6
zCQLkw-J|rAN;C~(DQ*OcN<v&KnKWR!>0gx7ux5w^3%-&~6nttcqP%O&3`h;(h2yAa
zPYeEr%(JNcRbZV;9LeBxW-{4d^f))`l6D?ncaTZqa0MAKJq>m`T~>FufVIlByh>+2
zM3U$w%ApfohBa9n30vx{uu)E@P?FlrFV><K88E5nty*MGr6pV0%KW4CT!B;*50v28
z@z<Z6CJxUxjm&Pby}1K^t61T;&1tUk&BR}{w&BL1ytm@NqA&T9F!a70EaYFQkR`&w
zd3k=mUn0YoteEOi`7riH$mv3RA>%F)am;D6r_CxNVm5LX?Ek5wTu8f|{ZbYkP$WML
zwiJ3-ef2#<Gg+mO4smRanPJFe?rmGm<~+<-$2-Wzm<4Om5KPPvYdC6+aGjS<Ath<y
zLW46kQR0xl^`SSLq<|_4ltdBlIN*FTwG#Mddw5K~&^B@+AaV48`!)#TMBY9?e7;Kj
z-Hct@X?s6=GlCldS)9SOUsJRW@`VsKBW3}=>{FtB-G;hyQSH;4HA7tzGq46f+{~BL
zun(UEJcGa+1^4iL<NjSw+4=VkC|`fJg00QcB1>;y?oh*V$hK!7181SXaGkBKUH^D9
ztM$Nb#hMtuqXj7HP^Xi){|7i;o{}tMY8e3kTcU|Oo7jhT2#n0QlgKWwZ2>`iVBq;L
zNhH+PEm+!=@fdO9%pVLaryt+8A|;_EIOAxd-#xqTV-emZ;G#%ObNurgMQ$6mVmLbE
zSgBJBJ3G%eHCV%>-+qGZr<FXAN6EfY>Ev57wPM4uU0ga2sGVYc1O(#AC)6QEmj!!!
z0D;~Or;Hn!)WU(;<nj|=DgKUAwzQIOWSK)^K^|YA^GH*=b#~W~d`vBvyhIpQ$;FRa
z??%uNj^fOXQuS2afu9bbbLOkxI(8qLabl8gB8j$nacz_?Q<i!9j!VW5=-nII(vUdi
zu!{!y`T9qIA!SGvY6<ud0_DyVtOwXfQO1ac@N$N|D^hI*odh+EWxGRx6CxcV9B&^F
z3hmU4j8DGCoxj?q#BW;rEntc8YHb<^o@_Unyr=>?M`U=y498{>tkp)GVPV4#`^<p;
zH;;l-o3iiEsPM{hP*1MA5nedF*(x$Go_>mB^&Wb?z2>{<<azWH*j1z};TsV?GwKrk
zI9aSHb8@}W(QEFb!1e6y{y%6Ve76H7?EjZowwHsJ!~lqc19=nEtI2<(MyPdpXwf2e
z=FL(vev#MK?KkVJ91HC!_avVv*mJ*1)BR%%F}@NH{hJ271)~1lhJs^W>g1k0s$Bfb
zm(yhZS4SApp!PfHoe#ZA%MT~DhjTgHnx2!8-mG~RN|Ll_CxSOPvYS{>0@MFY<y@dL
z^GBb?g4XtSLzdPmlv1oJxshL<N90Q{s$E~pvAZtDgq3Dtx#RjRI7%CU(7T<XGe;lj
z2zW*SUOSP)saRVrW_0ivk`!(k)4}h-YKO&RKVcv^qS52;LWwvew8QAW%iD5(eV52G
z73a}+_)Xj^YnLsF-@c;K&gQoB9C}AvgVEZShSYc@y@b(I&Hw7cVJ$e2b=)Tw-KMOW
zA^#uRY~XeR#xbnktdfLW)c>BW!g*Qb>ex)We|@D29IWb}!Z<2!6HUcuH{jD7axqe(
zTOY3)*)=d^A$A}JPW+KCGdA0D^Gj$3H&2sFEO1yyPC$WKda|>1+cmOmHS$7q_r6Zj
z;VQ*tvg0)uu^tvy#SqIsF%<Zzyiea1>V0V{eGw?$^a#j<LHbRQ@QDyLO+{5QGruv+
zU}3Ur$2vYn{|w+WisBsCoEInzfasKhwa3?zUVf8mIOKKC-|E@9DOEigP`YWGEPrq3
zD+xRDJZ&b_V7zO`a@YipPi0>QL~tw}8)UK_ZYf4<?_HYUTjDA{$v4wZe)Z-angJ0{
zYIW*;tV96A&x)868Rap51v%jw6pLl6S!T737}9(<e7u|j?>Xsem^E7aT-$J~8p|{n
zW}9^ZJ+|un%(1+ybe3uZ1KD%HiQA+rY<H?~{^anVEBs*C*|~x~Dbi3PkNxqtWu2E~
z#b+2roOrcM+S4zHGR#F4-AS%!5{dcwzVzz5r<z!Tpf~L5K_PKSgLVtb+MJfxp(3r#
zuuwi}m^B$@ZW*uvjl-BtMEl#;lMVY42RljqKzFn(-E=6U0HyfZx!L}XJvyDH3eh^=
zVN28$^@BoHDVtm6?>E@hzfHMPq6V2|IV6yPAhOxAEg1gysh2k`u}Oi$h%`lrE?~|R
zTv*f-39ki1b=jCVwsUTuw4oG6#RU^C4{S+)rZFC)+C+=-J2qUq)mPTO3qoO5%S3T7
z?n#x)Z|t8RC8+M3cl<|AqgiT5P-94QAKK+s7D}0ky!Mmy-AW`?`$nxD4}4=F%@DtI
zO(PaQbK$YoU81<oq*)AFI}b3ul^UMOl~{k6_`!)Ej@a_&efZi3hGE?PyO)a#lwR94
zh991cg2PIIl<V_P{P!*j&k4p0DT~J`dBbSJu>iWtTC7=||4BOjyYe^R;mTO}IPozC
zsq9t=g7#fb<-c*C{N$xt(hvnA0&Vi>n#pO9;YOqbv*10$!`klo`x(H1nWVCNzq@ui
z=hSm=wB@N*o|{Z!KhDSQ!btyniS#QjG7|~Xws3L(1PI8QCq+!*h$l=Mg!S_>bo5N)
zOB6fy%!`koOuvNPBX>GUJTX6|Z1$-J^Oh&zpw?@YfFIk>-&d&w@m@|Pc7=~ht#r7L
zKhf6N>3#1XohbG2KRPu{bCvY+=Hq11#_5|?)!bu2#{wtX<)}%i$ypNwGZ9jcrweB$
zhZp4<j$|<E##*I0aVjuUGeAXgpQnQ@-5JGV|72#z1v{scb|vH~LJZpi=FMQTMR^1X
zoR}hCUdr3HDj&@X`??qtn@Hf7*BY0?`;JRel}IjHxiLoK6KxzYn;<Z!#h^AWVMk*=
z*;ZE>Of4Ur@`S4F7_6!%r`lj3R`mrK!ytPCTAWyXvG%#>^yZ8b-a26YE;mSjPc_03
z235{=YprgnHdAMg2!+=UU&fH$l_#$*z}D!Udh)$GXH|pQUB52nH)y8T!)tFaDayh6
z1*|PQYSF$C%Woy*%LT%8X<nH~VEY>A#?C;AyYd?x24r(wxiCXYYJ-*$N<Fept(cV`
z@W!#Y({}L2JE+F4<0F!JuL#fF!SoOJKeoF7{iuVi9TXk7ePkw4y#L2TO25SM&y!F$
z%Z!yE8dQ^Ezd_PYT<+DD&3@bfUV)KNnoxTx-`7!9N+|hDshN)i{@d2EzUO_&+{2m`
z;jsI+J%9iug$cpGpZc1Tuqn{e?xEc6fx>qJeY0HoZQS|g<18eMHz5~xIkkfQ9Bs_G
z(Js}#`wU<wb_2|LG^j4M>-v}ph1{>~5+{G&aw2MDIh>JRIvfqrSbK$&;x`KS1j%hi
z>cy0nUo8mG;0GMty#oV@0?~+0GH9Bs5+q5FBTG<r&4qVMy|dmZEZFI{4==ti9*Z95
z??R!@95Xs$Zb&gDQ0w+Q9M~Yvx*m)DaW1|tP1+W^WJSuE5*i!!gslJOhdGXhF1$Sb
zORyEjW=ngwp<LHq?<`~kUs;|#{cUAM#hHwRDrpXpL3PQkLpRSliPopgjqxj%>9gFK
zrXk-sjUBIC&O|-e)3fnE@W^c3+~(%{!LGE!OD28U#cg2@*AjEnGOFHkrd_m6kyncy
z!nMcId{Fmu0;jy@p`7EI5=86m+EU)T#6+l&)gD({__A-GY-T!i;#|MDyAd3lx(nj%
zmGI|xEX?WKo=vOP``};J0zDCWvv^A|iK#Yanv1vzCuAm>E@V3j6A9QaXMY3<D7-a(
z$=UW^eUs&H*mO@lJ9?x3R#7<uk(diIWcF4FF8BH+ICyEk`+6uzN1t^ANEkH?SJyB|
zJ)`3nSDf0bhqsh^F1hQ-K%=$HNQj7j(+vVCV`(JXhtf-Gb!$n8l(mZ4TKKp>)eJ3p
zYG@uiL4<}a;%pvktj(EY5qHp%^7wkS&81CB(AOQ}RCqeOnZ9M9*cC~Fe>1#*&9ww4
zK5<*?569?Mzf3fT^U-`=3+{#3#wD$R<wHnD+V+u=<>VXFr39FY;vqs4h8B!5GeT30
zz=>eUe*LK|kyM}cSp%@j;R=j&S)-b4^HYByf8L4|7kE92P<Qs0XJi=yIy$@t4#1E-
z;?Aq&CuTo|qfWzQ7*OdDyfszgqGSe(bNkXVR{{2+8Kbhn*41aFj9|Y^$vue9RFbJk
zDxaLDmT-`F^CsYmfV!2D92`~kC6BmXTbcikQX>65XbNM#|4$tr3=BEecio((r^W(A
zlH!8--}kr$fS88Z3;b@g3MOK7(~k61l1eATajaVO>@j8*K(bV>E~aWQ9G<>J)KFvT
zqEY4O$pi504(9kJ?Jo&V<|nLHF4Fhn7>k9|LO&CA)eakgwCuh5b=^X%n?rjt*`S6^
zF1oZwE-c9MgiN$*48jImrV!dPj$hutyypVu_9<*n%95YHP^V-r0*XLjNrpq$;BR{8
zuYTmTXY+LO`gvYRo-yx;?XOi%V&D>~b|#bYrT>CANul3A_8<p+zrJfX&Bn1}!T193
z=R|%d3B(G-=D>bcbEk5+q>KCNYp<Y{96Bxh+r<KeoZA2V_~w%GI&&8#Bk?gQ?|+4!
zQ}Z1xQA)iDo~LgDN6J<|2bM#U*j|{sq8c;~dS~V@4BP4?ytd;dlSyB;od_Xl4zW$Y
z;2BfXC|0}zov85(itv;a*#<f?w!We@|B6iWSw7#gNC#Ccr=!extY-M`JZ4>c#GX$$
z7Yx(ruRI2OPF|13-xUco&-g~lrDM7nj1RFI%$#u^+K2J9Jc+WFdHyhMUT{b9Fa1JZ
zbQt|0nee#7aN1(4jnC7w@XWH)lp}Y^;2vYcHPE?_){WiVo!X8spK@v#FFUd?VXecq
zoC;#l2+39*CpP$w3<)~7z%L2uA4r5R6PGM+2V6erPKArsu65Vdt>oA*G|Z#jPv}i9
zO0rISB^BQNYpx>nHJTtF%DUY>7)VswbII+pdYaw*O&9?=e%1KTe_-J=4k)g$6}(Xg
zXh>{bHQ?%P!cFdf70TyqD*EiX1~%#_%B^KqY0a+cKL<IxEdKsrGgz2<E}jeJ+)iXr
z?-)Gu*!ODvh)tPtrAL)LnHdT_<KLgZMfI4##}VJfbGL9Bdu@i4lNslC9~&@vc^I?m
z;?B@dDnlSzhE@A7A=zqCoDKu#$Z8-%CDhQ!r<i-W8r6Gye`lz0N>46syHLt>ydEM$
z!dUdu6Vmf<0_48AUH>75L;&WwZMZcAyZFwIj<O9yD=cCdEq(r2$PFuN#4mB$IyLFg
zk>GjVtRG=S?%BeJrgs)JXrIVy<@5;h53ORtakdnvoLHD#G>tky=X@Jt^6(4I;!(wQ
zY}M8%itt*umDdVeqNHwTnq}yXJI8!xA>WtmNuPD9>Ez@0?21SI&e%B2s_TW5q$~uR
z4I$ypbRVhZhCjv#VL_!(C$$v<s!6yJZ<;@d@Lqdtfs_V+)iB!8GcbQ0=3jX^gVZ6E
z*V0x}XL?u>`Fl64NtB#EbZR=Ko)#%AT0bxNg7Z6KWO#E3Qjt*7F_AuC6n?6m=&mo0
zufe-q9h+lAra!Eu!SI~sBj<M1fcM#$ny4gSt0a9y7G9P1y2p0*<}TMOXO*g4UfI<<
z0WY|GDQxZW%KnYQuK0qF#fXQQCRwB3M>4!^`DXq;JeS#Qy)g9@v-w^r^zKV;Lu+Hq
zTizw<dN+9oVRxgRVyd@)0v%P!KLp|}K4=ZuyJ7CSP25Z1wc%U8X-6m3k7V08K0x(&
zA(SeOR*7CwfOo+dE?X3_@rWYQYN2Hpvb1i~z+V%q-?SeMzJ=`yhK7N}gAmwsCm_&R
zT%P_6B=--@AmQ#k9p=m2ZWC>G$J2)gG34Z22-wxv*Dlx%E?erI7v<xCx*0l?8YHhs
z$*(<D)MV~;2vp@2$EVjIpIG#5*J`}kmf`1a<&zxEsbvqG2sj?i=x7-E_Ns6WqQW|2
z)~>FEn)Csd_2l=C*V~4f9F#5E?esDz!eINHjBkw~kd2&YhqWe+ax9T<@KCM9yzio1
z|5BmYw?qL1<Z#h)cHi8bRoRo>!%nb!Lr1H`vLyPw;57n9e0!^)5n(KqEcfNgs$kG+
zE@#sI$<#|<tz^6Mg!YX#2M#m0dRi{-8S-dTK|@$(2|oje*UtWJ{YY)zCreNtD$I*C
zAxWrlt`W3{9%KJD?aIdqt)KA%cStf`CTItr%QqD)<{Y5kbeEQ3HyD)pQ&3#!2?Ius
zx3M&y@U@#77}<T5T0k`G{`M}z*4+a0AC38e+in!!=25EJ<&wNdgJI*Z3)qokIQRu7
z&0c?@WR#!{a0_qa9mC=z`^SauE%-AaZ6;Lye@RLw<!TYv2dKA~l=emd>#Bo<B;G}Z
zbIb%_XQ&^B7~#xNJh%FMYU=LF=FrqkUP3I|izBlW(1N&?_!)0Q(qX~HiwaSARe?*|
zIZZHvsiL*~EUDDPZF2sAgj-}mQhS}o(wBV5$%po@tfvXYcdwy)&}T$K`FxDU#-#P%
zi?$8Mv)4iixptq&usVuL>S(Ofz7uL$2Nig)Bwb28yf$`hG>BexVL3z8sIthQQYG?w
zO0kv(hB5_#Z}GRbU4g0&?7D|)6yI26$3zdW9=`f~#>-e(%d|Wq*)1|JASirxmMbcj
z5xId`k5x@a?8QB=;U16X1h-xa0`g-EVNac{`uk<PGuA>8eX4sZ@y>+*B5leCGnjR1
zs3#eO7GAUbS&@~VddbDGc|xy3MmC8~GeY|C_lppAtcL{edEk=H$-{E(!E~>^;r$e)
z!nMD@I9uJa?yxhI{v)+?Hp5<hZ0>NP+@d6V<H1_-isr4`-5=f%x%6o|DZ*qH>bO=E
zpKMbHs-vTCV~)8dgMzRgk%@WEG4)YpLZtc0+YHnGb(WZH^M!h_hd`*$jKCl31pyK3
zg?cwXlP3+Y2@Q=@3Xwg}71b7#46^ptFQ~2VyQ62Lq9xi-<d^S|<pf9Up`+f5CTC}k
zRql)S+^5P5J2SydOv1>RgFWH8@f)?O7lXVQ?QJ3r(unVBugaY%W3wIdgl&RVC>C#x
zSHnj*=ckDZWp?b)LgFK1pU7Lc?j@)mc*BEMcbqD)iik6WTM*o50ynQre_1G}J=CJv
z4{bK>PfUKG;8GI5aoOtB%b6ISTnV_W^xp_o>Tm?T*v$A}vHJgXCelPpe@WXi((z}Q
z%ZMI8{$cbGfjh$Aq6gr!90uPjBRm%hUhHIiTc~bgyYB@p(jDDw*)-9pJ~(yhB*(Pb
z_P{6;aR4GVy%Ya(-RfqBt#;Ziugd1^j?TG{>TpRHjlZcUa>CUp0F6FZJy_JkTTX%_
z?h{#5g^X?xzhY`g9r694$KGFQAkElMOxr>*%IEB|tell$o8BS8BgVZvgQx32y^<3U
zc-|ZQVAcReS+!{8xOcs1D!XFMJn@4*;uTJ|D}!~76!y-6ul!m4=Ca5UHT9e^`L&x|
zG(%f0`^ZJ}h1%8FkFaM8epp)pqjdh|7lEyD!P{FnVRt?I9dl+2wLOPd=Nur*HKlVo
z*qha&5RGYtiaBpZ4RPKYXDASwX5f;}Y3QKjY@IkoqvZ+EM2i!?5nl17@$ta4E3VM~
zk)5N7;;=s+*iqe9iP@>rW)7>y@^=RP?-I}Bj0#+-;lhYeX824dD@F8GA5Vywm{b-u
zBpNf9=K!^kZUYsiXXl#d9F;gz62Qs`qlM)sBm^e>1p7a?A7C&LC<Rnxm3(dy?6B<7
zCWb?ZjwKmLnD6Wkv-|DheC5}l-199DlZ#^M7)DH+``xqoRZZ}o6mGs_zpIhXx^RAs
z)zB`cE8zsH1Nfemi3J_|sJ02;Jh3`s*_-GoVM+syx(`x)%~N&2_%YcT+p(0r##-%?
zp5UT`{Y5IXIxBwkFdG0W!28qgRmb6y8}H{PR6YgC4w_E46*uk^l+z8d6Oe8x0|)VI
zEDl?YmvPS7GW>qc#8CAcSJGU9n_1^qGm-(`i#K+xE79(Pcpkz+Ah@2K&G}d_zRczO
zGE2CjqBa{InfAW3_HBt(%x@Fd#)$MP{xGG9v)^e+<v(EIm=-duM)5V&$SRdTjW3Vf
ziMJ~&GnO@W0~okE&B?ABFM-`)`j_2^PFY;4h~Ke6{9|h<=E;})IYr+BXSIUEL=gDz
z7q%N=Wp8(_W(qb9Uq=mEyhYz#$<v$9M(yY22>z`B=#cLgHR>Yh@-a~;7fe|f;LdIK
z(Z%U`NjF$FEs%oebE#!GIE$!1k2>mLP?Wf;9wR%t=B&nzQRMVVGMsLJXtTLLa<-w3
z1Tl9SgfZQTfW$)kYnW&{<(WI}*hHPt@M)Uy^=K87z`HrFZEB%kcJ~#!GCTn|a)jUF
zzgp5?xVe1#CmW`FkP;o(60)PQnk8_te8aiM#9jC!Us+xYRZ0cgAiTeI^l^}#T({YS
z_q|u3LDI5`&jI)_aI(9-2CFi^dv;^jcz}_Exb>-RGIi4cN4|nqQM1s)3*8ZAWcBfp
zDM}DDrWh2?5iR&rZhOnJNq}0aZihunLTVBJ^*=*kd1mC6(z`UT4-nC8-I^)`$|4jh
zEdtTe!o$_59+-|5a^{;XO_~SeC#4fz93}ARYQqbkTCU)?tTqbspTk)W!x%D6=)sIP
zLlss^ecT+J=-pryQlp?!CnYhD<vl!mL}JMF`Q*4kkxp8QB-h2R*k($epRKM-V+4{5
z_QRVsA6@*RwIoGVHu{8f)C4;&y-Iiq5u6K~+scKt{yh7wcix|!PBIAQHsJoQ-$H)x
zbyb;Pna^NL*2n=t?dX+GD<O$A($;1A4pV`1PE~|4wJ7&Z?<IlW;Zk4j|D0ca<Oa(s
zUD6~=J3RK0xnFWHlB|LjYvR#Uh!m_;UEB7HDDguxKehhMfpJDXdY^fZgM;N34@UjI
z<h-*gPOQ1mih0kd=$zS&aH8Y5w8~W>Hvjx;pC`Vny9U1+zFeZWKlQu%&jO`#SeeO}
zU#r$|j;T-8g)GLb)N8jqN-7iZj%r?R)uH@rhUoqTcfsK`0>=K(z1J0{7JE1Z8Wglj
z=nV>Bje#w{T$N^Lj0IN36Ar^4Y|_k@LyW{pNiV)wsx@5XY#a*I*q#=9WABfaU+2^B
zUwIzbHRef7kBf?8XK#Xe0(y8-(?bm$RsFayxOML67_vU<K$dKiJ=%%Mx)^5{THAT4
zyU1_uq;NOY%Ytc2T8h7sG0_b7nB@celD@Io_}OJ(+v$9MZ1UJn^tL$(@<@V`QNoX5
zA-d!|{m(cshCc5_P5<%!MjmRy6MVjkbq9)h;d1mY4lzys^!6(=s|96Ow=KY(6#u#x
z5F=Mf+<B(a#*SrP+rr?~PQ;f1_}E1JjOAmu(fsL)OG?1}LAKz_`8rd{LFFO{-!Y8R
zj(<8iS8jfY?Ec@+T91tBHhb2b$f)2L#l&2G`JWg{ueOjeP}yZ|{<-z5PO;yW&aWd)
ztDPMG?qVX}n7b+nL~<_;3*5(T*e`1lRi(<8=m@VSMsYII91juf9367{RFnaC@sHT=
z`{{#W#FE;;(-}V5n+aN)6{MftTG}bF;-;>xTi<@aK_2ys<$?xBoRoAQ-;XY6?M3s}
z&q~eHzNgVT<ZMe20YDNElDj^qZ*2+v^qOz24F~zL9;sc<$ma9r9()g0D+a0;1EpYW
zvM^3fjOC10p+x#Dd@=fUv)Mm9`a`=f|DPyPx&7tjxt9Jr&GYnC;AnC3FX`OE7=alr
zv|$WWFtsB6Lcp1l<P(u|71{54XZ!T4yae(d7bZmu-nlaJ=-cXoOt{;E%@;`7kC(2n
z=W=@G@ae;~kLpPJ;n(>#y;Pl~6ZDlV=jHR(9fz#;o%`zHyfv!MyIu}`^wD^~&JUj-
zt)FX$P3A5N@7LXB+^eKb=Hf3&lULF{F%UHT`fhS+Ei^YEHCy#7dvY;x#O(1PT0gpC
z%=bqKZkOjI>S#PXIz_iv{iY+|&~`cCIwVpF>zu|zH9}*LfUCR0%#saV&JpGAOsjOI
z8x~UYg7rp?Y+Rk}M@K#V>iWO-)0g|co~7&RZv<ahaKE@o3+vMHpZpONPVNtd{7xK2
z0qI(lfcKVUqd*kBrimh&`llp#8z?sE@~8V5O!@EZkO40}BwLH}<K3j^I@Cq9R`%bw
za8Xwnx9DeH9G7br%bRB_-LbAQh!qC~hBpSO-<weX%DXgpzc?Qn4@g6A3qR;;Gxk9(
zqMwyf`u5JLTD#FFYCB}*e2=cU;b>lUY6evm#oKDUwm3Fg^$&{j(?ELRSv1yq2n_>#
zNFbC<<xV7mhlPvl3!9QM1~3elFD4Vm>^3z_5-VO1wQ=`v8any#Co0OV^O$V85yCC<
zJlPFS{q4rvq`}@EK~0+kdbvLwf@i7OFQI%mxM50)cXnt8goWW0?x-G?R>^m42_GZ0
ziUO~eOGj|H3z=v&t5y?+$7IYJpep*Tg|3p!X>Q$hKE%l<IgdpVn0#^9bsj%n(7rl9
zjyjayG_Bew>&t7nNv`BCm~8MZ@zwI!4t4b|Daj}2jkx(0KHG@TL;pUD1v-v8SW>-I
zUVl<<DN9B~noJNg<afra|AF4ow_KjIPtOCOx;A${gy}DV<5lCmf7?pH?YBzF9o-Qg
z6Ww63=s=P%!+sG~N3*{!TKwIUD|!P*f^^1_rr=B=Z5}p}@$qe)^jz_Kg{#FsG!OGI
zc_4&%X`RI-xqm!jshHC~X<ncXm+(XCz&$u4?a$a!@W7z)lo33RzlWUuvRC|a>dG8X
zX>yWl7DmEYc_K+A|4FB%pjvSnRBu^>ri+i(+snvhpJzkr`dZ1h{gR~A!BM^~0CWh(
zrU+5%ZEb9H*!@9x2)Hz~BI@s!rT8d^`TE-{;wnzF6#{Y7cjeJVY)qFgg<MvkgYgc!
z&v+UCp$heY>6Q)+lIOj}Ts0ZI6j8IBYXkq0k4)ep)dM6_<I0s_Y4CNn7Ca%HQfB|I
z7W2}Fa^X4!0bGOR<M=JbOo57Kp>$KooF=I3<Fju3!ydSYfIMLNqp20f&sC9<3xzya
zZVE2sP;8xc#<>{wU`!Mw$}{22Dk60FgE=`759{yf=<}b#H-bVgB<(eR931}7N)2;Y
z{k4IxyUJ3U07CTHP}ad&cQn;+daI|+xVCWS{u5i5+XmSgD|-h#Yu@JyO}-Z<I$}&!
zq(7ATvu+1m_Bv>NeI3p~x36?!JOgX&+4<JR(!RQOcYd$8ADCPgFJ=Fv<F|3tq$#!*
zAKT0&_CZ2J(6arZO6{Z%UOuy|`Y_p|NRm|W&627E&=@)o6K=`2;vzNuXojoNMw$$i
z9EDYyX79X9Fk9hF#TTm@g;it5#rG~hWF5F0PN|#M8a-0hSQT=+vaW<Zi|3gSJE}K!
z(AxSxY^LdB!K!1@<U5R`pf~{a`X}$xX5bcVmh5c~cNaY60g7e>;18uV|8fM5SZG9&
zxCtBi{jIy8?0-7>(L<`MDJ}MV>-PMCbAFZq@HJwR3)}3>k+4pQQN%lx{Ti;o1#`s_
z8e%WGQUu6bPsasYWL8*adKzadN&RQ?vzE%f5=3>{bA%RH_kIN+0|o{zY~=7W`;pIv
z)%!M%`nQEzn%t9ITrcKp!@>qf-<7W@P1zGZP==jw(j_+#Vpt4Uf0(i-8BQnBm4lxf
z&WEQ@8mljcE^wydy(?>DLF(pw@ktUe{}^*n`rhOF8?%hxy1oCta_*X4LljGg1Pz@k
z#W17BDGtyaYWtw8$to$42;qii!opq{@3-Rr+me^D=$IyeLLo;A*>~^6UxrL+4qIm0
z6JB6{^cXp3fRAh!uTRRz;~NLHO!oHPUsv35nHkvytuGu=@hoIIo?LaT5io#$ykV@_
zKEe*Wn1Kq2oi}WnR2A)$J?h*p92tSEYdLhxI~r;8=-l>>!6!v<)t<)zV&tFpTc6Zr
zOfIfsDy-pE<cpY!z}Rc5rgzsh4B|~cg<7qSUAOMSNgdI-7&R+b-6A8E_P1S;5Ovk<
zo0~HZ{SoABLo&rnV_HCuGgHc}b?`+9MS><K$ygP46ae)q?)_Zt;Psmnp~uvT#TEH`
z!`OGAyV%I{tcBQD4ex%L-y-s|oT*U%_gV_@Ib-`t*+fzUSOUJHH<-p5OsG%znJ3M~
zSno={H%c`2BOwn6s<Jh_e~<p2L6$Kw5D19?UKbH*mi$jR-a=(F5Z_2Pa7MA+zuUOE
z-hV`X8n*kgv~D?RR+>uv0$nF{9Z!9lH%*AP6YpI**2^woLq1+n?@meRYz8qNGk4Px
zfRv1foNQC54{hLHW&U;6w(I%6?OPQ+>xLDf<;BL%>A6#jRqyc(=Z>B0kD}raT#8$1
z<24TwtfW}y4>nyM)$<GMnn@Ccz`+2g24?PD7RbIlaAm1_3t9@#<Ce=#M<7yIXD~`^
z;VD@=$WpptM9NnY)nkEAx1+_uMPFyYOUek@yI3%zZ1EKdy+QaF>Naul>UY2vO?i{H
zcSUoVwjOy2Ki_UmD<0qi6Nz9?M~8p+e*0b#PLD6Ibzy7hcFeE-rM=K;LG7exwXu6O
z!Z`#T)34MWqEyiIc;5EJTBfYwkdtsxz%r1OFfGU8oP|kTQGoTAOD<rJufm-r5y!Oi
zk;9Ebr_lTWZPi}erIfI&>^_KRkIwGhTIiksGq63WZ&IM4Op_-gxw*I(ue}}5Q?%C}
z6RK2kP#Q*RmO`TqS$q=4DL?d3Qphxte-hTDt@yf|gP$T4M8`HzznYpdNh$ORtQ#tT
z|H3w>&}0@eFyJHn3N<C+9n~i#DKVABGm;-MV<@jO(s>r;COuhSsamLO;t*_cmOx;U
zwU|?bv2<`2$oxY>d#woSs*<;V+hH4Lf1f<s`r!tlW8gQD`-k7VP?G@a9>ETCqwDud
z{68f|lA-Pf_M&3C1&$=+Z{^=F0MUm2LPng6gcG>Rk~}OC9E^`diwH^?OX>t}iI*_`
zZeO}l-EMdofX|sHQ!dvvy8eU7uTIk3fa<8iXAowm-?_%o6WCaRBByN*7(8=hk`L6z
z$xCl)8Ujw`E0)M&2h<nnVRecO2%V-auu^fE7uH`UZKpo0hJUOpZ<E2xM5+ag1nP59
z{%mXKw^Tq^6z=j{?+KaWY==ToDQa$6mBKg+mGTGGt~3>->DLxDbu3fh(#3xq?Hf;T
zPoB>1M*|TD{zAgFu_2|uQ!?AUZ+p(--m-4hwc@5YvX&7t6f6EUd>t}aP4``E7*>nw
z!)Df)pv4HwB4S<0(Nvvq_H5rWNJs$2QwT>t1%nI6z*ZEVG{gVBVDWGAbi%=2hlenl
zaKw0WK!AHF;!KH@d%2zZC=LM=I$IZ71?%F&e^qWVx_v=-UquT_KL!4plt4BJ8d{GW
ztFeh&u?Hum<Q(~Dd=ZWoPDopSOATBIPGip?#b18-ZxL?26)!ED1T*H(u<=L|a8NGJ
zI9qTQJslJfsqQZ*^EA^_QeK-eQe`!XDuWIp7_fJe&~xTYe*puYrdr>zCd$04r6QKd
z>~2Yu|D}wVl-qoo)tImy^%54Q{k#LEH4?_c_$tnoVz8KEQtN19k|l(ExuDjdD0r^v
zbxC^m^BP&(O`srKkx{OjQL5V`KSzPuKRJ_LU$1c&b{80&FK&=0eMWDNsh2xXV2ZCH
z2cA7cpPm5KJaQHhd9PQa(QKst(e0?ba9_bo&>i$Qhy>e=)&9(ql1xutq1YOj$d;Df
zdI?8^3?MjSP@XvK(LY9)<`0&UjNwJ|{9%OgO@zZ4gN=?~{Aa<lqY9zeR8jm_pD#>T
zAySqP45-<>0^Wd+z^60(#aW^0g_Sd1T$*$9x@iw@1`skK{kW&DuKfFPAZMArr?xwV
zB>cdwq)dJ9c%*y<_dnUjrKF{WjD2Wwxqy1Pg}tQ3`lMc|&$V-ao%-ts8Cp>1uQ<RL
z=(NPl@JU<dN$g|&=<wdW0LPZ!LLMTFd*yfOeJL2jsi^?`zq{5~i6umdTDs0dRZ?po
z3Q_-rS(3-maMFh)u90>RIiQT&q5QwRIRM}QkP;N{I#8zf_-{Z_79>+H{W<Xe0*|??
Au>b%7

literal 11595
zcma*Nbx<5l`z{O*?g^gY5Foe**FccqZVN2#&O&e}xCM6$7GQC=;LZkHoZzxJEDnd~
zJ>OULo?o3mPFGjg-S<qj+;a6?GZU$*EQ^Er9uolp0Y_d=S{(u59~c4xq9QudtELq5
zT_*wp5`wCtrp(K0dEV<E95}vxe0h1CAFKlpEnV+I+S=QDR?gP`3=KjzUoSM&miO=6
zy}*|fy?kAqoqc}%T77tdFO`)qUBA3s?7a^1IAg`k!p^2Ybn?W`&d#D&bor{h8CPOs
zV`l+9Y=Y&Jre0o7M!FloGl#L_EX-_iXRrP77^d){`x9tob=~&uQ;3UGa{Zs3ot@2<
z>1>d<ePHeF&CSaLbo%;5pPkL|*J|T830B42bJ*I}$=&TjZt~=XXcDB@fZ=*B-Oa;q
z?)0%a&NugG!MCav2luGdpwRp64%@)o>BEP=UD=5pTX`J|=jRtUxA%-fSwJaX78&E4
z)dp2Q4Uf-kpPdWrd|KAq68$S?b4Cu9>terraShVqWaE&qaWB7mxfW+<=P`@Z4$95|
zY0a*+RK(hd==;Q`X12v!Rrd~U?84SJ*84L2d_4Soa{KK)l1`>e?Sk8OrW#l3!tC91
zXSdGwMvEIZZnFMdt=GHPl;yCqT3$d>oc%+6>Nc|V87CXE+|A`pENuGP%Whv@_PT-<
zZDPvOB4RBiW8+*#u3o5QKvoH@r>ou3zXoRhK<rZnYlD5lTDD%TT<YV!0DpNt8gM9p
z^g^Hxi8Z7i?avRlkj$^g$1t5#$o<WkbVzs1z;Q@!%d5kT^X8k}XrC`3FOTcRvsduz
zo5fPIfhbWH7UfI@#+%!{tGmbcgGW2}y0PLg8F?)|UEQe?r<=18uh7i79OG(#?JqJ?
zjzA;(?>{HD|1jHCXV$g)FwkwTWadWrme%}kDvGPL7p0+RQvLCVnoeJUo{3B$i;@bY
zMgKA4n;*>wvDDmJdk??Fq`1YUMFa%-*O>evh@gUi!2T*Buy<Cb2YL9}dxTcaR4dgw
zlf=tK4Hl4OD7~-HVole5S7G7W5vWzE^}fEuy;?)3r?_n@Rdr}2Z!k!rLNn^`Ib^~O
zG}4^3d#5(GaDPzrzS8quXJ>1#ab~@`!^~RR?09B7u&`16J6OZK(Ii6>kqH5T8C70d
zQqv0&wi*_YtV4o!hJ?(7Jo<U&M>s)|E_i7PnYnk-pg5|7?pH5;i`_$EZ_czHh11?i
z*OT69t4e68fe;h${$cXuMD#}ScIPfzsJEN&->v+2xjGULRPW_=egoN{vH6jmEf;39
z&sqPMO4Juwln&v5j!%g!MG}>mE!i6kpDJ97ootF#YlfcWQ)aV!4(jfb9|BiyF^bCw
zw76W7BJde53GazCN|hJ`yX2-O#yCFuPJUKNk18uQo%q`6cJCE#m^ng^dsyBOGrFiE
z8Vj1BEl}1B^JqHHY~0XE7Lh$cypnNoWXKqt%;67^Jdt`YqV6LW`{yNDl8CNRCOR^;
ztkmDT`X}2lzwr$71fdpR)zTZdef5ZXVzaQdJlld&zQq{HuZ@(MDxQ~z;OK8eYzDne
z2pQV#w*wdh*W`v<)PGcpO{+pz8@wrMj1_79WPW<=hR1fe&R`nx08+DdqWs;yW;U$0
z{dP?B!77hO05XoPe4}w#hF`6y34?6SqCCINxOtwYcQe}6XzQuAI34>tOv91T@F?cv
zRL9@Qx6{CUf5g>>uKqTNtFb=&#Qoxgk_XOZ74*oQ(iHOZz&aG1`As%?&yeD{-L?uW
zq(78q)`U)--(gi}vie<|8(3Z5N00j`*Xy@&)E-|5cDVv`lp0rEuQS_Z{r*9JxF*|j
zbE@w2FyQWHjHdN;{0e28;@9dfwg@+3$h=o*@zNon5cc}6Xz85<?_WCbX?*58>c3|E
zN<MLCkx0C}BbZHBJE2CP(E2RY0%%Bcdw*xEXO|Ll>+tHra$T10JbO|I<tE)ZIL+(J
zgOD|Avz}Eu&o*eoJS2_5ZIArq`|1&y1e8yyJ&UL{S>Ao4)ra?FQVQb%Q7OaOj)<vF
zQUi<cxGiGyo`W;=>A5z%p4>}y)5|L{!@=lXrG*Y&yM7Zm=~50iq;lN#O<v~~FmFP^
ziWY`jTBBq{_^0P2!5MAVn87V>#cMQ!f^!i4C}&7IHH0#1MIG2oKF+O{_$zX$IcqK%
zK>W}+q*Avg<C3IU8qH`SFW27s=jwjy_u2$vvdCq5tB1)GSz5_sDKKCr2lA->ygUfr
zlO|IfP5Obh=FTsFckBhtI~>79_mK{JDgbpJq8w9TJbcwRS^!Q6>t(6F_r5W5akTKT
zUJvZ`E?2i07AiLv+jvM!W`?y-wfPgnG1o2>zN?ULWuY)S7?qxmQrFYK?i+O?=DYtM
z-<dCvosDjFZ3wS+T-ZCD<yb?>zI}dwjVR&G+dDynA$+{R%a*Ug=3}8HpLoOTFohlk
zn<duX9&Okv_>j#V%CXF&5_Sa??RFX2Z3G*~?%HBP^7_8ca~WTYEDe(zDkQ#HC=+{)
zocYm47n)uE)Gx*Y{vMUO`a)Vr%Qm|u=30A*>JE|Hd0f#5xtZl36*ajQSPo9P3Cg=w
z4b}Lb+Gu&`A%;W@5Tlf<h6REVzZTJ7%_*o%XeJQHwW4n1qbxp3Zx8~l)|C!qPA0(a
zzwzR~<+~SN1myo#{7*SS=%<Do;~U8AUo7T{t1-=3BQf_SusPsa8sR6>X~4968=koC
zvw&XM%m5!{-7mA;ZTWj7pFYB(1>X-lc8nLliUIy;8d@ZX#p+n~tCFVfpX&3Hysj8L
z(@WTI&#B$&s6J27<NlGc(`>bGqCdV69tVmkATV8F@KDjX#3V-m$`U~JIZ2V@mOkk}
zq+>IZLIDmh>^oD`ut4zM8%PWPHCR@8j(Y)smwY{QQxjqSE@93Ji$yH$m`A5?{$`#l
zk4jQ{ft?$zJ6(r0Kn+cruu_j@2Lfh{BAS!AUSTy*iYRgQOlNJ}>+UFf7F#<#bf+D=
zxU{mnd$w&g@Z3d5Earvb7>$q~0iA#VGCdVn&7Z%P80xugj$u$rEpYWN-H5q;di;W1
zD<#||(p1JHQ5@THnmo>xU(L)u<?V9zwGc}Va>8%$!rX;J;liCC$wPGgUFGKxm5XB5
z5ti;Yy8i5<q~+7WQkehFwBT-K)q|hCr@Px{{cVKH#HYo>K<Qs!QjUND>WZ{Y6YW@s
z88z4jo16F%+d}C&&WU&a-I3$pO7iLqHL^S(sF-m^uE~(lsl$LTho9Nc1^gbb`C+Bi
zw0^$LfK(HIA_k0tTth7@JXy-&%KVJBotCWiGIEItfaTVBwe3er(C1njm~n=g)3?c(
z@TX6ZBBz#ZgWY$wKcXB#Km9GyrjhOwqvOf9GXL0PJj|Yo=?;y5s-ZlWb}dnMC8hfO
zp?in*@C)0gF8(hy@`hZ51n-0=5>KR8nHM1S#7$qJJlCivKlf{y&BPIl6Oefy1Nmn!
zV<2L1VZZU-8$f4-=xxwNVH!No@~v;_0+=i+ISep&$kG@S(V4ZnW<?6>NnVANi3j9d
zm^*EoNLa9cgKB~M2(8$l<FGWv<>c^H)fFFTYw~QFW?kA{s5igmBN6p`4e>#QTo`2}
znWri*j6C0t#T!GI!pw-s|40L5CCAER4HJUPTGk0y3CTlo2D;zC!!gu*1-YA-85#nH
zSKbOU%suWf^ZXkI%xUo>2W9~SZMWG~Yg*}E5kP}q%G~94MUIxwiid+`DWhH;I-5}i
zy8X?uz?<>EW&DHFg4&wme8WTHg;|@DsAp@WXeCrHYmx(tNw<CMyVv62WwN`(Q`x*B
zTcXOMt61i&1qwnnD$Y$d8|irSu@kR9UsJ}Y9KucCuBR#!JDz<RDivJeG^F*jKz>UB
z=eoQfI5(>;Zo&(}mN*o9spxE+BWJUBsG>cu9O%@T^3u@K>M+(KLVQd~*U<U(Tls|=
z0bMw-94oI5_kZU3|JQ#p9dkvJ)`)j{68G_ZoS7v;aegFpVaGNkWOMKD!o~Q`oNPZW
zVTf4R#yQ8Fjz3o`;F15;<9>{RRST`qwsIay6ZI*sxEiq%pYN^7h}`U@0@JEJht^B_
z>hgtsBcw%_I5T?+uk$)*_xXy*DR;t*y;w|YmhU6d9;J-V?=xaY$OWQyuib8O6{?gv
z2dE~uhVkuA=--Qm>jd%LF=bN2y(fYs?^?6%yH;AzTqe*SihNj*`pa7+1<ioUeqBF4
z&z&_C$5#(y!|@r{03?7L1MDkcmlF&%z1ivcNBYN%Q=t`dt(G5oEfCvppz$MFf}O)>
z-$317@#%|qn>_^5<O@hNOvLRstW8oSo@}FW1o5u<I2Il_pwBszc00A7+3p*5-cKQP
z_XL!q8c)^estl1PW!A<AoSr5=ibkk~2NMv`_0ht6-ui>j4@*rsQXjoudO5u>Y~PSQ
z8{u%KC)E<%k5qRb*bFfvjh?7oJ<f#IwJ@M6!1PB>MZM4VXYS}xZVunN&<rT6t2Nk=
zPwfJ~`sby3W|R6<ha1aHwU{bCpp&QUZ&Dqi{A-~~g%z_s;NCq_1e`Yh$%_|0oU!`b
zEW%)abs;qR#M*g^gTX$`|H?N9C$xAe1As?H2|9-Yz;4)`R<*y?m`wLV^kKv|i;b#a
zs<$d0y??#?d*F&6ouq1r(B**(qulGaX9w+&IVeWxG(jZ>P3Rjb^#7wt!XM4vHMz*h
zv5*)ZSGUA{PjeR|$up;HNow`xr|dLF==jH7-DI~qZNmfPvWE(+wK?W`&Li{v?}wMM
zXPBk$2;=x_Gw#=hg}f%3qBG8jE7m~>G^ZT5b-$ltuqc8`XjnSvu0IfXKj@_pR{PIP
z=66wKu??h#y4P?pDR+BftV#dTLZUgH!qvFfGmG5XJM)U$>F)0uKX6Z7LkaAM9_Ksv
zo00%OOTi2pYU4j7JrWAbTf%mLd8r(XdX@A)h%B2#5VUyA*xbyHv<a}D%21#qLtz@V
zvOI=o<wpJ0ikqIG(}A8aTCwGypA8C%@R8aa1=izkW#aDT`2+9eQR4ktF}fQMBp+Qo
zac6DjcQWTQ!L{z_qGU{<q-|)4GY9%Y&u{4C%#`oI;d{`vi-5V-{0jIuf<_zB!QM0V
z;7-C9mYR?<^zTgUWxe85bfeSZrFDuyL5o%$c35LiYu%YHF5B*X#$GT_quFK36zL|Z
zv?5CpgNv;>OKF4Dk;+o2ysKF=xFYS;3m!sK8AO3J9I&fCKWrQklc$+1y15>7XbmfP
zxQXaKh#LHN9;3ja+p+Xt%$q#TUqV+gP;5GmvJ5~2rVBqW=?_z7MG6!zICh<e>hDms
zUd`nQ3)h7eh@6`?e$RtcjM!SRQCZ+zE`$)`dbl^#=UT&>A|oRs79r3S`Nzq|AVkVL
z>&ESy@htveQCj;z!BRZXzVCT$H2o+bl=}?oBWbwj^buZMWEO)Z5K*6;MivW@Hs;i;
z`jzhunS|0a+53z-D2NPxOuo%wqjb3?sa=Lg>V4So#U@`}AdKzI-*1G@HA7IS4=R3|
zE~vpiwANl`%4|(f>8C((HU;RyNLY??Oc+`ieO8Lb5KQLMB5PS*hr)qkIqNa9)XVia
zP_jtGIxV;uGs^i35<kQ$20lv&vll~0cn5KbiI;vr#(nkaL37)eSoN}bcpoc+_%Z|h
zv~faUhR))Z>224fB<<Xh>v~#*x`GBF+}N~vK$#CFSh@9h1vR%qM#I*>%b^Zb)|a(t
zhqrhB?((<;%0Ib40_2u4d?3kVP1u<%fmwl+s`d~f7f0mt>CC{SHH;e_^=&)Lr^w~I
zIt-V1`CT6A?RtMous1pcWSI!xV&HO<sdnfKY*fB!Zy`WJb>Fd-hKadYI!(;A1SS;w
zhYhG5W~0>X^H>hnEW|kZG3(mnzm#NMbxmOKv_MGSNv;E^w_nt4BMyKZVei5cxZ77T
zM)n$($4o3~`biZZIPd-he@S;iUo=eh%?kRT87`$h*$vByG|<pl>M=%-{>tks;mq1B
ztm_guRr1CLFeph6EB*xd*fOc0XWGvOGJ{$Dgvub(v1_4*Y4@Z25S#n7Rfab`uHXZ!
z$A3;e6?HnnkPgWk_Z17jf6nz*Y1tD!^*Px|+ZtiR8+0e#5I5g5rIP~*?5(*uVy5Gd
zZcr-Y_@;7w8$rvM@7yz3as8>Wl`ELB)_D>vFBjRV5l;VS4S<k{yd{{4_QKEgP-&tL
z0!-vTD*$u7aDNWhKK?^E>$h+<f2@pYj4zcgg`KOzlOtrS%!RWV(fUTg`C?>q@E=y7
zE1|@PUauugN@;jg$Aj**Wpl*+=c(RV$+xSXI-kNh$~RAhtC+I$Fa;PrdV!4Hc3)Ac
zTm4f-FU&a{-Vsk`)ZP`+BPo!alGKGYsL|km?a}nAoW4twJePD4rY4XQ#gTRP`uuKb
zM)pZ&Vc7?BD>KYPvZw4;l1tkWnQt6hn4-{&0r{(H&nEWw$dXI7uxdn_i!mu?1BK>x
zt->-OP1};BdgqQr7gUVHVbuTu+^w~=tg-(OIzLJUCvCP%phMUGdq>zHrv~tt+6W`g
zj@YcR&mz!d$JeC@`OWx`9a5Hfl{W+QwgN^2AAh=iJ^*P1-}VUV091Vo!0c=9(>pro
zO~+l3zsfCY$rbn1=|q$9d<ks?>1GcsDBH)Ai5^LRZR?9%=SmcqO%zi%v_mkL`pD*Z
z5m=|uy=u#KH!!j<<zkcxn*96Af!I88Tu8G{=ffA0xDwQ_!+~lLTSa03B*ct3xlhDy
zT2Gj#_@V>gWVs({`u<nr!CkE5XoQBBPD2}-bMj2GDuP^fANCtdOie@;J}i<SQOP`*
zGG_eYKzOx#HxE;ZQo{yWg!;zXwssqp1}z9UPza46nme;qi*ZQt@8y|AxsF*8;9{Qq
zvu#1_ElH0l0pKCvs&mRf0|CQ%SGskC*#ckBN;Udsh^*_=kPX=ka(}2QxqM%V7L-Hj
zv!uZ)bYXwcEk(J(5@BlxyejY2MnuhAz@%HK-c({%UZRavOz}z1fW^fJU;mp_VUsqU
z`Q#^cF*{})HhjzMNh11(RSi`l?P24X4gOL#yW>>ADj~@5{qdhl6mw&JT8$0T!{FSv
zF}<EyV%h9s%#r}-vtY$IKZLJ0)7uz#!3u<BZ%k+rEGi#&k&TRxf1Wk~*kx^Gv0R__
zu0NVe?MpA#LX=pL2rnnFMfj<0ZEcauKlds6+bK;@xQOT$7Q8i>ZIt`o--2z!G7zSn
zn_w-W8<1Z0Gm$2uuxqG5vP-)zLRnHPQ18^#qJAXcLqg*3>1j9IdcX1Dxl|N(4thVo
ziSP9}=AM6K)LX=|jg(tVJS5e|`mYNb3E#OUtAdFBQT#A!<j40p)A}b0dr1`nMW!ZP
zBu2nH4W<>84{&lE5S7%{o>zspzy|c>48h3dUfA@b*&#lr(Mh5W7yZ)p^LtzKGCOq9
zmCaWWg0J*G`-GZd3Tlsi?FDrjUe)W0PE{Y1DAs|rT$Orht3vF;ICymJZTSsX!cv-H
zDS$A}w@mFTb*cKx$D197cbPw6N<ecb_ab)Q?EC8p#Hb}`>|TZE6w>}LjlSuRu#mWv
zUi>*_d(ZDIEQiG{dnvGjlp%s|siX*~&St^W%IFb=BS%&4sEToOUd-;8-eDOIEj71#
zT^W{vGq|I15wvOyl_bdOn!sDpI;Xjab+*@~ObXFSQ#jx-wqqg=2cZXAOkt$}2=fF2
zkF1s;wJmxWX5|b3_~znjU}$(M2L<6(XWCQo^mpsKT0!tA1p&Y1kkI=folOOZdOX#3
zF#Sgf-px-Xz9VJMBMK#jz82Oy=hA){?N%HVv*JkKS6!`9z2*<>L{DOJ7)>cAr<uwy
zmB&B6Q1(=N1e^08)R_fWdxo(;438`xNR2qE)m8p2sM|x~D3i0ViJsudA5r<Sy3L_V
z1I_&Vwr@HUunNVI88z9Xpi#C&O3w^)o|Hx$4}=l9I$_Zi{FJ0=!;jn8t93l&keYdH
z#t+rCFLo2ANH3?D<vfFtK=&v)T!uLeDnjFlElS)lXgM0V<1{02W6{+__!FG?2UikW
zJ-_=&^ppQCGtmAzOsI*HZ8MhtP94>mP|UkOLmjj-xbcg8L1n+aA?NOQn;5lE;!=HD
z*J4%pSgY4O<S8k(joP-Y4k=l-td2G4<_o~B+!>L;24?G?cZfn;x`2MeSV|?8AM56H
zW**~RE--hbO@9?=^yF(@Vs!0cO`8qrH=G^LiHeK(PmqHbuih<F^Li|0XCR2X@gB%K
z{N>QY!IJ^J`BY(Y`-XwG;AQ0b)Q$b+v5)<&evK-xk_TqNh8w(EFmC8VUVuP+8U00!
zDMCjKhF?%VKh#<(5~f;+yVAPWNKA=E%799#LmCeJf3A^w>fQL1NTilSsCiR22a31l
zeVoz0UGeh)`<Ja7r8s?8EASmj>}<GS?#1!x`s&%X#*qKz&8cTi*ou<XiplyJ@rQ2E
zh3DD=ai4nxFv$;V59K**_=orgXm_O0%D0C7=BfVaAmE7($^YPi<@x-sL(G^!(T#N1
zZ(Te$`14Wy?yMtVOZbwI{oHEBX8o?q%UdiLZ}|B@|90tSTZ3~Is0*6CrLA78u?Jjs
zVmW^^#yOK+H%@_Fq2)d=h$owP_i;|$J=+9L#&vcDyxzl)RSbaVpy(Elbt#NI*WZ!y
zbpq4NNSxRI;d0tS(_|86zZgO^l3ILe<iuE`S$yHbJC?mJ6~`9$_MNNkz3F7x!BdBu
z`{LgfoT}TN_^ww{-50~4FIIV{ShtZqXD^zrL3{K}!my{bN6h8!hprcnq^FxK->xYy
zpp`$ZIJ+wU`B)St9d)VDJz}B{+{pKuwC8LqGp}z8p|9WE@;GSdpZ}|W3}j^eif5K<
z&GjJ=tVDDTwRK>$^PzAIXB8(%Qv&%nYdKg(=xfZ(X|)vc@7ZPATpJ+n*koNj4Ewd^
zVHF;m1jAT``~F)|r_&5yK9OCATz*=nIdZD9bNJgk+2}VmYJbCMHJ@D|`sste^1PxD
z4~w03iM{Yl{pP(Eed-g<@47srbR`E%V5C3#jvx+E2N-;zUg3aG3{dEVk6!}YgYUTc
zZHC`wIn>x^sXjN?`Z-mvxy?wV=)xng#-5{smh7go=kN*)y*`c1f4d_&Rbdwf0Sul?
z!GK<0k_Kjj$Dd(~8O<cAS5>X<1Mn_*#^31+Mx3T-=w)1LsgCI)6$9%-=|m=o+h^#L
zl8;%92x*t2!*s(`ol8K_L);{vc-mxjYTeC~@{Cw!v>DuK+K6rFX)GcWZVHls$K%?n
z{8$X8Vd)xZ3Qc;yY4xii#qo4VeX82e*ubHl$YE^k?qU&?b(}L%?RGh3k|>^kt;v)P
z<9gut;!oX*R=2PG$N0q`@q?2Hc;rD1W9+#H3|qH8UA>P@C0XyN^4d=jAyu|hS-H=F
ze|w=lwg@?1ay86)xy?n1JuxiGA@|?y)HM7az-N^Vg0EcMaGrci^6P>RW-suiVUFBg
z{HcOCaB!6PlJK>5+`vz=17^-92+D8cy#A8pq=^r?jV$Sn#yf?8DhRdVGHb?Dx3LS@
z0asmITlqJv{(js~8#;NvF1!h3JIR*yK)XRYpoZqlu&k$r)UC{~5i=^|DG{@Zcja!0
z4VPnCPu5qstqV;~4~3^Fh7k|Al&8@~k$@WWnNj~Q>`*H$xxJmNr>4&?LB&2*>3Gd7
zOC>DUjRWEBg?s1XA`$*Yr=Kdmr2HPu{q`HZl?*OJA+i<TaGL9Tm{X%p!z|>J(u}<!
z=rlvey^Jm=JJ67nV==TNyjP-AH*^ClC3){mR~?|=@!fQ9%`s{0<{_(QSnKZ2Zmb*p
z_Ix7l<=d`B$Wnb#8#D4;m%Au?i`D6X_}8L{yl?Zg>-q|yL-wU6{WJ=eurvw~ZrtNy
z`{_!!i0{+HV6l14f}UNV*1pJ9$8)Ky8(I+_8RU9@pFGvC%}-*WPkOPw1on|8%10Q_
zldKH<<LQr~h>PGypSq^IkW8gE*wl;(k!k(F^UbGY26_ss#HM?SJHZ8aGK)0Z?)c?&
ztITZ!Ti_=xOqK_f(^I?56xb_v;IBUxc$ytn)UbYhz>5C@U$btY0Mz8=vIvjGfo6i5
z-jhs^M)?yi(ficPgJRck1GrZQMHTki20ol*zIlCi-TRwjeMV6JV@f+HPr~K9yRhEp
zl7Pr5Y8B%)skaS`N$<+lbr-vR7I9R3Zmv6=QF|``B&$?GkxXu?jdlPy&f{5V@#7#@
zzx$ENx~)&U3yk*%XR&abV=%n9H;zi3gLV9;1IB2ak)xx0fM5L>yb*rX*FBR-Y{Q5b
zP$`-rDhVPoZF{meg#ENyzV@wjC~Zs@AMAQIvR&Vqc=gy;`$4Ni-X!Jp<Zwh%-qS5b
zm#lfoS)K8UE?N6XJD$#MazsFc&(+M@z_pXlL}iC@%1~F=Ie{1Nwsi8*j65jy>7Nn*
zndzIVCeAF}(!3tosBV3`dT}>YD)1Oy?w%TGMQey^w&8|&Bez|0ra}8NqnOd-Q!gV9
z)WhMKq`?X=9JZQolgAEL>#Aw=yZtAkBZ}fYi&LWdZ^=ciIX;6Ana^6C+Utt)guhP#
za8E*hpw=urq>?FipL=)f+Z$fbQPg;D{o|#1Rd_T506i~~J`U?cfOK&q4#UE?hN`7S
zMR`k6xJZ0NO{$vcjh;C*l|^yc_uk~uS8U})pRDAc6kf9pL_37qUv9+TnA7>C2e0h-
z>Y8qgP|;^m4<5Zm7A5oNl0&@tDImdZ-RKwZ02T5>$&L7G@0lAY)sOMXP&;AG=(F_m
zteK@d>X?{^F8qPxx8PeQVbUNAtJ}RrD#U*g`hVc`i|Nd8&v4yk&97&Ei_>(+rdMe<
zASUpIEBJfF|K$u%CxSrgR}nJAKlEzK`FJ8KhUG-ZzR6|M{(`$I-%o>ws3G-kC5>XT
zl@kCIc|ZwXmujEmMsZm+aV6{#h1CR)Kt1@7ekaGIluB2xw+bLpq7GeP<ug`NFqEjL
zQ=L6aQ!1829nZ)woHDGMoBEJ~H`^dB3@v0T25Z}9Yq0P$#S(7FmS=BY(U1$}Gtd6B
zG`XUtRFS)Lg!5t!gl=<CKkz>+b8z`q3J8di{11I(5~Y^**Q<UpuXkog@At4sW(e5~
z*#v#3A~b8cAO^%Mzu{M47_N@^S!IBYfK;{04PGJr@uV93QA};0n`n*MUH|GZH=Hgo
zg8L(&!}xnDcGMV2VWR;ay7ZXmar7kuY!V-OFl3`d3guR;blC`N!%R_D`oxerDNEEQ
zRX3BbAA#jGo4>NLA=8+JX@@3bIs^u5OR4}3>%p5!=$doU(@$zQY^ElYf^fCyQ4E(O
ziRb8dxgLe|tAFiv9Hxe235qsZVMLLTFtc(}GM@hsMNjE$=`0P=Bj;={HQV&mf0?Ji
zp7VTMlr|lMy<kGOu#F*zNC<2}nf?XS+@$`aMjh3d=R7VJaPm63zremz=m|iBHzx(B
z<R2A%&VH<Jsq#jUDcUtjQ{cCMJr_&)K2|W`k~1TQ8kJS59?Y62%jjHfqz`O!MwpjM
z2FMGr&$J`-PEcywza!fG;$Bd{x;<nYwkfi&g(S28T=p<1jamHNJ8VfupG~GvA<9#_
zk>L)c+s1foUHRyfkCBi*%D?jol}I4Xi5-70#Kv?9+^x>u@Jb^=8ToSA6ls7k;sSw@
zO@$I33=;{5{B40H0u58G)fsIBYP>mUG+GqwJSzl|kS$UlMDC5B>745*XJfbWp1f?$
z@j~W|SyPB_QN0r74=$N2#cl#D2-1Ew?aW6<E!@?~d5MtAoaE-<VfN>XR%6!Y!SntN
zPWtx(YeP_FSXUaT)w`5}P1RwR+r`hCE&XvmGgEl81wRcA^P0COS*ZPNOP;{;v!FKX
z!c>Y$8?ic6ig1{Vnb$#&l9$&K`+H{Qdtf87`OUOIJ0ZGT`Jn=61=SNRO{csVGXbKo
z`wf(6dqGvOuxOi~U72}xt5xQ1TPGv+VbDT#7h}<e_ga?TM4w(*``1t5KsPod-j@j?
z@3{|ArE2$nX0#E8_v}HXzm-P+29Yb-u&A;*DxaXMSzM4<(YO$pb5I|{HqjQ<3eEB4
zd=y95*cX<A8?N5*SdM>K)Uw`5?Fy~WMRmdIen0wC;=5Yi*F_1f(p5Q3eH}l(5bqQi
zb70|Hy+3@@PzUv;@}Ppc%Kv!X#fg_To0z_RR5@h&zJs>GcqH!WLIkxCru9Sc(rEGe
z0adX-;m;T05cR*9qwJGoRldo#!bdT0JQ}o4@DYTx!xL9yQaKKAhu1#vqsd<ooTf+w
z`!@8H#j6!qFL*a#q?raz3aKuW+A-tKTj<P*I>b6M%RGdrM}45s3QPiI<_NeFTj$<}
zFIS+34^wvhn^zzi3WSroA28;2u{Kvv9!o41;oZLDuX#p|K8B#DuHJHg6I!GqfPl(u
zeAJ*Lz0dzoJuBGomyb*@vGUa$W-IXwUm0bIe46NS8K2`p{_O{9pL5uW+2$ZjH$!z8
z*;VD2Ay)V%<D52~YJL$!DW$|<-e5v1T}homi{hALhz12poF_o7zp4Ntl7OI3U`CI8
zdlq0Fo$XOw4ACk0Q$B+G{er&eci5scCBP?m$L38gzE-|DztRss<VrrX(h7xh_kgR1
zUA+h=Mg}Q?ZIY|~>A0^V6pGf_ZVYAf_2Sbi$EN%VX&AIqKb%A1Fq8NFEhrK&A~WJq
zFMNWys#0X3lrl+9caGz8Pa#flPLu+7)=(R6K8(&1UAvS9pj)x@EuxOrwVoV10V1R_
z=9!SWciZy?0P-&I))L~=8)u*j8MSBX+q4a5rXr0UY(i4owol`7&xOO9@j3Ij($oHv
z78CW3{9}}YUP40HZ={rKTugl`n#FI0A$>tEZ=@8RIM{;a1va}1xVY<S{n1yKxhz|)
zhzaW}A$}G7kGw=JI2hwRLsh8ZLA%AT7WwmSt9Y>}_3!dW>?==fKuAS}>do<aU@aDw
zVwjthquG0&pSLrpm{WmXT)xAzf5HlQjSVx*C-3%xfYg`LsEU!do;AiCdFC-({!MRB
z#>%e>>~D?XC#$GHYV^JhRON(f?Dx)yS0<j}Wj!dWI5@YfXk1AYfnn1WJm<DW952nC
zFDKWx_W}b=m&f>Lkrfr2RR8s<ZyMg0o>$;hq`A`0Q8lf6nN;)*6LZd;30Dq4AUsd6
zVy9XrG(b}xN3oSu%Jor`0xgoFHu^vHB@Q~k4(k6;&4uNlI4>&@483H!9x;U_lZ{wd
zg1b+-c>Ys<7^G#q6PYa-5;*hPm&7DVkO#2}M^bosGUj2j_aAR0Hz}QfbOIbU_9ij`
zP`jhU!vi(N7ZFW?<iFps9^})p+PTfgi%Kbs-7Yn9rGW7j2$tb-J@(`IE+66|jX%TC
zgSKby&Ezg@x9=vySHqq%e9-F+;wtsTe5HfHSuHJ&Dt+i|c~j<s(Z_-em5p7RMuAxI
zlJ-WiBI}FbcCfMU)D`7E9D_-a9i~$m)|<<&Kb$rwK`=*>e~EO>+vawT2Bj!;K`@r}
z{B&eS^)dMO9}5hH>-H?0dy6xX5>{kv$5bidgq2yWbQ{%NbYF+L$SL1<Io+1EF{3J}
zOb&$y8&c0tx@hKFuozvw64nY4{ctfhcGzTa=VjBeB*G3+NWO>{-nTOTQK#DrT-Re&
ziEp6^@!m)z>yjrO0~!Lbdo+wzvI6OFQ))ggfuw8fVql&+1rJhHTNGNIj6&9PP+(`{
zCsHr!O52WarS%qm6`$3u(Kh!rM1Oo1Hr2Qu6HMQN>QYDtTXMSPaZG2zZN8u?6{4!h
zp7(Uw1X=$5nt`G16^ic)^dy9p2zP<k?gwVRAsxJ=1xO_BGTuDx1o%lF=$Vgrt|4L(
zdmB@^iQlbb^i(TAw-m@MD4G|gllheU$8c;>Gd=hQgaax=I}`Wr7%dxT)X_pg)U8bY
z{H$-2LL$?*W@MNscUgpcku0n<)ItotyuP#0R$}5wGzk;IAOS`6J{Q5xMU9as*Tj@A
zYf#syv!X`~B+jonoc#O{!46)F^6nsIdaLO3i48McJWg3Db{&FJ<#gxwp{&PW7k~Ht
zGeW2oEK1!yv+>CV9z<K7R+Y*5m#bJ8#rpc9uxBSnC6+Xm!@|<0zQv>kEQ}48bQQkM
z$$J239Lzl01%|EhOm^{DPY7;z`accBZ5R<A<Z4g2NUc^HP59#x+B4r!to8R#Wi&$V
zzXHWzi2fT$GzwuXCR8rW@iMP-2)2YBL<>vW5On>}13wr-b5I}V=x*EUleuGjug(~;
zL8tEmcdfuW=h7xf-)?W#r(Qhld%>lp4x5~r)(RImSrEM7)!`%9cr!z~X!t}E;clN;
zN>$_W6*ZI%G;^$}qoO5C+49#?rTun`+LwvolCb9R_sIunZHghTyOGyaMy4m_84wo)
zKX9)@g?g!-?jS`4=EN76Ky3*9Og;4CEqT2`3w&jnG+;g%o%jYSWS=%`jb8=78U&9u
zO#hlt^B3MkE=mbg14$ye6BEEQ0$tT(rsfXd4zWqh^Y^r?f^~b^ycou#w|qNi!Mzjz
z2C(0u&UU%@+WGoB)|wX2bKz|dGLXek&Q|+Mt>2Qw@69z0v5(}S_Y{anKl{s==dEq3
z>yKpQYSpBufW68^R0sr%6&whtjI1t$Gp$;f#}XoF?Q$`WMW0|Z>J8c}OT$i)f1ADE
zcc7{qX-VwWl$SACSndt!6)?PRoD~Y$Baj-tD(JDeNjT2az8_`jC%uf4(_F*s*rwlJ
zbE{41GrH|VS*n`I_4dX#`_{JvTQnQG2pduyuHRm!e3!~C#(i#<gW8TI?0gtS)Ow={
z-*~g^T7vH0<+>063o>EQU-ePV!4MWv_L(g*0=zi+c&fhs)BIZk`)gVMr(tTn%D=hh
z-&f~~2#o(X3jXg_Z15ElDY@;VfHStqbNwpX@m9#iB6R<Sxvyei{rJsWdl`B~_kZ>B
MGRo4`QYOLw3+k8|r~m)}

diff --git a/doc/user/project/import/manifest.md b/doc/user/project/import/manifest.md
index 136ba310da1..5ec64225098 100644
--- a/doc/user/project/import/manifest.md
+++ b/doc/user/project/import/manifest.md
@@ -10,7 +10,7 @@ You can do it by following next steps:
 1. Click on the **Manifest file** button
 1. Provide GitLab with a manifest xml file
 1. Select a group you want to import to (you need to create a group first if you don't have one)
-1. Click **Continue to the next step** 
+1. Click **List available repositories** 
 1. You will be redirected to the import status page with projects list based on manifest file
 1. Check the list and click 'Import all repositories' to start import.
 
diff --git a/spec/features/import/manifest_import_spec.rb b/spec/features/import/manifest_import_spec.rb
index 98431463f65..06d0f2b1857 100644
--- a/spec/features/import/manifest_import_spec.rb
+++ b/spec/features/import/manifest_import_spec.rb
@@ -16,7 +16,7 @@ feature 'Import multiple repositories by uploading a manifest file', :js, :postg
     visit new_import_manifest_path
 
     attach_file('manifest', Rails.root.join('spec/fixtures/aosp_manifest.xml'))
-    click_on 'Continue to the next step'
+    click_on 'List available repositories'
 
     expect(page).to have_button('Import all repositories')
     expect(page).to have_content('https://android-review.googlesource.com/platform/build/blueprint')
@@ -26,7 +26,7 @@ feature 'Import multiple repositories by uploading a manifest file', :js, :postg
     visit new_import_manifest_path
 
     attach_file('manifest', Rails.root.join('spec/fixtures/aosp_manifest.xml'))
-    click_on 'Continue to the next step'
+    click_on 'List available repositories'
 
     page.within(first_row) do
       click_on 'Import'

From e02efff63d2b065f95e4eeac28ba994d245e4505 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Mon, 9 Jul 2018 13:12:37 +0300
Subject: [PATCH 066/113] Improve manifest feature frontend after review

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/views/import/manifest/_form.html.haml     |  4 +-
 app/views/import/manifest/status.html.haml    |  3 --
 .../projects/_import_project_pane.html.haml   | 40 +++++++++++--------
 3 files changed, 26 insertions(+), 21 deletions(-)

diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
index 5fdc97537fe..6c938255e65 100644
--- a/app/views/import/manifest/_form.html.haml
+++ b/app/views/import/manifest/_form.html.haml
@@ -18,5 +18,5 @@
       = _('Choose the top-level group for your repository imports.')
 
   .append-bottom-10
-    = submit_tag 'List available repositories', class: 'btn btn-success'
-    = link_to 'Cancel', new_project_path, class: 'btn btn-cancel'
+    = submit_tag _('List available repositories'), class: 'btn btn-success'
+    = link_to _('Cancel'), new_project_path, class: 'btn btn-cancel'
diff --git a/app/views/import/manifest/status.html.haml b/app/views/import/manifest/status.html.haml
index 653dc249182..c8065d90103 100644
--- a/app/views/import/manifest/status.html.haml
+++ b/app/views/import/manifest/status.html.haml
@@ -12,9 +12,6 @@
 
 .table-responsive
   %table.table.import-jobs
-    %colgroup.import-jobs-from-col
-    %colgroup.import-jobs-to-col
-    %colgroup.import-jobs-status-col
     %thead
       %tr
         %th= _('Repository URL')
diff --git a/app/views/projects/_import_project_pane.html.haml b/app/views/projects/_import_project_pane.html.haml
index cfbaebec876..3da6db08580 100644
--- a/app/views/projects/_import_project_pane.html.haml
+++ b/app/views/projects/_import_project_pane.html.haml
@@ -9,41 +9,49 @@
         .import_gitlab_project.has-tooltip{ data: { container: 'body' } }
           = link_to new_import_gitlab_project_path, class: 'btn btn_import_gitlab_project project-submit' do
             = icon('gitlab', text: 'GitLab export')
-      %div
-        - if github_import_enabled?
+
+      - if github_import_enabled?
+        %div
           = link_to new_import_github_path, class: 'btn js-import-github' do
             = icon('github', text: 'GitHub')
-      %div
-        - if bitbucket_import_enabled?
+
+      - if bitbucket_import_enabled?
+        %div
           = link_to status_import_bitbucket_path, class: "btn import_bitbucket #{'how_to_import_link' unless bitbucket_import_configured?}" do
             = icon('bitbucket', text: 'Bitbucket')
           - unless bitbucket_import_configured?
             = render 'bitbucket_import_modal'
-      %div
-        - if gitlab_import_enabled?
+
+      - if gitlab_import_enabled?
+        %div
           = link_to status_import_gitlab_path, class: "btn import_gitlab #{'how_to_import_link' unless gitlab_import_configured?}" do
             = icon('gitlab', text: 'GitLab.com')
           - unless gitlab_import_configured?
             = render 'gitlab_import_modal'
-      %div
-        - if google_code_import_enabled?
+
+      - if google_code_import_enabled?
+        %div
           = link_to new_import_google_code_path, class: 'btn import_google_code' do
             = icon('google', text: 'Google Code')
-      %div
-        - if fogbugz_import_enabled?
+
+      - if fogbugz_import_enabled?
+        %div
           = link_to new_import_fogbugz_path, class: 'btn import_fogbugz' do
             = icon('bug', text: 'Fogbugz')
-      %div
-        - if gitea_import_enabled?
+
+      - if gitea_import_enabled?
+        %div
           = link_to new_import_gitea_path, class: 'btn import_gitea' do
             = custom_icon('go_logo')
             Gitea
-      %div
-        - if git_import_enabled?
+
+      - if git_import_enabled?
+        %div
           %button.btn.js-toggle-button.js-import-git-toggle-button{ type: "button", data: { toggle_open_class: 'active' } }
             = icon('git', text: 'Repo by URL')
-      %div
-        - if manifest_import_enabled?
+
+      - if manifest_import_enabled?
+        %div
           = link_to new_import_manifest_path, class: 'btn import_manifest' do
             = icon('file-text-o', text: 'Manifest file')
 

From 6743147b7d9f310fbf5afa520e19ae495fd4df33 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Mon, 9 Jul 2018 14:59:07 +0300
Subject: [PATCH 067/113] Improve manifest feature after backend review

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/controllers/application_controller.rb     |   2 +-
 app/controllers/import/manifest_controller.rb |   8 +++----
 app/views/import/_githubish_status.html.haml  |  20 +++++-------------
 app/views/import/_project_status.html.haml    |  11 ++++++++++
 app/views/import/manifest/_form.html.haml     |  15 +++++++------
 app/views/import/manifest/status.html.haml    |  19 ++++-------------
 .../project/import/img/manifest_upload.png    | Bin 11940 -> 12079 bytes
 doc/user/project/import/manifest.md           |   8 +++++--
 lib/gitlab/manifest_import/manifest.rb        |  11 +++++-----
 lib/gitlab/manifest_import/project_creator.rb |   3 +--
 spec/features/import/manifest_import_spec.rb  |  11 +++++++++-
 .../gitlab/manifest_import/manifest_spec.rb   |   2 +-
 12 files changed, 57 insertions(+), 53 deletions(-)
 create mode 100644 app/views/import/_project_status.html.haml

diff --git a/app/controllers/application_controller.rb b/app/controllers/application_controller.rb
index 07089ada51d..f45fcd4d900 100644
--- a/app/controllers/application_controller.rb
+++ b/app/controllers/application_controller.rb
@@ -358,7 +358,7 @@ class ApplicationController < ActionController::Base
   end
 
   def manifest_import_enabled?
-    Gitlab::CurrentSettings.import_sources.include?('manifest')
+    Group.supports_nested_groups? && Gitlab::CurrentSettings.import_sources.include?('manifest')
   end
 
   # U2F (universal 2nd factor) devices need a unique identifier for the application
diff --git a/app/controllers/import/manifest_controller.rb b/app/controllers/import/manifest_controller.rb
index 42e661325cf..e5a719fa0df 100644
--- a/app/controllers/import/manifest_controller.rb
+++ b/app/controllers/import/manifest_controller.rb
@@ -27,8 +27,8 @@ class Import::ManifestController < Import::BaseController
     manifest = Gitlab::ManifestImport::Manifest.new(params[:manifest].tempfile)
 
     if manifest.valid?
-      session[:repositories] = manifest.projects
-      session[:group_id] = group.id
+      session[:manifest_import_repositories] = manifest.projects
+      session[:manifest_import_group_id] = group.id
 
       redirect_to status_import_manifest_path
     else
@@ -65,11 +65,11 @@ class Import::ManifestController < Import::BaseController
   end
 
   def group
-    @group ||= Group.find_by(id: session[:group_id])
+    @group ||= Group.find_by(id: session[:manifest_import_group_id])
   end
 
   def repositories
-    @repositories ||= session[:repositories]
+    @repositories ||= session[:manifest_import_repositories]
   end
 
   def find_jobs
diff --git a/app/views/import/_githubish_status.html.haml b/app/views/import/_githubish_status.html.haml
index 5e7be5cd37b..0f641352e99 100644
--- a/app/views/import/_githubish_status.html.haml
+++ b/app/views/import/_githubish_status.html.haml
@@ -21,23 +21,13 @@
         %th= _('Status')
     %tbody
       - @already_added_projects.each do |project|
-        %tr{ id: "project_#{project.id}", class: "#{project_status_css_class(project.import_status)}" }
+        %tr{ id: "project_#{project.id}", class: project_status_css_class(project.import_status) }
           %td
             = provider_project_link(provider, project.import_source)
           %td
             = link_to project.full_path, [project.namespace.becomes(Namespace), project]
           %td.job-status
-            - if project.import_status == 'finished'
-              %span
-                %i.fa.fa-check
-                = _('Done')
-            - elsif project.import_status == 'started'
-              %i.fa.fa-spinner.fa-spin
-              = _('Started')
-            - elsif project.import_status == 'failed'
-              = _('Failed')
-            - else
-              = project.human_import_status_name
+            = render 'import/project_status', project: project
 
       - @repos.each do |repo|
         %tr{ id: "repo_#{repo.id}", data: { qa: { repo_path: repo.full_name } } }
@@ -61,6 +51,6 @@
               = has_ci_cd_only_params? ? _('Connect') : _('Import')
               = icon("spinner spin", class: "loading-icon")
 
-.js-importer-status{ data: { jobs_import_path: "#{url_for([:jobs, :import, provider])}",
-                             import_path: "#{url_for([:import, provider])}",
-                             ci_cd_only: "#{has_ci_cd_only_params?}" } }
+.js-importer-status{ data: { jobs_import_path: url_for([:jobs, :import, provider]),
+                             import_path: url_for([:import, provider]),
+                             ci_cd_only: has_ci_cd_only_params? } }
diff --git a/app/views/import/_project_status.html.haml b/app/views/import/_project_status.html.haml
new file mode 100644
index 00000000000..280bcbc1e63
--- /dev/null
+++ b/app/views/import/_project_status.html.haml
@@ -0,0 +1,11 @@
+- case project.import_status
+- when 'finished'
+  = icon('check')
+  = _('Done')
+- when 'started'
+  = icon("spinner spin")
+  = _('Started')
+- when 'failed'
+  = _('Failed')
+- else
+  = project.human_import_status_name
diff --git a/app/views/import/manifest/_form.html.haml b/app/views/import/manifest/_form.html.haml
index 6c938255e65..763beb5958f 100644
--- a/app/views/import/manifest/_form.html.haml
+++ b/app/views/import/manifest/_form.html.haml
@@ -1,11 +1,4 @@
 = form_tag upload_import_manifest_path, multipart: true do
-  .form-group
-    = label_tag :manifest, class: 'label-light' do
-      = _('Manifest')
-    = file_field_tag :manifest, class: 'form-control-file', required: true
-    .form-text.text-muted
-      = _('Import multiple repositories by uploading a manifest file.')
-
   .form-group
     = label_tag :group_id, nil, class: 'label-light' do
       = _('Group')
@@ -17,6 +10,14 @@
     .form-text.text-muted
       = _('Choose the top-level group for your repository imports.')
 
+  .form-group
+    = label_tag :manifest, class: 'label-light' do
+      = _('Manifest')
+    = file_field_tag :manifest, class: 'form-control-file', required: true
+    .form-text.text-muted
+      = _('Import multiple repositories by uploading a manifest file.')
+      = link_to icon('question-circle'), help_page_path('user/project/import/manifest')
+
   .append-bottom-10
     = submit_tag _('List available repositories'), class: 'btn btn-success'
     = link_to _('Cancel'), new_project_path, class: 'btn btn-cancel'
diff --git a/app/views/import/manifest/status.html.haml b/app/views/import/manifest/status.html.haml
index c8065d90103..5b2e1005398 100644
--- a/app/views/import/manifest/status.html.haml
+++ b/app/views/import/manifest/status.html.haml
@@ -19,23 +19,13 @@
         %th= _('Status')
     %tbody
       - @already_added_projects.each do |project|
-        %tr{ id: "project_#{project.id}", class: "#{project_status_css_class(project.import_status)}" }
+        %tr{ id: "project_#{project.id}", class: project_status_css_class(project.import_status) }
           %td
             = project.import_url
           %td
             = link_to_project project
           %td.job-status
-            - if project.import_status == 'finished'
-              %span
-                = icon('check')
-                = _('Done')
-            - elsif project.import_status == 'started'
-              = icon("spinner spin")
-              = _('Started')
-            - elsif project.import_status == 'failed'
-              = _('Failed')
-            - else
-              = project.human_import_status_name
+            = render 'import/project_status', project: project
 
       - @pending_repositories.each do |repository|
         %tr{ id: "repo_#{repository[:id]}" }
@@ -48,6 +38,5 @@
               = _('Import')
               = icon("spinner spin", class: "loading-icon")
 
-.js-importer-status{ data: { jobs_import_path: "#{url_for([:jobs, :import, provider])}",
-                             import_path: "#{url_for([:import, provider])}",
-                             ci_cd_only: "#{has_ci_cd_only_params?}" } }
+.js-importer-status{ data: { jobs_import_path: url_for([:jobs, :import, provider]),
+                             import_path: url_for([:import, provider]) } }
diff --git a/doc/user/project/import/img/manifest_upload.png b/doc/user/project/import/img/manifest_upload.png
index 1925c3349ed448dbf6c4353f2c6752bc9d95fb52..d6bf4b157dd2a67549531efdfc7c76360d6db727 100644
GIT binary patch
literal 12079
zcmajFbx>Tvvo^dq!4n7&EWsTDB#RT=-5r9<;_mJiSlr#+-Gaj+K^G0~?z&%o_g1}i
z-~0aYbxob>(=%sI_j9_RnmRKPit-YeXhdiL002`;QdAiLKmY;&aI&Zf|12ym(AR$k
zfTFCb7z_q`dwqkw?G6tOAKpE~U=J%pO}&3MVYj<5*yZw{;k&o{yW_3<f8(C!V_ZEQ
z?d?6n3RZ4jZs#&{W^bqa>l^JUSy)(JAJ%*r=^5!k^Z$lEPLfciUcq1>7G?&O($SR@
z78c#5!*OVy0?Sw7sasfkM?36lJhp0VcX!v?z2g4iDRcIz#(<X5v1Px<_h55z>*VhF
zZ(T&&jv5maFk=b!wkjCZzh0^VgFQd36gs$gLmLvjLt{WLSx;Nt4lW_}v!}5E{>#rW
zkV{nW?z3;rstdUK;NY;PscG=yZM7pyS&W8J%1lyBJEf-GTZ~dYtZn-h))Jx`ph<hR
zT$kFmB4rw*;GWl-<U=p-Ke4@>V<04~o7Y~GA<V*3G`x4aIq9n<UE#_*ywzC@eVQrp
z^~!FBE<>wAz4iz5tA-c%prcO3i=`FCW)&L@M)AEJ758(+UafoO>QpLDe)m^%`YcQh
zTQ4~pG$ZE+(TO$r-l||<1MR%!)by;F!m{|^C$Q@|+qjN@AHXtsB-72y+r|6sWPrh_
zf`Q)e5C(&!t28HAoL`(@U)?BWE<N1eCqr(igbVF*rsgYyHX58kLD^I1uX(K#Yo#W|
z{$AJj&oi^L{`tQlH3<(-FzbMZfjmFherHY3&?%%SH^3`BJ`nbJ-;y1^(ipC-r<*Z#
zP7yLxAWhAi2ss{zmrk1((Q>wy;6MD+q$4go7|wCE(zUU%k<3ML|8Ph_O;153KtZV?
zDw!G)oA_|mFDfQx99NZFS~b6WvwgK*U6fpy7-H=o0cptxxp=#{c!OO0AC{^>E+H$|
z`zfK`*6wx07A=bZa`8W+UivRTrAh%TS^xk$K*ryp{}&lpjv!8wDoc&1RF$Y)&1s>d
zXg0)deRpxq7i(m=_Gth3Vo0`Jm9WxRW_qZ5){U?tNvB#h;qZKIGcmPO$)!>izoA%d
z<!?>DB5r%T+sf?vURmDRWAm6o<>hn9<_M_IGZ$K+IGB_ebm0I1Fdj*X3aProovcNO
z;4ZGiF73Y1=OdR0KGuKwiiCIeQ^|I<MWzg0Q&9`gA#V%&o>Zp)TxgX5=UrcN6kn^W
zlL2~Fq0X5vtb9LnR8++3K;P)uqs@dplY7>5JzGkV{J-P;zpvqv#ibS;uOFCd265!V
zWAjp?vIzO5VpB<sF}V@H{27#+`F48ij+T&1{fDm3ZXixg;zPydD1DjbH)$S)CTes0
z;_oK)mI1#{?8e?}LAeXC^XlYM$rJ$F)}hH6oDO3-AUx4&i$m=<O(>pyUQ%iJspYrj
z2`$wLKdjR^wv0sXPfoY*uLH4Fc!z*~aQm|l@RAxb<AEXEQTPg4MmjuV&ob`@yVRr|
zk55fSpRk&~Fqep>H|Hn5s3)h1n;Ns0EWsy1%H3M?gOk;(^?zGeFwKugk?OWBv^R#H
zQj0cS{nT^B)Tm6kK8U-VAHM~?AW(UP7q#0WEZVIOWNh#5B_ls~i0TmU#^W_v4mQuh
zN~R>Y(SOO|D)skgo-Q9*9xg}55I0^qGt=s=)HyA#s5uT#Vroy?GP|kQHJhI&`s|pe
zcW>ZjVt&pw+M8=M5^%SWvpW2_w`ko8bu?-2T;CYCaZpd3ueFvJ_i<)~!K|tuav1VU
zfsYmf>^i34v(JK}S2)~yuS$FE1*_G8e0zo(?HteUm^oaBJCTbUsvHy<mq_ftBElL~
zN?LN_Z#(tGk{iZnr*^4cs3Fe!GOD~rB^ld|-rBicUg`2Gy*KQ$Q6QdjURGxp{l*fl
z_O)aduSxi`JZFixUCFr0vWUosfkN#wDL3bdtJYnJ7H^sHd;v*bJsUDk8EG=Smo~_{
z*d|uRCVBR!E$f!Pw43XIscyUAQ#4?k@inv9l9y%r?mj}`0i0wsbq0od=h8>`IEFb;
z5_Aa7zAY=j%?t-Nl<khwpCa5f?#NAm6m)tc@b>2#lrpp`Z#3IeJ*t=|q4EhtI3q)Z
zI3qN(<-VD!Q0L^aPS5%!F-MIkzQCJLa6>85!b(sorZ&NAn1(61ws1_ezsGnlS3ul0
zlV2>9@tNO5k>I9KeUc?*5eDdy(c2g;R(PwGbp?+$w8VIsV&y>z5yZ`LOKO1JsuTP^
znXJd7Hz;nJ0&wBsAX$ct>*e_~>vS12C;f3!-J+xl(x}EOZWYHGS|(k5mrLYFmvaKV
z%$TNdbg3ztd(2_CdhRI{&h?!=?6$Ax6r5s3OROv52ZbE=;ACSA!lW2E1DjS~PfXfu
zyHZ$bOve0sDh?h(5x_QsyfuYshi4nCuGsQe(##lyL}qJsE^+#&vE`XQ*a2)N_f{CZ
zBey(C)a+-az?fV`W!_jpH%D`7Ybapa05adZuWHOX<$l`tc!6RR7JovB1|_gpSxJ8v
z67nIw7RZkyozSQ{LVfKDmH|e70c?F!y6h*(e<b_kArIb6&OP7HOR00OM&S=8#gS&_
zYYB{v)&!t8s;EbzCR1u^{QbzbAs4@u97aL(f0M%hyxR#u0NivS{ZG^XquXDBNeRL&
ztf6m~-<o?%ms=LzpJu&fZ7Q`G#L@a|tYvk$oyXfguSpYhMbk&MrId!JozISIt}fCG
ze*XCE-!RUM{XiZfY1niwp#+w|_xG3}RZmFZNX0!YBCG4lG>WVBxo!OFv@|P8KsY~$
zQo)3@Do;Mi`+)e$^|bRI$<RMdFTj){zF*~IaMo{qBK9#8(3|(a9+Y1Y<0je0r-n59
zmA;q4V7j);GYOlC<MD_{#>JGg1(M9FtS`&2iEa78g;PYk>eUd(_}%w1<&tR8?J8{x
z<>t8G^wS#3{)i2VxY+TTKDX0(7{0PAPi=sVtD`iadK~hsC0s650U7XM2|__&S&`@<
z6ZO;aOp82^)}od)`cgJ{a7^U8zU3XOf>nw)Ii=}%r-iTK9N%Q)ArvttWv(#7vHeSy
zTEPC1Y@JlVrX$*}zTs6k{7CT@=^Mw)R}CI6rTOdb=WC2?8HZ1fLaA+XAE_FoGQQS@
z^14o@&-7-PH#It1rB~+v_O8&@zvlp_-h2O~9wnqUhuqWvS%<)dH1iE*Ij%8jHG55L
z`xX1pV>4SL0l~ObUNfJ)#I*8t27yQ*3QZiHKM1X5yhw-z;d7BaMf^Tbys73{yv74u
zLP}SB%%yUX!s}SgmUJVPgU^IZ`>v8xVQ6RbI}_Y*zN$bL<$0|`5x=DJl~TOP%*4WE
z5@|&?%u?5pRK9*d{h@_JZACaMb%jiNGa0E-*>8rL3mS?h4z3IjkYu8Sw1T6J6_%HF
zDk%Dr99oE6j4oRPKe`nwg`{gSFY$fWe=IV3loHLqy%*eC9h$L^sPAU7Ve^akmN9cn
zxIVsWRgFPUv?9Cy+ikxl6fv%3`Y<r3!Z;eFDvL6QH$vn1v#E~E%*-p+_no<e`41)K
zRFLonR(Dg2Tov9m*LQDVz@@S2?=I20sTWR5wI_Z(-!H_*SEvY@HXx;`)crr#Af}Gr
zHNe3MYe=%#1WOxLWs`FJSaEoR3?D0m#^NOvT9_QI%JHL^g4?^+6mw-90ZIs#AQA-5
z4X^I_Ikkqr&SfBa0_C>{!yK}7LbVouHc+vd_Y{bi16AJ%K_@us-w`Q{jrKZ|L+Q#t
zeysgdt&kV{PL@mya9*fo+5Z+-nV3njQumJunh18~U(5W=>n@4j0P#d$vdSqU+eiLj
zHY_jZiqj313Y^tyH#>MuyHmTjQ&DEn+~W7;VZh7<EQP;Uv=qe9OS03%nE>#oT!?0w
zTb_B+!beP$bjbT-u@!nOojQWT5MI_(^+9RAs}F4T@8AGE_CUbj%V|dR|EJjhkAY?%
zLIHSqZ<VEA)8hN-RT1#(?``$Q#=&j-K^UBWDc-pw#nIJziCEGwG4HI!{IA9C*iv^3
z?ldx}Uh>gx7*WIGJs1uU*`>nzYmQ%1OTUKmyG`$L*YT}DG167oYLbQJt>@{<DHHV%
z0M`km@y|kieLepIoLyd8LY6^$X{w40fxA~YvI$V4^YmNZ{E939ClOMsYt8~i?(7oX
zCrzm|;l3(576Te2Rm2SMpa4FXuhi(A#odCgcAX|wq3$9LN>k1NoaYJN#qu8NTq1I5
z*D+}`u5M}GlPsBJn<qJKjzQaNvM&JlOJwIk?vi_%lpn-IcfL(ao6LnqHTPXaHDlr%
z59K-C2!Nck6BSNNJTD~yJ!{Hk7B8zgyFamY_Z1)D{l9>(+ebyG)~<B#f3!;_Kohn3
z)ZzV=<l`=rzB5gAkC6i&l=PoR#A^ip548WS;H-HVh_;_~YRGc-o$I(|>xi~?+TwO8
z%dYjD+xFr;&WH2OR@@sT{dGG<e}8#(kQ4->Ag&hz`h$L9ejzqN7(s@9Ar=IVApgRw
zhcgKReYt9QJh^peD^}A8N%eMJu67e6l$l~CR{Bf|HaCJwG~C2+ju{2BKPp1M<&DIp
z#&E=BL9!~oE!&=kVnTblOlD143EHiXg9)KcvcZHNUv<I}pT#BOP$>h>n}Qz?t{=4*
zYMm8^lz&fz1PObe8Sd?}7g(8{MRQJmQwP>%bYqDcrC-W@oQcjG(`Bp=a2TN(&!)kP
zYq!uLx)KYwBTf${JhO0!O^a#J^VXR5)`C(SSxXP+67GF)2+J58X_z#noIm*x=blsQ
zf=6Ud#G3&DvQs@c&MEAE6ZjV+_uk+3hh(D3<`izO4uLoMHS#8j@UA1<a>;5$N_vPV
zaFIk;Dc|<QYAKtSj>f>G`uN^lWpU`vZSb0$*=B-s%lh_FJb!zzT$g;i!^Bp~gASef
zfUt5GS9oNZPby_X*raIa*xb_+I2x0(;+=H-0zL6Ps+cGe$eGf(4|o~{ZkJBow=hIn
z^Q~(_4Z89n_a@7(Ip@*;u&YUh0L*LFd+#NhxfWAwIw5|H9Oi5_-H^1scys8kFx47C
zerie?2)Xr45tBAjyPDN{dp8?ipnEXQQXOhyuLmX4$0yv9syA5g4`F`te#cazSjT-n
zuIQ;&o^|=|&T(ELZ+}F@r_b^5KMrz)dLNf?K6$DE(RcQg49*t{y0^UqQhw;gdTF<L
z2H7<*`;6SLZ&Uyu7wkS=sZ|Rc$%q0ktgC@g79Ua^3C}rJSOf!An=aoLje|{yR-;Mg
zFR$WsQy}xF`;gAIBYWCW(>|3hb=j9NU5b<4Co2w(@N3NbY;4OUHc-svREvvrL_3N}
zbIIt|*&(B@M^2Z4Dfn?JkqqXO%`-dRAoZD{QCW3+Pl`R`okk_z%0nu?YH|GAtpAkQ
z&B$V+z_&&B+iS_QwClz!Up+>CDi3vvj2{-jqbErFw*yNxDA(DcbpS}vM#@S}kuh*=
z$V2!bq={&}e<Zo3k=(22a#<X!?cRF?SgrYfJ7?-E$CCkO%ESh6=efbd#ANn$VnjTP
zUKa=vox5!s3%z@L&fMb_d6&dp2ur-ZMauuwy?&FYp9C?6={H?g9L2`o;dta1bi~JC
zK_^t8rOZW)PKw^gk~ikF6|TC<G7$-x{V?tYGn4HfTwhHTJ6#(C_K6w@`Qn!5w=C2V
ziqmo3(>%{l@+9mowogotWH)l;a%vne>+**Cpi6T$t9Ds2trQ*c^SW&089&^C*z-vn
zj5#CLnpF1r7Z_v2)d<3T(sI}4loHX6X6@*66%W>JO-v}*!6wESP<jarx1r<fcP)zG
z3T`in?2lMu>u9^AS(&Y=8H2T+oPz6jWgH>n;ytiGc7H-mshzTsO*s^`SU9~SdK`cz
z32O)QU;cya?i(oK#A{-d9>o|Lh0A5ik2LEtJ8<rys8atC4=pL?V2c!Y<stYXmA86z
zCyY6^opI4!6&OIyJo%IwVa<+m`-pW7$2OsHtv~*2T=R3zqY?22ZZ?%Zr$Y>%8?&3Y
z1K2B=M<o@M{q*Kq1X-+H|8Q`nm)$D0Uik6(4Je0gGBge5hmk%#^+#`T5x2XD)gVJ(
z*cuL1dX}faoRXh8?Q51Mp}ShQ1Zl@9@8Wb3o_HXR4i?FBg(NtXjz4NtawhEz^{w&U
zQcrV=?-m`wPo<tV*WM$xB?2J=8$Z`+#mlwMQfY!EFg02BQ&-18tV-ZIfixbK)_Jo*
zm7H^*de90;W_{=SwW%&Ef7#n$1;3QKMBNwU^J9=d396}YGArK$oc-8EWD>Li-g}>*
z>$z&X?a}8$ZnZ0y(RWIAbFLA0BowSH5-njYAaXyJB+SV@bzp3o?U!)YsWp_=Zwgj8
z6JmF-21f*z#l@h2M@9d!Gop#ycl4mQ4}RI6Z|FpL<k1`<qvBl(;;gB3@Z`iM*B-Ld
z%RhDZdjwigQ(|^w+#@aiJw%s{`W%EnV}h^^@3)Q&1^jQq?={GZ?cpKyWy0-NlyH9#
zCiQ1U4`D_BUn}@pmnR7}*l_H}+TtYBO$E2i>cev91z~a=I{#T&)LtUGRx>&4YzHs^
z=_mS6a%Z@V<;nmPI5Y%VBUybR!f+}J`;vxc8(vHV0HPV-3pz6o|J1&-@65W>1}{x}
z)3+1+-b)0G`z)uPb6qEabDtJez88j&>)w^tplkofXYom$D~%MhOEyJRxy`PJ@fZ|B
zBUC;bB+3v>v~3XwK7G-?u>yi@&ey7emsiUDK);q-Q{>MG*xMfN#IJfMZ3^JeTivYY
zY$Jq5>CHbPNHZc5<g~o$&gAjlf7_pq(qxYFt)=%qll+WW#V$Y=cq#P~_h8HzNRCXn
zuE-Dg`^nU1Syq`E>48`@r5v!XX|jq~{VhUW03lY6{mjCN>HT0ypxG1BkH38U3Z^t=
zE|gLI=-<hM(gy5OFDkiHdH9dVPZ1uP^&LZvi1DpRfh9()8tHiWw}+?xA2NR%d9H1l
z^l}(0@v$Azv_b`M#3Qk_HnzE>PFG5Bb6zYVm2pD+t#i4ZmBI&wnlHI#F({p*l}2_h
z4K<<70Kc>McxE38`gW?Qiu`PqpJP7|8qg473#yuH+Qid!liCxq`4i^<eY5v6#9h;F
z{_x2lmaIxg98n_ijZX@yImxA4Vk26{4qLFiP}m^4<_s#145JINl%C2!exB&DRo|-+
zYVcXg^%Q(xO_zUEX5-CGEre@~GE{nX9E+j1@?dR6SkhS|o}{6sL5hNFd@+B;^@TRg
z+ID(uHag?4$+gP*>zN9JbVP|<Iyj=U8uFVWmvFhpc8nodKC;VJJsW6IZWvPY)$5Sy
z`B<CZKdcccB*s;g`9&$H^vdH;cxh|i+!c;m)!n_>@k04{INShE2?|xl^Oi5~hut3R
zZ6}Qh(%uf89?cb$H&^oHZJ>AcJq^ige^?{wB)S21nfr7)LP4@d-vWZzz{+AG4Ubx+
z@~5TT6Wk{<rLnQ;Dk1c#f$MJFd_*NyvX>9`HsJY6#a3JSd=)ZtYbLowBW^Nt|KXuh
z*|}pQl174Qt&nM{x~F~P9hYe|#yb%9^Xme9ank%pP_vx=J1VpHyPx52Q|3kIm7<y@
zHrb6Xz9PEWl~gsfGoCEK_c-sPn`!k7Ml;9Pd8oM<KJV-dDC?E<GLNnm2=pUe(|-K&
z9neySCZFhUeOW7qof__j?RbZm!9YtZ#qey++nPZ)I^7h5f9KduaaigG`u(a^>rBJh
zLZ!O{!Ym?aZ1z5JT*u>Sw$$jeZ~pvWp04Al*{Y>I_CV(?#!95mmWr7+1eY{c7Od2i
zOuuI#r8ofCf;*RnyIGF*n%4X}dy=tvvI>^BX9*mZFXtI*@UWuRn(O+7t`j`FUH7AH
zhMXmq6aR>|^8NVXH}V3sVV6LQipX)>|MHt<C75Kzc}~Fwd{`et6>j5x^uyOql&fVJ
z_+Bvb?7tHCVG%5<Gx36TSM=0lsSNt<K(j6C3T}=m<*|A>WH<WfNspQ6jgNM-F)@P^
zCH=}t#l`j0pcl0d&FFko@A=!`^}?(sOt%Sw9A}WzoIU`!M5QC^y!Xq@>3pyowX`H7
zF%W|{tdaiB9z=Nr*Ti_491^4+snuXaEQPaTua?xZa<RLF>J}3&d(s^9ACHzc-bQ%W
zus8@RNA>SwTsh)BQfwXsNB;|()6cEZy+7D22>Xq}b)Insk%PduwT07oMQgY?%a;rq
z8zjis{Ck&;yXZfDJ|fSCOn)AZ1FeZCJMI(4CP_2u(%a0aS#+Ceq=7S=k_js+pzRHt
znpnOPBtxlp!lBjwsz{o1q$#G9u}tDVy%1Dz)CqF9=IIEcvTu%}9S|*_v`e-$pmAM6
zu1CuQ8x=HOZST5gr*-9xg$NRKcov2a07F<-6nFdCPs7U#_B@0cHT1+ul<<Q>$@zw9
z-WUCFT6Y9d2KMXx(dc<g5p^d18!R2!m0x4^X;GCJNyO=CP5kOx_F!4`XLsR`u3pTO
zDUB?t2Bmd<yzv;^{TIwSKdKh4>U7CUj^3!n7Is9mgXro2$Q9D?<{cO3G-l9Q2Q~9D
z4mO5nZljfv|5S2J*QOnLL0V6ddSTcr8$Tcj>O3iwb-z+slk6+hnDt&w1F}*W!4~#@
z7Qr%u+{o{(eV?SR1tsSEE)v9a!hN~4-g6;uuTOA;*uhV9jA>uEG2P*+QoR$b=6Iv8
z^kRGdTHmLre{@1kAbFE0|A+6T^K(bH|8YpB^s_fF*-w(KMR@Et>?I4a$;WiD!|xSM
z{%%{<-)s$-5++XRVF-s$3K?wAUCYmJzt{D+S{(L%lK3r*@~~9~8CT*F${7|5<s{sx
zR{tguNyU{@#R#I!#6yTQSqs_2FtwK?sNbj6i%Yv#JIHBsTeL@O#VCLEMqVG}H1r$1
z7-Bpy^xlR^P!!nJ7(YlqReK(l@ta@RTR;CrH-XtQbbsStOEK$oF~n^D#fu^O<H05Q
z64Q*Md##7${r``|L)|^U)ZWEi$K~O^Pg|kJVy+Oq+xA5gQx5Z&G(tR^ZCN~@33}f^
zUj?w&q6$RmTpf;bs(*)#Izn}0H~=ys{^c|?It1#Z`7NPCm(y}7I&&fRRe_1DwNcXd
z(V5!J0NiHnpXs(gvMRQ4!p;6t(=p@pz9GUxiA5f`Pc_pc32bW_-wQthT7xMUqDE%W
zx=OTmaJ<>?ArzmSq;K8}-KY+Lr0=D07Qr>rh)@m`iris;cLoSU8Al84_+Ky^-MShN
z{H~bD^@0p3)>P&Z+5Erxx!e2v@_Jz#L=n9cZ>6yB{OwAa;8t)98Ok<u&o|Dg8Ma5!
zJ$V?vr!!ErJvy>~N8nR|$X9gg%f%y@Iqu=aURVBriUPljp#pXNV#G)@Sr%rzin!p8
zMG;n>yM`koGCxy>5o|^}we9zXV^@d*b*w*MC|PtWB)n1`x>J}i%OE3=a09YhY3Os|
zezIzMS?r|CFt47KNQpX0Maw7i+9-x+#Uc#%2lb=)N|D@1D6+gKEHMFVX=;b6@DNj$
zNQ>gDZ>70-@@<892;Z2+gd2$9+DLC?c3*FU<<6v4<FJK9{~s|C{mq<bXCT96<zJc+
z*&N*ea2F!Ntc2sDvWe48+%BGPTTUH~Wi1g)f=pPj&KJbW=oea0*1I06Kzw#wheSG2
zWIavqwZ@BorpA%`A!mOS8OJmMhlfN%+lm3XjO`&|LVdT?YbrLClV4qfBZGi8?>FUJ
zTfzC%Pzp%^HW8C^Unk*pAYIU0!5aPT6080EojU?UIO}Mq2YKc9wy2g$7PC+fwpgry
z0j9qJps~N#&RLMVRHS^237U$5*QU>ffpFh_0<?i2N4WFmwm1OUjq|7b{##wrS!bBK
zYelv-mQytAzK+w7y$dv#ee?UtRks?dy~Uw`bUk)&Oo5M&5H9Oep8Kr%k|C|H6+mvN
zY6PBK(4D0tr{i7hctv`*MzY*%+sH9~L!K<eEYSxw{pXk5xgoXY{Zx<HPb#MFy3C*2
z1d$v#TwIf$YS#VS%$kV6*>VB=L!-sL@{o;+twWA|P|BenUPP{LGNdxOy~zs~#UTBJ
z)yJ=FU^B`ii`ZTs2%RtL@xof(Nl10;!~j~GUNiJi?Vl%o`LCB&5JdywnlM{4i8f=;
zq0h7{1pb)|I(u^b)uhP#^3k{v8FJ-qkIOX-%MIK~L~swvrj{HjQQ3u^bVm5?5g1MI
zqi8#G_sG@5o!zNLErVI03wH@3*ss|)ndvfj2Q63Qt7_DSQPl~W+`vPb09CEOlT5TJ
z?g2ii4~H&sYNfX4pY{s>^!WL$%qBzDrUblv1x>wx0!;;eFm8F?*r&-3b}ed$24LCL
z)o>?V7U~u3!R$ISH7Pr$;e>rMVn21=`<;F4_Z9^sU|J*;Zz<z1mnGs{YBNZgGV`l5
z(8b>?h2JZuise8Ri-haq2pYC3d0m8M(NiHiMdN`yVl@wCa&paT%ETL^zMMNR?-)TY
z8Q69Kc0jq%CumgIh_8#iwvQ6gT+IrO{3T8#1AN|1tL-$o2OO8JbK1cj@LuLY6XCcy
z{+Pdo&B56{uGm@ZDmbeU=8(YQ9fA0Uf6b;R$3PJ~H5v=(`a!;UshG{>b27N{r8?>o
zK<+BH$-U$Q9joE_p{Ls;#Q-0-rTGM%1=FU&A|*YGaWiF4V8Ka;PrXeXr_EmF!T|I{
z??a!d)(5LZbX&Bb9m!JZP|x9UI}tDHEde_xX>o;bEh*|dx;O4V^}Ng(Qf4+2QL>^F
zL#1^|$}*mA>n%b;Rmx@ihN-kSv6j6kPyQX|{tCB8!ge~q_*hVGL*I|(ILQo;Ir#Vu
zmT-VV<Ve4<4ZUgvlg^L1v6=0?E{9Bps$L!RodhlSMx#!|_@*z(oXs2=;aXgC!pP)k
zAv2Ty&jY6IaRsCWa1xF0CIj;{F!>S%^7Xi!H)v-0JDj!_S0nQ6oozWW5I)6Oi1T;j
zioaqwtBB4#J$>!=*?fAUYp18!HYr^ku`{TdmO@y=kH56IS-CF_z!3Rg-169UiMh6<
z@=gNM&~d(Umqc=QkIQ#3TEcjdTVY`I1gmpGVzL2gJy;Oi9Hkpd3E?2Z{V9ejTLnu4
z(-)khHQ}@Z1T|6dzjmh*<iRBi2Uy8wqQD8ViH=rul+~Q7-~;HGm;?cXped>bpr6H5
z8>d@F?D8@*AlVzh(dKk^?_=)R<7u9lZN9k~#hv_wRa;^`ygju^vLp~p!Nj&5Fnch$
z*1<{Cjh6DsW@$m?!o}G;HO%Qf=i0?OIE1?M8M?%|l_H47&RR(xVO1r%KWorQqvzBx
z=jP8p=wS6hAdGz@erStNYDs!ssFvan4k2l%Of(Qwgy&8A#;W$w{i8=i$<Q12OPOn)
zrRWcU`4&9>5kdGWlC9*K_jO2acoehJ89(KB9g!Z_xMnA(M`I44OZ4807ikIE@85ru
zaPVp2PKLvMR{m}nR2s1dH%XuiS}>F993%OCn>gl(Bqa18BssvQu5c!GkN(suD|^g4
zgg5=oCcD_(D4a}NDa|cB$_b!n)XCBKRpguKQ=g!XFhfW30muA2pH}TK{7JOZS8NwY
zbD0x%4{mJ0D>=JGQ!ZY1D306pbl*@;nr*_>`MG)>K3whKfpWAeDo~k49$;K!w=6j2
z<H0(T`)PB}STrT9sL7Xh0UjNc$a=3~`5->acN_MdQuYG{u--hRK%8=M#^GZqJ->b1
zOspJS&@A}?)EGk~OTCvvq~K#jhqLpFv?d>)XE8xZOTe_Y_6641VS2~0XhybV##wai
zpbok7B_Z3y&@ZcjZ`bzyVS|Ub&hHEEbdr>JrXg9zO!rUrM`P~<rU<J`=9fVqu<Rqb
z@Pn^hS67bhtqN1}FQGb~_VQPCA%@w0N6tJ>g7$<gfGDJ*3&BNS<4_*t(SSV~dNcEn
zbidMZ$3b8`e7mgFRl1}FvkFP_+0ida>S;=Z*dnXXtPUbW_Ey@9&9Col_CHliT_ZYh
zXa*Y1o_tD2<s`b_lOX>6b=l$tErs}WDOKTM)CkePd!Hv3;Dh>XuSQ}MVVFHOM^n|*
zcu}V@h>Rs*=5fD0y;wipra$>76`K?8Pit=RBQ8lp%WgK}kKLXHWGt&GxMX{BJumoX
zMo#y&=LxujMW<d8e&ICHAq)0_rhryX?8WMD#s?o(y$UzMANba+gy@$HAo2NbUxo6n
zCFtcliz6UEgGq%U^erk1VWsBIqf4L<<3wUoP6l2{NF6Gxv{srxd7mHlws0y-($3z?
z%oFGr5S$NlK_^-^3yv|!C@7)l--#rqhjwEzeOj<yt2GN;3X{wX6y`0Nuj6aR83Gpm
zEG$j8={6+Ng?ph`R>lrWQwL{2ELE-489x4AQPD=YbjlM%C$L4)^$Pdlb?Tf>g=c>%
z{(C@fRTi|J6lvRTUVBH8_Ik4_Y~;EX8KoO_sE#fT_tyU6xJq|_@f1q^iI`{qjeY2c
zKLs^GGi+~stTh^w&B5tvXMcCh{R>hc%bUY5z8PxvCp#-tl}5%{^-z-{fSyL3<sIJ=
zQ3fhT43NbSv|JZ&;KTuZ(N&S2hu8>c8x=@T#X%TqwAzR2w798c;f0d%AFt&V=u3<^
zP=ArvPt?cm6-LI04DD@~ET!_<xnlVW0BhT%IK)8xUkhF(y3wdK-1`2(ee&~kcT-A>
zy_?Mxq`Znh7&@QN4pd^QCdr9~U<?{*5!_3Cmrs%GiSuTjLU8UvH#|F88p&?R1zHAI
zp%xW)Nj>)&HH<MbPh{Zn_|gM!rubl9Yu@06XiTyGw`L||k>e%55)HWmwZvW6Pet43
zt;Ucohz60K9~b=k1DlQZfSHVa>C#sMOp?A=;?8YPmWPMGlmXFo6cPs@HSzqxKxIt|
zZ5*9qK09n3<LlnE0@9?_LKhy(2{#^~lGRzCR^87ax9VkIqlLfQH=q82hH)Wbh{1^}
za$$~z{UT{GjO<n&W(B^x)!u1uxD!PVB|}YcT3DL+d#0e4SeGU=6(5et(p|pA5C>g^
z?A*3Ih{^?Va^0q2x0=cr*71gNx7r|f*b%M2z<HhxT-b(M+}k^#>KBA@gBXA<F-C4F
zWD_Y9JFg6uqZ$}eM4lKpNeb7UdrdoXBF__n%97w&9|m0tl;^7?|42*{LkBI1NKC&%
z$5&?%nlq!k;^0t)(Qokx*V#ORuxgcyV2}B#Uv$_&uTY-QfcHvumOcL6J9Y1V!<h^5
z)lM_QIdOkk-!PL`>_nC?^uM6_@>yA1=2U6G=sS|}GGNu!Xl%Gn%Ynkve;6+)9XXNN
zmlVV(*CnD`fcK_C8)$P-NdXz<aVE&|L^*v9C;Vy3tup`G?|q$6Ls;On4rAU#mF(oi
zG5_piCIo3bo!ulA+qMhuGmTA-S~9(!F8XoRnXK>`yUcq~6A*arS2wfzYWKb*^Gd*B
z+Zk`RNJ-f&Ny<{+g^@~9=?+7H<T1c+4Jy7ya$#o@P*(?M&=>0BH;GM1?DyloJ*Q^I
zNR?pj(oGo@a?9bQP5QXoY(BC2HjvG~*nh4Ik%%h5f<dSnJCEy8b#6W~iSx>Tw>s6r
zlahV$_tTvfZ{NMYA-$*?K?L?}PI+{Hex+@_jlr)BpQV9BR7{H#!%TBxl_(<n=%U|#
zrq9Utsn`0*)YeWTwY?|rvi|p1`E=l8aIc98YUZp#E5xnIS>ScxmP~$%?dAc$#qsUU
zhg6Ty-S6?q{VDp>ud}Z?zid6={^w4h^xC3|42IBp@y-E#ifd(wo^-F^Bt1=GW<f!-
zu~-!{28h16keTPsSk9}r7awdg8v-&xsE^0|9}VIs0`xmcN4L;XBOHcxFo6kedo^9_
zO~sSXkYwRRK6M#?p_Khn8dRIdLP3{xMfg>TfZ2Hda$4(DJwVAcI*<>Z;tG!rn|1Qb
zSE?&tj1jHbVh>tQ%jG@Stc|v=wzNbgFLaE}7pXJuecp|2!2K}ys+ZHfc@?k*atSMZ
zv`-|!kGw0LJ5Hu$@Qx}EeQAnOHz)s)aVlfvw0W`lqqb~P0K7y5oKLlFa{1O;<ybuW
zxrY75N|x;;eiowgf<G@!C(ih6x11Rw32J7Ih`FMm)I&GKB@HKW41-Ww89OxC2(vw{
zrR#u#c`}0AhQ+0gwxJOHH2ECEAI7+t62fP-me2T)%7n{-N+>vuwVKQCblI=8#YiAT
z^MR4hL2g6D_`q9BM;3LF^-BBtT1z=46EJ#`kCqzS*gM0#p<^Mmth{%dUsX0;^OSY%
zD*VmsL}!=T_Zc}<rY*_kDaOw}5YtCM;!e;cH%?+a);}BV%Tqk8A99>Df&K59ht@OU
ztM$!L>?*43Mt7TRC2p}oarDr>a41vhNX#Rb<W5!WC`p(i_3gASWN9#imK77=6bZCx
z{Cx&H=cl3r!zp$n;`$sl$Afd7a7Sck5V>`U)Ut$C+xetzhtSLte)dlm>W(-5($5D%
zaZ4pZg{wcWPx`omT@6!T-!{`m$o(Rh@st`fd@d%Z7wi6Jj~v=TF&CFEI*}0fD;heh
zm>u&Ltiac;S6`|Li>B+AU%yZ8&(zk@*DScZ=+=bt=}pSn#MfE|Z4D0gi=U7!KV{N`
zTsCW&ln-3VmD&p?XEqFWss`%P>0d0#yF@*lJzQMWjVO1qG6XQs&rrIJ5Z>lk5pj7x
zn|_9ySyWhy#?e5z8)^=cGbcHmsGQ$T9)o5{s11$;g=_B>2`}tB)o#jYZ73b6r?e=M
zgRUf>y<0#aCZn&1*K*c+vm!4_nZ5oRxb1r3(&!bpwC01kIUk`is`xtUV444f?lha%
z*KmB!>i1#E8-?T(5tpr<$nO(yhnqnR$ubtO^SdXyrfaPw0teJ#&?2P3!=?^Tf(O^W
zwoD{rq#O(A1W)WptM;^H@rlShy?AjbG&(<5@1SmpD`Ko*c6x_gZj2f@3@yRuSiEHP
zGCoo0H#<P;%{em0{X|UM;Y3?U3L>kHXh_)TD`vs6hDV>3Sy*U&J0NG4zl-e^KcQm0
zBe#jY{*yj4EKX%n^-*rR*U<vi+qvUc3}z8G#lp;Raf)Q8G6N+;UHre??w)J<>c19$
zl1(hAYRCbY-etW*vcGLn!Dl&4`3p}>ohFMlsqJQMUj@jDN(NuGHWCFI{er`EyottB
zMJGPSAO344+}R)CRtWHmDJ`Y>_Vbu$X`;ds?R_^<)4JKeV`M*7PlVw!<TXFB$ui*e
zvY-E)m1ztNY2qUKm(XrYe^Fc=U?Jltk^9?D3a8R_0Tn>t`V^Kg>>ED?7rQe{8{@66
zyZiXL%>tWsW0P$e;JD3>QM@v|jO(u)2?wIK++>QXp|Fkf95VlxuRQMzX)05Mg`@>%
zjcC&pa_@Un|6JbU*o9=Q1OAp>xP&3MpeG6Qu%-!W;Pu1rGv-%@H{!Yo_v<@F#3T+N
z(-IywN2aJm`v^D-JaqQbxRCX=e2U6MoJ@G#!m~Y#vDwaO{L_Wv4B_4mGqRvh!EN|{
zHj?JdBkv|6tWu_S{&A7C)aB$=8(ZuMbJQtz?ITe6192g3wStJnAFHSI%wS``4>^u|
z4`%EiMSRETZ$)dNb=!W=NH?$XTR%?M@;(B-qKfpH!HSMA;`z>8A3jhJlVEX?2m<Rj
zMS=Bj(0^NV|J~fP<RQn-BBXN|E(1)ea1DwTyO{rz&;RLv5#|k7Oc}pL`u(RvN=#m~
JTG%k~{{u(a%rXD~

literal 11940
zcmajF1yCGK^e?)Q1QOhxKycRtf=kc^7FbvoCqaTc1oz+;f_sp~7I)X6A;{wH?!k2*
z->Y})e_z$D_fA#MOm+9n`SqEjGaar5lE=oNzyJUM*oq1=U;y9+3;;k;e*NOP=Oz0-
z>2n7_O<7YG`Akn+EiKLaHxEeUJ)*O$XL{rIa=pK=ABjAjAMN^gdwaPxb^Sc;ZZg)>
z!@<G9H8gYj5_vh1o;7iYMBY?e({pigWlvrr?-#u}SUK42p2wJle*HrtZMZmD)Qh@S
zF1a`jr*{XYvsJiwq(?81>qpmK4i1sk^IKb6)^5euH+RKG%=F&v+ikx0s}=q&I}i>I
z>9iS%=z&F;*6n<rqpSB^P3-AXpN(rs72+t)Gvr~d(Z)4)X!pS<e`uj8!}({`;yv<Y
zf48cp^6BxZ(ukRx8`^*N1eRrDQ*c(2(oHO>@sMRy^DWtYL^cKhJ<1owHBEHF8$6(V
z=L<D?eOr<G%uLeyijctN%LgULwAu{UcN#%+^K+SIQli@F?LRcztFxrJxZ;}DV6%6K
z0^f*|_L2F$KRXNUhe+@2#<CEvy@A}){u$?j8MBh*Vl9TJy>35au$rUykMg1G^GQQ4
zj=Igqny$X0P@~{@_%AQ8Zq9sGW@c=5QC#<d_4oSwXK^L;WVm^Gx_YzQ!8zCh4v@&J
zi|hVOV~x}?wT#&-<ju`Y>CN@^>FHVgpL2HoD!c5F>9T;88t3LD|AL10r6N=0>5Pqg
zT7kdU_2t9P%FM(BBDWZxHumq~?Dx$bvhjyyb|b>IcJmlf)|cyBwsf1H@Ev)39UK~}
zr3+<>9nA$YGU*o{{Ejm;GTa`mgDOZ)mWB?;39hWHG<&d4-6In}v0UFCS^HO71?N>1
zCetyp3No_NF^ErXUDD87wvH^)(d!1fd8dT=;!!8lFlyMidPn|9N?_%*e^$Hy$Rddw
zpacLEJu9SQ5dfedBO_zu>hJ36U6&ha?Oru^zI(Eee|XZn@o(9=JC-&{l{8j?qDYgX
z1d=jaZoj<MJmHSh-&cLGqg<j%R_d#O7$Jiv>Xm5z+&fuZOGxQdcY$k?6;}|oltUI)
ztNPVk=l(=jfs0S?L4WEC)&`5_QtUcCT2|}2MpePRF}lqfx%$yx0RVO*MHwkgca+0F
z?@%Sx0I#~x0mps@Z0{f5$GiP!G5<qm5Z8F_T7zsXlWg+|Q7-was|7QZZ&!!i@MxFl
zjT>$QS%Q$xQwF?zOTwbcH(dvukyA@b#VwRz!F;Ej<Ku&JzeS%F#ci9{P6p@qrKWs4
zsi7t-=OH})>^(eD%7W{r<a2Mtd=C3ghpEm0r`y|%%C`(1oq8;?BLRQJ$!sOIY4Vu*
z&;no3bPb48K(KQ2*V)Mh#Xp#I`wK8JjqKWlnk5Y}gJ>C^ekV;t;wSN8ZAK(~Iw#T6
zCQLkw-J|rAN;C~(DQ*OcN<v&KnKWR!>0gx7ux5w^3%-&~6nttcqP%O&3`h;(h2yAa
zPYeEr%(JNcRbZV;9LeBxW-{4d^f))`l6D?ncaTZqa0MAKJq>m`T~>FufVIlByh>+2
zM3U$w%ApfohBa9n30vx{uu)E@P?FlrFV><K88E5nty*MGr6pV0%KW4CT!B;*50v28
z@z<Z6CJxUxjm&Pby}1K^t61T;&1tUk&BR}{w&BL1ytm@NqA&T9F!a70EaYFQkR`&w
zd3k=mUn0YoteEOi`7riH$mv3RA>%F)am;D6r_CxNVm5LX?Ek5wTu8f|{ZbYkP$WML
zwiJ3-ef2#<Gg+mO4smRanPJFe?rmGm<~+<-$2-Wzm<4Om5KPPvYdC6+aGjS<Ath<y
zLW46kQR0xl^`SSLq<|_4ltdBlIN*FTwG#Mddw5K~&^B@+AaV48`!)#TMBY9?e7;Kj
z-Hct@X?s6=GlCldS)9SOUsJRW@`VsKBW3}=>{FtB-G;hyQSH;4HA7tzGq46f+{~BL
zun(UEJcGa+1^4iL<NjSw+4=VkC|`fJg00QcB1>;y?oh*V$hK!7181SXaGkBKUH^D9
ztM$Nb#hMtuqXj7HP^Xi){|7i;o{}tMY8e3kTcU|Oo7jhT2#n0QlgKWwZ2>`iVBq;L
zNhH+PEm+!=@fdO9%pVLaryt+8A|;_EIOAxd-#xqTV-emZ;G#%ObNurgMQ$6mVmLbE
zSgBJBJ3G%eHCV%>-+qGZr<FXAN6EfY>Ev57wPM4uU0ga2sGVYc1O(#AC)6QEmj!!!
z0D;~Or;Hn!)WU(;<nj|=DgKUAwzQIOWSK)^K^|YA^GH*=b#~W~d`vBvyhIpQ$;FRa
z??%uNj^fOXQuS2afu9bbbLOkxI(8qLabl8gB8j$nacz_?Q<i!9j!VW5=-nII(vUdi
zu!{!y`T9qIA!SGvY6<ud0_DyVtOwXfQO1ac@N$N|D^hI*odh+EWxGRx6CxcV9B&^F
z3hmU4j8DGCoxj?q#BW;rEntc8YHb<^o@_Unyr=>?M`U=y498{>tkp)GVPV4#`^<p;
zH;;l-o3iiEsPM{hP*1MA5nedF*(x$Go_>mB^&Wb?z2>{<<azWH*j1z};TsV?GwKrk
zI9aSHb8@}W(QEFb!1e6y{y%6Ve76H7?EjZowwHsJ!~lqc19=nEtI2<(MyPdpXwf2e
z=FL(vev#MK?KkVJ91HC!_avVv*mJ*1)BR%%F}@NH{hJ271)~1lhJs^W>g1k0s$Bfb
zm(yhZS4SApp!PfHoe#ZA%MT~DhjTgHnx2!8-mG~RN|Ll_CxSOPvYS{>0@MFY<y@dL
z^GBb?g4XtSLzdPmlv1oJxshL<N90Q{s$E~pvAZtDgq3Dtx#RjRI7%CU(7T<XGe;lj
z2zW*SUOSP)saRVrW_0ivk`!(k)4}h-YKO&RKVcv^qS52;LWwvew8QAW%iD5(eV52G
z73a}+_)Xj^YnLsF-@c;K&gQoB9C}AvgVEZShSYc@y@b(I&Hw7cVJ$e2b=)Tw-KMOW
zA^#uRY~XeR#xbnktdfLW)c>BW!g*Qb>ex)We|@D29IWb}!Z<2!6HUcuH{jD7axqe(
zTOY3)*)=d^A$A}JPW+KCGdA0D^Gj$3H&2sFEO1yyPC$WKda|>1+cmOmHS$7q_r6Zj
z;VQ*tvg0)uu^tvy#SqIsF%<Zzyiea1>V0V{eGw?$^a#j<LHbRQ@QDyLO+{5QGruv+
zU}3Ur$2vYn{|w+WisBsCoEInzfasKhwa3?zUVf8mIOKKC-|E@9DOEigP`YWGEPrq3
zD+xRDJZ&b_V7zO`a@YipPi0>QL~tw}8)UK_ZYf4<?_HYUTjDA{$v4wZe)Z-angJ0{
zYIW*;tV96A&x)868Rap51v%jw6pLl6S!T737}9(<e7u|j?>Xsem^E7aT-$J~8p|{n
zW}9^ZJ+|un%(1+ybe3uZ1KD%HiQA+rY<H?~{^anVEBs*C*|~x~Dbi3PkNxqtWu2E~
z#b+2roOrcM+S4zHGR#F4-AS%!5{dcwzVzz5r<z!Tpf~L5K_PKSgLVtb+MJfxp(3r#
zuuwi}m^B$@ZW*uvjl-BtMEl#;lMVY42RljqKzFn(-E=6U0HyfZx!L}XJvyDH3eh^=
zVN28$^@BoHDVtm6?>E@hzfHMPq6V2|IV6yPAhOxAEg1gysh2k`u}Oi$h%`lrE?~|R
zTv*f-39ki1b=jCVwsUTuw4oG6#RU^C4{S+)rZFC)+C+=-J2qUq)mPTO3qoO5%S3T7
z?n#x)Z|t8RC8+M3cl<|AqgiT5P-94QAKK+s7D}0ky!Mmy-AW`?`$nxD4}4=F%@DtI
zO(PaQbK$YoU81<oq*)AFI}b3ul^UMOl~{k6_`!)Ej@a_&efZi3hGE?PyO)a#lwR94
zh991cg2PIIl<V_P{P!*j&k4p0DT~J`dBbSJu>iWtTC7=||4BOjyYe^R;mTO}IPozC
zsq9t=g7#fb<-c*C{N$xt(hvnA0&Vi>n#pO9;YOqbv*10$!`klo`x(H1nWVCNzq@ui
z=hSm=wB@N*o|{Z!KhDSQ!btyniS#QjG7|~Xws3L(1PI8QCq+!*h$l=Mg!S_>bo5N)
zOB6fy%!`koOuvNPBX>GUJTX6|Z1$-J^Oh&zpw?@YfFIk>-&d&w@m@|Pc7=~ht#r7L
zKhf6N>3#1XohbG2KRPu{bCvY+=Hq11#_5|?)!bu2#{wtX<)}%i$ypNwGZ9jcrweB$
zhZp4<j$|<E##*I0aVjuUGeAXgpQnQ@-5JGV|72#z1v{scb|vH~LJZpi=FMQTMR^1X
zoR}hCUdr3HDj&@X`??qtn@Hf7*BY0?`;JRel}IjHxiLoK6KxzYn;<Z!#h^AWVMk*=
z*;ZE>Of4Ur@`S4F7_6!%r`lj3R`mrK!ytPCTAWyXvG%#>^yZ8b-a26YE;mSjPc_03
z235{=YprgnHdAMg2!+=UU&fH$l_#$*z}D!Udh)$GXH|pQUB52nH)y8T!)tFaDayh6
z1*|PQYSF$C%Woy*%LT%8X<nH~VEY>A#?C;AyYd?x24r(wxiCXYYJ-*$N<Fept(cV`
z@W!#Y({}L2JE+F4<0F!JuL#fF!SoOJKeoF7{iuVi9TXk7ePkw4y#L2TO25SM&y!F$
z%Z!yE8dQ^Ezd_PYT<+DD&3@bfUV)KNnoxTx-`7!9N+|hDshN)i{@d2EzUO_&+{2m`
z;jsI+J%9iug$cpGpZc1Tuqn{e?xEc6fx>qJeY0HoZQS|g<18eMHz5~xIkkfQ9Bs_G
z(Js}#`wU<wb_2|LG^j4M>-v}ph1{>~5+{G&aw2MDIh>JRIvfqrSbK$&;x`KS1j%hi
z>cy0nUo8mG;0GMty#oV@0?~+0GH9Bs5+q5FBTG<r&4qVMy|dmZEZFI{4==ti9*Z95
z??R!@95Xs$Zb&gDQ0w+Q9M~Yvx*m)DaW1|tP1+W^WJSuE5*i!!gslJOhdGXhF1$Sb
zORyEjW=ngwp<LHq?<`~kUs;|#{cUAM#hHwRDrpXpL3PQkLpRSliPopgjqxj%>9gFK
zrXk-sjUBIC&O|-e)3fnE@W^c3+~(%{!LGE!OD28U#cg2@*AjEnGOFHkrd_m6kyncy
z!nMcId{Fmu0;jy@p`7EI5=86m+EU)T#6+l&)gD({__A-GY-T!i;#|MDyAd3lx(nj%
zmGI|xEX?WKo=vOP``};J0zDCWvv^A|iK#Yanv1vzCuAm>E@V3j6A9QaXMY3<D7-a(
z$=UW^eUs&H*mO@lJ9?x3R#7<uk(diIWcF4FF8BH+ICyEk`+6uzN1t^ANEkH?SJyB|
zJ)`3nSDf0bhqsh^F1hQ-K%=$HNQj7j(+vVCV`(JXhtf-Gb!$n8l(mZ4TKKp>)eJ3p
zYG@uiL4<}a;%pvktj(EY5qHp%^7wkS&81CB(AOQ}RCqeOnZ9M9*cC~Fe>1#*&9ww4
zK5<*?569?Mzf3fT^U-`=3+{#3#wD$R<wHnD+V+u=<>VXFr39FY;vqs4h8B!5GeT30
zz=>eUe*LK|kyM}cSp%@j;R=j&S)-b4^HYByf8L4|7kE92P<Qs0XJi=yIy$@t4#1E-
z;?Aq&CuTo|qfWzQ7*OdDyfszgqGSe(bNkXVR{{2+8Kbhn*41aFj9|Y^$vue9RFbJk
zDxaLDmT-`F^CsYmfV!2D92`~kC6BmXTbcikQX>65XbNM#|4$tr3=BEecio((r^W(A
zlH!8--}kr$fS88Z3;b@g3MOK7(~k61l1eATajaVO>@j8*K(bV>E~aWQ9G<>J)KFvT
zqEY4O$pi504(9kJ?Jo&V<|nLHF4Fhn7>k9|LO&CA)eakgwCuh5b=^X%n?rjt*`S6^
zF1oZwE-c9MgiN$*48jImrV!dPj$hutyypVu_9<*n%95YHP^V-r0*XLjNrpq$;BR{8
zuYTmTXY+LO`gvYRo-yx;?XOi%V&D>~b|#bYrT>CANul3A_8<p+zrJfX&Bn1}!T193
z=R|%d3B(G-=D>bcbEk5+q>KCNYp<Y{96Bxh+r<KeoZA2V_~w%GI&&8#Bk?gQ?|+4!
zQ}Z1xQA)iDo~LgDN6J<|2bM#U*j|{sq8c;~dS~V@4BP4?ytd;dlSyB;od_Xl4zW$Y
z;2BfXC|0}zov85(itv;a*#<f?w!We@|B6iWSw7#gNC#Ccr=!extY-M`JZ4>c#GX$$
z7Yx(ruRI2OPF|13-xUco&-g~lrDM7nj1RFI%$#u^+K2J9Jc+WFdHyhMUT{b9Fa1JZ
zbQt|0nee#7aN1(4jnC7w@XWH)lp}Y^;2vYcHPE?_){WiVo!X8spK@v#FFUd?VXecq
zoC;#l2+39*CpP$w3<)~7z%L2uA4r5R6PGM+2V6erPKArsu65Vdt>oA*G|Z#jPv}i9
zO0rISB^BQNYpx>nHJTtF%DUY>7)VswbII+pdYaw*O&9?=e%1KTe_-J=4k)g$6}(Xg
zXh>{bHQ?%P!cFdf70TyqD*EiX1~%#_%B^KqY0a+cKL<IxEdKsrGgz2<E}jeJ+)iXr
z?-)Gu*!ODvh)tPtrAL)LnHdT_<KLgZMfI4##}VJfbGL9Bdu@i4lNslC9~&@vc^I?m
z;?B@dDnlSzhE@A7A=zqCoDKu#$Z8-%CDhQ!r<i-W8r6Gye`lz0N>46syHLt>ydEM$
z!dUdu6Vmf<0_48AUH>75L;&WwZMZcAyZFwIj<O9yD=cCdEq(r2$PFuN#4mB$IyLFg
zk>GjVtRG=S?%BeJrgs)JXrIVy<@5;h53ORtakdnvoLHD#G>tky=X@Jt^6(4I;!(wQ
zY}M8%itt*umDdVeqNHwTnq}yXJI8!xA>WtmNuPD9>Ez@0?21SI&e%B2s_TW5q$~uR
z4I$ypbRVhZhCjv#VL_!(C$$v<s!6yJZ<;@d@Lqdtfs_V+)iB!8GcbQ0=3jX^gVZ6E
z*V0x}XL?u>`Fl64NtB#EbZR=Ko)#%AT0bxNg7Z6KWO#E3Qjt*7F_AuC6n?6m=&mo0
zufe-q9h+lAra!Eu!SI~sBj<M1fcM#$ny4gSt0a9y7G9P1y2p0*<}TMOXO*g4UfI<<
z0WY|GDQxZW%KnYQuK0qF#fXQQCRwB3M>4!^`DXq;JeS#Qy)g9@v-w^r^zKV;Lu+Hq
zTizw<dN+9oVRxgRVyd@)0v%P!KLp|}K4=ZuyJ7CSP25Z1wc%U8X-6m3k7V08K0x(&
zA(SeOR*7CwfOo+dE?X3_@rWYQYN2Hpvb1i~z+V%q-?SeMzJ=`yhK7N}gAmwsCm_&R
zT%P_6B=--@AmQ#k9p=m2ZWC>G$J2)gG34Z22-wxv*Dlx%E?erI7v<xCx*0l?8YHhs
z$*(<D)MV~;2vp@2$EVjIpIG#5*J`}kmf`1a<&zxEsbvqG2sj?i=x7-E_Ns6WqQW|2
z)~>FEn)Csd_2l=C*V~4f9F#5E?esDz!eINHjBkw~kd2&YhqWe+ax9T<@KCM9yzio1
z|5BmYw?qL1<Z#h)cHi8bRoRo>!%nb!Lr1H`vLyPw;57n9e0!^)5n(KqEcfNgs$kG+
zE@#sI$<#|<tz^6Mg!YX#2M#m0dRi{-8S-dTK|@$(2|oje*UtWJ{YY)zCreNtD$I*C
zAxWrlt`W3{9%KJD?aIdqt)KA%cStf`CTItr%QqD)<{Y5kbeEQ3HyD)pQ&3#!2?Ius
zx3M&y@U@#77}<T5T0k`G{`M}z*4+a0AC38e+in!!=25EJ<&wNdgJI*Z3)qokIQRu7
z&0c?@WR#!{a0_qa9mC=z`^SauE%-AaZ6;Lye@RLw<!TYv2dKA~l=emd>#Bo<B;G}Z
zbIb%_XQ&^B7~#xNJh%FMYU=LF=FrqkUP3I|izBlW(1N&?_!)0Q(qX~HiwaSARe?*|
zIZZHvsiL*~EUDDPZF2sAgj-}mQhS}o(wBV5$%po@tfvXYcdwy)&}T$K`FxDU#-#P%
zi?$8Mv)4iixptq&usVuL>S(Ofz7uL$2Nig)Bwb28yf$`hG>BexVL3z8sIthQQYG?w
zO0kv(hB5_#Z}GRbU4g0&?7D|)6yI26$3zdW9=`f~#>-e(%d|Wq*)1|JASirxmMbcj
z5xId`k5x@a?8QB=;U16X1h-xa0`g-EVNac{`uk<PGuA>8eX4sZ@y>+*B5leCGnjR1
zs3#eO7GAUbS&@~VddbDGc|xy3MmC8~GeY|C_lppAtcL{edEk=H$-{E(!E~>^;r$e)
z!nMD@I9uJa?yxhI{v)+?Hp5<hZ0>NP+@d6V<H1_-isr4`-5=f%x%6o|DZ*qH>bO=E
zpKMbHs-vTCV~)8dgMzRgk%@WEG4)YpLZtc0+YHnGb(WZH^M!h_hd`*$jKCl31pyK3
zg?cwXlP3+Y2@Q=@3Xwg}71b7#46^ptFQ~2VyQ62Lq9xi-<d^S|<pf9Up`+f5CTC}k
zRql)S+^5P5J2SydOv1>RgFWH8@f)?O7lXVQ?QJ3r(unVBugaY%W3wIdgl&RVC>C#x
zSHnj*=ckDZWp?b)LgFK1pU7Lc?j@)mc*BEMcbqD)iik6WTM*o50ynQre_1G}J=CJv
z4{bK>PfUKG;8GI5aoOtB%b6ISTnV_W^xp_o>Tm?T*v$A}vHJgXCelPpe@WXi((z}Q
z%ZMI8{$cbGfjh$Aq6gr!90uPjBRm%hUhHIiTc~bgyYB@p(jDDw*)-9pJ~(yhB*(Pb
z_P{6;aR4GVy%Ya(-RfqBt#;Ziugd1^j?TG{>TpRHjlZcUa>CUp0F6FZJy_JkTTX%_
z?h{#5g^X?xzhY`g9r694$KGFQAkElMOxr>*%IEB|tell$o8BS8BgVZvgQx32y^<3U
zc-|ZQVAcReS+!{8xOcs1D!XFMJn@4*;uTJ|D}!~76!y-6ul!m4=Ca5UHT9e^`L&x|
zG(%f0`^ZJ}h1%8FkFaM8epp)pqjdh|7lEyD!P{FnVRt?I9dl+2wLOPd=Nur*HKlVo
z*qha&5RGYtiaBpZ4RPKYXDASwX5f;}Y3QKjY@IkoqvZ+EM2i!?5nl17@$ta4E3VM~
zk)5N7;;=s+*iqe9iP@>rW)7>y@^=RP?-I}Bj0#+-;lhYeX824dD@F8GA5Vywm{b-u
zBpNf9=K!^kZUYsiXXl#d9F;gz62Qs`qlM)sBm^e>1p7a?A7C&LC<Rnxm3(dy?6B<7
zCWb?ZjwKmLnD6Wkv-|DheC5}l-199DlZ#^M7)DH+``xqoRZZ}o6mGs_zpIhXx^RAs
z)zB`cE8zsH1Nfemi3J_|sJ02;Jh3`s*_-GoVM+syx(`x)%~N&2_%YcT+p(0r##-%?
zp5UT`{Y5IXIxBwkFdG0W!28qgRmb6y8}H{PR6YgC4w_E46*uk^l+z8d6Oe8x0|)VI
zEDl?YmvPS7GW>qc#8CAcSJGU9n_1^qGm-(`i#K+xE79(Pcpkz+Ah@2K&G}d_zRczO
zGE2CjqBa{InfAW3_HBt(%x@Fd#)$MP{xGG9v)^e+<v(EIm=-duM)5V&$SRdTjW3Vf
ziMJ~&GnO@W0~okE&B?ABFM-`)`j_2^PFY;4h~Ke6{9|h<=E;})IYr+BXSIUEL=gDz
z7q%N=Wp8(_W(qb9Uq=mEyhYz#$<v$9M(yY22>z`B=#cLgHR>Yh@-a~;7fe|f;LdIK
z(Z%U`NjF$FEs%oebE#!GIE$!1k2>mLP?Wf;9wR%t=B&nzQRMVVGMsLJXtTLLa<-w3
z1Tl9SgfZQTfW$)kYnW&{<(WI}*hHPt@M)Uy^=K87z`HrFZEB%kcJ~#!GCTn|a)jUF
zzgp5?xVe1#CmW`FkP;o(60)PQnk8_te8aiM#9jC!Us+xYRZ0cgAiTeI^l^}#T({YS
z_q|u3LDI5`&jI)_aI(9-2CFi^dv;^jcz}_Exb>-RGIi4cN4|nqQM1s)3*8ZAWcBfp
zDM}DDrWh2?5iR&rZhOnJNq}0aZihunLTVBJ^*=*kd1mC6(z`UT4-nC8-I^)`$|4jh
zEdtTe!o$_59+-|5a^{;XO_~SeC#4fz93}ARYQqbkTCU)?tTqbspTk)W!x%D6=)sIP
zLlss^ecT+J=-pryQlp?!CnYhD<vl!mL}JMF`Q*4kkxp8QB-h2R*k($epRKM-V+4{5
z_QRVsA6@*RwIoGVHu{8f)C4;&y-Iiq5u6K~+scKt{yh7wcix|!PBIAQHsJoQ-$H)x
zbyb;Pna^NL*2n=t?dX+GD<O$A($;1A4pV`1PE~|4wJ7&Z?<IlW;Zk4j|D0ca<Oa(s
zUD6~=J3RK0xnFWHlB|LjYvR#Uh!m_;UEB7HDDguxKehhMfpJDXdY^fZgM;N34@UjI
z<h-*gPOQ1mih0kd=$zS&aH8Y5w8~W>Hvjx;pC`Vny9U1+zFeZWKlQu%&jO`#SeeO}
zU#r$|j;T-8g)GLb)N8jqN-7iZj%r?R)uH@rhUoqTcfsK`0>=K(z1J0{7JE1Z8Wglj
z=nV>Bje#w{T$N^Lj0IN36Ar^4Y|_k@LyW{pNiV)wsx@5XY#a*I*q#=9WABfaU+2^B
zUwIzbHRef7kBf?8XK#Xe0(y8-(?bm$RsFayxOML67_vU<K$dKiJ=%%Mx)^5{THAT4
zyU1_uq;NOY%Ytc2T8h7sG0_b7nB@celD@Io_}OJ(+v$9MZ1UJn^tL$(@<@V`QNoX5
zA-d!|{m(cshCc5_P5<%!MjmRy6MVjkbq9)h;d1mY4lzys^!6(=s|96Ow=KY(6#u#x
z5F=Mf+<B(a#*SrP+rr?~PQ;f1_}E1JjOAmu(fsL)OG?1}LAKz_`8rd{LFFO{-!Y8R
zj(<8iS8jfY?Ec@+T91tBHhb2b$f)2L#l&2G`JWg{ueOjeP}yZ|{<-z5PO;yW&aWd)
ztDPMG?qVX}n7b+nL~<_;3*5(T*e`1lRi(<8=m@VSMsYII91juf9367{RFnaC@sHT=
z`{{#W#FE;;(-}V5n+aN)6{MftTG}bF;-;>xTi<@aK_2ys<$?xBoRoAQ-;XY6?M3s}
z&q~eHzNgVT<ZMe20YDNElDj^qZ*2+v^qOz24F~zL9;sc<$ma9r9()g0D+a0;1EpYW
zvM^3fjOC10p+x#Dd@=fUv)Mm9`a`=f|DPyPx&7tjxt9Jr&GYnC;AnC3FX`OE7=alr
zv|$WWFtsB6Lcp1l<P(u|71{54XZ!T4yae(d7bZmu-nlaJ=-cXoOt{;E%@;`7kC(2n
z=W=@G@ae;~kLpPJ;n(>#y;Pl~6ZDlV=jHR(9fz#;o%`zHyfv!MyIu}`^wD^~&JUj-
zt)FX$P3A5N@7LXB+^eKb=Hf3&lULF{F%UHT`fhS+Ei^YEHCy#7dvY;x#O(1PT0gpC
z%=bqKZkOjI>S#PXIz_iv{iY+|&~`cCIwVpF>zu|zH9}*LfUCR0%#saV&JpGAOsjOI
z8x~UYg7rp?Y+Rk}M@K#V>iWO-)0g|co~7&RZv<ahaKE@o3+vMHpZpONPVNtd{7xK2
z0qI(lfcKVUqd*kBrimh&`llp#8z?sE@~8V5O!@EZkO40}BwLH}<K3j^I@Cq9R`%bw
za8Xwnx9DeH9G7br%bRB_-LbAQh!qC~hBpSO-<weX%DXgpzc?Qn4@g6A3qR;;Gxk9(
zqMwyf`u5JLTD#FFYCB}*e2=cU;b>lUY6evm#oKDUwm3Fg^$&{j(?ELRSv1yq2n_>#
zNFbC<<xV7mhlPvl3!9QM1~3elFD4Vm>^3z_5-VO1wQ=`v8any#Co0OV^O$V85yCC<
zJlPFS{q4rvq`}@EK~0+kdbvLwf@i7OFQI%mxM50)cXnt8goWW0?x-G?R>^m42_GZ0
ziUO~eOGj|H3z=v&t5y?+$7IYJpep*Tg|3p!X>Q$hKE%l<IgdpVn0#^9bsj%n(7rl9
zjyjayG_Bew>&t7nNv`BCm~8MZ@zwI!4t4b|Daj}2jkx(0KHG@TL;pUD1v-v8SW>-I
zUVl<<DN9B~noJNg<afra|AF4ow_KjIPtOCOx;A${gy}DV<5lCmf7?pH?YBzF9o-Qg
z6Ww63=s=P%!+sG~N3*{!TKwIUD|!P*f^^1_rr=B=Z5}p}@$qe)^jz_Kg{#FsG!OGI
zc_4&%X`RI-xqm!jshHC~X<ncXm+(XCz&$u4?a$a!@W7z)lo33RzlWUuvRC|a>dG8X
zX>yWl7DmEYc_K+A|4FB%pjvSnRBu^>ri+i(+snvhpJzkr`dZ1h{gR~A!BM^~0CWh(
zrU+5%ZEb9H*!@9x2)Hz~BI@s!rT8d^`TE-{;wnzF6#{Y7cjeJVY)qFgg<MvkgYgc!
z&v+UCp$heY>6Q)+lIOj}Ts0ZI6j8IBYXkq0k4)ep)dM6_<I0s_Y4CNn7Ca%HQfB|I
z7W2}Fa^X4!0bGOR<M=JbOo57Kp>$KooF=I3<Fju3!ydSYfIMLNqp20f&sC9<3xzya
zZVE2sP;8xc#<>{wU`!Mw$}{22Dk60FgE=`759{yf=<}b#H-bVgB<(eR931}7N)2;Y
z{k4IxyUJ3U07CTHP}ad&cQn;+daI|+xVCWS{u5i5+XmSgD|-h#Yu@JyO}-Z<I$}&!
zq(7ATvu+1m_Bv>NeI3p~x36?!JOgX&+4<JR(!RQOcYd$8ADCPgFJ=Fv<F|3tq$#!*
zAKT0&_CZ2J(6arZO6{Z%UOuy|`Y_p|NRm|W&627E&=@)o6K=`2;vzNuXojoNMw$$i
z9EDYyX79X9Fk9hF#TTm@g;it5#rG~hWF5F0PN|#M8a-0hSQT=+vaW<Zi|3gSJE}K!
z(AxSxY^LdB!K!1@<U5R`pf~{a`X}$xX5bcVmh5c~cNaY60g7e>;18uV|8fM5SZG9&
zxCtBi{jIy8?0-7>(L<`MDJ}MV>-PMCbAFZq@HJwR3)}3>k+4pQQN%lx{Ti;o1#`s_
z8e%WGQUu6bPsasYWL8*adKzadN&RQ?vzE%f5=3>{bA%RH_kIN+0|o{zY~=7W`;pIv
z)%!M%`nQEzn%t9ITrcKp!@>qf-<7W@P1zGZP==jw(j_+#Vpt4Uf0(i-8BQnBm4lxf
z&WEQ@8mljcE^wydy(?>DLF(pw@ktUe{}^*n`rhOF8?%hxy1oCta_*X4LljGg1Pz@k
z#W17BDGtyaYWtw8$to$42;qii!opq{@3-Rr+me^D=$IyeLLo;A*>~^6UxrL+4qIm0
z6JB6{^cXp3fRAh!uTRRz;~NLHO!oHPUsv35nHkvytuGu=@hoIIo?LaT5io#$ykV@_
zKEe*Wn1Kq2oi}WnR2A)$J?h*p92tSEYdLhxI~r;8=-l>>!6!v<)t<)zV&tFpTc6Zr
zOfIfsDy-pE<cpY!z}Rc5rgzsh4B|~cg<7qSUAOMSNgdI-7&R+b-6A8E_P1S;5Ovk<
zo0~HZ{SoABLo&rnV_HCuGgHc}b?`+9MS><K$ygP46ae)q?)_Zt;Psmnp~uvT#TEH`
z!`OGAyV%I{tcBQD4ex%L-y-s|oT*U%_gV_@Ib-`t*+fzUSOUJHH<-p5OsG%znJ3M~
zSno={H%c`2BOwn6s<Jh_e~<p2L6$Kw5D19?UKbH*mi$jR-a=(F5Z_2Pa7MA+zuUOE
z-hV`X8n*kgv~D?RR+>uv0$nF{9Z!9lH%*AP6YpI**2^woLq1+n?@meRYz8qNGk4Px
zfRv1foNQC54{hLHW&U;6w(I%6?OPQ+>xLDf<;BL%>A6#jRqyc(=Z>B0kD}raT#8$1
z<24TwtfW}y4>nyM)$<GMnn@Ccz`+2g24?PD7RbIlaAm1_3t9@#<Ce=#M<7yIXD~`^
z;VD@=$WpptM9NnY)nkEAx1+_uMPFyYOUek@yI3%zZ1EKdy+QaF>Naul>UY2vO?i{H
zcSUoVwjOy2Ki_UmD<0qi6Nz9?M~8p+e*0b#PLD6Ibzy7hcFeE-rM=K;LG7exwXu6O
z!Z`#T)34MWqEyiIc;5EJTBfYwkdtsxz%r1OFfGU8oP|kTQGoTAOD<rJufm-r5y!Oi
zk;9Ebr_lTWZPi}erIfI&>^_KRkIwGhTIiksGq63WZ&IM4Op_-gxw*I(ue}}5Q?%C}
z6RK2kP#Q*RmO`TqS$q=4DL?d3Qphxte-hTDt@yf|gP$T4M8`HzznYpdNh$ORtQ#tT
z|H3w>&}0@eFyJHn3N<C+9n~i#DKVABGm;-MV<@jO(s>r;COuhSsamLO;t*_cmOx;U
zwU|?bv2<`2$oxY>d#woSs*<;V+hH4Lf1f<s`r!tlW8gQD`-k7VP?G@a9>ETCqwDud
z{68f|lA-Pf_M&3C1&$=+Z{^=F0MUm2LPng6gcG>Rk~}OC9E^`diwH^?OX>t}iI*_`
zZeO}l-EMdofX|sHQ!dvvy8eU7uTIk3fa<8iXAowm-?_%o6WCaRBByN*7(8=hk`L6z
z$xCl)8Ujw`E0)M&2h<nnVRecO2%V-auu^fE7uH`UZKpo0hJUOpZ<E2xM5+ag1nP59
z{%mXKw^Tq^6z=j{?+KaWY==ToDQa$6mBKg+mGTGGt~3>->DLxDbu3fh(#3xq?Hf;T
zPoB>1M*|TD{zAgFu_2|uQ!?AUZ+p(--m-4hwc@5YvX&7t6f6EUd>t}aP4``E7*>nw
z!)Df)pv4HwB4S<0(Nvvq_H5rWNJs$2QwT>t1%nI6z*ZEVG{gVBVDWGAbi%=2hlenl
zaKw0WK!AHF;!KH@d%2zZC=LM=I$IZ71?%F&e^qWVx_v=-UquT_KL!4plt4BJ8d{GW
ztFeh&u?Hum<Q(~Dd=ZWoPDopSOATBIPGip?#b18-ZxL?26)!ED1T*H(u<=L|a8NGJ
zI9qTQJslJfsqQZ*^EA^_QeK-eQe`!XDuWIp7_fJe&~xTYe*puYrdr>zCd$04r6QKd
z>~2Yu|D}wVl-qoo)tImy^%54Q{k#LEH4?_c_$tnoVz8KEQtN19k|l(ExuDjdD0r^v
zbxC^m^BP&(O`srKkx{OjQL5V`KSzPuKRJ_LU$1c&b{80&FK&=0eMWDNsh2xXV2ZCH
z2cA7cpPm5KJaQHhd9PQa(QKst(e0?ba9_bo&>i$Qhy>e=)&9(ql1xutq1YOj$d;Df
zdI?8^3?MjSP@XvK(LY9)<`0&UjNwJ|{9%OgO@zZ4gN=?~{Aa<lqY9zeR8jm_pD#>T
zAySqP45-<>0^Wd+z^60(#aW^0g_Sd1T$*$9x@iw@1`skK{kW&DuKfFPAZMArr?xwV
zB>cdwq)dJ9c%*y<_dnUjrKF{WjD2Wwxqy1Pg}tQ3`lMc|&$V-ao%-ts8Cp>1uQ<RL
z=(NPl@JU<dN$g|&=<wdW0LPZ!LLMTFd*yfOeJL2jsi^?`zq{5~i6umdTDs0dRZ?po
z3Q_-rS(3-maMFh)u90>RIiQT&q5QwRIRM}QkP;N{I#8zf_-{Z_79>+H{W<Xe0*|??
Au>b%7

diff --git a/doc/user/project/import/manifest.md b/doc/user/project/import/manifest.md
index 5ec64225098..2233a310bc7 100644
--- a/doc/user/project/import/manifest.md
+++ b/doc/user/project/import/manifest.md
@@ -1,7 +1,11 @@
 # Import multiple repositories by uploading a manifest file
 
-GitLab allows you to import all the required git repositories based on the 
-Android repository manifest file.
+GitLab allows you to import all the required git repositories 
+based a manifest file like the one used by the Android repository.
+
+
+>**Note:** 
+This feature requires [subgroups](user/group/subgroups/index.md) to be supported by your database. 
 
 You can do it by following next steps: 
 
diff --git a/lib/gitlab/manifest_import/manifest.rb b/lib/gitlab/manifest_import/manifest.rb
index 7b1e6a22c3a..4d6034fb956 100644
--- a/lib/gitlab/manifest_import/manifest.rb
+++ b/lib/gitlab/manifest_import/manifest.rb
@@ -1,4 +1,4 @@
-# Class to parse manifest file to import multiple projects at once
+# Class to parse manifest file and build a list of repositories for import
 #
 # <manifest>
 #   <remote review="https://android-review.googlesource.com/" />
@@ -11,17 +11,16 @@
 #    For example, you can't have projects with 'foo' and 'foo/bar' paths.
 # 2. Remote must be present with review attribute so GitLab knows
 #    where to fetch source code
-# 3. For each nested keyword in path a corresponding group will be created.
-#    For example if a path is 'foo/bar' then GitLab will create a group 'foo'
-#    and a project 'bar' in it.
 module Gitlab
   module ManifestImport
     class Manifest
       attr_reader :parsed_xml, :errors
 
       def initialize(file)
-        @parsed_xml = File.open(file) { |f| Nokogiri::XML(f) }
+        @parsed_xml = Nokogiri::XML(file) { |config| config.strict }
         @errors = []
+      rescue Nokogiri::XML::SyntaxError
+        @errors = ['The uploaded file is not a valid XML file.']
       end
 
       def projects
@@ -36,6 +35,8 @@ module Gitlab
       end
 
       def valid?
+        return false if @errors.any?
+
         unless validate_remote
           @errors << 'Make sure a <remote> tag is present and is valid.'
         end
diff --git a/lib/gitlab/manifest_import/project_creator.rb b/lib/gitlab/manifest_import/project_creator.rb
index 9ccd32c3a3b..b5967c93735 100644
--- a/lib/gitlab/manifest_import/project_creator.rb
+++ b/lib/gitlab/manifest_import/project_creator.rb
@@ -12,8 +12,7 @@ module Gitlab
       def execute
         group_full_path, _, project_path = repository[:path].rpartition('/')
         group_full_path = File.join(destination.full_path, group_full_path) if destination
-        group = Group.find_by_full_path(group_full_path) ||
-          create_group_with_parents(group_full_path)
+        group = create_group_with_parents(group_full_path)
 
         params = {
           import_url: repository[:url],
diff --git a/spec/features/import/manifest_import_spec.rb b/spec/features/import/manifest_import_spec.rb
index 06d0f2b1857..e381d073804 100644
--- a/spec/features/import/manifest_import_spec.rb
+++ b/spec/features/import/manifest_import_spec.rb
@@ -1,6 +1,6 @@
 require 'spec_helper'
 
-feature 'Import multiple repositories by uploading a manifest file', :js, :postgresql do
+describe 'Import multiple repositories by uploading a manifest file', :js, :postgresql do
   include Select2Helper
 
   let(:user) { create(:admin) }
@@ -36,6 +36,15 @@ feature 'Import multiple repositories by uploading a manifest file', :js, :postg
     end
   end
 
+  it 'renders an error if invalid file was provided' do
+    visit new_import_manifest_path
+
+    attach_file('manifest', Rails.root.join('spec/fixtures/banana_sample.gif'))
+    click_on 'List available repositories'
+
+    expect(page).to have_content 'The uploaded file is not a valid XML file.'
+  end
+
   def first_row
     page.all('table.import-jobs tbody tr')[0]
   end
diff --git a/spec/lib/gitlab/manifest_import/manifest_spec.rb b/spec/lib/gitlab/manifest_import/manifest_spec.rb
index a0b7c3f65db..ab305fb2316 100644
--- a/spec/lib/gitlab/manifest_import/manifest_spec.rb
+++ b/spec/lib/gitlab/manifest_import/manifest_spec.rb
@@ -1,7 +1,7 @@
 require 'spec_helper'
 
 describe Gitlab::ManifestImport::Manifest, :postgresql do
-  let(:file) { Rails.root.join('spec/fixtures/aosp_manifest.xml') }
+  let(:file) { File.open(Rails.root.join('spec/fixtures/aosp_manifest.xml')) }
   let(:manifest) { described_class.new(file) }
 
   describe '#valid?' do

From ac07634efacae0a7199c70e26a98c2d9e26f52fe Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Mon, 9 Jul 2018 20:29:28 +0300
Subject: [PATCH 068/113] Fix a link to subgroup doc from manifest doc

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 doc/user/project/import/manifest.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/user/project/import/manifest.md b/doc/user/project/import/manifest.md
index 2233a310bc7..812ecf05faf 100644
--- a/doc/user/project/import/manifest.md
+++ b/doc/user/project/import/manifest.md
@@ -5,7 +5,7 @@ based a manifest file like the one used by the Android repository.
 
 
 >**Note:** 
-This feature requires [subgroups](user/group/subgroups/index.md) to be supported by your database. 
+This feature requires [subgroups](../../group/subgroups/index.md) to be supported by your database. 
 
 You can do it by following next steps: 
 

From 543f82aeb7da34bad2b34f278c126babe89f9863 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Tue, 10 Jul 2018 12:44:37 +0300
Subject: [PATCH 069/113] Add mysql and postgres spec for manifest import
 button

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 spec/features/projects/new_project_spec.rb | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/spec/features/projects/new_project_spec.rb b/spec/features/projects/new_project_spec.rb
index 1bbbfec2a4f..bab3c7d653c 100644
--- a/spec/features/projects/new_project_spec.rb
+++ b/spec/features/projects/new_project_spec.rb
@@ -23,7 +23,22 @@ describe 'New project' do
     expect(page).to have_link('Google Code')
     expect(page).to have_button('Repo by URL')
     expect(page).to have_link('GitLab export')
-    expect(page).to have_link('Manifest file')
+  end
+
+  describe 'manifest import option' do
+    before do
+      visit new_project_path
+
+      find('#import-project-tab').click
+    end
+
+    context 'when using postgres', :postgresql do
+      it { expect(page).to have_link('Manifest file') }
+    end
+
+    context 'when using mysql', :mysql do
+      it { expect(page).not_to have_link('Manifest file') }
+    end
   end
 
   context 'Visibility level selector', :js do
@@ -203,7 +218,7 @@ describe 'New project' do
       end
     end
 
-    context 'from manifest file' do
+    context 'from manifest file', :postgresql do
       before do
         first('.import_manifest').click
       end

From 418e40bfdfb27a8dcf6faf2c5fdb952aa7b5c8a6 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Tue, 10 Jul 2018 17:14:27 +0300
Subject: [PATCH 070/113] Add newly translated strings to locale/gitlab.pot

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 locale/gitlab.pot | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)

diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 83ff735580e..204f70b5887 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -975,6 +975,9 @@ msgstr ""
 msgid "Choose file..."
 msgstr ""
 
+msgid "Choose the top-level group for your repository imports."
+msgstr ""
+
 msgid "Choose which repositories you want to import."
 msgstr ""
 
@@ -2426,6 +2429,9 @@ msgstr ""
 msgid "Graph"
 msgstr ""
 
+msgid "Group"
+msgstr ""
+
 msgid "Group CI/CD settings"
 msgstr ""
 
@@ -2626,6 +2632,9 @@ msgstr ""
 msgid "Import in progress"
 msgstr ""
 
+msgid "Import multiple repositories by uploading a manifest file."
+msgstr ""
+
 msgid "Import repositories from GitHub"
 msgstr ""
 
@@ -2835,6 +2844,9 @@ msgstr ""
 msgid "List"
 msgstr ""
 
+msgid "List available repositories"
+msgstr ""
+
 msgid "List your GitHub repositories"
 msgstr ""
 
@@ -2874,6 +2886,12 @@ msgstr ""
 msgid "Manage project labels"
 msgstr ""
 
+msgid "Manifest"
+msgstr ""
+
+msgid "Manifest file import"
+msgstr ""
+
 msgid "Mar"
 msgstr ""
 
@@ -3890,6 +3908,9 @@ msgstr ""
 msgid "Repository Settings"
 msgstr ""
 
+msgid "Repository URL"
+msgstr ""
+
 msgid "Repository maintenance"
 msgstr ""
 

From 5679837cd412c2fb7911dcb33c19e89d8a787db0 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Mon, 21 May 2018 18:41:21 +0200
Subject: [PATCH 071/113] Start to use Danger for automating MR reviews
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 .gitattributes                 |  1 +
 .gitlab-ci.yml                 | 14 ++++++++++++
 Dangerfile                     |  6 ++++++
 danger/changelog/Dangerfile    | 39 ++++++++++++++++++++++++++++++++++
 danger/changes_size/Dangerfile |  9 ++++++++
 danger/database/Dangerfile     | 16 ++++++++++++++
 danger/gemfile/Dangerfile      | 15 +++++++++++++
 danger/metadata/Dangerfile     | 25 ++++++++++++++++++++++
 danger/specs/Dangerfile        | 13 ++++++++++++
 9 files changed, 138 insertions(+)
 create mode 100644 .gitattributes
 create mode 100644 Dangerfile
 create mode 100644 danger/changelog/Dangerfile
 create mode 100644 danger/changes_size/Dangerfile
 create mode 100644 danger/database/Dangerfile
 create mode 100644 danger/gemfile/Dangerfile
 create mode 100644 danger/metadata/Dangerfile
 create mode 100644 danger/specs/Dangerfile

diff --git a/.gitattributes b/.gitattributes
new file mode 100644
index 00000000000..f1c41c9bb76
--- /dev/null
+++ b/.gitattributes
@@ -0,0 +1 @@
+Dangerfile gitlab-language=ruby
diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 610a5ecba6d..576a96f66f4 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -348,6 +348,20 @@ retrieve-tests-metadata:
     - wget -O $FLAKY_RSPEC_SUITE_REPORT_PATH http://${TESTS_METADATA_S3_BUCKET}.s3.amazonaws.com/$FLAKY_RSPEC_SUITE_REPORT_PATH || rm $FLAKY_RSPEC_SUITE_REPORT_PATH
     - '[[ -f $FLAKY_RSPEC_SUITE_REPORT_PATH ]] || echo "{}" > ${FLAKY_RSPEC_SUITE_REPORT_PATH}'
 
+danger-review:
+  image: registry.gitlab.com/gitlab-org/gitaly/dangercontainer:latest
+  stage: prepare
+  before_script:
+    - source scripts/utils.sh
+    - retry gem install danger --no-ri --no-rdoc
+  cache: {}
+  except:
+    - tags
+    - master
+  script:
+    - git version
+    - danger --fail-on-errors=true
+
 update-tests-metadata:
   <<: *tests-metadata-state
   <<: *only-canonical-masters
diff --git a/Dangerfile b/Dangerfile
new file mode 100644
index 00000000000..84b72673c50
--- /dev/null
+++ b/Dangerfile
@@ -0,0 +1,6 @@
+danger.import_dangerfile(path: 'danger/metadata')
+danger.import_dangerfile(path: 'danger/changes_size')
+danger.import_dangerfile(path: 'danger/changelog')
+danger.import_dangerfile(path: 'danger/specs')
+danger.import_dangerfile(path: 'danger/gemfile')
+danger.import_dangerfile(path: 'danger/database')
diff --git a/danger/changelog/Dangerfile b/danger/changelog/Dangerfile
new file mode 100644
index 00000000000..773ffa15a0f
--- /dev/null
+++ b/danger/changelog/Dangerfile
@@ -0,0 +1,39 @@
+# rubocop:disable Style/SignalException
+
+require 'yaml'
+
+def check_changelog(path)
+  yaml = YAML.safe_load(File.read(path))
+
+  fail "`title` should be set, in #{gitlab.html_link(path)}." if yaml["title"].nil?
+  fail "`type` should be set, in #{gitlab.html_link(path)}." if yaml["type"].nil?
+
+  if yaml["merge_request"].nil?
+    message "Consider setting `merge_request` to #{gitlab.mr_json["iid"]} in #{gitlab.html_link(path)}."
+  elsif yaml["merge_request"] != gitlab.mr_json["iid"]
+    fail "Merge request IID was not set to #{gitlab.mr_json["iid"]}!"
+  end
+rescue StandardError
+  # YAML could not be parsed, fail the build.
+  fail "#{gitlab.html_link(path)} isn't valid YAML!"
+end
+
+changelog_needed = !gitlab.mr_labels.include?("backstage")
+changelog_found = git.added_files.find { |path| path =~ %r{\A(ee/)?(changelogs/unreleased)(-ee)?/} }
+
+if git.modified_files.include?("CHANGELOG.md")
+  fail "CHANGELOG.md was edited. Please remove the additions and create an entry with `bin/changelog -m #{gitlab.mr_json["iid"]}` instead."
+end
+
+if changelog_needed
+  if changelog_found
+    check_changelog(path)
+  else
+    msg = [
+      "This merge request is missing a CHANGELOG entry, you can create one with `bin/changelog -m #{gitlab.mr_json["iid"]}`.",
+      "If your merge request doesn't warrant a CHANGELOG entry, consider adding the ~backstage label."
+    ]
+
+    warn msg.join(" ")
+  end
+end
diff --git a/danger/changes_size/Dangerfile b/danger/changes_size/Dangerfile
new file mode 100644
index 00000000000..4471e1926c9
--- /dev/null
+++ b/danger/changes_size/Dangerfile
@@ -0,0 +1,9 @@
+# rubocop:disable Style/SignalException
+
+if git.lines_of_code > 500
+  warn "This merge request is quite big, please consider splitting it into multiple merge requests."
+end
+
+if git.lines_of_code > 5_000
+  fail "This merge request is definitely too big, please split it into multiple merge requests."
+end
diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
new file mode 100644
index 00000000000..136dcef7972
--- /dev/null
+++ b/danger/database/Dangerfile
@@ -0,0 +1,16 @@
+# rubocop:disable Style/SignalException
+
+db_schema_updated = !git.modified_files.grep(%r{\A(ee/)?(db/(geo/)?(post_)?migrate)/}).empty?
+migration_created = !git.added_files.grep(%r{\A(db/(post_)?migrate)/}).empty?
+geo_migration_created = !git.added_files.grep(%r{\Aee/(db/geo/(post_)?migrate)/}).empty?
+
+if (migration_created || geo_migration_created) && !db_schema_updated
+  msg = ["New migrations were added but #{gitlab.html_link("db/schema.rb")}"]
+  msg << "(nor #{gitlab.html_link("ee/db/geo/schema.rb")})" if geo_migration_created
+  msg << "wasn't. Usually, when adding new migrations, #{gitlab.html_link("db/schema.rb")}"
+  msg << "(and #{gitlab.html_link("ee/db/geo/schema.rb")})" if geo_migration_created
+  msg << "should be updated too (unless your migrations are data migrations and your"
+  msg << "migration isn't the most recent one)."
+
+  warn msg.join(" ")
+end
diff --git a/danger/gemfile/Dangerfile b/danger/gemfile/Dangerfile
new file mode 100644
index 00000000000..3d38959a9d0
--- /dev/null
+++ b/danger/gemfile/Dangerfile
@@ -0,0 +1,15 @@
+# rubocop:disable Style/SignalException
+
+gemfile_modified = git.modified_files.include?("Gemfile")
+gemfile_lock_modified = git.modified_files.include?("Gemfile.lock")
+
+if gemfile_modified && !gemfile_lock_modified
+  msg = [
+    "#{gitlab.html_link("Gemfile")} was edited but #{gitlab.html_link("Gemfile.lock")} wasn't.",
+    "Usually, when #{gitlab.html_link("Gemfile")} is updated, you should run",
+    "`bundle install && BUNDLE_GEMFILE=Gemfile.rails5 bundle install` or",
+    "`bundle update <the-added-or-updated-gem>` and commit the #{gitlab.html_link("Gemfile.lock")} changes."
+  ]
+
+  warn msg.join(" ")
+end
diff --git a/danger/metadata/Dangerfile b/danger/metadata/Dangerfile
new file mode 100644
index 00000000000..033a84d6ecd
--- /dev/null
+++ b/danger/metadata/Dangerfile
@@ -0,0 +1,25 @@
+# rubocop:disable Style/SignalException
+
+if gitlab.mr_body.size < 5
+  fail "Please provide a merge request description."
+end
+
+if gitlab.mr_labels.empty?
+  fail "Please add labels to this merge request."
+end
+
+unless gitlab.mr_json["assignee"]
+  warn "This merge request does not have any assignee yet. Setting an assignee clarifies who needs to take action on the merge request at any given time."
+end
+
+has_milestone = !gitlab.mr_json["milestone"].nil?
+
+unless has_milestone
+  warn "This merge request does not refer to an existing milestone.", sticky: false
+end
+
+has_pick_into_stable_label = gitlab.mr_labels.find { |label| label.start_with?('Pick into') }
+
+if gitlab.branch_for_base != "master" && !has_pick_into_stable_label
+  fail "All merge requests should target `master`. Otherwise, please set the relevant `Pick into X.Y` label."
+end
diff --git a/danger/specs/Dangerfile b/danger/specs/Dangerfile
new file mode 100644
index 00000000000..88e64c57a4b
--- /dev/null
+++ b/danger/specs/Dangerfile
@@ -0,0 +1,13 @@
+# rubocop:disable Style/SignalException
+
+has_app_changes = !git.modified_files.grep(%r{\A(ee/)?(app|lib|db/(geo/)?(post_)?migrate)/}).empty?
+has_spec_changes = !git.modified_files.grep(/spec/).empty?
+
+if has_app_changes && !has_spec_changes
+  msg = [
+    "You've made some app changes, but didn't add any tests.",
+    "That's OK as long as you're refactoring existing code (please consider adding the ~backstage label in that case)."
+  ]
+
+  warn msg.join(" "), sticky: false
+end

From eff378ca1a317877f168b76658d81b38d4d9f02e Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Mon, 21 May 2018 18:42:12 +0200
Subject: [PATCH 072/113] Add a new fake migration file
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 db/migrate/my_new_migration.rb | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 db/migrate/my_new_migration.rb

diff --git a/db/migrate/my_new_migration.rb b/db/migrate/my_new_migration.rb
new file mode 100644
index 00000000000..e69de29bb2d

From 867018aab4fe2a305ebc58193da5c19e72827ddf Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Mon, 21 May 2018 18:42:59 +0200
Subject: [PATCH 073/113] Add a fake change to Gemfile
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 Gemfile | 2 ++
 1 file changed, 2 insertions(+)

diff --git a/Gemfile b/Gemfile
index d575568adaa..f608937ecd4 100644
--- a/Gemfile
+++ b/Gemfile
@@ -437,3 +437,5 @@ gem 'grape_logging', '~> 1.7'
 
 # Asset synchronization
 gem 'asset_sync', '~> 2.4'
+
+# foo

From 1915c9f0cf1ec3e836c02ba57c97e5a9a61d487b Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Tue, 10 Jul 2018 11:30:16 +0200
Subject: [PATCH 074/113] Moving 400 lines of code
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 app/models/project.rb | 301 ++++++++++++++++++++++++++++++++++++++++++
 app/models/user.rb    |  27 ++--
 2 files changed, 315 insertions(+), 13 deletions(-)

diff --git a/app/models/project.rb b/app/models/project.rb
index 770262f6193..2cc0c83d064 100644
--- a/app/models/project.rb
+++ b/app/models/project.rb
@@ -2182,5 +2182,306 @@ class Project < ActiveRecord::Base
     else
       check_access.call
     end
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
+
   end
 end
diff --git a/app/models/user.rb b/app/models/user.rb
index 1c5d39db118..4aeaaedfe4d 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -441,6 +441,20 @@ class User < ActiveRecord::Base
     [:ghost]
   end
 
+  def full_website_url
+    return "http://#{website_url}" if website_url !~ %r{\Ahttps?://}
+
+    website_url
+  end
+
+  def short_website_url
+    website_url.sub(%r{\Ahttps?://}, '')
+  end
+
+  def all_ssh_keys
+    keys.map(&:publishable_key)
+  end
+
   def internal?
     self.class.internal_attributes.any? { |a| self[a] }
   end
@@ -845,19 +859,6 @@ class User < ActiveRecord::Base
       project.project_member(self)
   end
 
-  def full_website_url
-    return "http://#{website_url}" if website_url !~ %r{\Ahttps?://}
-
-    website_url
-  end
-
-  def short_website_url
-    website_url.sub(%r{\Ahttps?://}, '')
-  end
-
-  def all_ssh_keys
-    keys.map(&:publishable_key)
-  end
 
   def temp_oauth_email?
     email.start_with?('temp-email-for-oauth')

From dc629bb6b8146477fdbf9fcd11d10ebedc785029 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Tue, 10 Jul 2018 11:49:17 +0200
Subject: [PATCH 075/113] Modify locale/gitlab.pot for debugging purpose
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 locale/gitlab.pot | 21 ++++++++-------------
 1 file changed, 8 insertions(+), 13 deletions(-)

diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 83ff735580e..984753cffe5 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -16,6 +16,11 @@ msgstr ""
 "Content-Transfer-Encoding: 8bit\n"
 "Plural-Forms: nplurals=INTEGER; plural=EXPRESSION;\n"
 
+msgid "Adding 4 lines"
+msgid_plural "%d changed files"
+msgstr[0] ""
+msgstr[1] ""
+
 msgid "%d changed file"
 msgid_plural "%d changed files"
 msgstr[0] ""
@@ -31,21 +36,11 @@ msgid_plural "%d commits behind"
 msgstr[0] ""
 msgstr[1] ""
 
-msgid "%d exporter"
-msgid_plural "%d exporters"
-msgstr[0] ""
-msgstr[1] ""
-
 msgid "%d issue"
 msgid_plural "%d issues"
 msgstr[0] ""
 msgstr[1] ""
 
-msgid "%d layer"
-msgid_plural "%d layers"
-msgstr[0] ""
-msgstr[1] ""
-
 msgid "%d merge request"
 msgid_plural "%d merge requests"
 msgstr[0] ""
@@ -1434,14 +1429,14 @@ msgstr ""
 msgid "Comment & unresolve discussion"
 msgstr ""
 
-msgid "Comments"
-msgstr ""
-
 msgid "Commit"
 msgid_plural "Commits"
 msgstr[0] ""
 msgstr[1] ""
 
+msgid "Comments"
+msgstr ""
+
 msgid "Commit (%{commit_count})"
 msgid_plural "Commits (%{commit_count})"
 msgstr[0] ""

From ab87e7bab1d5cc20c7b69644843bfcb1f3f16918 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Tue, 10 Jul 2018 12:10:54 +0200
Subject: [PATCH 076/113] Improve Danger files after first review
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 .gitlab-ci.yml                 |  8 +++--
 danger/changelog/Dangerfile    | 53 +++++++++++++++++++++++++---------
 danger/changes_size/Dangerfile | 20 +++++++++----
 danger/database/Dangerfile     | 37 +++++++++++++++++-------
 danger/gemfile/Dangerfile      | 27 ++++++++++++-----
 danger/metadata/Dangerfile     |  4 +--
 danger/specs/Dangerfile        | 13 +++++----
 7 files changed, 115 insertions(+), 47 deletions(-)

diff --git a/.gitlab-ci.yml b/.gitlab-ci.yml
index 576a96f66f4..137c26d7dae 100644
--- a/.gitlab-ci.yml
+++ b/.gitlab-ci.yml
@@ -355,9 +355,13 @@ danger-review:
     - source scripts/utils.sh
     - retry gem install danger --no-ri --no-rdoc
   cache: {}
+  only:
+    refs:
+      - branches@gitlab-org/gitlab-ce
+      - branches@gitlab-org/gitlab-ee
   except:
-    - tags
-    - master
+    variables:
+      - $CI_COMMIT_REF_NAME =~ /^ce-to-ee-.*/
   script:
     - git version
     - danger --fail-on-errors=true
diff --git a/danger/changelog/Dangerfile b/danger/changelog/Dangerfile
index 773ffa15a0f..b4a2f7b964c 100644
--- a/danger/changelog/Dangerfile
+++ b/danger/changelog/Dangerfile
@@ -2,23 +2,55 @@
 
 require 'yaml'
 
+NO_CHANGELOG_LABELS = %w[backstage QA test]
+SEE_DOC = "See [the documentation](https://docs.gitlab.com/ce/development/changelog.html)."
+MISSING_CHANGELOG_MESSAGE = <<~MSG
+**[CHANGELOG missing](https://docs.gitlab.com/ce/development/changelog.html).**
+
+You can create one with:
+
+```
+bin/changelog -m %<mr_iid>s
+```
+
+If your merge request doesn't warrant a CHANGELOG entry,
+consider adding any of the %<labels>s labels.
+#{SEE_DOC}
+MSG
+
+def ee?
+  ENV['CI_PROJECT_NAME'] == 'gitlab-ee' || File.exist?('../../CHANGELOG-EE.md')
+end
+
+def ee_changelog?(changelog_path)
+  changelog_path =~ /unreleased-ee/
+end
+
+def ce_port_changelog?(changelog_path)
+  ee? && !ee_changelog?(changelog_path)
+end
+
 def check_changelog(path)
   yaml = YAML.safe_load(File.read(path))
 
-  fail "`title` should be set, in #{gitlab.html_link(path)}." if yaml["title"].nil?
-  fail "`type` should be set, in #{gitlab.html_link(path)}." if yaml["type"].nil?
+  fail "`title` should be set, in #{gitlab.html_link(path)}! #{SEE_DOC}" if yaml["title"].nil?
+  fail "`type` should be set, in #{gitlab.html_link(path)}! #{SEE_DOC}" if yaml["type"].nil?
 
   if yaml["merge_request"].nil?
-    message "Consider setting `merge_request` to #{gitlab.mr_json["iid"]} in #{gitlab.html_link(path)}."
-  elsif yaml["merge_request"] != gitlab.mr_json["iid"]
-    fail "Merge request IID was not set to #{gitlab.mr_json["iid"]}!"
+    message "Consider setting `merge_request` to #{gitlab.mr_json["iid"]} in #{gitlab.html_link(path)}. #{SEE_DOC}"
+  elsif yaml["merge_request"] != gitlab.mr_json["iid"] && !ce_port_changelog?(changelog_path)
+    fail "Merge request ID was not set to #{gitlab.mr_json["iid"]}! #{SEE_DOC}"
   end
 rescue StandardError
   # YAML could not be parsed, fail the build.
-  fail "#{gitlab.html_link(path)} isn't valid YAML!"
+  fail "#{gitlab.html_link(path)} isn't valid YAML! #{SEE_DOC}"
 end
 
-changelog_needed = !gitlab.mr_labels.include?("backstage")
+def presented_no_changelog_labels
+  NO_CHANGELOG_LABELS.map { |label| "~#{label}" }.join(', ')
+end
+
+changelog_needed = (gitlab.mr_labels & NO_CHANGELOG_LABELS).empty?
 changelog_found = git.added_files.find { |path| path =~ %r{\A(ee/)?(changelogs/unreleased)(-ee)?/} }
 
 if git.modified_files.include?("CHANGELOG.md")
@@ -29,11 +61,6 @@ if changelog_needed
   if changelog_found
     check_changelog(path)
   else
-    msg = [
-      "This merge request is missing a CHANGELOG entry, you can create one with `bin/changelog -m #{gitlab.mr_json["iid"]}`.",
-      "If your merge request doesn't warrant a CHANGELOG entry, consider adding the ~backstage label."
-    ]
-
-    warn msg.join(" ")
+    warn format(MISSING_CHANGELOG_MESSAGE, mr_iid: gitlab.mr_json["iid"], labels: presented_no_changelog_labels)
   end
 end
diff --git a/danger/changes_size/Dangerfile b/danger/changes_size/Dangerfile
index 4471e1926c9..597073e6029 100644
--- a/danger/changes_size/Dangerfile
+++ b/danger/changes_size/Dangerfile
@@ -1,9 +1,19 @@
 # rubocop:disable Style/SignalException
 
-if git.lines_of_code > 500
-  warn "This merge request is quite big, please consider splitting it into multiple merge requests."
-end
+# FIXME: git.info_for_file raises the following error
+# /usr/local/bundle/gems/git-1.4.0/lib/git/lib.rb:956:in `command':  (Danger::DSLError)
+# [!] Invalid `Dangerfile` file:
+# [!] Invalid `Dangerfile` file: git '--git-dir=/builds/gitlab-org/gitlab-ce/.git' '--work-tree=/builds/gitlab-org/gitlab-ce' cat-file '-t' ''  2>&1:fatal: Not a valid object name
+# This seems to be the same as https://github.com/danger/danger/issues/535.
 
-if git.lines_of_code > 5_000
-  fail "This merge request is definitely too big, please split it into multiple merge requests."
+# locale_files_updated = git.modified_files.select { |path| path.start_with?('locale') }
+# locale_files_updated.each do |locale_file_updated|
+#   git_stats = git.info_for_file(locale_file_updated)
+#   message "Git stats for #{locale_file_updated}: #{git_stats[:insertions]} insertions, #{git_stats[:deletions]} insertions"
+# end
+
+if git.lines_of_code > 2_000
+  warn "This merge request is definitely too big (more than #{git.lines_of_code} lines changed), please split it into multiple merge requests."
+elsif git.lines_of_code > 500
+  warn "This merge request is quite big  (more than #{git.lines_of_code} lines changed), please consider splitting it into multiple merge requests."
 end
diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
index 136dcef7972..4759ceb7eb4 100644
--- a/danger/database/Dangerfile
+++ b/danger/database/Dangerfile
@@ -1,16 +1,31 @@
 # rubocop:disable Style/SignalException
 
-db_schema_updated = !git.modified_files.grep(%r{\A(ee/)?(db/(geo/)?(post_)?migrate)/}).empty?
-migration_created = !git.added_files.grep(%r{\A(db/(post_)?migrate)/}).empty?
-geo_migration_created = !git.added_files.grep(%r{\Aee/(db/geo/(post_)?migrate)/}).empty?
+ANY_MIGRATIONS_REGEX = %r{\A(ee/)?(db/(geo/)?(post_)?migrate)/}
+SCHEMA_NOT_UPDATED_MESSAGE = <<~MSG
+**New %<migrations>s added but %<schema>s wasn't updated.**
 
-if (migration_created || geo_migration_created) && !db_schema_updated
-  msg = ["New migrations were added but #{gitlab.html_link("db/schema.rb")}"]
-  msg << "(nor #{gitlab.html_link("ee/db/geo/schema.rb")})" if geo_migration_created
-  msg << "wasn't. Usually, when adding new migrations, #{gitlab.html_link("db/schema.rb")}"
-  msg << "(and #{gitlab.html_link("ee/db/geo/schema.rb")})" if geo_migration_created
-  msg << "should be updated too (unless your migrations are data migrations and your"
-  msg << "migration isn't the most recent one)."
+Usually, when adding new %<migrations>s, %<schema>s should be
+updated too (unless the migration isn't changing the DB schema
+and isn't the most recent one).
+MSG
 
-  warn msg.join(" ")
+non_geo_db_schema_updated = !git.modified_files.grep(%r{\Adb/schema\.rb/}).empty?
+geo_db_schema_updated = !git.modified_files.grep(%r{\Aee/db/geo/schema\.rb/}).empty?
+
+any_migration_created = !git.added_files.grep(ANY_MIGRATIONS_REGEX).empty?
+any_migration_updated = !git.modified_files.grep(ANY_MIGRATIONS_REGEX).empty?
+
+non_geo_migration_created = !git.added_files.grep(%r{\A(db/(post_)?migrate)/}).empty?
+geo_migration_created = !git.added_files.grep(%r{\Aee/db/geo/(post_)?migrate/}).empty?
+
+if any_migration_created || any_migration_updated || non_geo_db_schema_updated || geo_db_schema_updated
+  message "Please make sure to ask a Database engineer for a review."
+end
+
+if non_geo_migration_created && !non_geo_db_schema_updated
+  warn format(SCHEMA_NOT_UPDATED_MESSAGE, migrations: 'migrations', schema: gitlab.html_link("db/schema.rb"))
+end
+
+if geo_migration_created && !geo_db_schema_updated
+  warn format(SCHEMA_NOT_UPDATED_MESSAGE, migrations: 'Geo migrations', schema: gitlab.html_link("ee/db/geo/schema.rb"))
 end
diff --git a/danger/gemfile/Dangerfile b/danger/gemfile/Dangerfile
index 3d38959a9d0..b9f59d95815 100644
--- a/danger/gemfile/Dangerfile
+++ b/danger/gemfile/Dangerfile
@@ -1,15 +1,26 @@
 # rubocop:disable Style/SignalException
 
+GEMFILE_LOCK_NOT_UPDATED_MESSAGE = <<~MSG
+**%<gemfile>s was updated but %<gemfile_lock>s wasn't updated.**
+
+Usually, when %<gemfile>s is updated, you should run
+```
+bundle install && \
+  BUNDLE_GEMFILE=Gemfile.rails5 bundle install
+```
+
+or
+
+```
+bundle update <the-added-or-updated-gem>
+```
+
+and commit the %<gemfile_lock>s changes.
+MSG
+
 gemfile_modified = git.modified_files.include?("Gemfile")
 gemfile_lock_modified = git.modified_files.include?("Gemfile.lock")
 
 if gemfile_modified && !gemfile_lock_modified
-  msg = [
-    "#{gitlab.html_link("Gemfile")} was edited but #{gitlab.html_link("Gemfile.lock")} wasn't.",
-    "Usually, when #{gitlab.html_link("Gemfile")} is updated, you should run",
-    "`bundle install && BUNDLE_GEMFILE=Gemfile.rails5 bundle install` or",
-    "`bundle update <the-added-or-updated-gem>` and commit the #{gitlab.html_link("Gemfile.lock")} changes."
-  ]
-
-  warn msg.join(" ")
+  warn format(GEMFILE_LOCK_NOT_UPDATED_MESSAGE, gemfile: gitlab.html_link("Gemfile"), gemfile_lock: gitlab.html_link("Gemfile.lock"))
 end
diff --git a/danger/metadata/Dangerfile b/danger/metadata/Dangerfile
index 033a84d6ecd..3cfaa04e01b 100644
--- a/danger/metadata/Dangerfile
+++ b/danger/metadata/Dangerfile
@@ -1,7 +1,7 @@
 # rubocop:disable Style/SignalException
 
 if gitlab.mr_body.size < 5
-  fail "Please provide a merge request description."
+  fail "Please provide a proper merge request description."
 end
 
 if gitlab.mr_labels.empty?
@@ -21,5 +21,5 @@ end
 has_pick_into_stable_label = gitlab.mr_labels.find { |label| label.start_with?('Pick into') }
 
 if gitlab.branch_for_base != "master" && !has_pick_into_stable_label
-  fail "All merge requests should target `master`. Otherwise, please set the relevant `Pick into X.Y` label."
+  warn "Most of the time, all merge requests should target `master`. Otherwise, please set the relevant `Pick into X.Y` label."
 end
diff --git a/danger/specs/Dangerfile b/danger/specs/Dangerfile
index 88e64c57a4b..0ed5235ec02 100644
--- a/danger/specs/Dangerfile
+++ b/danger/specs/Dangerfile
@@ -1,13 +1,14 @@
 # rubocop:disable Style/SignalException
 
+NO_NEW_SPEC_MESSAGE = <<~MSG
+You've made some app changes, but didn't add any tests.
+That's OK as long as you're refactoring existing code,
+but please consider adding the ~backstage label in that case.
+MSG
+
 has_app_changes = !git.modified_files.grep(%r{\A(ee/)?(app|lib|db/(geo/)?(post_)?migrate)/}).empty?
 has_spec_changes = !git.modified_files.grep(/spec/).empty?
 
 if has_app_changes && !has_spec_changes
-  msg = [
-    "You've made some app changes, but didn't add any tests.",
-    "That's OK as long as you're refactoring existing code (please consider adding the ~backstage label in that case)."
-  ]
-
-  warn msg.join(" "), sticky: false
+  warn NO_NEW_SPEC_MESSAGE, sticky: false
 end

From e0cf62d8aef978aa9e5e96b7c68876a0b8e7ec9a Mon Sep 17 00:00:00 2001
From: Joshua Lambert <joshua@gitlab.com>
Date: Wed, 11 Jul 2018 10:14:31 +0000
Subject: [PATCH 077/113] Fix object storage support notes

---
 doc/administration/job_artifacts.md | 13 ++++++-------
 1 file changed, 6 insertions(+), 7 deletions(-)

diff --git a/doc/administration/job_artifacts.md b/doc/administration/job_artifacts.md
index 10228d027e8..8c55c8c4298 100644
--- a/doc/administration/job_artifacts.md
+++ b/doc/administration/job_artifacts.md
@@ -88,13 +88,12 @@ _The artifacts are stored by default in
 ### Using object storage
 
 >**Notes:**
-- [Introduced][ee-1762] in [GitLab Premium][eep] 9.4.
-- Since version 9.5, artifacts are [browsable], when object storage is enabled. 
-  9.4 lacks this feature.
-> Available in [GitLab Premium](https://about.gitlab.com/pricing/) and
-[GitLab.com Silver](https://about.gitlab.com/gitlab-com/).
-> Since version 10.6, available in [GitLab CE](https://about.gitlab.com/pricing/)
-> Since version 11.0, we support direct_upload to S3.
+- [Introduced](https://gitlab.com/gitlab-org/gitlab-ee/merge_requests/1762) in
+  [GitLab Premium](https://about.gitlab.com/pricing/) 9.4.
+- Since version 9.5, artifacts are [browsable](../user/project/pipelines/job_artifacts.md#browsing-artifacts),
+  when object storage is enabled. 9.4 lacks this feature.
+- Since version 10.6, available in [GitLab Core](https://about.gitlab.com/pricing/)
+- Since version 11.0, we support `direct_upload` to S3.
 
 If you don't want to use the local disk where GitLab is installed to store the
 artifacts, you can use an object storage like AWS S3 instead.

From 751e1786dfe727c11ddae28e77be6eb88fbfbbf9 Mon Sep 17 00:00:00 2001
From: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
Date: Wed, 11 Jul 2018 13:20:14 +0300
Subject: [PATCH 078/113] Fix CI/CD import

It seems that fronted ci_cd_only variable must be a string

Signed-off-by: Dmitriy Zaporozhets <dmitriy.zaporozhets@gmail.com>
---
 app/views/import/_githubish_status.html.haml | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/app/views/import/_githubish_status.html.haml b/app/views/import/_githubish_status.html.haml
index 0f641352e99..f0d1e837317 100644
--- a/app/views/import/_githubish_status.html.haml
+++ b/app/views/import/_githubish_status.html.haml
@@ -53,4 +53,4 @@
 
 .js-importer-status{ data: { jobs_import_path: url_for([:jobs, :import, provider]),
                              import_path: url_for([:import, provider]),
-                             ci_cd_only: has_ci_cd_only_params? } }
+                             ci_cd_only: has_ci_cd_only_params?.to_s } }

From 723f74d49d037d0f93b50ce43fe24e44e6f11f03 Mon Sep 17 00:00:00 2001
From: Jacob Vosmaer <jacob@gitlab.com>
Date: Wed, 11 Jul 2018 12:59:15 +0200
Subject: [PATCH 079/113] Remove last flags from Blob and Workhorse

---
 lib/gitlab/git/blob.rb            |  89 +-------------
 lib/gitlab/workhorse.rb           |  24 +---
 spec/lib/gitlab/git/blob_spec.rb  | 194 ++++++++++++++----------------
 spec/lib/gitlab/workhorse_spec.rb |  42 +++----
 4 files changed, 111 insertions(+), 238 deletions(-)

diff --git a/lib/gitlab/git/blob.rb b/lib/gitlab/git/blob.rb
index 96fa94d5790..71857bd2d87 100644
--- a/lib/gitlab/git/blob.rb
+++ b/lib/gitlab/git/blob.rb
@@ -61,17 +61,8 @@ module Gitlab
         # Keep in mind that this method may allocate a lot of memory. It is up
         # to the caller to limit the number of blobs and blob_size_limit.
         #
-        # Gitaly migration issue: https://gitlab.com/gitlab-org/gitaly/issues/798
         def batch(repository, blob_references, blob_size_limit: MAX_DATA_DISPLAY_SIZE)
-          Gitlab::GitalyClient.migrate(:list_blobs_by_sha_path) do |is_enabled|
-            if is_enabled
-              repository.gitaly_blob_client.get_blobs(blob_references, blob_size_limit).to_a
-            else
-              blob_references.map do |sha, path|
-                find(repository, sha, path, limit: blob_size_limit)
-              end
-            end
-          end
+          repository.gitaly_blob_client.get_blobs(blob_references, blob_size_limit).to_a
         end
 
         # Returns an array of Blob instances just with the metadata, that means
@@ -84,16 +75,8 @@ module Gitlab
         # Returns array of Gitlab::Git::Blob
         # Does not guarantee blob data will be set
         def batch_lfs_pointers(repository, blob_ids)
-          repository.gitaly_migrate(:batch_lfs_pointers) do |is_enabled|
-            if is_enabled
-              repository.gitaly_blob_client.batch_lfs_pointers(blob_ids.to_a)
-            else
-              blob_ids.lazy
-                      .select { |sha| possible_lfs_blob?(repository, sha) }
-                      .map { |sha| rugged_raw(repository, sha, limit: LFS_POINTER_MAX_SIZE) }
-                      .select(&:lfs_pointer?)
-                      .force
-            end
+          repository.wrapped_gitaly_errors do
+            repository.gitaly_blob_client.batch_lfs_pointers(blob_ids.to_a)
           end
         end
 
@@ -104,72 +87,6 @@ module Gitlab
         def size_could_be_lfs?(size)
           size.between?(LFS_POINTER_MIN_SIZE, LFS_POINTER_MAX_SIZE)
         end
-
-        private
-
-        # Recursive search of blob id by path
-        #
-        # Ex.
-        #   blog/            # oid: 1a
-        #     app/           # oid: 2a
-        #       models/      # oid: 3a
-        #       file.rb      # oid: 4a
-        #
-        #
-        # Blob.find_entry_by_path(repo, '1a', 'blog', 'app', 'file.rb') # => '4a'
-        #
-        def find_entry_by_path(repository, root_id, *path_parts)
-          root_tree = repository.lookup(root_id)
-
-          entry = root_tree.find do |entry|
-            entry[:name] == path_parts[0]
-          end
-
-          return nil unless entry
-
-          if path_parts.size > 1
-            return nil unless entry[:type] == :tree
-
-            path_parts.shift
-            find_entry_by_path(repository, entry[:oid], *path_parts)
-          else
-            [:blob, :commit].include?(entry[:type]) ? entry : nil
-          end
-        end
-
-        def submodule_blob(blob_entry, path, sha)
-          new(
-            id: blob_entry[:oid],
-            name: blob_entry[:name],
-            size: 0,
-            data: '',
-            path: path,
-            commit_id: sha
-          )
-        end
-
-        def rugged_raw(repository, sha, limit:)
-          blob = repository.lookup(sha)
-
-          return unless blob.is_a?(Rugged::Blob)
-
-          new(
-            id: blob.oid,
-            size: blob.size,
-            data: blob.content(limit),
-            binary: blob.binary?
-          )
-        end
-
-        # Efficient lookup to determine if object size
-        # and type make it a possible LFS blob without loading
-        # blob content into memory with repository.lookup(sha)
-        def possible_lfs_blob?(repository, sha)
-          object_header = repository.rugged.read_header(sha)
-
-          object_header[:type] == :blob &&
-            size_could_be_lfs?(object_header[:len])
-        end
       end
 
       def initialize(options)
diff --git a/lib/gitlab/workhorse.rb b/lib/gitlab/workhorse.rb
index 55c899912f9..a9629a92a50 100644
--- a/lib/gitlab/workhorse.rb
+++ b/lib/gitlab/workhorse.rb
@@ -98,16 +98,12 @@ module Gitlab
       end
 
       def send_git_patch(repository, diff_refs)
-        params = if Gitlab::GitalyClient.feature_enabled?(:workhorse_send_git_patch, status: Gitlab::GitalyClient::MigrationStatus::OPT_OUT)
-                   {
-                     'GitalyServer' => gitaly_server_hash(repository),
-                     'RawPatchRequest' => Gitaly::RawPatchRequest.new(
-                       gitaly_diff_or_patch_hash(repository, diff_refs)
-                     ).to_json
-                   }
-                 else
-                   workhorse_diff_or_patch_hash(repository, diff_refs)
-                 end
+        params = {
+          'GitalyServer' => gitaly_server_hash(repository),
+          'RawPatchRequest' => Gitaly::RawPatchRequest.new(
+            gitaly_diff_or_patch_hash(repository, diff_refs)
+          ).to_json
+        }
 
         [
           SEND_DATA_HEADER,
@@ -220,14 +216,6 @@ module Gitlab
         }
       end
 
-      def workhorse_diff_or_patch_hash(repository, diff_refs)
-        {
-          'RepoPath'  => repository.path_to_repo,
-          'ShaFrom'   => diff_refs.base_sha,
-          'ShaTo'     => diff_refs.head_sha
-        }
-      end
-
       def gitaly_diff_or_patch_hash(repository, diff_refs)
         {
           repository: repository.gitaly_repository,
diff --git a/spec/lib/gitlab/git/blob_spec.rb b/spec/lib/gitlab/git/blob_spec.rb
index 6900c4189b7..034b89a46fa 100644
--- a/spec/lib/gitlab/git/blob_spec.rb
+++ b/spec/lib/gitlab/git/blob_spec.rb
@@ -178,76 +178,66 @@ describe Gitlab::Git::Blob, seed_helper: true do
   end
 
   describe '.batch' do
-    shared_examples 'loading blobs in batch' do
-      let(:blob_references) do
-        [
-          [SeedRepo::Commit::ID, "files/ruby/popen.rb"],
-          [SeedRepo::Commit::ID, 'six']
-        ]
-      end
+    let(:blob_references) do
+      [
+        [SeedRepo::Commit::ID, "files/ruby/popen.rb"],
+        [SeedRepo::Commit::ID, 'six']
+      ]
+    end
 
-      subject { described_class.batch(repository, blob_references) }
+    subject { described_class.batch(repository, blob_references) }
 
-      it { expect(subject.size).to eq(blob_references.size) }
+    it { expect(subject.size).to eq(blob_references.size) }
 
-      context 'first blob' do
-        let(:blob) { subject[0] }
+    context 'first blob' do
+      let(:blob) { subject[0] }
 
-        it { expect(blob.id).to eq(SeedRepo::RubyBlob::ID) }
-        it { expect(blob.name).to eq(SeedRepo::RubyBlob::NAME) }
-        it { expect(blob.path).to eq("files/ruby/popen.rb") }
-        it { expect(blob.commit_id).to eq(SeedRepo::Commit::ID) }
-        it { expect(blob.data[0..10]).to eq(SeedRepo::RubyBlob::CONTENT[0..10]) }
-        it { expect(blob.size).to eq(669) }
-        it { expect(blob.mode).to eq("100644") }
-      end
+      it { expect(blob.id).to eq(SeedRepo::RubyBlob::ID) }
+      it { expect(blob.name).to eq(SeedRepo::RubyBlob::NAME) }
+      it { expect(blob.path).to eq("files/ruby/popen.rb") }
+      it { expect(blob.commit_id).to eq(SeedRepo::Commit::ID) }
+      it { expect(blob.data[0..10]).to eq(SeedRepo::RubyBlob::CONTENT[0..10]) }
+      it { expect(blob.size).to eq(669) }
+      it { expect(blob.mode).to eq("100644") }
+    end
 
-      context 'second blob' do
-        let(:blob) { subject[1] }
+    context 'second blob' do
+      let(:blob) { subject[1] }
 
-        it { expect(blob.id).to eq('409f37c4f05865e4fb208c771485f211a22c4c2d') }
-        it { expect(blob.data).to eq('') }
-        it 'does not mark the blob as binary' do
-          expect(blob).not_to be_binary
-        end
-      end
-
-      context 'limiting' do
-        subject { described_class.batch(repository, blob_references, blob_size_limit: blob_size_limit) }
-
-        context 'positive' do
-          let(:blob_size_limit) { 10 }
-
-          it { expect(subject.first.data.size).to eq(10) }
-        end
-
-        context 'zero' do
-          let(:blob_size_limit) { 0 }
-
-          it 'only loads the metadata' do
-            expect(subject.first.size).not_to be(0)
-            expect(subject.first.data).to eq('')
-          end
-        end
-
-        context 'negative' do
-          let(:blob_size_limit) { -1 }
-
-          it 'ignores MAX_DATA_DISPLAY_SIZE' do
-            stub_const('Gitlab::Git::Blob::MAX_DATA_DISPLAY_SIZE', 100)
-
-            expect(subject.first.data.size).to eq(669)
-          end
-        end
+      it { expect(blob.id).to eq('409f37c4f05865e4fb208c771485f211a22c4c2d') }
+      it { expect(blob.data).to eq('') }
+      it 'does not mark the blob as binary' do
+        expect(blob).not_to be_binary
       end
     end
 
-    context 'when Gitaly list_blobs_by_sha_path feature is enabled' do
-      it_behaves_like 'loading blobs in batch'
-    end
+    context 'limiting' do
+      subject { described_class.batch(repository, blob_references, blob_size_limit: blob_size_limit) }
 
-    context 'when Gitaly list_blobs_by_sha_path feature is disabled', :disable_gitaly do
-      it_behaves_like 'loading blobs in batch'
+      context 'positive' do
+        let(:blob_size_limit) { 10 }
+
+        it { expect(subject.first.data.size).to eq(10) }
+      end
+
+      context 'zero' do
+        let(:blob_size_limit) { 0 }
+
+        it 'only loads the metadata' do
+          expect(subject.first.size).not_to be(0)
+          expect(subject.first.data).to eq('')
+        end
+      end
+
+      context 'negative' do
+        let(:blob_size_limit) { -1 }
+
+        it 'ignores MAX_DATA_DISPLAY_SIZE' do
+          stub_const('Gitlab::Git::Blob::MAX_DATA_DISPLAY_SIZE', 100)
+
+          expect(subject.first.data.size).to eq(669)
+        end
+      end
     end
   end
 
@@ -294,58 +284,48 @@ describe Gitlab::Git::Blob, seed_helper: true do
       )
     end
 
-    shared_examples 'fetching batch of LFS pointers' do
-      it 'returns a list of Gitlab::Git::Blob' do
-        blobs = described_class.batch_lfs_pointers(repository, [lfs_blob.id])
+    it 'returns a list of Gitlab::Git::Blob' do
+      blobs = described_class.batch_lfs_pointers(repository, [lfs_blob.id])
 
-        expect(blobs.count).to eq(1)
-        expect(blobs).to all( be_a(Gitlab::Git::Blob) )
-        expect(blobs).to be_an(Array)
-      end
-
-      it 'accepts blob IDs as a lazy enumerator' do
-        blobs = described_class.batch_lfs_pointers(repository, [lfs_blob.id].lazy)
-
-        expect(blobs.count).to eq(1)
-        expect(blobs).to all( be_a(Gitlab::Git::Blob) )
-      end
-
-      it 'handles empty list of IDs gracefully' do
-        blobs_1 = described_class.batch_lfs_pointers(repository, [].lazy)
-        blobs_2 = described_class.batch_lfs_pointers(repository, [])
-
-        expect(blobs_1).to eq([])
-        expect(blobs_2).to eq([])
-      end
-
-      it 'silently ignores tree objects' do
-        blobs = described_class.batch_lfs_pointers(repository, [tree_object.oid])
-
-        expect(blobs).to eq([])
-      end
-
-      it 'silently ignores non lfs objects' do
-        blobs = described_class.batch_lfs_pointers(repository, [non_lfs_blob.id])
-
-        expect(blobs).to eq([])
-      end
-
-      it 'avoids loading large blobs into memory' do
-        # This line could call `lookup` on `repository`, so do here before mocking.
-        non_lfs_blob_id = non_lfs_blob.id
-
-        expect(repository).not_to receive(:lookup)
-
-        described_class.batch_lfs_pointers(repository, [non_lfs_blob_id])
-      end
+      expect(blobs.count).to eq(1)
+      expect(blobs).to all( be_a(Gitlab::Git::Blob) )
+      expect(blobs).to be_an(Array)
     end
 
-    context 'when Gitaly batch_lfs_pointers is enabled' do
-      it_behaves_like 'fetching batch of LFS pointers'
+    it 'accepts blob IDs as a lazy enumerator' do
+      blobs = described_class.batch_lfs_pointers(repository, [lfs_blob.id].lazy)
+
+      expect(blobs.count).to eq(1)
+      expect(blobs).to all( be_a(Gitlab::Git::Blob) )
     end
 
-    context 'when Gitaly batch_lfs_pointers is disabled', :disable_gitaly do
-      it_behaves_like 'fetching batch of LFS pointers'
+    it 'handles empty list of IDs gracefully' do
+      blobs_1 = described_class.batch_lfs_pointers(repository, [].lazy)
+      blobs_2 = described_class.batch_lfs_pointers(repository, [])
+
+      expect(blobs_1).to eq([])
+      expect(blobs_2).to eq([])
+    end
+
+    it 'silently ignores tree objects' do
+      blobs = described_class.batch_lfs_pointers(repository, [tree_object.oid])
+
+      expect(blobs).to eq([])
+    end
+
+    it 'silently ignores non lfs objects' do
+      blobs = described_class.batch_lfs_pointers(repository, [non_lfs_blob.id])
+
+      expect(blobs).to eq([])
+    end
+
+    it 'avoids loading large blobs into memory' do
+      # This line could call `lookup` on `repository`, so do here before mocking.
+      non_lfs_blob_id = non_lfs_blob.id
+
+      expect(repository).not_to receive(:lookup)
+
+      described_class.batch_lfs_pointers(repository, [non_lfs_blob_id])
     end
   end
 
diff --git a/spec/lib/gitlab/workhorse_spec.rb b/spec/lib/gitlab/workhorse_spec.rb
index 98a1865d347..23869f3d2da 100644
--- a/spec/lib/gitlab/workhorse_spec.rb
+++ b/spec/lib/gitlab/workhorse_spec.rb
@@ -68,34 +68,22 @@ describe Gitlab::Workhorse do
     let(:diff_refs) { double(base_sha: "base", head_sha: "head") }
     subject { described_class.send_git_patch(repository, diff_refs) }
 
-    context 'when Gitaly workhorse_send_git_patch feature is enabled' do
-      it 'sets the header correctly' do
-        key, command, params = decode_workhorse_header(subject)
+    it 'sets the header correctly' do
+      key, command, params = decode_workhorse_header(subject)
 
-        expect(key).to eq("Gitlab-Workhorse-Send-Data")
-        expect(command).to eq("git-format-patch")
-        expect(params).to eq({
-          'GitalyServer' => {
-            address: Gitlab::GitalyClient.address(project.repository_storage),
-            token: Gitlab::GitalyClient.token(project.repository_storage)
-          },
-          'RawPatchRequest' => Gitaly::RawPatchRequest.new(
-            repository: repository.gitaly_repository,
-            left_commit_id: 'base',
-            right_commit_id: 'head'
-          ).to_json
-        }.deep_stringify_keys)
-      end
-    end
-
-    context 'when Gitaly workhorse_send_git_patch feature is disabled', :disable_gitaly do
-      it 'sets the header correctly' do
-        key, command, params = decode_workhorse_header(subject)
-
-        expect(key).to eq("Gitlab-Workhorse-Send-Data")
-        expect(command).to eq("git-format-patch")
-        expect(params).to eq("RepoPath" => repository.path_to_repo, "ShaFrom" => "base", "ShaTo" => "head")
-      end
+      expect(key).to eq("Gitlab-Workhorse-Send-Data")
+      expect(command).to eq("git-format-patch")
+      expect(params).to eq({
+        'GitalyServer' => {
+          address: Gitlab::GitalyClient.address(project.repository_storage),
+          token: Gitlab::GitalyClient.token(project.repository_storage)
+        },
+        'RawPatchRequest' => Gitaly::RawPatchRequest.new(
+          repository: repository.gitaly_repository,
+          left_commit_id: 'base',
+          right_commit_id: 'head'
+        ).to_json
+      }.deep_stringify_keys)
     end
   end
 

From 7ee5b1f6fb4e4e77111a194631476456cf4f9f97 Mon Sep 17 00:00:00 2001
From: Andrew Newdigate <andrew@gitlab.com>
Date: Wed, 11 Jul 2018 11:52:48 +0100
Subject: [PATCH 080/113] Add a fast_timeout for the `ServerService.ServerInfo`
 endpoint

---
 changelogs/unreleased/gitaly-serverservice-info-timeout.yml | 5 +++++
 lib/gitaly/server.rb                                        | 2 +-
 lib/gitlab/gitaly_client/server_service.rb                  | 2 +-
 3 files changed, 7 insertions(+), 2 deletions(-)
 create mode 100644 changelogs/unreleased/gitaly-serverservice-info-timeout.yml

diff --git a/changelogs/unreleased/gitaly-serverservice-info-timeout.yml b/changelogs/unreleased/gitaly-serverservice-info-timeout.yml
new file mode 100644
index 00000000000..7f2fe8b9c93
--- /dev/null
+++ b/changelogs/unreleased/gitaly-serverservice-info-timeout.yml
@@ -0,0 +1,5 @@
+---
+title: Use appropriate timeout on Gitaly server info checks, avoid error on timeout
+merge_request: 20552
+author:
+type: fixed
diff --git a/lib/gitaly/server.rb b/lib/gitaly/server.rb
index 2760211fee8..f95e423ef22 100644
--- a/lib/gitaly/server.rb
+++ b/lib/gitaly/server.rb
@@ -50,7 +50,7 @@ module Gitaly
       @info ||=
         begin
           Gitlab::GitalyClient::ServerService.new(@storage).info
-        rescue GRPC::Unavailable, GRPC::GRPC::DeadlineExceeded
+        rescue GRPC::Unavailable, GRPC::DeadlineExceeded
           # This will show the server as being out of date
           Gitaly::ServerInfoResponse.new(git_version: '', server_version: '', storage_statuses: [])
         end
diff --git a/lib/gitlab/gitaly_client/server_service.rb b/lib/gitlab/gitaly_client/server_service.rb
index 2e1076d1f66..ad898278353 100644
--- a/lib/gitlab/gitaly_client/server_service.rb
+++ b/lib/gitlab/gitaly_client/server_service.rb
@@ -9,7 +9,7 @@ module Gitlab
       end
 
       def info
-        GitalyClient.call(@storage, :server_service, :server_info, Gitaly::ServerInfoRequest.new)
+        GitalyClient.call(@storage, :server_service, :server_info, Gitaly::ServerInfoRequest.new, timeout: GitalyClient.fast_timeout)
       end
     end
   end

From 57c32c7dbdd470b1ea31edf412e8bb0aa6261e21 Mon Sep 17 00:00:00 2001
From: Filipa Lacerda <filipa@gitlab.com>
Date: Wed, 11 Jul 2018 12:43:51 +0100
Subject: [PATCH 081/113] Adds specs for getters in merge request vuex diff
 module

---
 app/assets/javascripts/diffs/store/actions.js |   1 -
 .../diffs/components/diff_file_header_spec.js |   2 +-
 spec/javascripts/diffs/store/getters_spec.js  | 118 ++++--------------
 3 files changed, 28 insertions(+), 93 deletions(-)

diff --git a/app/assets/javascripts/diffs/store/actions.js b/app/assets/javascripts/diffs/store/actions.js
index 18caf87d6da..e5bb9904664 100644
--- a/app/assets/javascripts/diffs/store/actions.js
+++ b/app/assets/javascripts/diffs/store/actions.js
@@ -95,7 +95,6 @@ export const expandAllFiles = ({ commit }) => {
  */
 export const toggleFileDiscussions = ({ getters, dispatch }, diff) => {
   const discussions = getters.getDiffFileDiscussions(diff);
-
   const shouldCloseAll = getters.diffHasAllExpandedDiscussions(diff);
   const shouldExpandAll = getters.diffHasAllCollpasedDiscussions(diff);
 
diff --git a/spec/javascripts/diffs/components/diff_file_header_spec.js b/spec/javascripts/diffs/components/diff_file_header_spec.js
index e4658a635f5..0f3a95da5bf 100644
--- a/spec/javascripts/diffs/components/diff_file_header_spec.js
+++ b/spec/javascripts/diffs/components/diff_file_header_spec.js
@@ -4,7 +4,7 @@ import diffsModule from '~/diffs/store/modules';
 import notesModule from '~/notes/stores/modules';
 import DiffFileHeader from '~/diffs/components/diff_file_header.vue';
 import { convertObjectPropsToCamelCase } from '~/lib/utils/common_utils';
-import mountComponent, { mountComponentWithStore } from 'spec/helpers/vue_mount_component_helper';
+import { mountComponentWithStore } from 'spec/helpers/vue_mount_component_helper';
 
 const discussionFixture = 'merge_requests/diff_discussion.json';
 
diff --git a/spec/javascripts/diffs/store/getters_spec.js b/spec/javascripts/diffs/store/getters_spec.js
index bddf4d2aeac..919b612bb6a 100644
--- a/spec/javascripts/diffs/store/getters_spec.js
+++ b/spec/javascripts/diffs/store/getters_spec.js
@@ -5,9 +5,20 @@ import discussion from '../mock_data/diff_discussions';
 
 describe('Diffs Module Getters', () => {
   let localState;
+  let discussionMock;
+  let discussionMock1;
+
+  const diffFileMock = {
+    fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
+  };
 
   beforeEach(() => {
     localState = state();
+    discussionMock = Object.assign({}, discussion);
+    discussionMock.diff_file.file_hash = diffFileMock.fileHash;
+
+    discussionMock1 = Object.assign({}, discussion);
+    discussionMock1.diff_file.file_hash = diffFileMock.fileHash;
   });
 
   describe('isParallelView', () => {
@@ -67,13 +78,6 @@ describe('Diffs Module Getters', () => {
 
   describe('diffHasAllExpandedDiscussions', () => {
     it('returns true when all discussions are expanded', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
-      discussionMock.diff_file.file_hash = diffFileMock.fileHash;
-
       expect(
         getters.diffHasAllExpandedDiscussions(localState, {
           getDiffFileDiscussions: () => [discussionMock, discussionMock],
@@ -82,10 +86,6 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when there are no discussions', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
       expect(
         getters.diffHasAllExpandedDiscussions(localState, {
           getDiffFileDiscussions: () => [],
@@ -94,15 +94,6 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when one discussions is collapsed', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
-      discussionMock.diff_file.file_hash = diffFileMock.fileHash;
-      const discussionMock1 = Object.assign({}, discussion);
-      discussionMock1.diff_file.file_hash = diffFileMock.fileHash;
-
       discussionMock1.expanded = false;
 
       expect(
@@ -115,11 +106,6 @@ describe('Diffs Module Getters', () => {
 
   describe('diffHasAllCollpasedDiscussions', () => {
     it('returns true when all discussions are collapsed', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
       discussionMock.diff_file.file_hash = diffFileMock.fileHash;
       discussionMock.expanded = false;
 
@@ -131,10 +117,6 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when there are no discussions', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
       expect(
         getters.diffHasAllCollpasedDiscussions(localState, {
           getDiffFileDiscussions: () => [],
@@ -143,14 +125,6 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when one discussions is expanded', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
-      discussionMock.diff_file.file_hash = diffFileMock.fileHash;
-      const discussionMock1 = Object.assign({}, discussion);
-      discussionMock1.diff_file.file_hash = diffFileMock.fileHash;
       discussionMock1.expanded = false;
 
       expect(
@@ -163,14 +137,6 @@ describe('Diffs Module Getters', () => {
 
   describe('diffHasExpandedDiscussions', () => {
     it('returns true when one of the discussions is expanded', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
-      discussionMock.diff_file.file_hash = diffFileMock.fileHash;
-      const discussionMock1 = Object.assign({}, discussion);
-      discussionMock1.diff_file.file_hash = diffFileMock.fileHash;
       discussionMock1.expanded = false;
 
       expect(
@@ -181,10 +147,6 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when there are no discussions', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
       expect(
         getters.diffHasExpandedDiscussions(localState, { getDiffFileDiscussions: () => [] })(
           diffFileMock,
@@ -193,17 +155,7 @@ describe('Diffs Module Getters', () => {
     });
 
     it('returns false when no discussion is expanded', () => {
-      const diffFileMock = {
-        fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-      };
-
-      const discussionMock = Object.assign({}, discussion);
-      discussion.diff_file.file_hash = diffFileMock.fileHash;
       discussionMock.expanded = false;
-
-      const discussionMock1 = Object.assign({}, discussion);
-      discussionMock1.diff_file.file_hash = diffFileMock.fileHash;
-
       discussionMock1.expanded = false;
 
       expect(
@@ -214,38 +166,22 @@ describe('Diffs Module Getters', () => {
     });
   });
 
-  // describe('getDiffFileDiscussions', () => {
-  //   it('returns an array with discussions when fileHash matches and the discussion belongs to a diff', () => {
-  //     const diffFileMock = {
-  //       fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-  //     };
+  describe('getDiffFileDiscussions', () => {
+    it('returns an array with discussions when fileHash matches and the discussion belongs to a diff', () => {
+      discussionMock.diff_file.file_hash = diffFileMock.fileHash;
 
-  //     const discussionMock = Object.assign({}, discussion);
-  //     discussionMock.diff_file.file_hash = diffFileMock.fileHash;
+      expect(
+        getters.getDiffFileDiscussions(localState, {}, {}, { discussions: [discussionMock] })(
+          diffFileMock,
+        ).length,
+      ).toEqual(1);
+    });
 
-  //     expect(
-  //       getters.getDiffFileDiscussions(
-  //         localState,
-  //         {},
-  //         {},
-  //         { discussions: [discussionMock] },
-  //       )(diffFileMock).length,
-  //     ).toEqual(1);
-  //   });
-
-  //   it('returns an empty array when no discussions are found in the given diff', () => {
-  //     const diffFileMock = {
-  //       fileHash: '9732849daca6ae818696d9575f5d1207d1a7f8bb',
-  //     };
-
-  //     expect(
-  //       getters.getDiffFileDiscussions(
-  //         localState,
-  //         {},
-  //         {},
-  //         { discussions: () => ([]) },
-  //       )(diffFileMock).length,
-  //     ).toEqual(0);
-  //   });
-  // });
+    it('returns an empty array when no discussions are found in the given diff', () => {
+      expect(
+        getters.getDiffFileDiscussions(localState, {}, {}, { discussions: [] })(diffFileMock)
+          .length,
+      ).toEqual(0);
+    });
+  });
 });

From 997453ce208d1161313925ba1ab9d3168f8e58ee Mon Sep 17 00:00:00 2001
From: Gabriel Mazetto <brodock@gmail.com>
Date: Wed, 11 Jul 2018 12:37:40 +0200
Subject: [PATCH 082/113] Add Gitaly Servers to Admin > Overview menu

---
 app/views/layouts/nav/sidebar/_admin.html.haml            | 8 ++++++--
 ...d-gitaly-servers-to-admin-overview-navigation-menu.yml | 5 +++++
 2 files changed, 11 insertions(+), 2 deletions(-)
 create mode 100644 changelogs/unreleased/49114-add-gitaly-servers-to-admin-overview-navigation-menu.yml

diff --git a/app/views/layouts/nav/sidebar/_admin.html.haml b/app/views/layouts/nav/sidebar/_admin.html.haml
index 62402c32e08..4c73da4c75b 100644
--- a/app/views/layouts/nav/sidebar/_admin.html.haml
+++ b/app/views/layouts/nav/sidebar/_admin.html.haml
@@ -6,14 +6,14 @@
           = sprite_icon('admin', size: 24)
         .sidebar-context-title Admin Area
     %ul.sidebar-top-level-items
-      = nav_link(controller: %w(dashboard admin projects users groups jobs runners cohorts conversational_development_index), html_options: {class: 'home'}) do
+      = nav_link(controller: %w(dashboard admin projects users groups jobs runners gitaly_servers cohorts conversational_development_index), html_options: {class: 'home'}) do
         = link_to admin_root_path, class: 'shortcuts-tree' do
           .nav-icon-container
             = sprite_icon('overview')
           %span.nav-item-name
             Overview
         %ul.sidebar-sub-level-items
-          = nav_link(controller: %w(dashboard admin projects users groups jobs runners cohorts conversational_development_index), html_options: { class: "fly-out-top-item" } ) do
+          = nav_link(controller: %w(dashboard admin projects users groups jobs runners gitaly_servers cohorts conversational_development_index), html_options: { class: "fly-out-top-item" } ) do
             = link_to admin_root_path do
               %strong.fly-out-top-item-name
                 #{ _('Overview') }
@@ -42,6 +42,10 @@
             = link_to admin_runners_path, title: 'Runners' do
               %span
                 Runners
+          = nav_link(controller: :gitaly_servers) do
+            = link_to admin_gitaly_servers_path, title: 'Gitaly Servers' do
+              %span
+                Gitaly Servers
           = nav_link path: 'cohorts#index' do
             = link_to admin_cohorts_path, title: 'Cohorts' do
               %span
diff --git a/changelogs/unreleased/49114-add-gitaly-servers-to-admin-overview-navigation-menu.yml b/changelogs/unreleased/49114-add-gitaly-servers-to-admin-overview-navigation-menu.yml
new file mode 100644
index 00000000000..ab320450a1a
--- /dev/null
+++ b/changelogs/unreleased/49114-add-gitaly-servers-to-admin-overview-navigation-menu.yml
@@ -0,0 +1,5 @@
+---
+title: Gitaly Servers link into Admin > Overview navigation menu
+merge_request: 20550
+author:
+type: added

From ced15dd53169d54f1d6c32addf8b0a331227ed09 Mon Sep 17 00:00:00 2001
From: Yorick Peterse <yorickpeterse@gmail.com>
Date: Wed, 11 Jul 2018 14:48:31 +0200
Subject: [PATCH 083/113] Tweak the Danger settings for DB changes

Instead of only checking for migrations, we now check for a variety of
files and directories that require a database review. We also include
some steps on how to make sure changes are reviewed.
---
 danger/database/Dangerfile | 69 +++++++++++++++++++++++++++++++++-----
 1 file changed, 61 insertions(+), 8 deletions(-)

diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
index 4759ceb7eb4..eea84fcdaab 100644
--- a/danger/database/Dangerfile
+++ b/danger/database/Dangerfile
@@ -1,6 +1,23 @@
+# frozen_string_literal: true
 # rubocop:disable Style/SignalException
 
-ANY_MIGRATIONS_REGEX = %r{\A(ee/)?(db/(geo/)?(post_)?migrate)/}
+# All the files/directories that should be reviewed by the DB team.
+DB_FILES = [
+  'db/',
+  'app/models/project_authorization.rb',
+  'app/services/users/refresh_authorized_projects_service.rb',
+  'lib/gitlab/background_migration.rb',
+  'lib/gitlab/background_migration/',
+  'lib/gitlab/database.rb',
+  'lib/gitlab/database/',
+  'lib/gitlab/github_import.rb',
+  'lib/gitlab/github_import/',
+  'lib/gitlab/sql/',
+  'rubocop/cop/migration',
+  'ee/db/',
+  'ee/lib/gitlab/database/'
+].freeze
+
 SCHEMA_NOT_UPDATED_MESSAGE = <<~MSG
 **New %<migrations>s added but %<schema>s wasn't updated.**
 
@@ -9,19 +26,28 @@ updated too (unless the migration isn't changing the DB schema
 and isn't the most recent one).
 MSG
 
+def database_paths_requiring_review(files)
+  to_review = []
+
+  files.each do |file|
+    review = DB_FILES.any? do |pattern|
+      file.start_with?(pattern)
+    end
+
+    to_review << file if review
+  end
+
+  to_review
+end
+
+all_files = git.added_files + git.modified_files
+
 non_geo_db_schema_updated = !git.modified_files.grep(%r{\Adb/schema\.rb/}).empty?
 geo_db_schema_updated = !git.modified_files.grep(%r{\Aee/db/geo/schema\.rb/}).empty?
 
-any_migration_created = !git.added_files.grep(ANY_MIGRATIONS_REGEX).empty?
-any_migration_updated = !git.modified_files.grep(ANY_MIGRATIONS_REGEX).empty?
-
 non_geo_migration_created = !git.added_files.grep(%r{\A(db/(post_)?migrate)/}).empty?
 geo_migration_created = !git.added_files.grep(%r{\Aee/db/geo/(post_)?migrate/}).empty?
 
-if any_migration_created || any_migration_updated || non_geo_db_schema_updated || geo_db_schema_updated
-  message "Please make sure to ask a Database engineer for a review."
-end
-
 if non_geo_migration_created && !non_geo_db_schema_updated
   warn format(SCHEMA_NOT_UPDATED_MESSAGE, migrations: 'migrations', schema: gitlab.html_link("db/schema.rb"))
 end
@@ -29,3 +55,30 @@ end
 if geo_migration_created && !geo_db_schema_updated
   warn format(SCHEMA_NOT_UPDATED_MESSAGE, migrations: 'Geo migrations', schema: gitlab.html_link("ee/db/geo/schema.rb"))
 end
+
+db_paths_to_review = database_paths_requiring_review(all_files)
+
+unless db_paths_to_review.empty?
+  message 'This merge request adds or changes files that require a ' \
+    'review from the Database team.'
+
+  markdown(<<~MARKDOWN.strip)
+## Database Review
+
+The following files require a review from the Database Team:
+
+* #{db_paths_to_review.join("\n* ")}
+
+To make sure these changes are reviewed, take the following steps:
+
+1. Edit your merge request, and add `gl-database` to the list of Group
+   approvers.
+1. Mention `@gl-database` in a separate comment, and explain what needs to be
+   reviewed by the team. Please don't mention the team until your changes are
+   ready for review.
+  MARKDOWN
+
+  unless gitlab.mr_labels.include?('database')
+    warn 'This merge request is missing the ~database label.'
+  end
+end

From b851fe8635d8c9603ce827dac23decccdf8b6508 Mon Sep 17 00:00:00 2001
From: Yorick Peterse <yorickpeterse@gmail.com>
Date: Wed, 11 Jul 2018 14:51:48 +0200
Subject: [PATCH 084/113] Fix "Database Team" typo for Danger

---
 danger/database/Dangerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
index eea84fcdaab..5d9b53fe4f0 100644
--- a/danger/database/Dangerfile
+++ b/danger/database/Dangerfile
@@ -65,7 +65,7 @@ unless db_paths_to_review.empty?
   markdown(<<~MARKDOWN.strip)
 ## Database Review
 
-The following files require a review from the Database Team:
+The following files require a review from the Database team:
 
 * #{db_paths_to_review.join("\n* ")}
 

From c5a514de767f1d6b66443552bdc16d09370d9d07 Mon Sep 17 00:00:00 2001
From: Filipa Lacerda <filipa@gitlab.com>
Date: Wed, 11 Jul 2018 15:30:41 +0100
Subject: [PATCH 085/113] Adds specs for toggleFileDiscussions action

---
 app/assets/javascripts/diffs/store/actions.js |  4 +-
 spec/javascripts/diffs/store/actions_spec.js  | 44 +++++++++++++++++++
 2 files changed, 45 insertions(+), 3 deletions(-)

diff --git a/app/assets/javascripts/diffs/store/actions.js b/app/assets/javascripts/diffs/store/actions.js
index e5bb9904664..27001142257 100644
--- a/app/assets/javascripts/diffs/store/actions.js
+++ b/app/assets/javascripts/diffs/store/actions.js
@@ -103,9 +103,7 @@ export const toggleFileDiscussions = ({ getters, dispatch }, diff) => {
 
     if (shouldCloseAll) {
       dispatch('collapseDiscussion', data, { root: true });
-    } else if (shouldExpandAll) {
-      dispatch('expandDiscussion', data, { root: true });
-    } else if (!shouldCloseAll && !shouldExpandAll && !discussion.expanded) {
+    } else if (shouldExpandAll || (!shouldCloseAll && !shouldExpandAll && !discussion.expanded)) {
       dispatch('expandDiscussion', data, { root: true });
     }
   });
diff --git a/spec/javascripts/diffs/store/actions_spec.js b/spec/javascripts/diffs/store/actions_spec.js
index 6829c1e956a..c1560dac1a0 100644
--- a/spec/javascripts/diffs/store/actions_spec.js
+++ b/spec/javascripts/diffs/store/actions_spec.js
@@ -191,4 +191,48 @@ describe('DiffsStoreActions', () => {
       );
     });
   });
+
+  describe('toggleFileDiscussions', () => {
+    it('should dispatch collapseDiscussion when all discussions are expanded', () => {
+      const getters = {
+        getDiffFileDiscussions: jasmine.createSpy().and.returnValue([{ id: 1 }]),
+        diffHasAllExpandedDiscussions: jasmine.createSpy().and.returnValue(true),
+        diffHasAllCollpasedDiscussions: jasmine.createSpy().and.returnValue(false),
+      };
+
+      const dispatch = jasmine.createSpy('dispatch');
+
+      actions.toggleFileDiscussions({ getters, dispatch });
+
+      expect(dispatch).toHaveBeenCalledWith('collapseDiscussion', { discussionId: 1 }, { root: true });
+    });
+
+    it('should dispatch expandDiscussion when all discussions are collapsed', () => {
+      const getters = {
+        getDiffFileDiscussions: jasmine.createSpy().and.returnValue([{ id: 1 }]),
+        diffHasAllExpandedDiscussions: jasmine.createSpy().and.returnValue(false),
+        diffHasAllCollpasedDiscussions: jasmine.createSpy().and.returnValue(true),
+      };
+
+      const dispatch = jasmine.createSpy();
+
+      actions.toggleFileDiscussions({ getters, dispatch });
+
+      expect(dispatch).toHaveBeenCalledWith('expandDiscussion', { discussionId: 1 }, { root: true });
+    });
+
+    it('should dispatch expandDiscussion when some discussions are collapsed and others are expanded for the collapsed discussion', () => {
+      const getters = {
+        getDiffFileDiscussions: jasmine.createSpy().and.returnValue([{ expanded: false, id: 1 }]),
+        diffHasAllExpandedDiscussions: jasmine.createSpy().and.returnValue(false),
+        diffHasAllCollpasedDiscussions: jasmine.createSpy().and.returnValue(false),
+      };
+
+      const dispatch = jasmine.createSpy();
+
+      actions.toggleFileDiscussions({ getters, dispatch });
+
+      expect(dispatch).toHaveBeenCalledWith('expandDiscussion', { discussionId: 1 }, { root: true });
+    });
+  });
 });

From a63bce1a4b55bc6cbafb9dec12d33028521489e9 Mon Sep 17 00:00:00 2001
From: Mark Chao <mchao@gitlab.com>
Date: Wed, 11 Jul 2018 14:36:08 +0000
Subject: [PATCH 086/113] Resolve "Rename the `Master` role to `Maintainer`"
 Backend

---
 app/models/concerns/protected_ref_access.rb   |   7 +-
 .../select_for_project_authorization.rb       |   7 +-
 app/models/group.rb                           |  14 ++-
 app/models/member.rb                          |   6 +-
 app/models/members/project_member.rb          |   6 +-
 app/models/project.rb                         |   7 +-
 app/models/project_group_link.rb              |   3 +-
 app/models/project_team.rb                    |  21 +++-
 app/models/user.rb                            |  22 ++--
 app/policies/clusters/cluster_policy.rb       |   2 +-
 app/policies/deploy_token_policy.rb           |   4 +-
 app/policies/group_policy.rb                  |   4 +-
 app/policies/project_policy.rb                |   8 +-
 app/services/notification_service.rb          |  10 +-
 app/services/projects/create_service.rb       |   2 +-
 .../protected_branches/access_level_params.rb |   2 +-
 .../legacy_api_create_service.rb              |   4 +-
 .../legacy_api_update_service.rb              |   4 +-
 db/fixtures/development/12_snippets.rb        |   2 +-
 ...4938_add_protected_branches_push_access.rb |   2 +-
 ...952_add_protected_branches_merge_access.rb |   2 +-
 doc/raketasks/user_management.md              |   2 +-
 lib/gitlab/access.rb                          |  24 ++--
 lib/gitlab/import_export/members_mapper.rb    |   2 +-
 .../with_nested_groups.rb                     |   2 +-
 .../without_nested_groups.rb                  |   2 +-
 lib/tasks/gitlab/bulk_add_permission.rake     |   4 +-
 .../project/settings/protected_branches.rb    |   6 +
 .../autocomplete_controller_spec.rb           |  20 ++--
 .../boards/issues_controller_spec.rb          |   2 +-
 .../boards/lists_controller_spec.rb           |   2 +-
 .../dashboard/groups_controller_spec.rb       |   4 +-
 .../dashboard/milestones_controller_spec.rb   |   2 +-
 spec/controllers/dashboard_controller_spec.rb |   2 +-
 .../groups/boards_controller_spec.rb          |   2 +-
 .../groups/milestones_controller_spec.rb      |   2 +-
 .../groups/runners_controller_spec.rb         |   2 +-
 .../groups/settings/ci_cd_controller_spec.rb  |   2 +-
 .../groups/variables_controller_spec.rb       |   2 +-
 spec/controllers/groups_controller_spec.rb    |   6 +-
 .../projects/avatars_controller_spec.rb       |   2 +-
 .../projects/badges_controller_spec.rb        |   2 +-
 .../projects/blame_controller_spec.rb         |   2 +-
 .../projects/blob_controller_spec.rb          |  12 +-
 .../projects/boards_controller_spec.rb        |   2 +-
 .../projects/branches_controller_spec.rb      |   2 +-
 .../clusters/applications_controller_spec.rb  |   4 +-
 .../projects/clusters_controller_spec.rb      |  36 +++---
 .../projects/commit_controller_spec.rb        |   2 +-
 .../projects/commits_controller_spec.rb       |   2 +-
 .../projects/compare_controller_spec.rb       |   2 +-
 .../cycle_analytics_controller_spec.rb        |   2 +-
 .../projects/deploy_keys_controller_spec.rb   |   2 +-
 .../projects/deployments_controller_spec.rb   |   2 +-
 .../projects/environments_controller_spec.rb  |   2 +-
 .../projects/find_file_controller_spec.rb     |   2 +-
 .../projects/graphs_controller_spec.rb        |   2 +-
 .../projects/group_links_controller_spec.rb   |   2 +-
 .../projects/hooks_controller_spec.rb         |   2 +-
 .../projects/imports_controller_spec.rb       |   2 +-
 .../projects/issues_controller_spec.rb        |   4 +-
 .../projects/jobs_controller_spec.rb          |   2 +-
 .../projects/labels_controller_spec.rb        |   2 +-
 .../projects/mattermosts_controller_spec.rb   |   2 +-
 .../creations_controller_spec.rb              |   4 +-
 .../merge_requests/diffs_controller_spec.rb   |   2 +-
 .../projects/milestones_controller_spec.rb    |   2 +-
 .../projects/pages_controller_spec.rb         |   2 +-
 .../projects/pages_domains_controller_spec.rb |   2 +-
 .../pipeline_schedules_controller_spec.rb     |  28 ++---
 .../pipelines_settings_controller_spec.rb     |   2 +-
 .../project_members_controller_spec.rb        |  20 ++--
 .../prometheus/metrics_controller_spec.rb     |   2 +-
 .../protected_branches_controller_spec.rb     |   8 +-
 .../protected_tags_controller_spec.rb         |   2 +-
 .../projects/runners_controller_spec.rb       |   2 +-
 .../projects/services_controller_spec.rb      |   2 +-
 .../settings/ci_cd_controller_spec.rb         |   6 +-
 .../settings/integrations_controller_spec.rb  |   2 +-
 .../settings/repository_controller_spec.rb    |   2 +-
 .../projects/snippets_controller_spec.rb      |   6 +-
 .../projects/templates_controller_spec.rb     |   2 +-
 .../projects/tree_controller_spec.rb          |   2 +-
 .../projects/variables_controller_spec.rb     |   2 +-
 spec/controllers/projects_controller_spec.rb  |   8 +-
 spec/controllers/uploads_controller_spec.rb   |   8 +-
 spec/factories/group_members.rb               |   2 +-
 spec/factories/project_members.rb             |   4 +-
 spec/factories/projects.rb                    |   2 +-
 spec/factories/protected_branches.rb          |   8 +-
 spec/factories/protected_tags.rb              |   6 +-
 spec/features/admin/admin_groups_spec.rb      |   2 +-
 spec/features/admin/admin_projects_spec.rb    |   4 +-
 spec/features/atom/dashboard_issues_spec.rb   |   4 +-
 spec/features/atom/dashboard_spec.rb          |   2 +-
 spec/features/atom/users_spec.rb              |   2 +-
 spec/features/boards/add_issues_modal_spec.rb |   2 +-
 spec/features/boards/boards_spec.rb           |   4 +-
 spec/features/boards/issue_ordering_spec.rb   |   2 +-
 spec/features/boards/modal_filter_spec.rb     |   2 +-
 spec/features/boards/new_issue_spec.rb        |   2 +-
 spec/features/boards/sidebar_spec.rb          |   2 +-
 .../features/boards/sub_group_project_spec.rb |   2 +-
 spec/features/commits_spec.rb                 |   2 +-
 spec/features/cycle_analytics_spec.rb         |   6 +-
 spec/features/dashboard/activity_spec.rb      |   2 +-
 .../dashboard/archived_projects_spec.rb       |   4 +-
 .../dashboard/datetime_on_tooltips_spec.rb    |   4 +-
 spec/features/dashboard/issues_filter_spec.rb |   2 +-
 spec/features/dashboard/issues_spec.rb        |   2 +-
 .../features/dashboard/merge_requests_spec.rb |   4 +-
 .../features/dashboard/milestone_tabs_spec.rb |   2 +-
 spec/features/dashboard/milestones_spec.rb    |   2 +-
 .../project_member_activity_index_spec.rb     |   2 +-
 .../dashboard/user_filters_projects_spec.rb   |   2 +-
 .../discussion_comments/commit_spec.rb        |   2 +-
 .../discussion_comments/issue_spec.rb         |   2 +-
 .../discussion_comments/merge_request_spec.rb |   2 +-
 .../discussion_comments/snippets_spec.rb      |   2 +-
 spec/features/global_search_spec.rb           |   2 +-
 spec/features/group_variables_spec.rb         |   2 +-
 spec/features/groups/activity_spec.rb         |   2 +-
 spec/features/groups/empty_states_spec.rb     |   2 +-
 spec/features/groups/issues_spec.rb           |   4 +-
 .../groups/members/filter_members_spec.rb     |   2 +-
 .../master_manages_access_requests_spec.rb    |   4 +-
 spec/features/groups/milestone_spec.rb        |   2 +-
 .../groups/milestones_sorting_spec.rb         |   2 +-
 spec/features/ics/dashboard_issues_spec.rb    |   2 +-
 spec/features/ide_spec.rb                     |   2 +-
 spec/features/invites_spec.rb                 |   2 +-
 .../close_reopen_report_toggle_spec.rb        |   4 +-
 spec/features/issues/award_emoji_spec.rb      |   2 +-
 .../issues/bulk_assignment_labels_spec.rb     |   2 +-
 ...e_for_discussions_in_merge_request_spec.rb |   2 +-
 ...single_discussion_in_merge_request_spec.rb |   2 +-
 .../filtered_search/dropdown_assignee_spec.rb |   8 +-
 .../filtered_search/dropdown_author_spec.rb   |   8 +-
 .../filtered_search/dropdown_emoji_spec.rb    |   2 +-
 .../filtered_search/dropdown_hint_spec.rb     |   2 +-
 .../filtered_search/dropdown_label_spec.rb    |   2 +-
 .../dropdown_milestone_spec.rb                |   2 +-
 .../filtered_search/filter_issues_spec.rb     |   2 +-
 .../issues/filtered_search/search_bar_spec.rb |   2 +-
 .../filtered_search/visual_tokens_spec.rb     |   4 +-
 spec/features/issues/form_spec.rb             |   6 +-
 spec/features/issues/gfm_autocomplete_spec.rb |   2 +-
 spec/features/issues/spam_issues_spec.rb      |   2 +-
 spec/features/issues/todo_spec.rb             |   2 +-
 spec/features/issues/update_issues_spec.rb    |   2 +-
 .../issues/user_uses_slash_commands_spec.rb   |   6 +-
 spec/features/issues_spec.rb                  |   2 +-
 .../markdown/gitlab_flavored_markdown_spec.rb |   2 +-
 .../maintainer_edits_fork_spec.rb             |   2 +-
 ...ommits_from_memebers_who_can_merge_spec.rb |   2 +-
 .../merge_request/user_cherry_picks_spec.rb   |   2 +-
 ...er_customizes_merge_commit_message_spec.rb |   2 +-
 .../user_merges_immediately_spec.rb           |   2 +-
 ...r_merges_only_if_pipeline_succeeds_spec.rb |   2 +-
 ...user_merges_when_pipeline_succeeds_spec.rb |   2 +-
 .../merge_request/user_posts_notes_spec.rb    |   2 +-
 ...diff_notes_and_discussions_resolve_spec.rb |   4 +-
 .../user_sees_avatar_on_diff_notes_spec.rb    |   2 +-
 .../user_sees_closing_issues_message_spec.rb  |   2 +-
 .../user_sees_deleted_target_branch_spec.rb   |   2 +-
 .../user_sees_discussions_spec.rb             |   2 +-
 .../user_sees_empty_state_spec.rb             |   2 +-
 ...epending_on_unresolved_discussions_spec.rb |   2 +-
 .../user_sees_merge_widget_spec.rb            |   6 +-
 .../merge_request/user_sees_pipelines_spec.rb |   4 +-
 .../merge_request/user_sees_versions_spec.rb  |   2 +-
 .../user_sees_wip_help_message_spec.rb        |   2 +-
 .../user_selects_branches_for_new_mr_spec.rb  |   2 +-
 .../user_toggles_whitespace_changes_spec.rb   |   2 +-
 .../user_uses_slash_commands_spec.rb          |   4 +-
 .../merge_requests/user_mass_updates_spec.rb  |   2 +-
 .../user_squashes_merge_request_spec.rb       |   2 +-
 spec/features/milestone_spec.rb               |   2 +-
 .../user_visits_notifications_tab_spec.rb     |   2 +-
 .../profiles/user_visits_profile_spec.rb      |   2 +-
 spec/features/project_variables_spec.rb       |   2 +-
 spec/features/projects/actve_tabs_spec.rb     |   2 +-
 ...ser_interacts_with_awards_in_issue_spec.rb |   2 +-
 spec/features/projects/badges/list_spec.rb    |   2 +-
 .../features/projects/blobs/blob_show_spec.rb |  12 +-
 spec/features/projects/blobs/edit_spec.rb     |   4 +-
 ...er_creates_new_blob_in_new_project_spec.rb |   4 +-
 .../branches/new_branch_ref_dropdown_spec.rb  |   2 +-
 spec/features/projects/branches_spec.rb       |   4 +-
 .../projects/clusters/applications_spec.rb    |   2 +-
 spec/features/projects/clusters/gcp_spec.rb   |   2 +-
 spec/features/projects/clusters/user_spec.rb  |   2 +-
 spec/features/projects/clusters_spec.rb       |   2 +-
 spec/features/projects/commit/builds_spec.rb  |   2 +-
 .../projects/commit/cherry_pick_spec.rb       |   2 +-
 .../projects/commit/diff_notes_spec.rb        |   2 +-
 .../commits/user_browses_commits_spec.rb      |   2 +-
 spec/features/projects/compare_spec.rb        |   2 +-
 spec/features/projects/deploy_keys_spec.rb    |   2 +-
 .../features/projects/diffs/diff_show_spec.rb |   2 +-
 .../projects/environments/environment_spec.rb |   4 +-
 .../environments/environments_spec.rb         |   4 +-
 .../projects/features_visibility_spec.rb      |   4 +-
 ...project_owner_creates_license_file_spec.rb |  10 +-
 ...eate_license_file_in_empty_project_spec.rb |   6 +-
 .../files/template_selector_menu_spec.rb      |   2 +-
 .../projects/files/user_creates_files_spec.rb |   2 +-
 .../projects/files/user_deletes_files_spec.rb |   2 +-
 .../projects/files/user_edits_files_spec.rb   |   2 +-
 .../projects/files/user_find_file_spec.rb     |   2 +-
 .../files/user_reads_pipeline_status_spec.rb  |   2 +-
 .../files/user_replaces_files_spec.rb         |   2 +-
 .../projects/files/user_uploads_files_spec.rb |   2 +-
 spec/features/projects/fork_spec.rb           |   4 +-
 spec/features/projects/graph_spec.rb          |   2 +-
 .../projects/hook_logs/user_reads_log_spec.rb |   2 +-
 .../projects/issuable_templates_spec.rb       |   2 +-
 .../projects/jobs/user_browses_job_spec.rb    |   2 +-
 .../projects/jobs/user_browses_jobs_spec.rb   |   2 +-
 .../labels/user_creates_labels_spec.rb        |   4 +-
 .../projects/labels/user_edits_labels_spec.rb |   2 +-
 .../labels/user_removes_labels_spec.rb        |   2 +-
 .../anonymous_user_sees_members_spec.rb       |   2 +-
 ...equest_access_to_his_group_project_spec.rb |   4 +-
 .../members/groups_with_access_list_spec.rb   |   2 +-
 ...r_adds_member_with_expiration_date_spec.rb |   8 +-
 .../master_manages_access_requests_spec.rb    |   4 +-
 .../projects/members/share_with_group_spec.rb |  30 ++---
 .../features/projects/members/sorting_spec.rb |  24 ++--
 .../members/user_requests_access_spec.rb      |   4 +-
 .../user_closes_merge_request_spec.rb         |   2 +-
 .../user_comments_on_commit_spec.rb           |   2 +-
 .../user_comments_on_diff_spec.rb             |   2 +-
 .../user_comments_on_merge_request_spec.rb    |   2 +-
 .../user_creates_merge_request_spec.rb        |   2 +-
 .../user_edits_merge_request_spec.rb          |   2 +-
 .../user_manages_subscription_spec.rb         |   2 +-
 .../user_reopens_merge_request_spec.rb        |   2 +-
 .../user_sorts_merge_requests_spec.rb         |   2 +-
 .../user_views_open_merge_request_spec.rb     |   2 +-
 .../user_interacts_with_labels_spec.rb        |   2 +-
 spec/features/projects/new_project_spec.rb    |   2 +-
 spec/features/projects/pages_spec.rb          |   2 +-
 .../projects/pipeline_schedules_spec.rb       |   4 +-
 .../projects/pipelines/pipelines_spec.rb      |   2 +-
 spec/features/projects/remote_mirror_spec.rb  |   2 +-
 .../services/user_activates_asana_spec.rb     |   2 +-
 .../services/user_activates_assembla_spec.rb  |   2 +-
 ...user_activates_atlassian_bamboo_ci_spec.rb |   2 +-
 .../user_activates_emails_on_push_spec.rb     |   2 +-
 .../services/user_activates_flowdock_spec.rb  |   2 +-
 .../services/user_activates_hipchat_spec.rb   |   2 +-
 .../services/user_activates_irker_spec.rb     |   2 +-
 .../user_activates_issue_tracker_spec.rb      |   2 +-
 ...er_activates_jetbrains_teamcity_ci_spec.rb |   2 +-
 .../services/user_activates_jira_spec.rb      |   2 +-
 ...activates_mattermost_slash_command_spec.rb |   2 +-
 .../services/user_activates_packagist_spec.rb |   2 +-
 .../user_activates_pivotaltracker_spec.rb     |   2 +-
 .../user_activates_prometheus_spec.rb         |   2 +-
 .../services/user_activates_pushover_spec.rb  |   2 +-
 ...user_activates_slack_notifications_spec.rb |   2 +-
 ...user_activates_slack_slash_command_spec.rb |   2 +-
 .../services/user_views_services_spec.rb      |   2 +-
 .../settings/forked_project_settings_spec.rb  |   4 +-
 .../settings/integration_settings_spec.rb     |   4 +-
 .../projects/settings/lfs_settings_spec.rb    |   6 +-
 .../settings/pipelines_settings_spec.rb       |   4 +-
 .../projects/settings/project_badges_spec.rb  |   2 +-
 .../settings/repository_settings_spec.rb      |   6 +-
 .../settings/user_archives_project_spec.rb    |   2 +-
 .../settings/user_changes_avatar_spec.rb      |   2 +-
 .../user_interacts_with_deploy_keys_spec.rb   |   4 +-
 .../settings/user_manages_group_links_spec.rb |   4 +-
 .../user_manages_project_members_spec.rb      |   6 +-
 .../settings/visibility_settings_spec.rb      |   8 +-
 .../user_sees_setup_shortcut_buttons_spec.rb  |   8 +-
 .../projects/snippets/create_snippet_spec.rb  |   2 +-
 spec/features/projects/snippets/show_spec.rb  |   2 +-
 .../snippets/user_comments_on_snippet_spec.rb |   2 +-
 .../snippets/user_deletes_snippet_spec.rb     |   2 +-
 .../snippets/user_updates_snippet_spec.rb     |   2 +-
 .../snippets/user_views_snippets_spec.rb      |   2 +-
 .../projects/sub_group_issuables_spec.rb      |   2 +-
 .../projects/tree/create_directory_spec.rb    |   2 +-
 .../projects/tree/create_file_spec.rb         |   2 +-
 spec/features/projects/tree/tree_show_spec.rb |   2 +-
 .../projects/tree/upload_file_spec.rb         |   2 +-
 .../projects/user_uses_shortcuts_spec.rb      |   2 +-
 .../projects/user_views_empty_project_spec.rb |   4 +-
 spec/features/projects/view_on_env_spec.rb    |   2 +-
 .../projects/wiki/markdown_preview_spec.rb    |   2 +-
 .../wiki/user_creates_wiki_page_spec.rb       |   2 +-
 .../wiki/user_updates_wiki_page_spec.rb       |   2 +-
 .../user_views_wiki_in_project_page_spec.rb   |   2 +-
 .../wiki/user_views_wiki_page_spec.rb         |   2 +-
 spec/features/projects_spec.rb                |   6 +-
 spec/features/protected_branches_spec.rb      |   4 +-
 spec/features/reportable_note/commit_spec.rb  |   2 +-
 spec/features/reportable_note/issue_spec.rb   |   2 +-
 .../reportable_note/merge_request_spec.rb     |   2 +-
 .../features/reportable_note/snippets_spec.rb |   2 +-
 spec/features/runners_spec.rb                 |  14 +--
 .../search/user_searches_for_code_spec.rb     |   2 +-
 .../search/user_searches_for_issues_spec.rb   |   2 +-
 .../user_searches_for_merge_requests_spec.rb  |   2 +-
 .../user_searches_for_milestones_spec.rb      |   2 +-
 .../user_searches_for_wiki_pages_spec.rb      |   2 +-
 .../security/group/internal_access_spec.rb    |  10 +-
 .../security/group/private_access_spec.rb     |  10 +-
 .../security/group/public_access_spec.rb      |  10 +-
 .../security/project/internal_access_spec.rb  |  68 +++++------
 .../security/project/private_access_spec.rb   |  62 +++++-----
 .../security/project/public_access_spec.rb    |  68 +++++------
 .../project/snippet/internal_access_spec.rb   |  12 +-
 .../project/snippet/private_access_spec.rb    |   8 +-
 .../project/snippet/public_access_spec.rb     |  16 +--
 spec/features/signed_commits_spec.rb          |   6 +-
 spec/features/tags/master_creates_tag_spec.rb |   4 +-
 spec/features/tags/master_deletes_tag_spec.rb |   4 +-
 spec/features/tags/master_updates_tag_spec.rb |   4 +-
 spec/features/tags/master_views_tags_spec.rb  |   4 +-
 spec/features/task_lists_spec.rb              |   2 +-
 spec/features/triggers_spec.rb                |   4 +-
 ...user_browses_projects_on_user_page_spec.rb |   6 +-
 spec/finders/access_requests_finder_spec.rb   |   4 +-
 spec/finders/admin/projects_finder_spec.rb    |   2 +-
 .../finder_with_cross_project_access_spec.rb  |   2 +-
 .../contributed_projects_finder_spec.rb       |   4 +-
 spec/finders/environments_finder_spec.rb      |   2 +-
 spec/finders/group_members_finder_spec.rb     |  24 ++--
 spec/finders/group_projects_finder_spec.rb    |  14 +--
 spec/finders/issues_finder_spec.rb            |   2 +-
 spec/finders/joined_groups_finder_spec.rb     |  10 +-
 spec/finders/members_finder_spec.rb           |  12 +-
 spec/finders/merge_requests_finder_spec.rb    |   4 +-
 spec/finders/move_to_project_finder_spec.rb   |  18 +--
 spec/finders/notes_finder_spec.rb             |   2 +-
 spec/finders/projects_finder_spec.rb          |   4 +-
 spec/fixtures/trace/sample_trace              |  32 +++---
 spec/helpers/markup_helper_spec.rb            |   2 +-
 spec/helpers/notes_helper_spec.rb             |  16 +--
 spec/javascripts/fixtures/commit.rb           |   2 +-
 spec/javascripts/fixtures/groups.rb           |   2 +-
 spec/javascripts/fixtures/projects.rb         |   2 +-
 .../lib/banzai/filter/redactor_filter_spec.rb |   2 +-
 spec/lib/gitlab/checks/change_access_spec.rb  |   4 +-
 .../pipeline/chain/validate/abilities_spec.rb |   4 +-
 spec/lib/gitlab/ci/status/build/play_spec.rb  |   2 +-
 .../lib/gitlab/ci/status/stage/common_spec.rb |   2 +-
 .../gitlab/closing_issue_extractor_spec.rb    |   4 +-
 .../cycle_analytics/permissions_spec.rb       |   4 +-
 spec/lib/gitlab/git_access_spec.rb            |  28 ++---
 .../google_code_import/importer_spec.rb       |   2 +-
 .../import_export/members_mapper_spec.rb      |   2 +-
 .../import_export/project_tree_saver_spec.rb  |   6 +-
 .../gitlab/import_export/repo_saver_spec.rb   |   2 +-
 .../import_export/wiki_repo_saver_spec.rb     |   2 +-
 spec/lib/gitlab/middleware/go_spec.rb         |   2 +-
 .../lib/gitlab/project_authorizations_spec.rb |   6 +-
 .../lib/gitlab/project_search_results_spec.rb |   2 +-
 .../gitlab/slash_commands/issue_move_spec.rb  |   2 +-
 .../gitlab/slash_commands/issue_new_spec.rb   |   2 +-
 .../slash_commands/issue_search_spec.rb       |   2 +-
 .../gitlab/slash_commands/issue_show_spec.rb  |   2 +-
 spec/lib/gitlab/user_access_spec.rb           |  40 +++----
 spec/mailers/notify_spec.rb                   |  16 +--
 spec/models/concerns/issuable_spec.rb         |   8 +-
 .../concerns/protected_ref_access_spec.rb     |  10 +-
 .../concerns/resolvable_discussion_spec.rb    |   2 +-
 spec/models/group_spec.rb                     |  48 ++++----
 spec/models/hooks/system_hook_spec.rb         |   8 +-
 spec/models/issue_spec.rb                     |   2 +-
 spec/models/lfs_file_lock_spec.rb             |  12 +-
 spec/models/member_spec.rb                    |  86 +++++++-------
 spec/models/members/group_member_spec.rb      |   2 +-
 spec/models/members/project_member_spec.rb    |  10 +-
 spec/models/merge_request_spec.rb             |   8 +-
 spec/models/note_spec.rb                      |   6 +-
 spec/models/project_authorization_spec.rb     |   6 +-
 spec/models/project_spec.rb                   |  10 +-
 spec/models/project_team_spec.rb              | 108 +++++++++---------
 .../merge_access_level_spec.rb                |   2 +-
 .../push_access_level_spec.rb                 |   2 +-
 spec/models/user_spec.rb                      |  66 +++++------
 spec/policies/ci/build_policy_spec.rb         |  10 +-
 .../ci/pipeline_schedule_policy_spec.rb       |   8 +-
 spec/policies/ci/trigger_policy_spec.rb       |  12 +-
 spec/policies/clusters/cluster_policy_spec.rb |   4 +-
 spec/policies/deploy_key_policy_spec.rb       |   2 +-
 spec/policies/deploy_token_policy_spec.rb     |  12 +-
 spec/policies/environment_policy_spec.rb      |  20 ++--
 spec/policies/global_policy_spec.rb           |   4 +-
 spec/policies/group_policy_spec.rb            |  42 +++----
 spec/policies/project_policy_spec.rb          |  30 ++---
 spec/policies/protected_branch_policy_spec.rb |   4 +-
 .../merge_request_presenter_spec.rb           |   6 +-
 spec/presenters/project_presenter_spec.rb     |   8 +-
 spec/requests/api/access_requests_spec.rb     |  38 +++---
 spec/requests/api/award_emoji_spec.rb         |   2 +-
 spec/requests/api/badges_spec.rb              |  54 ++++-----
 spec/requests/api/branches_spec.rb            |  16 +--
 spec/requests/api/commits_spec.rb             |  10 +-
 spec/requests/api/deployments_spec.rb         |   2 +-
 spec/requests/api/environments_spec.rb        |   6 +-
 spec/requests/api/group_variables_spec.rb     |  10 +-
 spec/requests/api/groups_spec.rb              |   8 +-
 spec/requests/api/issues_spec.rb              |   2 +-
 spec/requests/api/jobs_spec.rb                |   2 +-
 spec/requests/api/labels_spec.rb              |   2 +-
 spec/requests/api/members_spec.rb             |  84 +++++++-------
 spec/requests/api/merge_request_diffs_spec.rb |   2 +-
 spec/requests/api/notes_spec.rb               |   2 +-
 spec/requests/api/pages_domains_spec.rb       |  28 ++---
 spec/requests/api/pipeline_schedules_spec.rb  |  22 ++--
 spec/requests/api/pipelines_spec.rb           |   2 +-
 spec/requests/api/project_export_spec.rb      |  38 +++---
 spec/requests/api/project_hooks_spec.rb       |   4 +-
 spec/requests/api/project_import_spec.rb      |   4 +-
 spec/requests/api/projects_spec.rb            |  14 +--
 spec/requests/api/protected_branches_spec.rb  |  34 +++---
 spec/requests/api/repositories_spec.rb        |   2 +-
 spec/requests/api/runners_spec.rb             |   8 +-
 spec/requests/api/tags_spec.rb                |  14 +--
 spec/requests/api/triggers_spec.rb            |   2 +-
 spec/requests/api/variables_spec.rb           |   2 +-
 spec/requests/api/wikis_spec.rb               |  62 +++++-----
 spec/requests/git_http_spec.rb                |  12 +-
 spec/requests/lfs_http_spec.rb                |  14 +--
 spec/requests/lfs_locks_api_spec.rb           |   6 +-
 spec/serializers/deploy_key_entity_spec.rb    |   4 +-
 spec/serializers/group_child_entity_spec.rb   |   2 +-
 ...er_registry_authentication_service_spec.rb |   4 +-
 .../ci/create_pipeline_service_spec.rb        |   8 +-
 .../ci/retry_pipeline_service_spec.rb         |   4 +-
 .../ci/stop_environments_service_spec.rb      |   2 +-
 .../discussions/resolve_service_spec.rb       |   2 +-
 spec/services/files/create_service_spec.rb    |   2 +-
 spec/services/files/delete_service_spec.rb    |   2 +-
 spec/services/files/multi_service_spec.rb     |   2 +-
 spec/services/files/update_service_spec.rb    |   2 +-
 spec/services/git_push_service_spec.rb        |  12 +-
 spec/services/groups/update_service_spec.rb   |   8 +-
 spec/services/issues/close_service_spec.rb    |   2 +-
 spec/services/issues/create_service_spec.rb   |  16 +--
 spec/services/issues/reopen_service_spec.rb   |   2 +-
 spec/services/issues/update_service_spec.rb   |   4 +-
 spec/services/lfs/unlock_file_service_spec.rb |   6 +-
 .../approve_access_request_service_spec.rb    |   6 +-
 spec/services/members/create_service_spec.rb  |   2 +-
 spec/services/members/destroy_service_spec.rb |   6 +-
 spec/services/members/update_service_spec.rb  |   6 +-
 .../merge_requests/close_service_spec.rb      |   2 +-
 .../merge_requests/create_service_spec.rb     |  20 ++--
 .../merge_requests/ff_merge_service_spec.rb   |   2 +-
 .../merge_requests/merge_service_spec.rb      |   2 +-
 .../merge_requests/post_merge_service_spec.rb |   2 +-
 .../merge_requests/rebase_service_spec.rb     |   2 +-
 .../merge_requests/reopen_service_spec.rb     |   2 +-
 .../merge_requests/update_service_spec.rb     |   2 +-
 .../services/milestones/close_service_spec.rb |   2 +-
 .../milestones/create_service_spec.rb         |   2 +-
 .../milestones/destroy_service_spec.rb        |   2 +-
 .../milestones/promote_service_spec.rb        |   2 +-
 spec/services/notes/create_service_spec.rb    |   2 +-
 .../notes/post_process_service_spec.rb        |   2 +-
 .../notes/quick_actions_service_spec.rb       |  20 ++--
 spec/services/notes/update_service_spec.rb    |   2 +-
 spec/services/notification_service_spec.rb    | 106 ++++++++---------
 spec/services/projects/create_service_spec.rb |   4 +-
 .../projects/move_access_service_spec.rb      |  12 +-
 ...ove_project_authorizations_service_spec.rb |   8 +-
 .../move_project_group_links_service_spec.rb  |   8 +-
 .../move_project_members_service_spec.rb      |   8 +-
 .../overwrite_project_service_spec.rb         |   8 +-
 .../projects/transfer_service_spec.rb         |   2 +-
 .../protected_branches/create_service_spec.rb |   8 +-
 .../protected_tags/create_service_spec.rb     |   4 +-
 spec/services/search/global_service_spec.rb   |   2 +-
 spec/services/search_service_spec.rb          |   2 +-
 ...efresh_authorized_projects_service_spec.rb |  30 ++---
 ...issuable_slash_commands_shared_examples.rb |  32 +++---
 spec/support/helpers/markdown_feature.rb      |   2 +-
 .../import_export/export_file_helper.rb       |   2 +-
 .../access_matchers_for_controller.rb         |   2 +-
 ..._service_slash_commands_shared_examples.rb |   4 +-
 ...creatable_merge_request_shared_examples.rb |   6 +-
 .../editable_merge_request_shared_examples.rb |   6 +-
 ..._manages_access_requests_shared_example.rb |  14 +--
 .../members_notifications_shared_example.rb   |   2 +-
 .../projects/imports/new.html.haml_spec.rb    |   2 +-
 .../_pipeline_schedule.html.haml_spec.rb      |   6 +-
 .../shared/notes/_form.html.haml_spec.rb      |   2 +-
 spec/workers/merge_worker_spec.rb             |   2 +-
 spec/workers/pipeline_schedule_worker_spec.rb |   2 +-
 495 files changed, 1631 insertions(+), 1596 deletions(-)

diff --git a/app/models/concerns/protected_ref_access.rb b/app/models/concerns/protected_ref_access.rb
index e3a7f2d5498..71b0c3468b9 100644
--- a/app/models/concerns/protected_ref_access.rb
+++ b/app/models/concerns/protected_ref_access.rb
@@ -2,19 +2,20 @@ module ProtectedRefAccess
   extend ActiveSupport::Concern
 
   ALLOWED_ACCESS_LEVELS = [
-    Gitlab::Access::MASTER,
+    Gitlab::Access::MAINTAINER,
     Gitlab::Access::DEVELOPER,
     Gitlab::Access::NO_ACCESS
   ].freeze
 
   HUMAN_ACCESS_LEVELS = {
-    Gitlab::Access::MASTER => "Maintainers".freeze,
+    Gitlab::Access::MAINTAINER => "Maintainers".freeze,
     Gitlab::Access::DEVELOPER => "Developers + Maintainers".freeze,
     Gitlab::Access::NO_ACCESS => "No one".freeze
   }.freeze
 
   included do
-    scope :master, -> { where(access_level: Gitlab::Access::MASTER) }
+    scope :master, -> { maintainer } # @deprecated
+    scope :maintainer, -> { where(access_level: Gitlab::Access::MAINTAINER) }
     scope :developer, -> { where(access_level: Gitlab::Access::DEVELOPER) }
 
     validates :access_level, presence: true, if: :role?, inclusion: {
diff --git a/app/models/concerns/select_for_project_authorization.rb b/app/models/concerns/select_for_project_authorization.rb
index 58194b0ea13..7af0fdbd618 100644
--- a/app/models/concerns/select_for_project_authorization.rb
+++ b/app/models/concerns/select_for_project_authorization.rb
@@ -6,8 +6,11 @@ module SelectForProjectAuthorization
       select("projects.id AS project_id, members.access_level")
     end
 
-    def select_as_master_for_project_authorization
-      select(["projects.id AS project_id", "#{Gitlab::Access::MASTER} AS access_level"])
+    def select_as_maintainer_for_project_authorization
+      select(["projects.id AS project_id", "#{Gitlab::Access::MAINTAINER} AS access_level"])
     end
+
+    # @deprecated
+    alias_method :select_as_master_for_project_authorization, :select_as_maintainer_for_project_authorization
   end
 end
diff --git a/app/models/group.rb b/app/models/group.rb
index b0392774379..28677320e28 100644
--- a/app/models/group.rb
+++ b/app/models/group.rb
@@ -186,10 +186,13 @@ class Group < Namespace
     add_user(user, :developer, current_user: current_user)
   end
 
-  def add_master(user, current_user = nil)
-    add_user(user, :master, current_user: current_user)
+  def add_maintainer(user, current_user = nil)
+    add_user(user, :maintainer, current_user: current_user)
   end
 
+  # @deprecated
+  alias_method :add_master, :add_maintainer
+
   def add_owner(user, current_user = nil)
     add_user(user, :owner, current_user: current_user)
   end
@@ -206,12 +209,15 @@ class Group < Namespace
     members_with_parents.owners.where(user_id: user).any?
   end
 
-  def has_master?(user)
+  def has_maintainer?(user)
     return false unless user
 
-    members_with_parents.masters.where(user_id: user).any?
+    members_with_parents.maintainers.where(user_id: user).any?
   end
 
+  # @deprecated
+  alias_method :has_master?, :has_maintainer?
+
   # Check if user is a last owner of the group.
   # Parent owners are ignored for nested groups.
   def last_owner?(user)
diff --git a/app/models/member.rb b/app/models/member.rb
index 68572f2e33a..00a13a279a9 100644
--- a/app/models/member.rb
+++ b/app/models/member.rb
@@ -69,9 +69,11 @@ class Member < ActiveRecord::Base
   scope :guests, -> { active.where(access_level: GUEST) }
   scope :reporters, -> { active.where(access_level: REPORTER) }
   scope :developers, -> { active.where(access_level: DEVELOPER) }
-  scope :masters,  -> { active.where(access_level: MASTER) }
+  scope :maintainers, -> { active.where(access_level: MAINTAINER) }
+  scope :masters, -> { maintainers } # @deprecated
   scope :owners,  -> { active.where(access_level: OWNER) }
-  scope :owners_and_masters,  -> { active.where(access_level: [OWNER, MASTER]) }
+  scope :owners_and_maintainers,  -> { active.where(access_level: [OWNER, MAINTAINER]) }
+  scope :owners_and_masters,  -> { owners_and_maintainers } # @deprecated
 
   scope :order_name_asc, -> { left_join_users.reorder(Gitlab::Database.nulls_last_order('users.name', 'ASC')) }
   scope :order_name_desc, -> { left_join_users.reorder(Gitlab::Database.nulls_last_order('users.name', 'DESC')) }
diff --git a/app/models/members/project_member.rb b/app/models/members/project_member.rb
index 024106056b4..4f27d0aeaf8 100644
--- a/app/models/members/project_member.rb
+++ b/app/models/members/project_member.rb
@@ -17,19 +17,19 @@ class ProjectMember < Member
     # Add users to projects with passed access option
     #
     # access can be an integer representing a access code
-    # or symbol like :master representing role
+    # or symbol like :maintainer representing role
     #
     # Ex.
     #   add_users_to_projects(
     #     project_ids,
     #     user_ids,
-    #     ProjectMember::MASTER
+    #     ProjectMember::MAINTAINER
     #   )
     #
     #   add_users_to_projects(
     #     project_ids,
     #     user_ids,
-    #     :master
+    #     :maintainer
     #   )
     #
     def add_users_to_projects(project_ids, users, access_level, current_user: nil, expires_at: nil)
diff --git a/app/models/project.rb b/app/models/project.rb
index 770262f6193..1894de6ceed 100644
--- a/app/models/project.rb
+++ b/app/models/project.rb
@@ -269,7 +269,8 @@ class Project < ActiveRecord::Base
   delegate :name, to: :owner, allow_nil: true, prefix: true
   delegate :members, to: :team, prefix: true
   delegate :add_user, :add_users, to: :team
-  delegate :add_guest, :add_reporter, :add_developer, :add_master, :add_role, to: :team
+  delegate :add_guest, :add_reporter, :add_developer, :add_maintainer, :add_role, to: :team
+  delegate :add_master, to: :team # @deprecated
   delegate :group_runners_enabled, :group_runners_enabled=, :group_runners_enabled?, to: :ci_cd_settings
 
   # Validations
@@ -1647,10 +1648,10 @@ class Project < ActiveRecord::Base
       params = {
         name: default_branch,
         push_access_levels_attributes: [{
-          access_level: Gitlab::CurrentSettings.default_branch_protection == Gitlab::Access::PROTECTION_DEV_CAN_PUSH ? Gitlab::Access::DEVELOPER : Gitlab::Access::MASTER
+          access_level: Gitlab::CurrentSettings.default_branch_protection == Gitlab::Access::PROTECTION_DEV_CAN_PUSH ? Gitlab::Access::DEVELOPER : Gitlab::Access::MAINTAINER
         }],
         merge_access_levels_attributes: [{
-          access_level: Gitlab::CurrentSettings.default_branch_protection == Gitlab::Access::PROTECTION_DEV_CAN_MERGE ? Gitlab::Access::DEVELOPER : Gitlab::Access::MASTER
+          access_level: Gitlab::CurrentSettings.default_branch_protection == Gitlab::Access::PROTECTION_DEV_CAN_MERGE ? Gitlab::Access::DEVELOPER : Gitlab::Access::MAINTAINER
         }]
       }
 
diff --git a/app/models/project_group_link.rb b/app/models/project_group_link.rb
index ac1e9ab2b0b..cf8fc41e870 100644
--- a/app/models/project_group_link.rb
+++ b/app/models/project_group_link.rb
@@ -4,7 +4,8 @@ class ProjectGroupLink < ActiveRecord::Base
   GUEST     = 10
   REPORTER  = 20
   DEVELOPER = 30
-  MASTER    = 40
+  MAINTAINER = 40
+  MASTER = MAINTAINER # @deprecated
 
   belongs_to :project
   belongs_to :group
diff --git a/app/models/project_team.rb b/app/models/project_team.rb
index 9a38806baab..c7d0f49d837 100644
--- a/app/models/project_team.rb
+++ b/app/models/project_team.rb
@@ -19,10 +19,13 @@ class ProjectTeam
     add_user(user, :developer, current_user: current_user)
   end
 
-  def add_master(user, current_user: nil)
-    add_user(user, :master, current_user: current_user)
+  def add_maintainer(user, current_user: nil)
+    add_user(user, :maintainer, current_user: current_user)
   end
 
+  # @deprecated
+  alias_method :add_master, :add_maintainer
+
   def add_role(user, role, current_user: nil)
     public_send(:"add_#{role}", user, current_user: current_user) # rubocop:disable GitlabSecurity/PublicSend
   end
@@ -81,10 +84,13 @@ class ProjectTeam
     @developers ||= fetch_members(Gitlab::Access::DEVELOPER)
   end
 
-  def masters
-    @masters ||= fetch_members(Gitlab::Access::MASTER)
+  def maintainers
+    @maintainers ||= fetch_members(Gitlab::Access::MAINTAINER)
   end
 
+  # @deprecated
+  alias_method :masters, :maintainers
+
   def owners
     @owners ||=
       if group
@@ -136,10 +142,13 @@ class ProjectTeam
     max_member_access(user.id) == Gitlab::Access::DEVELOPER
   end
 
-  def master?(user)
-    max_member_access(user.id) == Gitlab::Access::MASTER
+  def maintainer?(user)
+    max_member_access(user.id) == Gitlab::Access::MAINTAINER
   end
 
+  # @deprecated
+  alias_method :master?, :maintainer?
+
   # Checks if `user` is authorized for this project, with at least the
   # `min_access_level` (if given).
   def member?(user, min_access_level = Gitlab::Access::GUEST)
diff --git a/app/models/user.rb b/app/models/user.rb
index 1c5d39db118..4987d01aac6 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -99,7 +99,8 @@ class User < ActiveRecord::Base
   has_many :group_members, -> { where(requested_at: nil) }, source: 'GroupMember'
   has_many :groups, through: :group_members
   has_many :owned_groups, -> { where(members: { access_level: Gitlab::Access::OWNER }) }, through: :group_members, source: :group
-  has_many :masters_groups, -> { where(members: { access_level: Gitlab::Access::MASTER }) }, through: :group_members, source: :group
+  has_many :maintainers_groups, -> { where(members: { access_level: Gitlab::Access::MAINTAINER }) }, through: :group_members, source: :group
+  alias_attribute :masters_groups, :maintainers_groups
 
   # Projects
   has_many :groups_projects,          through: :groups, source: :projects
@@ -728,7 +729,7 @@ class User < ActiveRecord::Base
   end
 
   def several_namespaces?
-    owned_groups.any? || masters_groups.any?
+    owned_groups.any? || maintainers_groups.any?
   end
 
   def namespace_id
@@ -974,15 +975,15 @@ class User < ActiveRecord::Base
   end
 
   def manageable_groups
-    union_sql = Gitlab::SQL::Union.new([owned_groups.select(:id), masters_groups.select(:id)]).to_sql
+    union_sql = Gitlab::SQL::Union.new([owned_groups.select(:id), maintainers_groups.select(:id)]).to_sql
 
     # Update this line to not use raw SQL when migrated to Rails 5.2.
     # Either ActiveRecord or Arel constructions are fine.
     # This was replaced with the raw SQL construction because of bugs in the arel gem.
     # Bugs were fixed in arel 9.0.0 (Rails 5.2).
-    owned_and_master_groups = Group.where("namespaces.id IN (#{union_sql})") # rubocop:disable GitlabSecurity/SqlInjection
+    owned_and_maintainer_groups = Group.where("namespaces.id IN (#{union_sql})") # rubocop:disable GitlabSecurity/SqlInjection
 
-    Gitlab::GroupHierarchy.new(owned_and_master_groups).base_and_descendants
+    Gitlab::GroupHierarchy.new(owned_and_maintainer_groups).base_and_descendants
   end
 
   def namespaces
@@ -1023,11 +1024,11 @@ class User < ActiveRecord::Base
   def ci_owned_runners
     @ci_owned_runners ||= begin
       project_runner_ids = Ci::RunnerProject
-        .where(project: authorized_projects(Gitlab::Access::MASTER))
+        .where(project: authorized_projects(Gitlab::Access::MAINTAINER))
         .select(:runner_id)
 
       group_runner_ids = Ci::RunnerNamespace
-        .where(namespace_id: owned_or_masters_groups.select(:id))
+        .where(namespace_id: owned_or_maintainers_groups.select(:id))
         .select(:runner_id)
 
       union = Gitlab::SQL::Union.new([project_runner_ids, group_runner_ids])
@@ -1236,11 +1237,14 @@ class User < ActiveRecord::Base
       !terms_accepted?
   end
 
-  def owned_or_masters_groups
-    union = Gitlab::SQL::Union.new([owned_groups, masters_groups])
+  def owned_or_maintainers_groups
+    union = Gitlab::SQL::Union.new([owned_groups, maintainers_groups])
     Group.from("(#{union.to_sql}) namespaces")
   end
 
+  # @deprecated
+  alias_method :owned_or_masters_groups, :owned_or_maintainers_groups
+
   protected
 
   # override, from Devise::Validatable
diff --git a/app/policies/clusters/cluster_policy.rb b/app/policies/clusters/cluster_policy.rb
index 1f7c13072b9..b5b24491655 100644
--- a/app/policies/clusters/cluster_policy.rb
+++ b/app/policies/clusters/cluster_policy.rb
@@ -4,7 +4,7 @@ module Clusters
 
     delegate { cluster.project }
 
-    rule { can?(:master_access) }.policy do
+    rule { can?(:maintainer_access) }.policy do
       enable :update_cluster
       enable :admin_cluster
     end
diff --git a/app/policies/deploy_token_policy.rb b/app/policies/deploy_token_policy.rb
index 7aa9106e8b1..d1b459cfc90 100644
--- a/app/policies/deploy_token_policy.rb
+++ b/app/policies/deploy_token_policy.rb
@@ -1,10 +1,10 @@
 class DeployTokenPolicy < BasePolicy
   with_options scope: :subject, score: 0
-  condition(:master) { @subject.project.team.master?(@user) }
+  condition(:maintainer) { @subject.project.team.maintainer?(@user) }
 
   rule { anonymous }.prevent_all
 
-  rule { master }.policy do
+  rule { maintainer }.policy do
     enable :create_deploy_token
     enable :update_deploy_token
   end
diff --git a/app/policies/group_policy.rb b/app/policies/group_policy.rb
index ded9fe30eff..dc339b71ec7 100644
--- a/app/policies/group_policy.rb
+++ b/app/policies/group_policy.rb
@@ -11,7 +11,7 @@ class GroupPolicy < BasePolicy
   condition(:guest) { access_level >= GroupMember::GUEST }
   condition(:developer) { access_level >= GroupMember::DEVELOPER }
   condition(:owner) { access_level >= GroupMember::OWNER }
-  condition(:master) { access_level >= GroupMember::MASTER }
+  condition(:maintainer) { access_level >= GroupMember::MAINTAINER }
   condition(:reporter) { access_level >= GroupMember::REPORTER }
 
   condition(:nested_groups_supported, scope: :global) { Group.supports_nested_groups? }
@@ -59,7 +59,7 @@ class GroupPolicy < BasePolicy
     enable :admin_issue
   end
 
-  rule { master }.policy do
+  rule { maintainer }.policy do
     enable :create_projects
     enable :admin_pipeline
     enable :admin_build
diff --git a/app/policies/project_policy.rb b/app/policies/project_policy.rb
index 199bcf92b21..bc49092633f 100644
--- a/app/policies/project_policy.rb
+++ b/app/policies/project_policy.rb
@@ -46,7 +46,7 @@ class ProjectPolicy < BasePolicy
   condition(:developer) { team_access_level >= Gitlab::Access::DEVELOPER }
 
   desc "User has maintainer access"
-  condition(:master) { team_access_level >= Gitlab::Access::MASTER }
+  condition(:maintainer) { team_access_level >= Gitlab::Access::MAINTAINER }
 
   desc "Project is public"
   condition(:public_project, scope: :subject, score: 0) { project.public? }
@@ -123,14 +123,14 @@ class ProjectPolicy < BasePolicy
   rule { guest }.enable :guest_access
   rule { reporter }.enable :reporter_access
   rule { developer }.enable :developer_access
-  rule { master }.enable :master_access
+  rule { maintainer }.enable :maintainer_access
   rule { owner | admin }.enable :owner_access
 
   rule { can?(:owner_access) }.policy do
     enable :guest_access
     enable :reporter_access
     enable :developer_access
-    enable :master_access
+    enable :maintainer_access
 
     enable :change_namespace
     enable :change_visibility_level
@@ -228,7 +228,7 @@ class ProjectPolicy < BasePolicy
     enable :create_deployment
   end
 
-  rule { can?(:master_access) }.policy do
+  rule { can?(:maintainer_access) }.policy do
     enable :push_to_delete_protected_branch
     enable :update_project_snippet
     enable :update_environment
diff --git a/app/services/notification_service.rb b/app/services/notification_service.rb
index 8c6221af788..d7be9a925b5 100644
--- a/app/services/notification_service.rb
+++ b/app/services/notification_service.rb
@@ -274,9 +274,9 @@ class NotificationService
   def new_access_request(member)
     return true unless member.notifiable?(:subscription)
 
-    recipients = member.source.members.active_without_invites_and_requests.owners_and_masters
-    if fallback_to_group_owners_masters?(recipients, member)
-      recipients = member.source.group.members.active_without_invites_and_requests.owners_and_masters
+    recipients = member.source.members.active_without_invites_and_requests.owners_and_maintainers
+    if fallback_to_group_owners_maintainers?(recipients, member)
+      recipients = member.source.group.members.active_without_invites_and_requests.owners_and_maintainers
     end
 
     recipients.each { |recipient| deliver_access_request_email(recipient, member) }
@@ -519,7 +519,7 @@ class NotificationService
 
     return [] unless project
 
-    notifiable_users(project.team.masters, :watch, target: project)
+    notifiable_users(project.team.maintainers, :watch, target: project)
   end
 
   def notifiable?(*args)
@@ -534,7 +534,7 @@ class NotificationService
     mailer.member_access_requested_email(member.real_source_type, member.id, recipient.user.notification_email).deliver_later
   end
 
-  def fallback_to_group_owners_masters?(recipients, member)
+  def fallback_to_group_owners_maintainers?(recipients, member)
     return false if recipients.present?
 
     member.source.respond_to?(:group) && member.source.group
diff --git a/app/services/projects/create_service.rb b/app/services/projects/create_service.rb
index 172497b8e67..85491089d8e 100644
--- a/app/services/projects/create_service.rb
+++ b/app/services/projects/create_service.rb
@@ -115,7 +115,7 @@ module Projects
         @project.group.refresh_members_authorized_projects(blocking: false)
         current_user.refresh_authorized_projects
       else
-        @project.add_master(@project.namespace.owner, current_user: current_user)
+        @project.add_maintainer(@project.namespace.owner, current_user: current_user)
       end
     end
 
diff --git a/app/services/protected_branches/access_level_params.rb b/app/services/protected_branches/access_level_params.rb
index 253ae8b0124..4658b0e850d 100644
--- a/app/services/protected_branches/access_level_params.rb
+++ b/app/services/protected_branches/access_level_params.rb
@@ -14,7 +14,7 @@ module ProtectedBranches
     private
 
     def params_with_default(params)
-      params[:"#{type}_access_level"] ||= Gitlab::Access::MASTER if use_default_access_level?(params)
+      params[:"#{type}_access_level"] ||= Gitlab::Access::MAINTAINER if use_default_access_level?(params)
       params
     end
 
diff --git a/app/services/protected_branches/legacy_api_create_service.rb b/app/services/protected_branches/legacy_api_create_service.rb
index e358fd0374e..bb7656489c5 100644
--- a/app/services/protected_branches/legacy_api_create_service.rb
+++ b/app/services/protected_branches/legacy_api_create_service.rb
@@ -9,14 +9,14 @@ module ProtectedBranches
         if params.delete(:developers_can_push)
           Gitlab::Access::DEVELOPER
         else
-          Gitlab::Access::MASTER
+          Gitlab::Access::MAINTAINER
         end
 
       merge_access_level =
         if params.delete(:developers_can_merge)
           Gitlab::Access::DEVELOPER
         else
-          Gitlab::Access::MASTER
+          Gitlab::Access::MAINTAINER
         end
 
       @params.merge!(push_access_levels_attributes: [{ access_level: push_access_level }],
diff --git a/app/services/protected_branches/legacy_api_update_service.rb b/app/services/protected_branches/legacy_api_update_service.rb
index 33176253ca2..1df38de0e4a 100644
--- a/app/services/protected_branches/legacy_api_update_service.rb
+++ b/app/services/protected_branches/legacy_api_update_service.rb
@@ -17,14 +17,14 @@ module ProtectedBranches
         when true
           params[:push_access_levels_attributes] = [{ access_level: Gitlab::Access::DEVELOPER }]
         when false
-          params[:push_access_levels_attributes] = [{ access_level: Gitlab::Access::MASTER }]
+          params[:push_access_levels_attributes] = [{ access_level: Gitlab::Access::MAINTAINER }]
         end
 
         case @developers_can_merge
         when true
           params[:merge_access_levels_attributes] = [{ access_level: Gitlab::Access::DEVELOPER }]
         when false
-          params[:merge_access_levels_attributes] = [{ access_level: Gitlab::Access::MASTER }]
+          params[:merge_access_levels_attributes] = [{ access_level: Gitlab::Access::MAINTAINER }]
         end
 
         service = ProtectedBranches::UpdateService.new(@project, @current_user, @params)
diff --git a/db/fixtures/development/12_snippets.rb b/db/fixtures/development/12_snippets.rb
index 4f3bdba043d..a9f4069a0f8 100644
--- a/db/fixtures/development/12_snippets.rb
+++ b/db/fixtures/development/12_snippets.rb
@@ -17,7 +17,7 @@ class Member < ActiveRecord::Base
   scope :guests, -> { where(access_level: GUEST) }
   scope :reporters, -> { where(access_level: REPORTER) }
   scope :developers, -> { where(access_level: DEVELOPER) }
-  scope :masters,  -> { where(access_level: MASTER) }
+  scope :maintainers,  -> { where(access_level: MAINTAINER) }
   scope :owners,  -> { where(access_level: OWNER) }
 
   delegate :name, :username, :email, to: :user, prefix: true
diff --git a/db/migrate/20160705054938_add_protected_branches_push_access.rb b/db/migrate/20160705054938_add_protected_branches_push_access.rb
index 97aaaf9d2c8..de3aefcb1fb 100644
--- a/db/migrate/20160705054938_add_protected_branches_push_access.rb
+++ b/db/migrate/20160705054938_add_protected_branches_push_access.rb
@@ -9,7 +9,7 @@ class AddProtectedBranchesPushAccess < ActiveRecord::Migration
     create_table :protected_branch_push_access_levels do |t|
       t.references :protected_branch, index: { name: "index_protected_branch_push_access" }, foreign_key: true, null: false
 
-      # Gitlab::Access::MASTER == 40
+      # Gitlab::Access::MAINTAINER == 40
       t.integer :access_level, default: 40, null: false
 
       t.timestamps null: false
diff --git a/db/migrate/20160705054952_add_protected_branches_merge_access.rb b/db/migrate/20160705054952_add_protected_branches_merge_access.rb
index 51a52a5ac17..9b18a2061b3 100644
--- a/db/migrate/20160705054952_add_protected_branches_merge_access.rb
+++ b/db/migrate/20160705054952_add_protected_branches_merge_access.rb
@@ -9,7 +9,7 @@ class AddProtectedBranchesMergeAccess < ActiveRecord::Migration
     create_table :protected_branch_merge_access_levels do |t|
       t.references :protected_branch, index: { name: "index_protected_branch_merge_access" }, foreign_key: true, null: false
 
-      # Gitlab::Access::MASTER == 40
+      # Gitlab::Access::MAINTAINER == 40
       t.integer :access_level, default: 40, null: false
 
       t.timestamps null: false
diff --git a/doc/raketasks/user_management.md b/doc/raketasks/user_management.md
index 5554a0c8b78..e1b1912ed47 100644
--- a/doc/raketasks/user_management.md
+++ b/doc/raketasks/user_management.md
@@ -14,7 +14,7 @@ bundle exec rake gitlab:import:user_to_projects[username@domain.tld] RAILS_ENV=p
 
 Notes:
 
-- admin users are added as masters
+- admin users are added as maintainers
 
 ```bash
 # omnibus-gitlab
diff --git a/lib/gitlab/access.rb b/lib/gitlab/access.rb
index 87e377de4d3..b170145f013 100644
--- a/lib/gitlab/access.rb
+++ b/lib/gitlab/access.rb
@@ -7,12 +7,14 @@ module Gitlab
   module Access
     AccessDeniedError = Class.new(StandardError)
 
-    NO_ACCESS = 0
-    GUEST     = 10
-    REPORTER  = 20
-    DEVELOPER = 30
-    MASTER    = 40
-    OWNER     = 50
+    NO_ACCESS  = 0
+    GUEST      = 10
+    REPORTER   = 20
+    DEVELOPER  = 30
+    MAINTAINER = 40
+    # @deprecated
+    MASTER     = MAINTAINER
+    OWNER      = 50
 
     # Branch protection settings
     PROTECTION_NONE          = 0
@@ -32,7 +34,7 @@ module Gitlab
           "Guest"      => GUEST,
           "Reporter"   => REPORTER,
           "Developer"  => DEVELOPER,
-          "Maintainer" => MASTER
+          "Maintainer" => MAINTAINER
         }
       end
 
@@ -44,10 +46,10 @@ module Gitlab
 
       def sym_options
         {
-          guest:     GUEST,
-          reporter:  REPORTER,
-          developer: DEVELOPER,
-          master:    MASTER
+          guest:      GUEST,
+          reporter:   REPORTER,
+          developer:  DEVELOPER,
+          maintainer: MAINTAINER
         }
       end
 
diff --git a/lib/gitlab/import_export/members_mapper.rb b/lib/gitlab/import_export/members_mapper.rb
index 8b8e48aac76..ac827cbe1ca 100644
--- a/lib/gitlab/import_export/members_mapper.rb
+++ b/lib/gitlab/import_export/members_mapper.rb
@@ -47,7 +47,7 @@ module Gitlab
       def ensure_default_member!
         @project.project_members.destroy_all
 
-        ProjectMember.create!(user: @user, access_level: ProjectMember::MASTER, source_id: @project.id, importing: true)
+        ProjectMember.create!(user: @user, access_level: ProjectMember::MAINTAINER, source_id: @project.id, importing: true)
       end
 
       def add_team_member(member, existing_user = nil)
diff --git a/lib/gitlab/project_authorizations/with_nested_groups.rb b/lib/gitlab/project_authorizations/with_nested_groups.rb
index 15b8beacf60..e3da1634fa5 100644
--- a/lib/gitlab/project_authorizations/with_nested_groups.rb
+++ b/lib/gitlab/project_authorizations/with_nested_groups.rb
@@ -24,7 +24,7 @@ module Gitlab
           user.projects.select_for_project_authorization,
 
           # The personal projects of the user.
-          user.personal_projects.select_as_master_for_project_authorization,
+          user.personal_projects.select_as_maintainer_for_project_authorization,
 
           # Projects that belong directly to any of the groups the user has
           # access to.
diff --git a/lib/gitlab/project_authorizations/without_nested_groups.rb b/lib/gitlab/project_authorizations/without_nested_groups.rb
index ad87540e6c2..7d0c00c7f36 100644
--- a/lib/gitlab/project_authorizations/without_nested_groups.rb
+++ b/lib/gitlab/project_authorizations/without_nested_groups.rb
@@ -15,7 +15,7 @@ module Gitlab
           user.projects.select_for_project_authorization,
 
           # Personal projects
-          user.personal_projects.select_as_master_for_project_authorization,
+          user.personal_projects.select_as_maintainer_for_project_authorization,
 
           # Projects of groups the user is a member of
           user.groups_projects.select_for_project_authorization,
diff --git a/lib/tasks/gitlab/bulk_add_permission.rake b/lib/tasks/gitlab/bulk_add_permission.rake
index 83dd870fa31..26cbf0740b6 100644
--- a/lib/tasks/gitlab/bulk_add_permission.rake
+++ b/lib/tasks/gitlab/bulk_add_permission.rake
@@ -1,6 +1,6 @@
 namespace :gitlab do
   namespace :import do
-    desc "GitLab | Add all users to all projects (admin users are added as masters)"
+    desc "GitLab | Add all users to all projects (admin users are added as maintainers)"
     task all_users_to_all_projects: :environment  do |t, args|
       user_ids = User.where(admin: false).pluck(:id)
       admin_ids = User.where(admin: true).pluck(:id)
@@ -10,7 +10,7 @@ namespace :gitlab do
       ProjectMember.add_users_to_projects(project_ids, user_ids, ProjectMember::DEVELOPER)
 
       puts "Importing #{admin_ids.size} admins into #{project_ids.size} projects"
-      ProjectMember.add_users_to_projects(project_ids, admin_ids, ProjectMember::MASTER)
+      ProjectMember.add_users_to_projects(project_ids, admin_ids, ProjectMember::MAINTAINER)
     end
 
     desc "GitLab | Add a specific user to all projects (as a developer)"
diff --git a/qa/qa/page/project/settings/protected_branches.rb b/qa/qa/page/project/settings/protected_branches.rb
index 0bd031e96b5..e572ae12132 100644
--- a/qa/qa/page/project/settings/protected_branches.rb
+++ b/qa/qa/page/project/settings/protected_branches.rb
@@ -44,6 +44,9 @@ module QA
             click_allow(:push, 'Developers + Maintainers')
           end
 
+          # @deprecated
+          alias_method :allow_devs_and_masters_to_push, :allow_devs_and_maintainers_to_push
+
           def allow_no_one_to_merge
             click_allow(:merge, 'No one')
           end
@@ -52,6 +55,9 @@ module QA
             click_allow(:merge, 'Developers + Maintainers')
           end
 
+          # @deprecated
+          alias_method :allow_devs_and_masters_to_merge, :allow_devs_and_maintainers_to_merge
+
           def protect_branch
             click_on 'Protect'
           end
diff --git a/spec/controllers/autocomplete_controller_spec.rb b/spec/controllers/autocomplete_controller_spec.rb
index fb6d82d7de3..2c59d1929a1 100644
--- a/spec/controllers/autocomplete_controller_spec.rb
+++ b/spec/controllers/autocomplete_controller_spec.rb
@@ -228,12 +228,12 @@ describe AutocompleteController do
 
     before do
       sign_in(user)
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'authorized projects' do
       before do
-        authorized_project.add_master(user)
+        authorized_project.add_maintainer(user)
       end
 
       describe 'GET #projects with project ID' do
@@ -253,8 +253,8 @@ describe AutocompleteController do
 
     context 'authorized projects and search' do
       before do
-        authorized_project.add_master(user)
-        authorized_search_project.add_master(user)
+        authorized_project.add_maintainer(user)
+        authorized_search_project.add_maintainer(user)
       end
 
       describe 'GET #projects with project ID and search' do
@@ -277,9 +277,9 @@ describe AutocompleteController do
         authorized_project2 = create(:project)
         authorized_project3 = create(:project)
 
-        authorized_project.add_master(user)
-        authorized_project2.add_master(user)
-        authorized_project3.add_master(user)
+        authorized_project.add_maintainer(user)
+        authorized_project2.add_maintainer(user)
+        authorized_project3.add_maintainer(user)
 
         stub_const 'MoveToProjectFinder::PAGE_SIZE', 2
       end
@@ -301,9 +301,9 @@ describe AutocompleteController do
         authorized_project2 = create(:project)
         authorized_project3 = create(:project)
 
-        authorized_project.add_master(user)
-        authorized_project2.add_master(user)
-        authorized_project3.add_master(user)
+        authorized_project.add_maintainer(user)
+        authorized_project2.add_maintainer(user)
+        authorized_project3.add_maintainer(user)
       end
 
       describe 'GET #projects with project ID and offset_id' do
diff --git a/spec/controllers/boards/issues_controller_spec.rb b/spec/controllers/boards/issues_controller_spec.rb
index e47ff8661a2..ce7762691c9 100644
--- a/spec/controllers/boards/issues_controller_spec.rb
+++ b/spec/controllers/boards/issues_controller_spec.rb
@@ -13,7 +13,7 @@ describe Boards::IssuesController do
   let!(:list2) { create(:list, board: board, label: development, position: 1) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_guest(guest)
   end
 
diff --git a/spec/controllers/boards/lists_controller_spec.rb b/spec/controllers/boards/lists_controller_spec.rb
index 57ccbf1d6b5..80631d2efb0 100644
--- a/spec/controllers/boards/lists_controller_spec.rb
+++ b/spec/controllers/boards/lists_controller_spec.rb
@@ -7,7 +7,7 @@ describe Boards::ListsController do
   let(:guest)   { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_guest(guest)
   end
 
diff --git a/spec/controllers/dashboard/groups_controller_spec.rb b/spec/controllers/dashboard/groups_controller_spec.rb
index 7f2eaf95165..9068c1a792e 100644
--- a/spec/controllers/dashboard/groups_controller_spec.rb
+++ b/spec/controllers/dashboard/groups_controller_spec.rb
@@ -28,8 +28,8 @@ describe Dashboard::GroupsController do
     let!(:other_group) { create(:group, name: 'other') }
 
     before do
-      top_level_result.add_master(user)
-      top_level_a.add_master(user)
+      top_level_result.add_maintainer(user)
+      top_level_a.add_maintainer(user)
     end
 
     it 'renders only groups the user is a member of when searching hierarchy correctly' do
diff --git a/spec/controllers/dashboard/milestones_controller_spec.rb b/spec/controllers/dashboard/milestones_controller_spec.rb
index 60547db82b6..ba2669a5ea7 100644
--- a/spec/controllers/dashboard/milestones_controller_spec.rb
+++ b/spec/controllers/dashboard/milestones_controller_spec.rb
@@ -17,7 +17,7 @@ describe Dashboard::MilestonesController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   it_behaves_like 'milestone tabs'
diff --git a/spec/controllers/dashboard_controller_spec.rb b/spec/controllers/dashboard_controller_spec.rb
index 3458d679107..187542ba30c 100644
--- a/spec/controllers/dashboard_controller_spec.rb
+++ b/spec/controllers/dashboard_controller_spec.rb
@@ -5,7 +5,7 @@ describe DashboardController do
   let(:project) { create(:project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/groups/boards_controller_spec.rb b/spec/controllers/groups/boards_controller_spec.rb
index 0f5bde62006..bf41aa0706f 100644
--- a/spec/controllers/groups/boards_controller_spec.rb
+++ b/spec/controllers/groups/boards_controller_spec.rb
@@ -5,7 +5,7 @@ describe Groups::BoardsController do
   let(:user)    { create(:user) }
 
   before do
-    group.add_master(user)
+    group.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/groups/milestones_controller_spec.rb b/spec/controllers/groups/milestones_controller_spec.rb
index 733386500ca..f7068546093 100644
--- a/spec/controllers/groups/milestones_controller_spec.rb
+++ b/spec/controllers/groups/milestones_controller_spec.rb
@@ -28,7 +28,7 @@ describe Groups::MilestonesController do
   before do
     sign_in(user)
     group.add_owner(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#index' do
diff --git a/spec/controllers/groups/runners_controller_spec.rb b/spec/controllers/groups/runners_controller_spec.rb
index 5770d15557c..598fb84552f 100644
--- a/spec/controllers/groups/runners_controller_spec.rb
+++ b/spec/controllers/groups/runners_controller_spec.rb
@@ -14,7 +14,7 @@ describe Groups::RunnersController do
 
   before do
     sign_in(user)
-    group.add_master(user)
+    group.add_maintainer(user)
   end
 
   describe '#update' do
diff --git a/spec/controllers/groups/settings/ci_cd_controller_spec.rb b/spec/controllers/groups/settings/ci_cd_controller_spec.rb
index e9f0924caba..ea18122e0c3 100644
--- a/spec/controllers/groups/settings/ci_cd_controller_spec.rb
+++ b/spec/controllers/groups/settings/ci_cd_controller_spec.rb
@@ -5,7 +5,7 @@ describe Groups::Settings::CiCdController do
   let(:user) { create(:user) }
 
   before do
-    group.add_master(user)
+    group.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/groups/variables_controller_spec.rb b/spec/controllers/groups/variables_controller_spec.rb
index 39a36b92bb4..e5ac5634f95 100644
--- a/spec/controllers/groups/variables_controller_spec.rb
+++ b/spec/controllers/groups/variables_controller_spec.rb
@@ -6,7 +6,7 @@ describe Groups::VariablesController do
 
   before do
     sign_in(user)
-    group.add_master(user)
+    group.add_maintainer(user)
   end
 
   describe 'GET #show' do
diff --git a/spec/controllers/groups_controller_spec.rb b/spec/controllers/groups_controller_spec.rb
index 8688fb33f0d..7a037828035 100644
--- a/spec/controllers/groups_controller_spec.rb
+++ b/spec/controllers/groups_controller_spec.rb
@@ -7,7 +7,7 @@ describe GroupsController do
   let(:project) { create(:project, namespace: group) }
   let!(:group_member) { create(:group_member, group: group, user: user) }
   let!(:owner) { group.add_owner(create(:user)).user }
-  let!(:master) { group.add_master(create(:user)).user }
+  let!(:maintainer) { group.add_maintainer(create(:user)).user }
   let!(:developer) { group.add_developer(create(:user)).user }
   let!(:guest) { group.add_guest(create(:user)).user }
 
@@ -62,7 +62,7 @@ describe GroupsController do
       [true, false].each do |can_create_group_status|
         context "and can_create_group is #{can_create_group_status}" do
           before do
-            User.where(id: [admin, owner, master, developer, guest]).update_all(can_create_group: can_create_group_status)
+            User.where(id: [admin, owner, maintainer, developer, guest]).update_all(can_create_group: can_create_group_status)
           end
 
           [:admin, :owner].each do |member_type|
@@ -73,7 +73,7 @@ describe GroupsController do
             end
           end
 
-          [:guest, :developer, :master].each do |member_type|
+          [:guest, :developer, :maintainer].each do |member_type|
             context "and logged in as #{member_type.capitalize}" do
               it_behaves_like 'member without ability to create subgroups' do
                 let(:member) { send(member_type) }
diff --git a/spec/controllers/projects/avatars_controller_spec.rb b/spec/controllers/projects/avatars_controller_spec.rb
index acfa2730d94..17c9a61f339 100644
--- a/spec/controllers/projects/avatars_controller_spec.rb
+++ b/spec/controllers/projects/avatars_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::AvatarsController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
     controller.instance_variable_set(:@project, project)
   end
 
diff --git a/spec/controllers/projects/badges_controller_spec.rb b/spec/controllers/projects/badges_controller_spec.rb
index e7cddf8cfbf..dfe34171b55 100644
--- a/spec/controllers/projects/badges_controller_spec.rb
+++ b/spec/controllers/projects/badges_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::BadgesController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/blame_controller_spec.rb b/spec/controllers/projects/blame_controller_spec.rb
index 88d4f4e9cd0..fe4c4863717 100644
--- a/spec/controllers/projects/blame_controller_spec.rb
+++ b/spec/controllers/projects/blame_controller_spec.rb
@@ -7,7 +7,7 @@ describe Projects::BlameController do
   before do
     sign_in(user)
 
-    project.add_master(user)
+    project.add_maintainer(user)
     controller.instance_variable_set(:@project, project)
   end
 
diff --git a/spec/controllers/projects/blob_controller_spec.rb b/spec/controllers/projects/blob_controller_spec.rb
index 4dcb7dc6c87..32cd7c6e70a 100644
--- a/spec/controllers/projects/blob_controller_spec.rb
+++ b/spec/controllers/projects/blob_controller_spec.rb
@@ -108,7 +108,7 @@ describe Projects::BlobController do
     end
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       sign_in(user)
     end
@@ -230,12 +230,12 @@ describe Projects::BlobController do
       end
     end
 
-    context 'as master' do
-      let(:master) { create(:user) }
+    context 'as maintainer' do
+      let(:maintainer) { create(:user) }
 
       before do
-        project.add_master(master)
-        sign_in(master)
+        project.add_maintainer(maintainer)
+        sign_in(maintainer)
         get :edit, default_params
       end
 
@@ -263,7 +263,7 @@ describe Projects::BlobController do
     end
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       sign_in(user)
     end
diff --git a/spec/controllers/projects/boards_controller_spec.rb b/spec/controllers/projects/boards_controller_spec.rb
index 509f19ed030..096efc1c7b2 100644
--- a/spec/controllers/projects/boards_controller_spec.rb
+++ b/spec/controllers/projects/boards_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::BoardsController do
   let(:user)    { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/branches_controller_spec.rb b/spec/controllers/projects/branches_controller_spec.rb
index 4860ea5dcce..31471cde420 100644
--- a/spec/controllers/projects/branches_controller_spec.rb
+++ b/spec/controllers/projects/branches_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::BranchesController do
   let(:developer) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user)
 
     allow(project).to receive(:branches).and_return(['master', 'foo/bar/baz'])
diff --git a/spec/controllers/projects/clusters/applications_controller_spec.rb b/spec/controllers/projects/clusters/applications_controller_spec.rb
index 99fdff5f846..9e17e392d3d 100644
--- a/spec/controllers/projects/clusters/applications_controller_spec.rb
+++ b/spec/controllers/projects/clusters/applications_controller_spec.rb
@@ -17,7 +17,7 @@ describe Projects::Clusters::ApplicationsController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -70,7 +70,7 @@ describe Projects::Clusters::ApplicationsController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
diff --git a/spec/controllers/projects/clusters_controller_spec.rb b/spec/controllers/projects/clusters_controller_spec.rb
index e47ccdc9aea..42917d0d505 100644
--- a/spec/controllers/projects/clusters_controller_spec.rb
+++ b/spec/controllers/projects/clusters_controller_spec.rb
@@ -11,7 +11,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -61,7 +61,7 @@ describe Projects::ClustersController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -79,7 +79,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -142,7 +142,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -156,7 +156,7 @@ describe Projects::ClustersController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -185,7 +185,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -236,7 +236,7 @@ describe Projects::ClustersController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -267,7 +267,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -286,7 +286,7 @@ describe Projects::ClustersController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -306,7 +306,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -327,7 +327,7 @@ describe Projects::ClustersController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -350,7 +350,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -365,7 +365,7 @@ describe Projects::ClustersController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -386,7 +386,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -437,7 +437,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -525,7 +525,7 @@ describe Projects::ClustersController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -552,7 +552,7 @@ describe Projects::ClustersController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -605,7 +605,7 @@ describe Projects::ClustersController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_denied_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
diff --git a/spec/controllers/projects/commit_controller_spec.rb b/spec/controllers/projects/commit_controller_spec.rb
index 003fec8ac68..916a4be2567 100644
--- a/spec/controllers/projects/commit_controller_spec.rb
+++ b/spec/controllers/projects/commit_controller_spec.rb
@@ -9,7 +9,7 @@ describe Projects::CommitController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET show' do
diff --git a/spec/controllers/projects/commits_controller_spec.rb b/spec/controllers/projects/commits_controller_spec.rb
index 55ed276f96b..d44048fdf55 100644
--- a/spec/controllers/projects/commits_controller_spec.rb
+++ b/spec/controllers/projects/commits_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::CommitsController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "GET show" do
diff --git a/spec/controllers/projects/compare_controller_spec.rb b/spec/controllers/projects/compare_controller_spec.rb
index b15cde4314e..8695aa826bb 100644
--- a/spec/controllers/projects/compare_controller_spec.rb
+++ b/spec/controllers/projects/compare_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::CompareController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET index' do
diff --git a/spec/controllers/projects/cycle_analytics_controller_spec.rb b/spec/controllers/projects/cycle_analytics_controller_spec.rb
index 5516c95d044..5c79269e8f1 100644
--- a/spec/controllers/projects/cycle_analytics_controller_spec.rb
+++ b/spec/controllers/projects/cycle_analytics_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::CycleAnalyticsController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'cycle analytics not set up flag' do
diff --git a/spec/controllers/projects/deploy_keys_controller_spec.rb b/spec/controllers/projects/deploy_keys_controller_spec.rb
index 97db69427e9..d2f133f972a 100644
--- a/spec/controllers/projects/deploy_keys_controller_spec.rb
+++ b/spec/controllers/projects/deploy_keys_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::DeployKeysController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/controllers/projects/deployments_controller_spec.rb b/spec/controllers/projects/deployments_controller_spec.rb
index 6c67dfde63a..d1c960e895d 100644
--- a/spec/controllers/projects/deployments_controller_spec.rb
+++ b/spec/controllers/projects/deployments_controller_spec.rb
@@ -8,7 +8,7 @@ describe Projects::DeploymentsController do
   let(:environment) { create(:environment, name: 'production', project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/controllers/projects/environments_controller_spec.rb b/spec/controllers/projects/environments_controller_spec.rb
index 63cef579864..b86029a4baf 100644
--- a/spec/controllers/projects/environments_controller_spec.rb
+++ b/spec/controllers/projects/environments_controller_spec.rb
@@ -9,7 +9,7 @@ describe Projects::EnvironmentsController do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/controllers/projects/find_file_controller_spec.rb b/spec/controllers/projects/find_file_controller_spec.rb
index 505fe82851a..66fe41108e2 100644
--- a/spec/controllers/projects/find_file_controller_spec.rb
+++ b/spec/controllers/projects/find_file_controller_spec.rb
@@ -7,7 +7,7 @@ describe Projects::FindFileController do
   before do
     sign_in(user)
 
-    project.add_master(user)
+    project.add_maintainer(user)
     controller.instance_variable_set(:@project, project)
   end
 
diff --git a/spec/controllers/projects/graphs_controller_spec.rb b/spec/controllers/projects/graphs_controller_spec.rb
index c3605555fe7..da78592a6f6 100644
--- a/spec/controllers/projects/graphs_controller_spec.rb
+++ b/spec/controllers/projects/graphs_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::GraphsController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET languages' do
diff --git a/spec/controllers/projects/group_links_controller_spec.rb b/spec/controllers/projects/group_links_controller_spec.rb
index 78c6f7839b4..879aff26deb 100644
--- a/spec/controllers/projects/group_links_controller_spec.rb
+++ b/spec/controllers/projects/group_links_controller_spec.rb
@@ -7,7 +7,7 @@ describe Projects::GroupLinksController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/hooks_controller_spec.rb b/spec/controllers/projects/hooks_controller_spec.rb
index 2d473d5bf52..0f3033b0933 100644
--- a/spec/controllers/projects/hooks_controller_spec.rb
+++ b/spec/controllers/projects/hooks_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::HooksController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/imports_controller_spec.rb b/spec/controllers/projects/imports_controller_spec.rb
index 6f06210f3de..adf3c78ae51 100644
--- a/spec/controllers/projects/imports_controller_spec.rb
+++ b/spec/controllers/projects/imports_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::ImportsController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET #show' do
diff --git a/spec/controllers/projects/issues_controller_spec.rb b/spec/controllers/projects/issues_controller_spec.rb
index 3a41f0fc07a..ff1835a34c2 100644
--- a/spec/controllers/projects/issues_controller_spec.rb
+++ b/spec/controllers/projects/issues_controller_spec.rb
@@ -695,7 +695,7 @@ describe Projects::IssuesController do
       let(:project) { merge_request.source_project }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in user
       end
 
@@ -869,7 +869,7 @@ describe Projects::IssuesController do
       def post_spam
         admin = create(:admin)
         create(:user_agent_detail, subject: issue)
-        project.add_master(admin)
+        project.add_maintainer(admin)
         sign_in(admin)
         post :mark_as_spam, {
           namespace_id: project.namespace,
diff --git a/spec/controllers/projects/jobs_controller_spec.rb b/spec/controllers/projects/jobs_controller_spec.rb
index 6be27126383..1aca44c6e74 100644
--- a/spec/controllers/projects/jobs_controller_spec.rb
+++ b/spec/controllers/projects/jobs_controller_spec.rb
@@ -431,7 +431,7 @@ describe Projects::JobsController, :clean_gitlab_redis_shared_state do
   end
 
   describe 'POST erase' do
-    let(:role) { :master }
+    let(:role) { :maintainer }
 
     before do
       project.add_role(user, role)
diff --git a/spec/controllers/projects/labels_controller_spec.rb b/spec/controllers/projects/labels_controller_spec.rb
index 452d7e23983..273702e6d21 100644
--- a/spec/controllers/projects/labels_controller_spec.rb
+++ b/spec/controllers/projects/labels_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::LabelsController do
   let(:user)    { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/controllers/projects/mattermosts_controller_spec.rb b/spec/controllers/projects/mattermosts_controller_spec.rb
index c5ac0be27bb..c2a334a849c 100644
--- a/spec/controllers/projects/mattermosts_controller_spec.rb
+++ b/spec/controllers/projects/mattermosts_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::MattermostsController do
   let!(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/merge_requests/creations_controller_spec.rb b/spec/controllers/projects/merge_requests/creations_controller_spec.rb
index 00d76f3c39a..d8995f98575 100644
--- a/spec/controllers/projects/merge_requests/creations_controller_spec.rb
+++ b/spec/controllers/projects/merge_requests/creations_controller_spec.rb
@@ -16,7 +16,7 @@ describe Projects::MergeRequests::CreationsController do
   end
 
   before do
-    fork_project.add_master(user)
+    fork_project.add_maintainer(user)
     Projects::ForkService.new(project, user).execute(fork_project)
     sign_in(user)
   end
@@ -94,7 +94,7 @@ describe Projects::MergeRequests::CreationsController do
       let(:other_project) { create(:project, :repository) }
 
       before do
-        other_project.add_master(user)
+        other_project.add_maintainer(user)
       end
 
       context 'when the path exists in the diff' do
diff --git a/spec/controllers/projects/merge_requests/diffs_controller_spec.rb b/spec/controllers/projects/merge_requests/diffs_controller_spec.rb
index ec82b35f227..9dc06436c72 100644
--- a/spec/controllers/projects/merge_requests/diffs_controller_spec.rb
+++ b/spec/controllers/projects/merge_requests/diffs_controller_spec.rb
@@ -140,7 +140,7 @@ describe Projects::MergeRequests::DiffsController do
       let(:other_project) { create(:project) }
 
       before do
-        other_project.add_master(user)
+        other_project.add_maintainer(user)
         diff_for_path(old_path: existing_path, new_path: existing_path, project_id: other_project)
       end
 
diff --git a/spec/controllers/projects/milestones_controller_spec.rb b/spec/controllers/projects/milestones_controller_spec.rb
index b1d83246238..ea906cf7f32 100644
--- a/spec/controllers/projects/milestones_controller_spec.rb
+++ b/spec/controllers/projects/milestones_controller_spec.rb
@@ -11,7 +11,7 @@ describe Projects::MilestonesController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
     controller.instance_variable_set(:@project, project)
   end
 
diff --git a/spec/controllers/projects/pages_controller_spec.rb b/spec/controllers/projects/pages_controller_spec.rb
index 8d2fa6a1740..927b6e0c473 100644
--- a/spec/controllers/projects/pages_controller_spec.rb
+++ b/spec/controllers/projects/pages_controller_spec.rb
@@ -14,7 +14,7 @@ describe Projects::PagesController do
   before do
     allow(Gitlab.config.pages).to receive(:enabled).and_return(true)
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET show' do
diff --git a/spec/controllers/projects/pages_domains_controller_spec.rb b/spec/controllers/projects/pages_domains_controller_spec.rb
index d4058a5c515..75871eab1ab 100644
--- a/spec/controllers/projects/pages_domains_controller_spec.rb
+++ b/spec/controllers/projects/pages_domains_controller_spec.rb
@@ -19,7 +19,7 @@ describe Projects::PagesDomainsController do
   before do
     allow(Gitlab.config.pages).to receive(:enabled).and_return(true)
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET show' do
diff --git a/spec/controllers/projects/pipeline_schedules_controller_spec.rb b/spec/controllers/projects/pipeline_schedules_controller_spec.rb
index 4cdaa54e0bc..7179423dde2 100644
--- a/spec/controllers/projects/pipeline_schedules_controller_spec.rb
+++ b/spec/controllers/projects/pipeline_schedules_controller_spec.rb
@@ -121,7 +121,7 @@ describe Projects::PipelineSchedulesController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_allowed_for(:developer).of(project) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -274,7 +274,7 @@ describe Projects::PipelineSchedulesController do
 
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_allowed_for(:developer).of(project).own(pipeline_schedule) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -292,19 +292,19 @@ describe Projects::PipelineSchedulesController do
 
         it { expect { go }.to be_allowed_for(developer_1) }
         it { expect { go }.to be_denied_for(:developer).of(project) }
-        it { expect { go }.to be_allowed_for(:master).of(project) }
+        it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       end
 
-      context 'when a master created a pipeline schedule' do
-        let(:master_1) { create(:user) }
-        let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: master_1) }
+      context 'when a maintainer created a pipeline schedule' do
+        let(:maintainer_1) { create(:user) }
+        let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: maintainer_1) }
 
         before do
-          project.add_master(master_1)
+          project.add_maintainer(maintainer_1)
         end
 
-        it { expect { go }.to be_allowed_for(master_1) }
-        it { expect { go }.to be_allowed_for(:master).of(project) }
+        it { expect { go }.to be_allowed_for(maintainer_1) }
+        it { expect { go }.to be_allowed_for(:maintainer).of(project) }
         it { expect { go }.to be_denied_for(:developer).of(project) }
       end
     end
@@ -331,7 +331,7 @@ describe Projects::PipelineSchedulesController do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -346,7 +346,7 @@ describe Projects::PipelineSchedulesController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_allowed_for(:developer).of(project).own(pipeline_schedule) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -364,7 +364,7 @@ describe Projects::PipelineSchedulesController do
     describe 'security' do
       it { expect { go }.to be_allowed_for(:admin) }
       it { expect { go }.to be_allowed_for(:owner).of(project) }
-      it { expect { go }.to be_allowed_for(:master).of(project) }
+      it { expect { go }.to be_allowed_for(:maintainer).of(project) }
       it { expect { go }.to be_allowed_for(:developer).of(project).own(pipeline_schedule) }
       it { expect { go }.to be_denied_for(:reporter).of(project) }
       it { expect { go }.to be_denied_for(:guest).of(project) }
@@ -453,9 +453,9 @@ describe Projects::PipelineSchedulesController do
       end
     end
 
-    context 'when a master makes the request' do
+    context 'when a maintainer makes the request' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
diff --git a/spec/controllers/projects/pipelines_settings_controller_spec.rb b/spec/controllers/projects/pipelines_settings_controller_spec.rb
index 694896b6bcf..b1ba9f74e38 100644
--- a/spec/controllers/projects/pipelines_settings_controller_spec.rb
+++ b/spec/controllers/projects/pipelines_settings_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::PipelinesSettingsController do
   let(:project) { project_auto_devops.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/controllers/projects/project_members_controller_spec.rb b/spec/controllers/projects/project_members_controller_spec.rb
index d84b31ad978..519af10d78c 100644
--- a/spec/controllers/projects/project_members_controller_spec.rb
+++ b/spec/controllers/projects/project_members_controller_spec.rb
@@ -37,7 +37,7 @@ describe Projects::ProjectMembersController do
 
     context 'when user has enough rights' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'adds user to members' do
@@ -70,7 +70,7 @@ describe Projects::ProjectMembersController do
     let(:requester) { create(:project_member, :access_request, project: project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
@@ -121,7 +121,7 @@ describe Projects::ProjectMembersController do
 
       context 'when user has enough rights' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it '[HTML] removes user from members' do
@@ -181,7 +181,7 @@ describe Projects::ProjectMembersController do
         let(:project) { create(:project, namespace: user.namespace) }
 
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'cannot remove themselves from the project' do
@@ -263,7 +263,7 @@ describe Projects::ProjectMembersController do
 
       context 'when user has enough rights' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'adds user to members' do
@@ -285,7 +285,7 @@ describe Projects::ProjectMembersController do
     let(:member) { create(:user) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       another_project.add_guest(member)
       sign_in(user)
     end
@@ -332,7 +332,7 @@ describe Projects::ProjectMembersController do
 
     context 'when creating owner' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -346,9 +346,9 @@ describe Projects::ProjectMembersController do
       end
     end
 
-    context 'when create master' do
+    context 'when create maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
@@ -356,7 +356,7 @@ describe Projects::ProjectMembersController do
         expect do
           post :create, user_ids: stranger.id,
                         namespace_id: project.namespace,
-                        access_level: Member::MASTER,
+                        access_level: Member::MAINTAINER,
                         project_id: project
         end.to change { project.members.count }.by(1)
       end
diff --git a/spec/controllers/projects/prometheus/metrics_controller_spec.rb b/spec/controllers/projects/prometheus/metrics_controller_spec.rb
index 871dcf5c796..5c56a712245 100644
--- a/spec/controllers/projects/prometheus/metrics_controller_spec.rb
+++ b/spec/controllers/projects/prometheus/metrics_controller_spec.rb
@@ -7,7 +7,7 @@ describe Projects::Prometheus::MetricsController do
   let(:prometheus_adapter) { double('prometheus_adapter', can_query?: true) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/protected_branches_controller_spec.rb b/spec/controllers/projects/protected_branches_controller_spec.rb
index 096e29bc39f..ac812707e74 100644
--- a/spec/controllers/projects/protected_branches_controller_spec.rb
+++ b/spec/controllers/projects/protected_branches_controller_spec.rb
@@ -8,7 +8,7 @@ describe Projects::ProtectedBranchesController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "GET #index" do
@@ -20,10 +20,10 @@ describe Projects::ProtectedBranchesController do
   end
 
   describe "POST #create" do
-    let(:master_access_level) { [{ access_level: Gitlab::Access::MASTER }] }
+    let(:maintainer_access_level) { [{ access_level: Gitlab::Access::MAINTAINER }] }
     let(:access_level_params) do
-      { merge_access_levels_attributes: master_access_level,
-        push_access_levels_attributes: master_access_level }
+      { merge_access_levels_attributes: maintainer_access_level,
+        push_access_levels_attributes: maintainer_access_level }
     end
     let(:create_params) { attributes_for(:protected_branch).merge(access_level_params) }
 
diff --git a/spec/controllers/projects/protected_tags_controller_spec.rb b/spec/controllers/projects/protected_tags_controller_spec.rb
index b6de90039f3..20440c5a5d5 100644
--- a/spec/controllers/projects/protected_tags_controller_spec.rb
+++ b/spec/controllers/projects/protected_tags_controller_spec.rb
@@ -15,7 +15,7 @@ describe Projects::ProtectedTagsController do
     let(:user) { create(:user) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/controllers/projects/runners_controller_spec.rb b/spec/controllers/projects/runners_controller_spec.rb
index 2082dd2cff0..b1e0b496ede 100644
--- a/spec/controllers/projects/runners_controller_spec.rb
+++ b/spec/controllers/projects/runners_controller_spec.rb
@@ -15,7 +15,7 @@ describe Projects::RunnersController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#update' do
diff --git a/spec/controllers/projects/services_controller_spec.rb b/spec/controllers/projects/services_controller_spec.rb
index 61f35cf325b..45cea8c1351 100644
--- a/spec/controllers/projects/services_controller_spec.rb
+++ b/spec/controllers/projects/services_controller_spec.rb
@@ -9,7 +9,7 @@ describe Projects::ServicesController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#test' do
diff --git a/spec/controllers/projects/settings/ci_cd_controller_spec.rb b/spec/controllers/projects/settings/ci_cd_controller_spec.rb
index d53fe9bf734..1f14a0cc381 100644
--- a/spec/controllers/projects/settings/ci_cd_controller_spec.rb
+++ b/spec/controllers/projects/settings/ci_cd_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::Settings::CiCdController do
   let(:project) { project_auto_devops.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
@@ -27,7 +27,7 @@ describe Projects::Settings::CiCdController do
       let!(:shared_runner) { create(:ci_runner, :instance) }
 
       it 'sets assignable project runners only' do
-        group.add_master(user)
+        group.add_maintainer(user)
 
         get :show, namespace_id: project.namespace, project_id: project
 
@@ -40,7 +40,7 @@ describe Projects::Settings::CiCdController do
     before do
       sign_in(user)
 
-      project.add_master(user)
+      project.add_maintainer(user)
 
       allow(ResetProjectCacheService).to receive_message_chain(:new, :execute).and_return(true)
     end
diff --git a/spec/controllers/projects/settings/integrations_controller_spec.rb b/spec/controllers/projects/settings/integrations_controller_spec.rb
index 77df9a6f567..a2484c04c7a 100644
--- a/spec/controllers/projects/settings/integrations_controller_spec.rb
+++ b/spec/controllers/projects/settings/integrations_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::Settings::IntegrationsController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/settings/repository_controller_spec.rb b/spec/controllers/projects/settings/repository_controller_spec.rb
index 3a4014b7768..9cee40b7553 100644
--- a/spec/controllers/projects/settings/repository_controller_spec.rb
+++ b/spec/controllers/projects/settings/repository_controller_spec.rb
@@ -5,7 +5,7 @@ describe Projects::Settings::RepositoryController do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/controllers/projects/snippets_controller_spec.rb b/spec/controllers/projects/snippets_controller_spec.rb
index e7c0b484ede..9c383bd7628 100644
--- a/spec/controllers/projects/snippets_controller_spec.rb
+++ b/spec/controllers/projects/snippets_controller_spec.rb
@@ -6,8 +6,8 @@ describe Projects::SnippetsController do
   let(:user2)   { create(:user) }
 
   before do
-    project.add_master(user)
-    project.add_master(user2)
+    project.add_maintainer(user)
+    project.add_maintainer(user2)
   end
 
   describe 'GET #index' do
@@ -291,7 +291,7 @@ describe Projects::SnippetsController do
     def mark_as_spam
       admin = create(:admin)
       create(:user_agent_detail, subject: snippet)
-      project.add_master(admin)
+      project.add_maintainer(admin)
       sign_in(admin)
 
       post :mark_as_spam,
diff --git a/spec/controllers/projects/templates_controller_spec.rb b/spec/controllers/projects/templates_controller_spec.rb
index 8fcfa3c9ecd..d7f07aa2b01 100644
--- a/spec/controllers/projects/templates_controller_spec.rb
+++ b/spec/controllers/projects/templates_controller_spec.rb
@@ -13,7 +13,7 @@ describe Projects::TemplatesController do
   end
 
   before do
-    project.add_user(user, Gitlab::Access::MASTER)
+    project.add_user(user, Gitlab::Access::MAINTAINER)
     project.repository.create_file(user, file_path_1, 'something valid',
       message: 'test 3', branch_name: 'master')
   end
diff --git a/spec/controllers/projects/tree_controller_spec.rb b/spec/controllers/projects/tree_controller_spec.rb
index d3188f054cf..9982b49eebb 100644
--- a/spec/controllers/projects/tree_controller_spec.rb
+++ b/spec/controllers/projects/tree_controller_spec.rb
@@ -7,7 +7,7 @@ describe Projects::TreeController do
   before do
     sign_in(user)
 
-    project.add_master(user)
+    project.add_maintainer(user)
     controller.instance_variable_set(:@project, project)
   end
 
diff --git a/spec/controllers/projects/variables_controller_spec.rb b/spec/controllers/projects/variables_controller_spec.rb
index 68019743be0..9afd1f751c6 100644
--- a/spec/controllers/projects/variables_controller_spec.rb
+++ b/spec/controllers/projects/variables_controller_spec.rb
@@ -6,7 +6,7 @@ describe Projects::VariablesController do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET #show' do
diff --git a/spec/controllers/projects_controller_spec.rb b/spec/controllers/projects_controller_spec.rb
index fd7d867f9e5..94644b1f9fd 100644
--- a/spec/controllers/projects_controller_spec.rb
+++ b/spec/controllers/projects_controller_spec.rb
@@ -759,7 +759,7 @@ describe ProjectsController do
     before do
       sign_in(user)
 
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when project export is enabled' do
@@ -787,7 +787,7 @@ describe ProjectsController do
     before do
       sign_in(user)
 
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'object storage disabled' do
@@ -847,7 +847,7 @@ describe ProjectsController do
     before do
       sign_in(user)
 
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when project export is enabled' do
@@ -875,7 +875,7 @@ describe ProjectsController do
     before do
       sign_in(user)
 
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when project export is enabled' do
diff --git a/spec/controllers/uploads_controller_spec.rb b/spec/controllers/uploads_controller_spec.rb
index eb94d395a9e..bcf289f36a9 100644
--- a/spec/controllers/uploads_controller_spec.rb
+++ b/spec/controllers/uploads_controller_spec.rb
@@ -269,13 +269,13 @@ describe UploadsController do
 
           context "when the user has access to the project" do
             before do
-              project.add_master(user)
+              project.add_maintainer(user)
             end
 
             context "when the user is blocked" do
               before do
                 user.block
-                project.add_master(user)
+                project.add_maintainer(user)
               end
 
               it "redirects to the sign in page" do
@@ -475,13 +475,13 @@ describe UploadsController do
 
           context "when the user has access to the project" do
             before do
-              project.add_master(user)
+              project.add_maintainer(user)
             end
 
             context "when the user is blocked" do
               before do
                 user.block
-                project.add_master(user)
+                project.add_maintainer(user)
               end
 
               it "redirects to the sign in page" do
diff --git a/spec/factories/group_members.rb b/spec/factories/group_members.rb
index 1c2214e9481..47036560b9d 100644
--- a/spec/factories/group_members.rb
+++ b/spec/factories/group_members.rb
@@ -7,7 +7,7 @@ FactoryBot.define do
     trait(:guest)     { access_level GroupMember::GUEST }
     trait(:reporter)  { access_level GroupMember::REPORTER }
     trait(:developer) { access_level GroupMember::DEVELOPER }
-    trait(:master)    { access_level GroupMember::MASTER }
+    trait(:maintainer) { access_level GroupMember::MAINTAINER }
     trait(:owner)     { access_level GroupMember::OWNER }
     trait(:access_request) { requested_at Time.now }
 
diff --git a/spec/factories/project_members.rb b/spec/factories/project_members.rb
index 4260f52498d..22a8085ea45 100644
--- a/spec/factories/project_members.rb
+++ b/spec/factories/project_members.rb
@@ -2,12 +2,12 @@ FactoryBot.define do
   factory :project_member do
     user
     project
-    master
+    maintainer
 
     trait(:guest)     { access_level ProjectMember::GUEST }
     trait(:reporter)  { access_level ProjectMember::REPORTER }
     trait(:developer) { access_level ProjectMember::DEVELOPER }
-    trait(:master)    { access_level ProjectMember::MASTER }
+    trait(:maintainer) { access_level ProjectMember::MAINTAINER }
     trait(:access_request) { requested_at Time.now }
 
     trait(:invited) do
diff --git a/spec/factories/projects.rb b/spec/factories/projects.rb
index f77ded23b18..fec1bea2751 100644
--- a/spec/factories/projects.rb
+++ b/spec/factories/projects.rb
@@ -47,7 +47,7 @@ FactoryBot.define do
       # user have access to the project. Our specs don't use said service class,
       # thus we must manually refresh things here.
       unless project.group || project.pending_delete
-        project.add_master(project.owner)
+        project.add_maintainer(project.owner)
       end
 
       project.group&.refresh_members_authorized_projects
diff --git a/spec/factories/protected_branches.rb b/spec/factories/protected_branches.rb
index 60956511834..5457c0d2a8f 100644
--- a/spec/factories/protected_branches.rb
+++ b/spec/factories/protected_branches.rb
@@ -39,23 +39,23 @@ FactoryBot.define do
       end
     end
 
-    trait :masters_can_push do
+    trait :maintainers_can_push do
       transient do
         default_push_level false
       end
 
       after(:build) do |protected_branch|
-        protected_branch.push_access_levels.new(access_level: Gitlab::Access::MASTER)
+        protected_branch.push_access_levels.new(access_level: Gitlab::Access::MAINTAINER)
       end
     end
 
     after(:build) do |protected_branch, evaluator|
       if evaluator.default_access_level && evaluator.default_push_level
-        protected_branch.push_access_levels.new(access_level: Gitlab::Access::MASTER)
+        protected_branch.push_access_levels.new(access_level: Gitlab::Access::MAINTAINER)
       end
 
       if evaluator.default_access_level && evaluator.default_merge_level
-        protected_branch.merge_access_levels.new(access_level: Gitlab::Access::MASTER)
+        protected_branch.merge_access_levels.new(access_level: Gitlab::Access::MAINTAINER)
       end
     end
 
diff --git a/spec/factories/protected_tags.rb b/spec/factories/protected_tags.rb
index df9c8b3cb63..2b81d089549 100644
--- a/spec/factories/protected_tags.rb
+++ b/spec/factories/protected_tags.rb
@@ -27,19 +27,19 @@ FactoryBot.define do
       end
     end
 
-    trait :masters_can_create do
+    trait :maintainers_can_create do
       transient do
         default_access_level false
       end
 
       after(:build) do |protected_tag|
-        protected_tag.create_access_levels.new(access_level: Gitlab::Access::MASTER)
+        protected_tag.create_access_levels.new(access_level: Gitlab::Access::MAINTAINER)
       end
     end
 
     after(:build) do |protected_tag, evaluator|
       if evaluator.default_access_level
-        protected_tag.create_access_levels.new(access_level: Gitlab::Access::MASTER)
+        protected_tag.create_access_levels.new(access_level: Gitlab::Access::MAINTAINER)
       end
     end
   end
diff --git a/spec/features/admin/admin_groups_spec.rb b/spec/features/admin/admin_groups_spec.rb
index 5b0a53688c2..96dfde2e08c 100644
--- a/spec/features/admin/admin_groups_spec.rb
+++ b/spec/features/admin/admin_groups_spec.rb
@@ -168,7 +168,7 @@ describe 'Admin Groups' do
     it 'renders shared project' do
       empty_project = create(:project)
       empty_project.project_group_links.create!(
-        group_access: Gitlab::Access::MASTER,
+        group_access: Gitlab::Access::MAINTAINER,
         group: group
       )
 
diff --git a/spec/features/admin/admin_projects_spec.rb b/spec/features/admin/admin_projects_spec.rb
index 328e8f25f89..d6ee256f5b5 100644
--- a/spec/features/admin/admin_projects_spec.rb
+++ b/spec/features/admin/admin_projects_spec.rb
@@ -88,7 +88,7 @@ describe "Admin::Projects"  do
 
   describe 'add admin himself to a project' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it 'adds admin a to a project as developer', :js do
@@ -110,7 +110,7 @@ describe "Admin::Projects"  do
 
   describe 'admin remove himself from a project' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       project.add_developer(current_user)
     end
 
diff --git a/spec/features/atom/dashboard_issues_spec.rb b/spec/features/atom/dashboard_issues_spec.rb
index da7749b42d2..bd4c00d97b1 100644
--- a/spec/features/atom/dashboard_issues_spec.rb
+++ b/spec/features/atom/dashboard_issues_spec.rb
@@ -8,8 +8,8 @@ describe "Dashboard Issues Feed"  do
     let!(:project2) { create(:project) }
 
     before do
-      project1.add_master(user)
-      project2.add_master(user)
+      project1.add_maintainer(user)
+      project2.add_maintainer(user)
     end
 
     describe "atom feed" do
diff --git a/spec/features/atom/dashboard_spec.rb b/spec/features/atom/dashboard_spec.rb
index 462eab07a75..86b3f88298f 100644
--- a/spec/features/atom/dashboard_spec.rb
+++ b/spec/features/atom/dashboard_spec.rb
@@ -26,7 +26,7 @@ describe "Dashboard Feed"  do
       let(:note) { create(:note, noteable: issue, author: user, note: 'Bug confirmed', project: project) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         issue_event(issue, user)
         note_event(note, user)
         visit dashboard_projects_path(:atom, feed_token: user.feed_token)
diff --git a/spec/features/atom/users_spec.rb b/spec/features/atom/users_spec.rb
index eeaaa40fe21..8d7df346abb 100644
--- a/spec/features/atom/users_spec.rb
+++ b/spec/features/atom/users_spec.rb
@@ -47,7 +47,7 @@ describe "User Feed"  do
       let!(:push_event_payload) { create(:push_event_payload, event: push_event) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         issue_event(issue, user)
         note_event(note, user)
         merge_request_event(merge_request, user)
diff --git a/spec/features/boards/add_issues_modal_spec.rb b/spec/features/boards/add_issues_modal_spec.rb
index 7a14a441088..eebc987499d 100644
--- a/spec/features/boards/add_issues_modal_spec.rb
+++ b/spec/features/boards/add_issues_modal_spec.rb
@@ -12,7 +12,7 @@ describe 'Issue Boards add issue modal', :js do
   let!(:issue2) { create(:issue, project: project, title: 'hij', description: 'klm') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/boards/boards_spec.rb b/spec/features/boards/boards_spec.rb
index f6e0dee28c6..a0af2dea3ad 100644
--- a/spec/features/boards/boards_spec.rb
+++ b/spec/features/boards/boards_spec.rb
@@ -11,8 +11,8 @@ describe 'Issue Boards', :js do
   let!(:user2)  { create(:user) }
 
   before do
-    project.add_master(user)
-    project.add_master(user2)
+    project.add_maintainer(user)
+    project.add_maintainer(user2)
 
     set_cookie('sidebar_collapsed', 'true')
 
diff --git a/spec/features/boards/issue_ordering_spec.rb b/spec/features/boards/issue_ordering_spec.rb
index 32bd7b88840..ec0ca21450a 100644
--- a/spec/features/boards/issue_ordering_spec.rb
+++ b/spec/features/boards/issue_ordering_spec.rb
@@ -13,7 +13,7 @@ describe 'Issue Boards', :js do
   let!(:issue3) { create(:labeled_issue, project: project, title: 'testing 3', labels: [label], relative_position: 1) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/features/boards/modal_filter_spec.rb b/spec/features/boards/modal_filter_spec.rb
index be9c6a51c29..615223a2a88 100644
--- a/spec/features/boards/modal_filter_spec.rb
+++ b/spec/features/boards/modal_filter_spec.rb
@@ -10,7 +10,7 @@ describe 'Issue Boards add issue modal filtering', :js do
   let!(:issue1) { create(:issue, project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/features/boards/new_issue_spec.rb b/spec/features/boards/new_issue_spec.rb
index 7a95f5cf871..0bf1ecbc433 100644
--- a/spec/features/boards/new_issue_spec.rb
+++ b/spec/features/boards/new_issue_spec.rb
@@ -8,7 +8,7 @@ describe 'Issue Boards new issue', :js do
 
   context 'authorized user' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       sign_in(user)
 
diff --git a/spec/features/boards/sidebar_spec.rb b/spec/features/boards/sidebar_spec.rb
index a03aa681827..ee38e756f9e 100644
--- a/spec/features/boards/sidebar_spec.rb
+++ b/spec/features/boards/sidebar_spec.rb
@@ -22,7 +22,7 @@ describe 'Issue Boards', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/boards/sub_group_project_spec.rb b/spec/features/boards/sub_group_project_spec.rb
index 271c610dcc8..de2cb4c335e 100644
--- a/spec/features/boards/sub_group_project_spec.rb
+++ b/spec/features/boards/sub_group_project_spec.rb
@@ -11,7 +11,7 @@ describe 'Sub-group project issue boards', :js do
   let!(:issue) { create(:labeled_issue, project: project, labels: [label]) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/commits_spec.rb b/spec/features/commits_spec.rb
index 29fcf89fa7a..8989b2051bb 100644
--- a/spec/features/commits_spec.rb
+++ b/spec/features/commits_spec.rb
@@ -188,7 +188,7 @@ describe 'Commits' do
     let(:branch_name) { 'master' }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       visit project_commits_path(project, branch_name)
     end
diff --git a/spec/features/cycle_analytics_spec.rb b/spec/features/cycle_analytics_spec.rb
index dfcd7ada23b..32c75cae0a1 100644
--- a/spec/features/cycle_analytics_spec.rb
+++ b/spec/features/cycle_analytics_spec.rb
@@ -12,7 +12,7 @@ describe 'Cycle Analytics', :js do
   context 'as an allowed user' do
     context 'when project is new' do
       before  do
-        project.add_master(user)
+        project.add_maintainer(user)
 
         sign_in(user)
 
@@ -39,7 +39,7 @@ describe 'Cycle Analytics', :js do
     context "when there's cycle analytics data" do
       before do
         allow_any_instance_of(Gitlab::ReferenceExtractor).to receive(:issues).and_return([issue])
-        project.add_master(user)
+        project.add_maintainer(user)
 
         @build = create_cycle(user, project, issue, mr, milestone, pipeline)
         deploy_master(user, project)
@@ -95,7 +95,7 @@ describe 'Cycle Analytics', :js do
       before do
         user.update_attribute(:preferred_language, 'es')
 
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
         visit project_cycle_analytics_path(project)
         wait_for_requests
diff --git a/spec/features/dashboard/activity_spec.rb b/spec/features/dashboard/activity_spec.rb
index 9ed912820f7..bf91dc121d8 100644
--- a/spec/features/dashboard/activity_spec.rb
+++ b/spec/features/dashboard/activity_spec.rb
@@ -60,7 +60,7 @@ describe 'Dashboard > Activity' do
     end
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       visit activity_dashboard_path
       wait_for_requests
diff --git a/spec/features/dashboard/archived_projects_spec.rb b/spec/features/dashboard/archived_projects_spec.rb
index b36231fd78b..6a0cd848345 100644
--- a/spec/features/dashboard/archived_projects_spec.rb
+++ b/spec/features/dashboard/archived_projects_spec.rb
@@ -6,8 +6,8 @@ RSpec.describe 'Dashboard Archived Project' do
   let(:archived_project) { create(:project, :archived) }
 
   before do
-    project.add_master(user)
-    archived_project.add_master(user)
+    project.add_maintainer(user)
+    archived_project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/dashboard/datetime_on_tooltips_spec.rb b/spec/features/dashboard/datetime_on_tooltips_spec.rb
index 28bff4d2821..d7234158fa1 100644
--- a/spec/features/dashboard/datetime_on_tooltips_spec.rb
+++ b/spec/features/dashboard/datetime_on_tooltips_spec.rb
@@ -8,7 +8,7 @@ describe 'Tooltips on .timeago dates', :js do
 
   context 'on the activity tab' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       Event.create( project: project, author_id: user.id, action: Event::JOINED,
                     updated_at: created_date, created_at: created_date)
@@ -27,7 +27,7 @@ describe 'Tooltips on .timeago dates', :js do
 
   context 'on the snippets tab' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       create(:snippet, author: user, updated_at: created_date, created_at: created_date)
 
       sign_in user
diff --git a/spec/features/dashboard/issues_filter_spec.rb b/spec/features/dashboard/issues_filter_spec.rb
index 340262be502..95e2610dd4a 100644
--- a/spec/features/dashboard/issues_filter_spec.rb
+++ b/spec/features/dashboard/issues_filter_spec.rb
@@ -11,7 +11,7 @@ describe 'Dashboard Issues filtering', :js do
   let!(:issue2) { create(:issue, project: project, author: user, assignees: [user], milestone: milestone) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit_issues
diff --git a/spec/features/dashboard/issues_spec.rb b/spec/features/dashboard/issues_spec.rb
index 3cc7b38550d..4ae062f242a 100644
--- a/spec/features/dashboard/issues_spec.rb
+++ b/spec/features/dashboard/issues_spec.rb
@@ -12,7 +12,7 @@ RSpec.describe 'Dashboard Issues' do
   let!(:other_issue) { create :issue, project: project }
 
   before do
-    [project, project_with_issues_disabled].each { |project| project.add_master(current_user) }
+    [project, project_with_issues_disabled].each { |project| project.add_maintainer(current_user) }
     sign_in(current_user)
     visit issues_dashboard_path(assignee_id: current_user.id)
   end
diff --git a/spec/features/dashboard/merge_requests_spec.rb b/spec/features/dashboard/merge_requests_spec.rb
index 46d7a82d468..f51142f5790 100644
--- a/spec/features/dashboard/merge_requests_spec.rb
+++ b/spec/features/dashboard/merge_requests_spec.rb
@@ -12,7 +12,7 @@ describe 'Dashboard Merge Requests' do
   let(:forked_project) { fork_project(public_project, current_user, repository: true) }
 
   before do
-    project.add_master(current_user)
+    project.add_maintainer(current_user)
     sign_in(current_user)
   end
 
@@ -20,7 +20,7 @@ describe 'Dashboard Merge Requests' do
     let(:project_with_disabled_merge_requests) { create(:project, :merge_requests_disabled) }
 
     before do
-      project_with_disabled_merge_requests.add_master(current_user)
+      project_with_disabled_merge_requests.add_maintainer(current_user)
       visit merge_requests_dashboard_path
     end
 
diff --git a/spec/features/dashboard/milestone_tabs_spec.rb b/spec/features/dashboard/milestone_tabs_spec.rb
index 6fcde35f541..21de7c2f06f 100644
--- a/spec/features/dashboard/milestone_tabs_spec.rb
+++ b/spec/features/dashboard/milestone_tabs_spec.rb
@@ -14,7 +14,7 @@ describe 'Dashboard milestone tabs', :js do
   let!(:merge_request) { create(:labeled_merge_request, source_project: project, target_project: project, milestone: project_milestone, labels: [label]) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit dashboard_milestone_path(milestone.safe_title, title: milestone.title)
diff --git a/spec/features/dashboard/milestones_spec.rb b/spec/features/dashboard/milestones_spec.rb
index c0699a72521..0db69432702 100644
--- a/spec/features/dashboard/milestones_spec.rb
+++ b/spec/features/dashboard/milestones_spec.rb
@@ -16,7 +16,7 @@ describe 'Dashboard > Milestones' do
     let(:project) { create(:project, namespace: user.namespace) }
     let!(:milestone) { create(:milestone, project: project) }
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       visit dashboard_milestones_path
     end
diff --git a/spec/features/dashboard/project_member_activity_index_spec.rb b/spec/features/dashboard/project_member_activity_index_spec.rb
index cfd6329fad0..498775acff3 100644
--- a/spec/features/dashboard/project_member_activity_index_spec.rb
+++ b/spec/features/dashboard/project_member_activity_index_spec.rb
@@ -5,7 +5,7 @@ describe 'Project member activity', :js do
   let(:project)         { create(:project, :public, name: 'x', namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   def visit_activities_and_wait_with_event(event_type)
diff --git a/spec/features/dashboard/user_filters_projects_spec.rb b/spec/features/dashboard/user_filters_projects_spec.rb
index 92f4d4b854c..3746d37b9cd 100644
--- a/spec/features/dashboard/user_filters_projects_spec.rb
+++ b/spec/features/dashboard/user_filters_projects_spec.rb
@@ -7,7 +7,7 @@ describe 'Dashboard > User filters projects' do
   let(:project2) { create(:project, name: 'Treasure', namespace: user2.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/features/discussion_comments/commit_spec.rb b/spec/features/discussion_comments/commit_spec.rb
index 69d35cdbc72..7a3b1d7ed47 100644
--- a/spec/features/discussion_comments/commit_spec.rb
+++ b/spec/features/discussion_comments/commit_spec.rb
@@ -8,7 +8,7 @@ describe 'Discussion Comments Commit', :js do
   let(:merge_request) { create(:merge_request, source_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_commit_path(project, sample_commit.id)
diff --git a/spec/features/discussion_comments/issue_spec.rb b/spec/features/discussion_comments/issue_spec.rb
index 9812eaf3420..5ec19460bbd 100644
--- a/spec/features/discussion_comments/issue_spec.rb
+++ b/spec/features/discussion_comments/issue_spec.rb
@@ -6,7 +6,7 @@ describe 'Discussion Comments Issue', :js do
   let(:issue) { create(:issue, project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_issue_path(project, issue)
diff --git a/spec/features/discussion_comments/merge_request_spec.rb b/spec/features/discussion_comments/merge_request_spec.rb
index b0019c32189..f940e973923 100644
--- a/spec/features/discussion_comments/merge_request_spec.rb
+++ b/spec/features/discussion_comments/merge_request_spec.rb
@@ -6,7 +6,7 @@ describe 'Discussion Comments Merge Request', :js do
   let(:merge_request) { create(:merge_request, source_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_merge_request_path(project, merge_request)
diff --git a/spec/features/discussion_comments/snippets_spec.rb b/spec/features/discussion_comments/snippets_spec.rb
index 4a236c4639b..d330e89505e 100644
--- a/spec/features/discussion_comments/snippets_spec.rb
+++ b/spec/features/discussion_comments/snippets_spec.rb
@@ -6,7 +6,7 @@ describe 'Discussion Comments Snippet', :js do
   let(:snippet) { create(:project_snippet, :private, project: project, author: user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_snippet_path(project, snippet)
diff --git a/spec/features/global_search_spec.rb b/spec/features/global_search_spec.rb
index df64219de99..d7692181453 100644
--- a/spec/features/global_search_spec.rb
+++ b/spec/features/global_search_spec.rb
@@ -5,7 +5,7 @@ describe 'Global search' do
   let(:project) { create(:project, namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/group_variables_spec.rb b/spec/features/group_variables_spec.rb
index 5643240377b..89e0cdd8ed7 100644
--- a/spec/features/group_variables_spec.rb
+++ b/spec/features/group_variables_spec.rb
@@ -7,7 +7,7 @@ describe 'Group variables', :js do
   let(:page_path) { group_settings_ci_cd_path(group) }
 
   before do
-    group.add_master(user)
+    group.add_maintainer(user)
     gitlab_sign_in(user)
 
     visit page_path
diff --git a/spec/features/groups/activity_spec.rb b/spec/features/groups/activity_spec.rb
index 27520cf0e22..88fc12ae1e4 100644
--- a/spec/features/groups/activity_spec.rb
+++ b/spec/features/groups/activity_spec.rb
@@ -23,7 +23,7 @@ describe 'Group activity page' do
       let(:project) { create(:project, :public, namespace: group) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
 
         visit path
       end
diff --git a/spec/features/groups/empty_states_spec.rb b/spec/features/groups/empty_states_spec.rb
index dd901b034f7..8f5ca781b2c 100644
--- a/spec/features/groups/empty_states_spec.rb
+++ b/spec/features/groups/empty_states_spec.rb
@@ -19,7 +19,7 @@ describe 'Group empty states' do
         let(:project) { create(:project, namespace: group) }
 
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         context "the project has #{issuable_name}s" do
diff --git a/spec/features/groups/issues_spec.rb b/spec/features/groups/issues_spec.rb
index 2bab6aa3d48..97d8776b15a 100644
--- a/spec/features/groups/issues_spec.rb
+++ b/spec/features/groups/issues_spec.rb
@@ -80,10 +80,10 @@ describe 'Group issues page' do
 
   context 'projects with issues disabled' do
     describe 'issue dropdown' do
-      let(:user_in_group) { create(:group_member, :master, user: create(:user), group: group ).user }
+      let(:user_in_group) { create(:group_member, :maintainer, user: create(:user), group: group ).user }
 
       before do
-        [project, project_with_issues_disabled].each { |project| project.add_master(user_in_group) }
+        [project, project_with_issues_disabled].each { |project| project.add_maintainer(user_in_group) }
         sign_in(user_in_group)
         visit issues_group_path(group)
       end
diff --git a/spec/features/groups/members/filter_members_spec.rb b/spec/features/groups/members/filter_members_spec.rb
index 8b4f6dbcc50..386d81546d7 100644
--- a/spec/features/groups/members/filter_members_spec.rb
+++ b/spec/features/groups/members/filter_members_spec.rb
@@ -7,7 +7,7 @@ describe 'Groups > Members > Filter members' do
 
   before do
     group.add_owner(user)
-    group.add_master(user_with_2fa)
+    group.add_maintainer(user_with_2fa)
 
     sign_in(user)
   end
diff --git a/spec/features/groups/members/master_manages_access_requests_spec.rb b/spec/features/groups/members/master_manages_access_requests_spec.rb
index 4fdf1497781..bd615c99412 100644
--- a/spec/features/groups/members/master_manages_access_requests_spec.rb
+++ b/spec/features/groups/members/master_manages_access_requests_spec.rb
@@ -1,7 +1,7 @@
 require 'spec_helper'
 
-describe 'Groups > Members > Master manages access requests' do
-  it_behaves_like 'Master manages access requests' do
+describe 'Groups > Members > Maintainer manages access requests' do
+  it_behaves_like 'Maintainer manages access requests' do
     let(:entity) { create(:group, :public, :access_requestable) }
     let(:members_page_path) { group_group_members_path(entity) }
   end
diff --git a/spec/features/groups/milestone_spec.rb b/spec/features/groups/milestone_spec.rb
index 5ab03cb6ee6..80df0618a6a 100644
--- a/spec/features/groups/milestone_spec.rb
+++ b/spec/features/groups/milestone_spec.rb
@@ -3,7 +3,7 @@ require 'rails_helper'
 describe 'Group milestones' do
   let(:group) { create(:group) }
   let!(:project) { create(:project_empty_repo, group: group) }
-  let(:user) { create(:group_member, :master, user: create(:user), group: group ).user }
+  let(:user) { create(:group_member, :maintainer, user: create(:user), group: group ).user }
 
   around do |example|
     Timecop.freeze { example.run }
diff --git a/spec/features/groups/milestones_sorting_spec.rb b/spec/features/groups/milestones_sorting_spec.rb
index 5deb55bc8bb..bc226ff41c1 100644
--- a/spec/features/groups/milestones_sorting_spec.rb
+++ b/spec/features/groups/milestones_sorting_spec.rb
@@ -9,7 +9,7 @@ describe 'Milestones sorting', :js do
   let!(:project_milestone2) { create(:milestone, project: project, title: 'v2.0', due_date: 5.days.from_now) }
   let!(:other_project_milestone2) { create(:milestone, project: other_project, title: 'v2.0', due_date: 5.days.from_now) }
   let!(:group_milestone) { create(:milestone, group: group, title: 'v3.0', due_date: 7.days.from_now) }
-  let(:user) { create(:group_member, :master, user: create(:user), group: group ).user }
+  let(:user) { create(:group_member, :maintainer, user: create(:user), group: group ).user }
 
   before do
     sign_in(user)
diff --git a/spec/features/ics/dashboard_issues_spec.rb b/spec/features/ics/dashboard_issues_spec.rb
index a4d05c25a90..ea714934ae7 100644
--- a/spec/features/ics/dashboard_issues_spec.rb
+++ b/spec/features/ics/dashboard_issues_spec.rb
@@ -8,7 +8,7 @@ describe 'Dashboard Issues Calendar Feed'  do
     let(:milestone) { create(:milestone, project_id: project.id, title: 'v1.0') }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when authenticated' do
diff --git a/spec/features/ide_spec.rb b/spec/features/ide_spec.rb
index b3f24c2966d..65989c36c1e 100644
--- a/spec/features/ide_spec.rb
+++ b/spec/features/ide_spec.rb
@@ -8,7 +8,7 @@ describe 'IDE', :js do
     let(:subgroup_project) { create(:project, :repository, namespace: subgroup) }
 
     before do
-      subgroup_project.add_master(user)
+      subgroup_project.add_maintainer(user)
       sign_in(user)
 
       visit project_path(subgroup_project)
diff --git a/spec/features/invites_spec.rb b/spec/features/invites_spec.rb
index a986ddc4abc..9e1a12a9c2a 100644
--- a/spec/features/invites_spec.rb
+++ b/spec/features/invites_spec.rb
@@ -8,7 +8,7 @@ describe 'Invites' do
   let(:group_invite) { group.group_members.invite.last }
 
   before do
-    project.add_master(owner)
+    project.add_maintainer(owner)
     group.add_user(owner, Gitlab::Access::OWNER)
     group.add_developer('user@example.com', owner)
     group_invite.generate_invite_token!
diff --git a/spec/features/issuables/close_reopen_report_toggle_spec.rb b/spec/features/issuables/close_reopen_report_toggle_spec.rb
index 3df77a104e8..de6f5fe1560 100644
--- a/spec/features/issuables/close_reopen_report_toggle_spec.rb
+++ b/spec/features/issuables/close_reopen_report_toggle_spec.rb
@@ -46,7 +46,7 @@ describe 'Issuables Close/Reopen/Report toggle' do
     let(:issuable) { create(:issue, project: project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       login_as user
     end
 
@@ -83,7 +83,7 @@ describe 'Issuables Close/Reopen/Report toggle' do
     let(:issuable) { create(:merge_request, source_project: project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       login_as user
     end
 
diff --git a/spec/features/issues/award_emoji_spec.rb b/spec/features/issues/award_emoji_spec.rb
index 1131e1711bf..bf60b18873c 100644
--- a/spec/features/issues/award_emoji_spec.rb
+++ b/spec/features/issues/award_emoji_spec.rb
@@ -11,7 +11,7 @@ describe 'Awards Emoji' do
 
   context 'authorized user' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/features/issues/bulk_assignment_labels_spec.rb b/spec/features/issues/bulk_assignment_labels_spec.rb
index 44ddc032656..06cb2e36334 100644
--- a/spec/features/issues/bulk_assignment_labels_spec.rb
+++ b/spec/features/issues/bulk_assignment_labels_spec.rb
@@ -11,7 +11,7 @@ describe 'Issues > Labels bulk assignment' do
 
   context 'as an allowed user', :js do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       sign_in user
     end
diff --git a/spec/features/issues/create_issue_for_discussions_in_merge_request_spec.rb b/spec/features/issues/create_issue_for_discussions_in_merge_request_spec.rb
index 32c6ac52f92..ada57285abf 100644
--- a/spec/features/issues/create_issue_for_discussions_in_merge_request_spec.rb
+++ b/spec/features/issues/create_issue_for_discussions_in_merge_request_spec.rb
@@ -14,7 +14,7 @@ describe 'Resolving all open discussions in a merge request from an issue', :js
 
   describe 'as a user with access to the project' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
       visit project_merge_request_path(project, merge_request)
     end
diff --git a/spec/features/issues/create_issue_for_single_discussion_in_merge_request_spec.rb b/spec/features/issues/create_issue_for_single_discussion_in_merge_request_spec.rb
index b8222283a98..b20730bdb22 100644
--- a/spec/features/issues/create_issue_for_single_discussion_in_merge_request_spec.rb
+++ b/spec/features/issues/create_issue_for_single_discussion_in_merge_request_spec.rb
@@ -14,7 +14,7 @@ describe 'Resolve an open discussion in a merge request by creating an issue', :
 
   describe 'As a user with access to the project' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
       visit project_merge_request_path(project, merge_request)
     end
diff --git a/spec/features/issues/filtered_search/dropdown_assignee_spec.rb b/spec/features/issues/filtered_search/dropdown_assignee_spec.rb
index c8115db9212..d011d2545bb 100644
--- a/spec/features/issues/filtered_search/dropdown_assignee_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_assignee_spec.rb
@@ -20,9 +20,9 @@ describe 'Dropdown assignee', :js do
   end
 
   before do
-    project.add_master(user)
-    project.add_master(user_john)
-    project.add_master(user_jacob)
+    project.add_maintainer(user)
+    project.add_maintainer(user_john)
+    project.add_maintainer(user_jacob)
     sign_in(user)
     create(:issue, project: project)
 
@@ -224,7 +224,7 @@ describe 'Dropdown assignee', :js do
       expect(initial_size).to be > 0
 
       new_user = create(:user)
-      project.add_master(new_user)
+      project.add_maintainer(new_user)
       find('.filtered-search-box .clear-search').click
       input_filtered_search('assignee:', submit: false, extra_space: false)
 
diff --git a/spec/features/issues/filtered_search/dropdown_author_spec.rb b/spec/features/issues/filtered_search/dropdown_author_spec.rb
index 70b4f11410d..50d819a6161 100644
--- a/spec/features/issues/filtered_search/dropdown_author_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_author_spec.rb
@@ -28,9 +28,9 @@ describe 'Dropdown author', :js do
   end
 
   before do
-    project.add_master(user)
-    project.add_master(user_john)
-    project.add_master(user_jacob)
+    project.add_maintainer(user)
+    project.add_maintainer(user_john)
+    project.add_maintainer(user_jacob)
     sign_in(user)
     create(:issue, project: project)
 
@@ -195,7 +195,7 @@ describe 'Dropdown author', :js do
       expect(initial_size).to be > 0
 
       new_user = create(:user)
-      project.add_master(new_user)
+      project.add_maintainer(new_user)
       find('.filtered-search-box .clear-search').click
       filtered_search.set('author')
       send_keys_to_filtered_search(':')
diff --git a/spec/features/issues/filtered_search/dropdown_emoji_spec.rb b/spec/features/issues/filtered_search/dropdown_emoji_spec.rb
index 436625a6f7b..be229e8aa7d 100644
--- a/spec/features/issues/filtered_search/dropdown_emoji_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_emoji_spec.rb
@@ -28,7 +28,7 @@ describe 'Dropdown emoji', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     create_list(:award_emoji, 2, user: user, name: 'thumbsup')
     create_list(:award_emoji, 1, user: user, name: 'thumbsdown')
     create_list(:award_emoji, 3, user: user, name: 'star')
diff --git a/spec/features/issues/filtered_search/dropdown_hint_spec.rb b/spec/features/issues/filtered_search/dropdown_hint_spec.rb
index ef40dddfd3a..b99c5a7f4e3 100644
--- a/spec/features/issues/filtered_search/dropdown_hint_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_hint_spec.rb
@@ -13,7 +13,7 @@ describe 'Dropdown hint', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     create(:issue, project: project)
   end
 
diff --git a/spec/features/issues/filtered_search/dropdown_label_spec.rb b/spec/features/issues/filtered_search/dropdown_label_spec.rb
index 18cdb199c70..ca5d506ab04 100644
--- a/spec/features/issues/filtered_search/dropdown_label_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_label_spec.rb
@@ -33,7 +33,7 @@ describe 'Dropdown label', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     create(:issue, project: project)
 
diff --git a/spec/features/issues/filtered_search/dropdown_milestone_spec.rb b/spec/features/issues/filtered_search/dropdown_milestone_spec.rb
index 94710c2f71f..f76d30056da 100644
--- a/spec/features/issues/filtered_search/dropdown_milestone_spec.rb
+++ b/spec/features/issues/filtered_search/dropdown_milestone_spec.rb
@@ -29,7 +29,7 @@ describe 'Dropdown milestone', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     create(:issue, project: project)
 
diff --git a/spec/features/issues/filtered_search/filter_issues_spec.rb b/spec/features/issues/filtered_search/filter_issues_spec.rb
index 8dca81a8627..d4949de3f27 100644
--- a/spec/features/issues/filtered_search/filter_issues_spec.rb
+++ b/spec/features/issues/filtered_search/filter_issues_spec.rb
@@ -24,7 +24,7 @@ describe 'Filter issues', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     create(:issue, project: project, author: user2, title: "Bug report 1")
     create(:issue, project: project, author: user2, title: "Bug report 2")
diff --git a/spec/features/issues/filtered_search/search_bar_spec.rb b/spec/features/issues/filtered_search/search_bar_spec.rb
index 268590da599..8abab3f35d6 100644
--- a/spec/features/issues/filtered_search/search_bar_spec.rb
+++ b/spec/features/issues/filtered_search/search_bar_spec.rb
@@ -8,7 +8,7 @@ describe 'Search bar', :js do
   let(:filtered_search) { find('.filtered-search') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     create(:issue, project: project)
 
diff --git a/spec/features/issues/filtered_search/visual_tokens_spec.rb b/spec/features/issues/filtered_search/visual_tokens_spec.rb
index 0ae70c855db..6ac7ccd00f7 100644
--- a/spec/features/issues/filtered_search/visual_tokens_spec.rb
+++ b/spec/features/issues/filtered_search/visual_tokens_spec.rb
@@ -22,8 +22,8 @@ describe 'Visual tokens', :js do
   end
 
   before do
-    project.add_user(user, :master)
-    project.add_user(user_rock, :master)
+    project.add_user(user, :maintainer)
+    project.add_user(user_rock, :maintainer)
     sign_in(user)
     create(:issue, project: project)
 
diff --git a/spec/features/issues/form_spec.rb b/spec/features/issues/form_spec.rb
index 2cb3ae08b0e..1456a2f0375 100644
--- a/spec/features/issues/form_spec.rb
+++ b/spec/features/issues/form_spec.rb
@@ -13,8 +13,8 @@ describe 'New/edit issue', :js do
   let!(:issue)     { create(:issue, project: project, assignees: [user], milestone: milestone) }
 
   before do
-    project.add_master(user)
-    project.add_master(user2)
+    project.add_maintainer(user)
+    project.add_maintainer(user2)
     sign_in(user)
   end
 
@@ -321,7 +321,7 @@ describe 'New/edit issue', :js do
     let(:sub_group_project) { create(:project, group: nested_group_1) }
 
     before do
-      sub_group_project.add_master(user)
+      sub_group_project.add_maintainer(user)
 
       visit new_project_issue_path(sub_group_project)
     end
diff --git a/spec/features/issues/gfm_autocomplete_spec.rb b/spec/features/issues/gfm_autocomplete_spec.rb
index a330ba4c8b3..98e37d8011a 100644
--- a/spec/features/issues/gfm_autocomplete_spec.rb
+++ b/spec/features/issues/gfm_autocomplete_spec.rb
@@ -7,7 +7,7 @@ describe 'GFM autocomplete', :js do
   let(:issue)   { create(:issue, project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_issue_path(project, issue)
 
diff --git a/spec/features/issues/spam_issues_spec.rb b/spec/features/issues/spam_issues_spec.rb
index 73022afbda2..7cce45ff206 100644
--- a/spec/features/issues/spam_issues_spec.rb
+++ b/spec/features/issues/spam_issues_spec.rb
@@ -17,7 +17,7 @@ describe 'New issue', :js do
       recaptcha_private_key: 'test private key'
     )
 
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/issues/todo_spec.rb b/spec/features/issues/todo_spec.rb
index d23f9059d0f..0114178b9be 100644
--- a/spec/features/issues/todo_spec.rb
+++ b/spec/features/issues/todo_spec.rb
@@ -6,7 +6,7 @@ describe 'Manually create a todo item from issue', :js do
   let!(:user)    { create(:user)}
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_issue_path(project, issue)
   end
diff --git a/spec/features/issues/update_issues_spec.rb b/spec/features/issues/update_issues_spec.rb
index cd6a5977eb8..845a7c5fc42 100644
--- a/spec/features/issues/update_issues_spec.rb
+++ b/spec/features/issues/update_issues_spec.rb
@@ -6,7 +6,7 @@ describe 'Multiple issue updating from issues#index', :js do
   let!(:user)      { create(:user)}
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/issues/user_uses_slash_commands_spec.rb b/spec/features/issues/user_uses_slash_commands_spec.rb
index a28378b22ca..5926e442f24 100644
--- a/spec/features/issues/user_uses_slash_commands_spec.rb
+++ b/spec/features/issues/user_uses_slash_commands_spec.rb
@@ -12,7 +12,7 @@ describe 'Issues > User uses quick actions', :js do
     let(:project) { create(:project, :public) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       visit project_issue_path(project, issue)
     end
@@ -196,7 +196,7 @@ describe 'Issues > User uses quick actions', :js do
         let(:target_project) { create(:project, :public) }
 
         before do
-          target_project.add_master(user)
+          target_project.add_maintainer(user)
           gitlab_sign_out
           sign_in(user)
           visit project_issue_path(project, issue)
@@ -258,7 +258,7 @@ describe 'Issues > User uses quick actions', :js do
         let(:wontfix_target)  { create(:label, project: target_project, title: 'wontfix') }
 
         before do
-          target_project.add_master(user)
+          target_project.add_maintainer(user)
           gitlab_sign_out
           sign_in(user)
           visit project_issue_path(project, issue)
diff --git a/spec/features/issues_spec.rb b/spec/features/issues_spec.rb
index c6dcd97631d..4d9b8a10e04 100644
--- a/spec/features/issues_spec.rb
+++ b/spec/features/issues_spec.rb
@@ -398,7 +398,7 @@ describe 'Issues' do
 
       before do
         stub_incoming_email_setting(enabled: true, address: "p+%{key}@gl.ab")
-        project1.add_master(user)
+        project1.add_maintainer(user)
         visit namespace_project_issues_path(user.namespace, project1)
       end
 
diff --git a/spec/features/markdown/gitlab_flavored_markdown_spec.rb b/spec/features/markdown/gitlab_flavored_markdown_spec.rb
index 3c2186b3598..6997ca48427 100644
--- a/spec/features/markdown/gitlab_flavored_markdown_spec.rb
+++ b/spec/features/markdown/gitlab_flavored_markdown_spec.rb
@@ -6,7 +6,7 @@ describe "GitLab Flavored Markdown" do
   let(:issue) { create(:issue, project: project) }
   let(:fred) do
     create(:user, name: 'fred') do |user|
-      project.add_master(user)
+      project.add_maintainer(user)
     end
   end
 
diff --git a/spec/features/merge_request/maintainer_edits_fork_spec.rb b/spec/features/merge_request/maintainer_edits_fork_spec.rb
index 1808d0c0a0c..7839b97122c 100644
--- a/spec/features/merge_request/maintainer_edits_fork_spec.rb
+++ b/spec/features/merge_request/maintainer_edits_fork_spec.rb
@@ -18,7 +18,7 @@ describe 'a maintainer edits files on a source-branch of an MR from a fork', :js
   end
 
   before do
-    target_project.add_master(user)
+    target_project.add_maintainer(user)
     sign_in(user)
 
     visit project_merge_request_path(target_project, merge_request)
diff --git a/spec/features/merge_request/user_allows_commits_from_memebers_who_can_merge_spec.rb b/spec/features/merge_request/user_allows_commits_from_memebers_who_can_merge_spec.rb
index 0af37d76539..0ccab5b2fac 100644
--- a/spec/features/merge_request/user_allows_commits_from_memebers_who_can_merge_spec.rb
+++ b/spec/features/merge_request/user_allows_commits_from_memebers_who_can_merge_spec.rb
@@ -71,7 +71,7 @@ describe 'create a merge request, allowing commits from members who can merge to
     end
 
     before do
-      target_project.add_master(member)
+      target_project.add_maintainer(member)
 
       sign_in(member)
     end
diff --git a/spec/features/merge_request/user_cherry_picks_spec.rb b/spec/features/merge_request/user_cherry_picks_spec.rb
index 61d1bdaa95a..c6ec3f08cc5 100644
--- a/spec/features/merge_request/user_cherry_picks_spec.rb
+++ b/spec/features/merge_request/user_cherry_picks_spec.rb
@@ -7,7 +7,7 @@ describe 'Merge request > User cherry-picks', :js do
   let(:merge_request) { create(:merge_request_with_diffs, source_project: project, author: user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_customizes_merge_commit_message_spec.rb b/spec/features/merge_request/user_customizes_merge_commit_message_spec.rb
index e1e70b6d260..8d2d4279d3c 100644
--- a/spec/features/merge_request/user_customizes_merge_commit_message_spec.rb
+++ b/spec/features/merge_request/user_customizes_merge_commit_message_spec.rb
@@ -32,7 +32,7 @@ describe 'Merge request < User customizes merge commit message', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_merge_request_path(project, merge_request)
   end
diff --git a/spec/features/merge_request/user_merges_immediately_spec.rb b/spec/features/merge_request/user_merges_immediately_spec.rb
index b16fc9bfc89..ea61f9675bc 100644
--- a/spec/features/merge_request/user_merges_immediately_spec.rb
+++ b/spec/features/merge_request/user_merges_immediately_spec.rb
@@ -19,7 +19,7 @@ describe 'Merge requests > User merges immediately', :js do
   context 'when there is active pipeline for merge request' do
     before do
       create(:ci_build, pipeline: pipeline)
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       visit project_merge_request_path(project, merge_request)
     end
diff --git a/spec/features/merge_request/user_merges_only_if_pipeline_succeeds_spec.rb b/spec/features/merge_request/user_merges_only_if_pipeline_succeeds_spec.rb
index a045791f6b4..8372b61f872 100644
--- a/spec/features/merge_request/user_merges_only_if_pipeline_succeeds_spec.rb
+++ b/spec/features/merge_request/user_merges_only_if_pipeline_succeeds_spec.rb
@@ -5,7 +5,7 @@ describe 'Merge request > User merges only if pipeline succeeds', :js do
   let(:project)       { merge_request.target_project }
 
   before do
-    project.add_master(merge_request.author)
+    project.add_maintainer(merge_request.author)
     sign_in(merge_request.author)
   end
 
diff --git a/spec/features/merge_request/user_merges_when_pipeline_succeeds_spec.rb b/spec/features/merge_request/user_merges_when_pipeline_succeeds_spec.rb
index db92a3504f3..53ed5d78598 100644
--- a/spec/features/merge_request/user_merges_when_pipeline_succeeds_spec.rb
+++ b/spec/features/merge_request/user_merges_when_pipeline_succeeds_spec.rb
@@ -17,7 +17,7 @@ describe 'Merge request > User merges when pipeline succeeds', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   context 'when there is active pipeline for merge request' do
diff --git a/spec/features/merge_request/user_posts_notes_spec.rb b/spec/features/merge_request/user_posts_notes_spec.rb
index fa819cbc385..260c5f9c28b 100644
--- a/spec/features/merge_request/user_posts_notes_spec.rb
+++ b/spec/features/merge_request/user_posts_notes_spec.rb
@@ -14,7 +14,7 @@ describe 'Merge request > User posts notes', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_merge_request_path(project, merge_request)
   end
diff --git a/spec/features/merge_request/user_resolves_diff_notes_and_discussions_resolve_spec.rb b/spec/features/merge_request/user_resolves_diff_notes_and_discussions_resolve_spec.rb
index a0b9d6cb059..bf4d5396df9 100644
--- a/spec/features/merge_request/user_resolves_diff_notes_and_discussions_resolve_spec.rb
+++ b/spec/features/merge_request/user_resolves_diff_notes_and_discussions_resolve_spec.rb
@@ -19,7 +19,7 @@ describe 'Merge request > User resolves diff notes and discussions', :js do
 
   context 'no discussions' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       note.destroy
       visit_merge_request
@@ -33,7 +33,7 @@ describe 'Merge request > User resolves diff notes and discussions', :js do
 
   context 'as authorized user' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
       visit_merge_request
     end
diff --git a/spec/features/merge_request/user_sees_avatar_on_diff_notes_spec.rb b/spec/features/merge_request/user_sees_avatar_on_diff_notes_spec.rb
index 0a8296bd722..428eb414274 100644
--- a/spec/features/merge_request/user_sees_avatar_on_diff_notes_spec.rb
+++ b/spec/features/merge_request/user_sees_avatar_on_diff_notes_spec.rb
@@ -19,7 +19,7 @@ describe 'Merge request > User sees avatars on diff notes', :js do
   let!(:note) { create(:diff_note_on_merge_request, project: project, noteable: merge_request, position: position) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
 
     set_cookie('sidebar_collapsed', 'true')
diff --git a/spec/features/merge_request/user_sees_closing_issues_message_spec.rb b/spec/features/merge_request/user_sees_closing_issues_message_spec.rb
index 726f35557a7..d7c784b14c5 100644
--- a/spec/features/merge_request/user_sees_closing_issues_message_spec.rb
+++ b/spec/features/merge_request/user_sees_closing_issues_message_spec.rb
@@ -18,7 +18,7 @@ describe 'Merge request > User sees closing issues message', :js do
   let(:merge_request_title) { 'Merge Request Title' }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_merge_request_path(project, merge_request)
     wait_for_requests
diff --git a/spec/features/merge_request/user_sees_deleted_target_branch_spec.rb b/spec/features/merge_request/user_sees_deleted_target_branch_spec.rb
index 01115318370..46c21a2b155 100644
--- a/spec/features/merge_request/user_sees_deleted_target_branch_spec.rb
+++ b/spec/features/merge_request/user_sees_deleted_target_branch_spec.rb
@@ -6,7 +6,7 @@ describe 'Merge request > User sees deleted target branch', :js do
   let(:user) { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     DeleteBranchService.new(project, user).execute('feature')
     sign_in(user)
     visit project_merge_request_path(project, merge_request)
diff --git a/spec/features/merge_request/user_sees_discussions_spec.rb b/spec/features/merge_request/user_sees_discussions_spec.rb
index 10390bd5864..7b8c3bacfe2 100644
--- a/spec/features/merge_request/user_sees_discussions_spec.rb
+++ b/spec/features/merge_request/user_sees_discussions_spec.rb
@@ -6,7 +6,7 @@ describe 'Merge request > User sees discussions', :js do
   let(:merge_request) { create(:merge_request, source_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_sees_empty_state_spec.rb b/spec/features/merge_request/user_sees_empty_state_spec.rb
index a939c7e9001..482f31b02d4 100644
--- a/spec/features/merge_request/user_sees_empty_state_spec.rb
+++ b/spec/features/merge_request/user_sees_empty_state_spec.rb
@@ -5,7 +5,7 @@ describe 'Merge request > User sees empty state' do
   let(:user)    { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_sees_merge_button_depending_on_unresolved_discussions_spec.rb b/spec/features/merge_request/user_sees_merge_button_depending_on_unresolved_discussions_spec.rb
index 85df43df38e..f6b771facf8 100644
--- a/spec/features/merge_request/user_sees_merge_button_depending_on_unresolved_discussions_spec.rb
+++ b/spec/features/merge_request/user_sees_merge_button_depending_on_unresolved_discussions_spec.rb
@@ -6,7 +6,7 @@ describe 'Merge request > User sees merge button depending on unresolved discuss
   let!(:merge_request) { create(:merge_request_with_diff_notes, source_project: project, author: user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_sees_merge_widget_spec.rb b/spec/features/merge_request/user_sees_merge_widget_spec.rb
index 51a65407aec..b6b3844f2ae 100644
--- a/spec/features/merge_request/user_sees_merge_widget_spec.rb
+++ b/spec/features/merge_request/user_sees_merge_widget_spec.rb
@@ -10,8 +10,8 @@ describe 'Merge request > User sees merge widget', :js do
   let(:merge_request_in_only_mwps_project) { create(:merge_request, source_project: project_only_mwps) }
 
   before do
-    project.add_master(user)
-    project_only_mwps.add_master(user)
+    project.add_maintainer(user)
+    project_only_mwps.add_maintainer(user)
     sign_in(user)
   end
 
@@ -275,7 +275,7 @@ describe 'Merge request > User sees merge widget', :js do
     let(:user2) { create(:user) }
 
     before do
-      project.add_master(user2)
+      project.add_maintainer(user2)
       sign_out(:user)
       sign_in(user2)
       merge_request.update(target_project: fork_project)
diff --git a/spec/features/merge_request/user_sees_pipelines_spec.rb b/spec/features/merge_request/user_sees_pipelines_spec.rb
index a42c016392b..45cccbee63e 100644
--- a/spec/features/merge_request/user_sees_pipelines_spec.rb
+++ b/spec/features/merge_request/user_sees_pipelines_spec.rb
@@ -7,7 +7,7 @@ describe 'Merge request > User sees pipelines', :js do
     let(:user) { project.creator }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
@@ -70,7 +70,7 @@ describe 'Merge request > User sees pipelines', :js do
     end
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
     end
 
diff --git a/spec/features/merge_request/user_sees_versions_spec.rb b/spec/features/merge_request/user_sees_versions_spec.rb
index 11e0806ba62..f42b4dcbb47 100644
--- a/spec/features/merge_request/user_sees_versions_spec.rb
+++ b/spec/features/merge_request/user_sees_versions_spec.rb
@@ -10,7 +10,7 @@ describe 'Merge request > User sees versions', :js do
   let!(:params) { {} }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit diffs_project_merge_request_path(project, merge_request, params)
   end
diff --git a/spec/features/merge_request/user_sees_wip_help_message_spec.rb b/spec/features/merge_request/user_sees_wip_help_message_spec.rb
index bc25243244e..92cc73ddf1f 100644
--- a/spec/features/merge_request/user_sees_wip_help_message_spec.rb
+++ b/spec/features/merge_request/user_sees_wip_help_message_spec.rb
@@ -5,7 +5,7 @@ describe 'Merge request > User sees WIP help message' do
   let(:user)    { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_selects_branches_for_new_mr_spec.rb b/spec/features/merge_request/user_selects_branches_for_new_mr_spec.rb
index ed6e29335d1..ae41cf90576 100644
--- a/spec/features/merge_request/user_selects_branches_for_new_mr_spec.rb
+++ b/spec/features/merge_request/user_selects_branches_for_new_mr_spec.rb
@@ -11,7 +11,7 @@ describe 'Merge request > User selects branches for new MR', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_request/user_toggles_whitespace_changes_spec.rb b/spec/features/merge_request/user_toggles_whitespace_changes_spec.rb
index 2e95a628013..dd860382daa 100644
--- a/spec/features/merge_request/user_toggles_whitespace_changes_spec.rb
+++ b/spec/features/merge_request/user_toggles_whitespace_changes_spec.rb
@@ -6,7 +6,7 @@ describe 'Merge request > User toggles whitespace changes', :js do
   let(:user) { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit diffs_project_merge_request_path(project, merge_request)
   end
diff --git a/spec/features/merge_request/user_uses_slash_commands_spec.rb b/spec/features/merge_request/user_uses_slash_commands_spec.rb
index 83ad4b45b5a..b81478a481f 100644
--- a/spec/features/merge_request/user_uses_slash_commands_spec.rb
+++ b/spec/features/merge_request/user_uses_slash_commands_spec.rb
@@ -21,7 +21,7 @@ describe 'Merge request > User uses quick actions', :js do
     let!(:milestone) { create(:milestone, project: project, title: 'ASAP') }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     describe 'time tracking' do
@@ -147,7 +147,7 @@ describe 'Merge request > User uses quick actions', :js do
       let(:new_url_opts) { { merge_request: { source_branch: 'feature' } } }
 
       before do
-        another_project.add_master(user)
+        another_project.add_maintainer(user)
         sign_in(user)
       end
 
diff --git a/spec/features/merge_requests/user_mass_updates_spec.rb b/spec/features/merge_requests/user_mass_updates_spec.rb
index 199ba7e87ad..bb327159cb0 100644
--- a/spec/features/merge_requests/user_mass_updates_spec.rb
+++ b/spec/features/merge_requests/user_mass_updates_spec.rb
@@ -6,7 +6,7 @@ describe 'Merge requests > User mass updates', :js do
   let!(:merge_request) { create(:merge_request, source_project: project, target_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/merge_requests/user_squashes_merge_request_spec.rb b/spec/features/merge_requests/user_squashes_merge_request_spec.rb
index da3d6772eeb..ec1153b7f7f 100644
--- a/spec/features/merge_requests/user_squashes_merge_request_spec.rb
+++ b/spec/features/merge_requests/user_squashes_merge_request_spec.rb
@@ -46,7 +46,7 @@ describe 'User squashes a merge request', :js do
     # Prevent source branch from being removed so we can use be_merged_to_root_ref
     # method to check if squash was performed or not
     allow_any_instance_of(MergeRequest).to receive(:force_remove_source_branch?).and_return(false)
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in user
   end
diff --git a/spec/features/milestone_spec.rb b/spec/features/milestone_spec.rb
index b12aba2c263..a0673b12738 100644
--- a/spec/features/milestone_spec.rb
+++ b/spec/features/milestone_spec.rb
@@ -7,7 +7,7 @@ describe 'Milestone' do
 
   before do
     create(:group_member, group: group, user: user)
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/profiles/user_visits_notifications_tab_spec.rb b/spec/features/profiles/user_visits_notifications_tab_spec.rb
index 689196c2258..db797bb586f 100644
--- a/spec/features/profiles/user_visits_notifications_tab_spec.rb
+++ b/spec/features/profiles/user_visits_notifications_tab_spec.rb
@@ -5,7 +5,7 @@ describe 'User visits the notifications tab', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit(profile_notifications_path)
   end
diff --git a/spec/features/profiles/user_visits_profile_spec.rb b/spec/features/profiles/user_visits_profile_spec.rb
index 713112477c8..2dc4547b2d8 100644
--- a/spec/features/profiles/user_visits_profile_spec.rb
+++ b/spec/features/profiles/user_visits_profile_spec.rb
@@ -29,7 +29,7 @@ describe 'User visits their profile' do
     let!(:project) do
       create(:project, :repository, namespace: group) do |project|
         create(:closed_issue_event, project: project)
-        project.add_master(user)
+        project.add_maintainer(user)
       end
     end
 
diff --git a/spec/features/project_variables_spec.rb b/spec/features/project_variables_spec.rb
index 0ba2224359a..a93df3696d2 100644
--- a/spec/features/project_variables_spec.rb
+++ b/spec/features/project_variables_spec.rb
@@ -8,7 +8,7 @@ describe 'Project variables', :js do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
     project.variables << variable
 
     visit page_path
diff --git a/spec/features/projects/actve_tabs_spec.rb b/spec/features/projects/actve_tabs_spec.rb
index ce5606b63ae..7c6110c533b 100644
--- a/spec/features/projects/actve_tabs_spec.rb
+++ b/spec/features/projects/actve_tabs_spec.rb
@@ -5,7 +5,7 @@ describe 'Project active tab' do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/awards/user_interacts_with_awards_in_issue_spec.rb b/spec/features/projects/awards/user_interacts_with_awards_in_issue_spec.rb
index 12e07647ecd..4d860893abe 100644
--- a/spec/features/projects/awards/user_interacts_with_awards_in_issue_spec.rb
+++ b/spec/features/projects/awards/user_interacts_with_awards_in_issue_spec.rb
@@ -6,7 +6,7 @@ describe 'User interacts with awards in an issue', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_issue_path(project, issue))
diff --git a/spec/features/projects/badges/list_spec.rb b/spec/features/projects/badges/list_spec.rb
index da87039ad44..e30b908c60d 100644
--- a/spec/features/projects/badges/list_spec.rb
+++ b/spec/features/projects/badges/list_spec.rb
@@ -4,7 +4,7 @@ describe 'list of badges' do
   before do
     user = create(:user)
     project = create(:project, :repository)
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_settings_ci_cd_path(project)
   end
diff --git a/spec/features/projects/blobs/blob_show_spec.rb b/spec/features/projects/blobs/blob_show_spec.rb
index 7280d421cea..27589428896 100644
--- a/spec/features/projects/blobs/blob_show_spec.rb
+++ b/spec/features/projects/blobs/blob_show_spec.rb
@@ -144,7 +144,7 @@ describe 'File blob', :js do
 
   context 'Markdown file (stored in LFS)' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
@@ -237,7 +237,7 @@ describe 'File blob', :js do
 
   context 'PDF file' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
@@ -350,7 +350,7 @@ describe 'File blob', :js do
 
   context 'empty file' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
@@ -418,7 +418,7 @@ describe 'File blob', :js do
 
   context '.gitlab-ci.yml' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
@@ -446,7 +446,7 @@ describe 'File blob', :js do
 
   context '.gitlab/route-map.yml' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
@@ -494,7 +494,7 @@ describe 'File blob', :js do
 
   context '*.gemspec' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       Files::CreateService.new(
         project,
diff --git a/spec/features/projects/blobs/edit_spec.rb b/spec/features/projects/blobs/edit_spec.rb
index 2657f5d999f..0e036b4ea68 100644
--- a/spec/features/projects/blobs/edit_spec.rb
+++ b/spec/features/projects/blobs/edit_spec.rb
@@ -134,11 +134,11 @@ describe 'Editing file blob', :js do
       end
     end
 
-    context 'as master' do
+    context 'as maintainer' do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
         visit project_edit_blob_path(project, tree_join(branch, file_path))
       end
diff --git a/spec/features/projects/blobs/user_creates_new_blob_in_new_project_spec.rb b/spec/features/projects/blobs/user_creates_new_blob_in_new_project_spec.rb
index 0b7988f6335..8a0b92190dd 100644
--- a/spec/features/projects/blobs/user_creates_new_blob_in_new_project_spec.rb
+++ b/spec/features/projects/blobs/user_creates_new_blob_in_new_project_spec.rb
@@ -24,9 +24,9 @@ describe 'User creates blob in new project', :js do
     end
   end
 
-  describe 'as a master' do
+  describe 'as a maintainer' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it_behaves_like 'creating a file'
diff --git a/spec/features/projects/branches/new_branch_ref_dropdown_spec.rb b/spec/features/projects/branches/new_branch_ref_dropdown_spec.rb
index 0be434a567b..0faf73db7da 100644
--- a/spec/features/projects/branches/new_branch_ref_dropdown_spec.rb
+++ b/spec/features/projects/branches/new_branch_ref_dropdown_spec.rb
@@ -6,7 +6,7 @@ describe 'New Branch Ref Dropdown', :js do
   let(:toggle) { find('.create-from .dropdown-menu-toggle') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
     visit new_project_branch_path(project)
diff --git a/spec/features/projects/branches_spec.rb b/spec/features/projects/branches_spec.rb
index b7ce1b9993a..97757e8da92 100644
--- a/spec/features/projects/branches_spec.rb
+++ b/spec/features/projects/branches_spec.rb
@@ -182,10 +182,10 @@ describe 'Branches' do
     end
   end
 
-  context 'logged in as master' do
+  context 'logged in as maintainer' do
     before do
       sign_in(user)
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     describe 'Initial branches page' do
diff --git a/spec/features/projects/clusters/applications_spec.rb b/spec/features/projects/clusters/applications_spec.rb
index f57647a348f..a65ca662350 100644
--- a/spec/features/projects/clusters/applications_spec.rb
+++ b/spec/features/projects/clusters/applications_spec.rb
@@ -7,7 +7,7 @@ describe 'Clusters Applications', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/clusters/gcp_spec.rb b/spec/features/projects/clusters/gcp_spec.rb
index bd8cb9b4b94..31e3ebf675d 100644
--- a/spec/features/projects/clusters/gcp_spec.rb
+++ b/spec/features/projects/clusters/gcp_spec.rb
@@ -7,7 +7,7 @@ describe 'Gcp Cluster', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     gitlab_sign_in(user)
     allow(Projects::ClustersController).to receive(:STATUS_POLLING_INTERVAL) { 100 }
   end
diff --git a/spec/features/projects/clusters/user_spec.rb b/spec/features/projects/clusters/user_spec.rb
index a49dd72a91f..babf47cc341 100644
--- a/spec/features/projects/clusters/user_spec.rb
+++ b/spec/features/projects/clusters/user_spec.rb
@@ -7,7 +7,7 @@ describe 'User Cluster', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     gitlab_sign_in(user)
     allow(Projects::ClustersController).to receive(:STATUS_POLLING_INTERVAL) { 100 }
   end
diff --git a/spec/features/projects/clusters_spec.rb b/spec/features/projects/clusters_spec.rb
index a7274c99704..91eac9c8278 100644
--- a/spec/features/projects/clusters_spec.rb
+++ b/spec/features/projects/clusters_spec.rb
@@ -7,7 +7,7 @@ describe 'Clusters', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     gitlab_sign_in(user)
   end
 
diff --git a/spec/features/projects/commit/builds_spec.rb b/spec/features/projects/commit/builds_spec.rb
index da0552441fe..bd254caddfb 100644
--- a/spec/features/projects/commit/builds_spec.rb
+++ b/spec/features/projects/commit/builds_spec.rb
@@ -5,7 +5,7 @@ describe 'project commit pipelines', :js do
 
   before do
     user = create(:user)
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/commit/cherry_pick_spec.rb b/spec/features/projects/commit/cherry_pick_spec.rb
index 1df45865d6f..bc3c00dafe2 100644
--- a/spec/features/projects/commit/cherry_pick_spec.rb
+++ b/spec/features/projects/commit/cherry_pick_spec.rb
@@ -9,7 +9,7 @@ describe 'Cherry-pick Commits' do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
     visit project_commit_path(project, master_pickable_commit.id)
   end
 
diff --git a/spec/features/projects/commit/diff_notes_spec.rb b/spec/features/projects/commit/diff_notes_spec.rb
index 6d66889761f..e2aefa35fad 100644
--- a/spec/features/projects/commit/diff_notes_spec.rb
+++ b/spec/features/projects/commit/diff_notes_spec.rb
@@ -7,7 +7,7 @@ describe 'Commit diff', :js do
   let(:project)       { create(:project, :public, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
   end
 
diff --git a/spec/features/projects/commits/user_browses_commits_spec.rb b/spec/features/projects/commits/user_browses_commits_spec.rb
index 35ed6620548..23d8d606790 100644
--- a/spec/features/projects/commits/user_browses_commits_spec.rb
+++ b/spec/features/projects/commits/user_browses_commits_spec.rb
@@ -7,7 +7,7 @@ describe 'User browses commits' do
   let(:project) { create(:project, :repository, namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/compare_spec.rb b/spec/features/projects/compare_spec.rb
index 7e863d9df32..69600884909 100644
--- a/spec/features/projects/compare_spec.rb
+++ b/spec/features/projects/compare_spec.rb
@@ -5,7 +5,7 @@ describe "Compare", :js do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
   end
 
diff --git a/spec/features/projects/deploy_keys_spec.rb b/spec/features/projects/deploy_keys_spec.rb
index 1552a3512dd..e12532e97fa 100644
--- a/spec/features/projects/deploy_keys_spec.rb
+++ b/spec/features/projects/deploy_keys_spec.rb
@@ -5,7 +5,7 @@ describe 'Project deploy keys', :js do
   let(:project) { create(:project_empty_repo) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/diffs/diff_show_spec.rb b/spec/features/projects/diffs/diff_show_spec.rb
index 237157cd89d..df05625d105 100644
--- a/spec/features/projects/diffs/diff_show_spec.rb
+++ b/spec/features/projects/diffs/diff_show_spec.rb
@@ -24,7 +24,7 @@ describe 'Diff file viewer', :js do
 
   context 'Ruby file (stored in LFS)' do
     before do
-      project.add_master(project.creator)
+      project.add_maintainer(project.creator)
 
       @commit_id = Files::CreateService.new(
         project,
diff --git a/spec/features/projects/environments/environment_spec.rb b/spec/features/projects/environments/environment_spec.rb
index 624f7139605..4c5dda29fee 100644
--- a/spec/features/projects/environments/environment_spec.rb
+++ b/spec/features/projects/environments/environment_spec.rb
@@ -102,8 +102,8 @@ describe 'Environment' do
 
           context 'with terminal' do
             shared_examples 'same behavior between KubernetesService and Platform::Kubernetes' do
-              context 'for project master' do
-                let(:role) { :master }
+              context 'for project maintainer' do
+                let(:role) { :maintainer }
 
                 it 'it shows the terminal button' do
                   expect(page).to have_terminal_button
diff --git a/spec/features/projects/environments/environments_spec.rb b/spec/features/projects/environments/environments_spec.rb
index c2ed753c409..f0890018286 100644
--- a/spec/features/projects/environments/environments_spec.rb
+++ b/spec/features/projects/environments/environments_spec.rb
@@ -229,8 +229,8 @@ describe 'Environments page', :js do
 
         context 'when kubernetes terminal is available' do
           shared_examples 'same behavior between KubernetesService and Platform::Kubernetes' do
-            context 'for project master' do
-              let(:role) { :master }
+            context 'for project maintainer' do
+              let(:role) { :maintainer }
 
               it 'shows the terminal button' do
                 expect(page).to have_terminal_button
diff --git a/spec/features/projects/features_visibility_spec.rb b/spec/features/projects/features_visibility_spec.rb
index b0eb7c5b42a..ab16fdee883 100644
--- a/spec/features/projects/features_visibility_spec.rb
+++ b/spec/features/projects/features_visibility_spec.rb
@@ -8,7 +8,7 @@ describe 'Edit Project Settings' do
 
   describe 'project features visibility selectors', :js do
     before do
-      project.add_master(member)
+      project.add_maintainer(member)
       sign_in(member)
     end
 
@@ -165,7 +165,7 @@ describe 'Edit Project Settings' do
 
   describe 'repository visibility', :js do
     before do
-      project.add_master(member)
+      project.add_maintainer(member)
       sign_in(member)
       visit edit_project_path(project)
     end
diff --git a/spec/features/projects/files/project_owner_creates_license_file_spec.rb b/spec/features/projects/files/project_owner_creates_license_file_spec.rb
index b410199fd1f..ac6c8c337fa 100644
--- a/spec/features/projects/files/project_owner_creates_license_file_spec.rb
+++ b/spec/features/projects/files/project_owner_creates_license_file_spec.rb
@@ -2,16 +2,16 @@ require 'spec_helper'
 
 describe 'Projects > Files > Project owner creates a license file', :js do
   let(:project) { create(:project, :repository) }
-  let(:project_master) { project.owner }
+  let(:project_maintainer) { project.owner }
 
   before do
-    project.repository.delete_file(project_master, 'LICENSE',
+    project.repository.delete_file(project_maintainer, 'LICENSE',
       message: 'Remove LICENSE', branch_name: 'master')
-    sign_in(project_master)
+    sign_in(project_maintainer)
     visit project_path(project)
   end
 
-  it 'project master creates a license file manually from a template' do
+  it 'project maintainer creates a license file manually from a template' do
     visit project_tree_path(project, project.repository.root_ref)
     find('.add-to-tree').click
     click_link 'New file'
@@ -35,7 +35,7 @@ describe 'Projects > Files > Project owner creates a license file', :js do
     expect(page).to have_content("Copyright (c) #{Time.now.year} #{project.namespace.human_name}")
   end
 
-  it 'project master creates a license file from the "Add license" link' do
+  it 'project maintainer creates a license file from the "Add license" link' do
     click_link 'Add License'
 
     expect(page).to have_content('New file')
diff --git a/spec/features/projects/files/project_owner_sees_link_to_create_license_file_in_empty_project_spec.rb b/spec/features/projects/files/project_owner_sees_link_to_create_license_file_in_empty_project_spec.rb
index 53d8ace7c94..801291c1f77 100644
--- a/spec/features/projects/files/project_owner_sees_link_to_create_license_file_in_empty_project_spec.rb
+++ b/spec/features/projects/files/project_owner_sees_link_to_create_license_file_in_empty_project_spec.rb
@@ -2,13 +2,13 @@ require 'spec_helper'
 
 describe 'Projects > Files > Project owner sees a link to create a license file in empty project', :js do
   let(:project) { create(:project_empty_repo) }
-  let(:project_master) { project.owner }
+  let(:project_maintainer) { project.owner }
 
   before do
-    sign_in(project_master)
+    sign_in(project_maintainer)
   end
 
-  it 'project master creates a license file from a template' do
+  it 'project maintainer creates a license file from a template' do
     visit project_path(project)
     click_on 'Add License'
     expect(page).to have_content('New file')
diff --git a/spec/features/projects/files/template_selector_menu_spec.rb b/spec/features/projects/files/template_selector_menu_spec.rb
index b7e1e172af9..6b313824acd 100644
--- a/spec/features/projects/files/template_selector_menu_spec.rb
+++ b/spec/features/projects/files/template_selector_menu_spec.rb
@@ -5,7 +5,7 @@ describe 'Template selector menu', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
   end
 
diff --git a/spec/features/projects/files/user_creates_files_spec.rb b/spec/features/projects/files/user_creates_files_spec.rb
index 208cc8d81f7..d4dda43c823 100644
--- a/spec/features/projects/files/user_creates_files_spec.rb
+++ b/spec/features/projects/files/user_creates_files_spec.rb
@@ -12,7 +12,7 @@ describe 'Projects > Files > User creates files' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/files/user_deletes_files_spec.rb b/spec/features/projects/files/user_deletes_files_spec.rb
index 36d3e001a64..0e9f83a16ce 100644
--- a/spec/features/projects/files/user_deletes_files_spec.rb
+++ b/spec/features/projects/files/user_deletes_files_spec.rb
@@ -17,7 +17,7 @@ describe 'Projects > Files > User deletes files' do
 
   context 'when an user has write access' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       visit(project_tree_path_root_ref)
     end
 
diff --git a/spec/features/projects/files/user_edits_files_spec.rb b/spec/features/projects/files/user_edits_files_spec.rb
index dc6e4fd27cb..ccc1bc1bc10 100644
--- a/spec/features/projects/files/user_edits_files_spec.rb
+++ b/spec/features/projects/files/user_edits_files_spec.rb
@@ -31,7 +31,7 @@ describe 'Projects > Files > User edits files' do
 
   context 'when an user has write access' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       visit(project_tree_path_root_ref)
     end
 
diff --git a/spec/features/projects/files/user_find_file_spec.rb b/spec/features/projects/files/user_find_file_spec.rb
index df405e70dd4..e2d881b34d2 100644
--- a/spec/features/projects/files/user_find_file_spec.rb
+++ b/spec/features/projects/files/user_find_file_spec.rb
@@ -6,7 +6,7 @@ describe 'User find project file' do
 
   before do
     sign_in(user)
-    project.add_master(user)
+    project.add_maintainer(user)
 
     visit project_tree_path(project, project.repository.root_ref)
   end
diff --git a/spec/features/projects/files/user_reads_pipeline_status_spec.rb b/spec/features/projects/files/user_reads_pipeline_status_spec.rb
index 2d0b447913e..ff0aa933a3e 100644
--- a/spec/features/projects/files/user_reads_pipeline_status_spec.rb
+++ b/spec/features/projects/files/user_reads_pipeline_status_spec.rb
@@ -7,7 +7,7 @@ describe 'user reads pipeline status', :js do
   let(:x110_pipeline) { create_pipeline('x1.1.0', 'failed') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     project.repository.add_tag(user, 'x1.1.0', 'v1.1.0')
     v110_pipeline
diff --git a/spec/features/projects/files/user_replaces_files_spec.rb b/spec/features/projects/files/user_replaces_files_spec.rb
index 9ac3417b671..3a81e77c4ba 100644
--- a/spec/features/projects/files/user_replaces_files_spec.rb
+++ b/spec/features/projects/files/user_replaces_files_spec.rb
@@ -19,7 +19,7 @@ describe 'Projects > Files > User replaces files' do
 
   context 'when an user has write access' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       visit(project_tree_path_root_ref)
     end
 
diff --git a/spec/features/projects/files/user_uploads_files_spec.rb b/spec/features/projects/files/user_uploads_files_spec.rb
index 8b212faa29d..af3fc528a20 100644
--- a/spec/features/projects/files/user_uploads_files_spec.rb
+++ b/spec/features/projects/files/user_uploads_files_spec.rb
@@ -14,7 +14,7 @@ describe 'Projects > Files > User uploads files' do
   let(:project2_tree_path_root_ref) { project_tree_path(project2, project2.repository.root_ref) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/fork_spec.rb b/spec/features/projects/fork_spec.rb
index 1743b1e083f..cd5fef8238e 100644
--- a/spec/features/projects/fork_spec.rb
+++ b/spec/features/projects/fork_spec.rb
@@ -129,11 +129,11 @@ describe 'Project fork' do
     end
   end
 
-  context 'master in group' do
+  context 'maintainer in group' do
     let(:group) { create(:group) }
 
     before do
-      group.add_master(user)
+      group.add_maintainer(user)
     end
 
     it 'allows user to fork project to group or to user namespace' do
diff --git a/spec/features/projects/graph_spec.rb b/spec/features/projects/graph_spec.rb
index 335174b7729..9665f1755d6 100644
--- a/spec/features/projects/graph_spec.rb
+++ b/spec/features/projects/graph_spec.rb
@@ -6,7 +6,7 @@ describe 'Project Graph', :js do
   let(:branch_name) { 'master' }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/features/projects/hook_logs/user_reads_log_spec.rb b/spec/features/projects/hook_logs/user_reads_log_spec.rb
index c3bc35565f6..086cd4b9f03 100644
--- a/spec/features/projects/hook_logs/user_reads_log_spec.rb
+++ b/spec/features/projects/hook_logs/user_reads_log_spec.rb
@@ -6,7 +6,7 @@ describe 'Hook logs' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
   end
diff --git a/spec/features/projects/issuable_templates_spec.rb b/spec/features/projects/issuable_templates_spec.rb
index 9cd4af2de80..a57edc394f9 100644
--- a/spec/features/projects/issuable_templates_spec.rb
+++ b/spec/features/projects/issuable_templates_spec.rb
@@ -8,7 +8,7 @@ describe 'issuable templates', :js do
   let(:issue_form_location) { '#content-body .issuable-details .detail-page-description' }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
   end
 
diff --git a/spec/features/projects/jobs/user_browses_job_spec.rb b/spec/features/projects/jobs/user_browses_job_spec.rb
index ce0b38b7239..50e957bf12b 100644
--- a/spec/features/projects/jobs/user_browses_job_spec.rb
+++ b/spec/features/projects/jobs/user_browses_job_spec.rb
@@ -8,7 +8,7 @@ describe 'User browses a job', :js do
   let!(:build) { create(:ci_build, :success, :trace_artifact, :coverage, pipeline: pipeline) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.enable_ci
 
     sign_in(user)
diff --git a/spec/features/projects/jobs/user_browses_jobs_spec.rb b/spec/features/projects/jobs/user_browses_jobs_spec.rb
index 786ec327b92..08786fe1630 100644
--- a/spec/features/projects/jobs/user_browses_jobs_spec.rb
+++ b/spec/features/projects/jobs/user_browses_jobs_spec.rb
@@ -7,7 +7,7 @@ describe 'User browses jobs' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.enable_ci
     project.update_attribute(:build_coverage_regex, /Coverage (\d+)%/)
 
diff --git a/spec/features/projects/labels/user_creates_labels_spec.rb b/spec/features/projects/labels/user_creates_labels_spec.rb
index 9fd7f3ee775..c71b04fea09 100644
--- a/spec/features/projects/labels/user_creates_labels_spec.rb
+++ b/spec/features/projects/labels/user_creates_labels_spec.rb
@@ -18,7 +18,7 @@ describe "User creates labels" do
 
   context "in project" do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
 
       visit(new_project_label_path(project))
@@ -69,7 +69,7 @@ describe "User creates labels" do
     before do
       create(:label, project: project, title: "bug") # Create label for `project` (not `another_project`) project.
 
-      another_project.add_master(user)
+      another_project.add_maintainer(user)
       sign_in(user)
 
       visit(new_project_label_path(another_project))
diff --git a/spec/features/projects/labels/user_edits_labels_spec.rb b/spec/features/projects/labels/user_edits_labels_spec.rb
index d1041ff5c1e..0708bbd40ce 100644
--- a/spec/features/projects/labels/user_edits_labels_spec.rb
+++ b/spec/features/projects/labels/user_edits_labels_spec.rb
@@ -6,7 +6,7 @@ describe "User edits labels" do
   set(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(edit_project_label_path(project, label))
diff --git a/spec/features/projects/labels/user_removes_labels_spec.rb b/spec/features/projects/labels/user_removes_labels_spec.rb
index efa74015c6e..b0ce03a1c31 100644
--- a/spec/features/projects/labels/user_removes_labels_spec.rb
+++ b/spec/features/projects/labels/user_removes_labels_spec.rb
@@ -5,7 +5,7 @@ describe "User removes labels" do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/members/anonymous_user_sees_members_spec.rb b/spec/features/projects/members/anonymous_user_sees_members_spec.rb
index 19e52294a38..b3ed725f602 100644
--- a/spec/features/projects/members/anonymous_user_sees_members_spec.rb
+++ b/spec/features/projects/members/anonymous_user_sees_members_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Members > Anonymous user sees members' do
   let(:project) { create(:project, :public) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     create(:project_group_link, project: project, group: group)
   end
 
diff --git a/spec/features/projects/members/group_member_cannot_request_access_to_his_group_project_spec.rb b/spec/features/projects/members/group_member_cannot_request_access_to_his_group_project_spec.rb
index 7bc53345ddf..bb475ea95e5 100644
--- a/spec/features/projects/members/group_member_cannot_request_access_to_his_group_project_spec.rb
+++ b/spec/features/projects/members/group_member_cannot_request_access_to_his_group_project_spec.rb
@@ -12,8 +12,8 @@ describe 'Projects > Members > Group member cannot request access to his group p
     expect(page).not_to have_content 'Request Access'
   end
 
-  it 'master does not see the request access button' do
-    group.add_master(user)
+  it 'maintainer does not see the request access button' do
+    group.add_maintainer(user)
     login_and_visit_project_page(user)
 
     expect(page).not_to have_content 'Request Access'
diff --git a/spec/features/projects/members/groups_with_access_list_spec.rb b/spec/features/projects/members/groups_with_access_list_spec.rb
index b65c46b345f..c0b5d943e96 100644
--- a/spec/features/projects/members/groups_with_access_list_spec.rb
+++ b/spec/features/projects/members/groups_with_access_list_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Members > Groups with access list', :js do
   let(:project) { create(:project, :public) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     @group_link = create(:project_group_link, project: project, group: group)
 
     sign_in(user)
diff --git a/spec/features/projects/members/master_adds_member_with_expiration_date_spec.rb b/spec/features/projects/members/master_adds_member_with_expiration_date_spec.rb
index 90f09bf6264..26de6fb33fd 100644
--- a/spec/features/projects/members/master_adds_member_with_expiration_date_spec.rb
+++ b/spec/features/projects/members/master_adds_member_with_expiration_date_spec.rb
@@ -1,16 +1,16 @@
 require 'spec_helper'
 
-describe 'Projects > Members > Master adds member with expiration date', :js do
+describe 'Projects > Members > Maintainer adds member with expiration date', :js do
   include Select2Helper
   include ActiveSupport::Testing::TimeHelpers
 
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:project) { create(:project) }
   let!(:new_member) { create(:user) }
 
   before do
-    project.add_master(master)
-    sign_in(master)
+    project.add_maintainer(maintainer)
+    sign_in(maintainer)
   end
 
   it 'expiration date is displayed in the members list' do
diff --git a/spec/features/projects/members/master_manages_access_requests_spec.rb b/spec/features/projects/members/master_manages_access_requests_spec.rb
index 112b06c047d..adc8202cde7 100644
--- a/spec/features/projects/members/master_manages_access_requests_spec.rb
+++ b/spec/features/projects/members/master_manages_access_requests_spec.rb
@@ -1,7 +1,7 @@
 require 'spec_helper'
 
-describe 'Projects > Members > Master manages access requests' do
-  it_behaves_like 'Master manages access requests' do
+describe 'Projects > Members > Maintainer manages access requests' do
+  it_behaves_like 'Maintainer manages access requests' do
     let(:entity) { create(:project, :public, :access_requestable) }
     let(:members_page_path) { project_project_members_path(entity) }
   end
diff --git a/spec/features/projects/members/share_with_group_spec.rb b/spec/features/projects/members/share_with_group_spec.rb
index b126f0c6cb1..c6d85e5d22f 100644
--- a/spec/features/projects/members/share_with_group_spec.rb
+++ b/spec/features/projects/members/share_with_group_spec.rb
@@ -4,7 +4,7 @@ describe 'Project > Members > Share with Group', :js do
   include Select2Helper
   include ActionView::Helpers::DateHelper
 
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
 
   describe 'Share with group lock' do
     shared_examples 'the project can be shared with groups' do
@@ -27,8 +27,8 @@ describe 'Project > Members > Share with Group', :js do
       let(:project) { create(:project, namespace: create(:group)) }
 
       before do
-        project.add_master(master)
-        sign_in(master)
+        project.add_maintainer(maintainer)
+        sign_in(maintainer)
       end
 
       context 'when the group has "Share with group lock" disabled' do
@@ -65,8 +65,8 @@ describe 'Project > Members > Share with Group', :js do
       let(:project) { create(:project, namespace: subgroup) }
 
       before do
-        project.add_master(master)
-        sign_in(master)
+        project.add_maintainer(maintainer)
+        sign_in(maintainer)
       end
 
       context 'when the root_group has "Share with group lock" disabled' do
@@ -112,8 +112,8 @@ describe 'Project > Members > Share with Group', :js do
     end
 
     before do
-      project.add_master(master)
-      sign_in(master)
+      project.add_maintainer(maintainer)
+      sign_in(maintainer)
 
       visit project_settings_members_path(project)
 
@@ -142,11 +142,11 @@ describe 'Project > Members > Share with Group', :js do
       let(:project) { create(:project) }
 
       before do
-        project.add_master(master)
-        sign_in(master)
+        project.add_maintainer(maintainer)
+        sign_in(maintainer)
 
-        create(:group).add_owner(master)
-        create(:group).add_owner(master)
+        create(:group).add_owner(maintainer)
+        create(:group).add_owner(maintainer)
 
         visit project_settings_members_path(project)
 
@@ -174,10 +174,10 @@ describe 'Project > Members > Share with Group', :js do
       let!(:project) { create(:project, namespace: nested_group) }
 
       before do
-        project.add_master(master)
-        sign_in(master)
-        group.add_master(master)
-        group_to_share_with.add_master(master)
+        project.add_maintainer(maintainer)
+        sign_in(maintainer)
+        group.add_maintainer(maintainer)
+        group_to_share_with.add_maintainer(maintainer)
       end
 
       it 'the groups dropdown does not show ancestors', :nested_groups do
diff --git a/spec/features/projects/members/sorting_spec.rb b/spec/features/projects/members/sorting_spec.rb
index 1e1071348c3..220775b514d 100644
--- a/spec/features/projects/members/sorting_spec.rb
+++ b/spec/features/projects/members/sorting_spec.rb
@@ -1,20 +1,20 @@
 require 'spec_helper'
 
 describe 'Projects > Members > Sorting' do
-  let(:master)    { create(:user, name: 'John Doe') }
+  let(:maintainer) { create(:user, name: 'John Doe') }
   let(:developer) { create(:user, name: 'Mary Jane', last_sign_in_at: 5.days.ago) }
-  let(:project)   { create(:project, namespace: master.namespace, creator: master) }
+  let(:project) { create(:project, namespace: maintainer.namespace, creator: maintainer) }
 
   before do
     create(:project_member, :developer, user: developer, project: project, created_at: 3.days.ago)
 
-    sign_in(master)
+    sign_in(maintainer)
   end
 
   it 'sorts alphabetically by default' do
     visit_members_list(sort: nil)
 
-    expect(first_member).to include(master.name)
+    expect(first_member).to include(maintainer.name)
     expect(second_member).to include(developer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Name, ascending')
   end
@@ -23,14 +23,14 @@ describe 'Projects > Members > Sorting' do
     visit_members_list(sort: :access_level_asc)
 
     expect(first_member).to include(developer.name)
-    expect(second_member).to include(master.name)
+    expect(second_member).to include(maintainer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Access level, ascending')
   end
 
   it 'sorts by access level descending' do
     visit_members_list(sort: :access_level_desc)
 
-    expect(first_member).to include(master.name)
+    expect(first_member).to include(maintainer.name)
     expect(second_member).to include(developer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Access level, descending')
   end
@@ -38,7 +38,7 @@ describe 'Projects > Members > Sorting' do
   it 'sorts by last joined' do
     visit_members_list(sort: :last_joined)
 
-    expect(first_member).to include(master.name)
+    expect(first_member).to include(maintainer.name)
     expect(second_member).to include(developer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Last joined')
   end
@@ -47,14 +47,14 @@ describe 'Projects > Members > Sorting' do
     visit_members_list(sort: :oldest_joined)
 
     expect(first_member).to include(developer.name)
-    expect(second_member).to include(master.name)
+    expect(second_member).to include(maintainer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Oldest joined')
   end
 
   it 'sorts by name ascending' do
     visit_members_list(sort: :name_asc)
 
-    expect(first_member).to include(master.name)
+    expect(first_member).to include(maintainer.name)
     expect(second_member).to include(developer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Name, ascending')
   end
@@ -63,14 +63,14 @@ describe 'Projects > Members > Sorting' do
     visit_members_list(sort: :name_desc)
 
     expect(first_member).to include(developer.name)
-    expect(second_member).to include(master.name)
+    expect(second_member).to include(maintainer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Name, descending')
   end
 
   it 'sorts by recent sign in', :clean_gitlab_redis_shared_state do
     visit_members_list(sort: :recent_sign_in)
 
-    expect(first_member).to include(master.name)
+    expect(first_member).to include(maintainer.name)
     expect(second_member).to include(developer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Recent sign in')
   end
@@ -79,7 +79,7 @@ describe 'Projects > Members > Sorting' do
     visit_members_list(sort: :oldest_sign_in)
 
     expect(first_member).to include(developer.name)
-    expect(second_member).to include(master.name)
+    expect(second_member).to include(maintainer.name)
     expect(page).to have_css('.member-sort-dropdown .dropdown-toggle-text', text: 'Oldest sign in')
   end
 
diff --git a/spec/features/projects/members/user_requests_access_spec.rb b/spec/features/projects/members/user_requests_access_spec.rb
index 5599cc9bf1b..50ba67f0ffc 100644
--- a/spec/features/projects/members/user_requests_access_spec.rb
+++ b/spec/features/projects/members/user_requests_access_spec.rb
@@ -3,7 +3,7 @@ require 'spec_helper'
 describe 'Projects > Members > User requests access', :js do
   let(:user) { create(:user) }
   let(:project) { create(:project, :public, :access_requestable, :repository) }
-  let(:master) { project.owner }
+  let(:maintainer) { project.owner }
 
   before do
     sign_in(user)
@@ -20,7 +20,7 @@ describe 'Projects > Members > User requests access', :js do
   it 'user can request access to a project' do
     perform_enqueued_jobs { click_link 'Request Access' }
 
-    expect(ActionMailer::Base.deliveries.last.to).to eq [master.notification_email]
+    expect(ActionMailer::Base.deliveries.last.to).to eq [maintainer.notification_email]
     expect(ActionMailer::Base.deliveries.last.subject).to eq "Request to join the #{project.full_name} project"
 
     expect(project.requesters.exists?(user_id: user)).to be_truthy
diff --git a/spec/features/projects/merge_requests/user_closes_merge_request_spec.rb b/spec/features/projects/merge_requests/user_closes_merge_request_spec.rb
index b257f447439..2d12d690151 100644
--- a/spec/features/projects/merge_requests/user_closes_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_closes_merge_request_spec.rb
@@ -6,7 +6,7 @@ describe 'User closes a merge requests', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(merge_request_path(merge_request))
diff --git a/spec/features/projects/merge_requests/user_comments_on_commit_spec.rb b/spec/features/projects/merge_requests/user_comments_on_commit_spec.rb
index 0a952cfc2a9..8ea358bcc70 100644
--- a/spec/features/projects/merge_requests/user_comments_on_commit_spec.rb
+++ b/spec/features/projects/merge_requests/user_comments_on_commit_spec.rb
@@ -9,7 +9,7 @@ describe 'User comments on a commit', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_commit_path(project, sample_commit.id))
diff --git a/spec/features/projects/merge_requests/user_comments_on_diff_spec.rb b/spec/features/projects/merge_requests/user_comments_on_diff_spec.rb
index 1828b60fec7..b1b62d04ac2 100644
--- a/spec/features/projects/merge_requests/user_comments_on_diff_spec.rb
+++ b/spec/features/projects/merge_requests/user_comments_on_diff_spec.rb
@@ -11,7 +11,7 @@ describe 'User comments on a diff', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(diffs_project_merge_request_path(project, merge_request))
diff --git a/spec/features/projects/merge_requests/user_comments_on_merge_request_spec.rb b/spec/features/projects/merge_requests/user_comments_on_merge_request_spec.rb
index f90aaba3caf..69bdab85d81 100644
--- a/spec/features/projects/merge_requests/user_comments_on_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_comments_on_merge_request_spec.rb
@@ -8,7 +8,7 @@ describe 'User comments on a merge request', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(merge_request_path(merge_request))
diff --git a/spec/features/projects/merge_requests/user_creates_merge_request_spec.rb b/spec/features/projects/merge_requests/user_creates_merge_request_spec.rb
index 1f21ef7b382..38b4e4a6d1b 100644
--- a/spec/features/projects/merge_requests/user_creates_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_creates_merge_request_spec.rb
@@ -8,7 +8,7 @@ describe "User creates a merge request", :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/merge_requests/user_edits_merge_request_spec.rb b/spec/features/projects/merge_requests/user_edits_merge_request_spec.rb
index 3d19a2923b9..7de0f9daac6 100644
--- a/spec/features/projects/merge_requests/user_edits_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_edits_merge_request_spec.rb
@@ -8,7 +8,7 @@ describe 'User edits a merge request', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(edit_project_merge_request_path(project, merge_request))
diff --git a/spec/features/projects/merge_requests/user_manages_subscription_spec.rb b/spec/features/projects/merge_requests/user_manages_subscription_spec.rb
index f55eb5c6664..68a835e7f77 100644
--- a/spec/features/projects/merge_requests/user_manages_subscription_spec.rb
+++ b/spec/features/projects/merge_requests/user_manages_subscription_spec.rb
@@ -6,7 +6,7 @@ describe 'User manages subscription', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(merge_request_path(merge_request))
diff --git a/spec/features/projects/merge_requests/user_reopens_merge_request_spec.rb b/spec/features/projects/merge_requests/user_reopens_merge_request_spec.rb
index ba3c9789da1..745b4537e72 100644
--- a/spec/features/projects/merge_requests/user_reopens_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_reopens_merge_request_spec.rb
@@ -6,7 +6,7 @@ describe 'User reopens a merge requests', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(merge_request_path(merge_request))
diff --git a/spec/features/projects/merge_requests/user_sorts_merge_requests_spec.rb b/spec/features/projects/merge_requests/user_sorts_merge_requests_spec.rb
index 305658f1b5d..e401933aed2 100644
--- a/spec/features/projects/merge_requests/user_sorts_merge_requests_spec.rb
+++ b/spec/features/projects/merge_requests/user_sorts_merge_requests_spec.rb
@@ -9,7 +9,7 @@ describe 'User sorts merge requests' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_merge_requests_path(project))
diff --git a/spec/features/projects/merge_requests/user_views_open_merge_request_spec.rb b/spec/features/projects/merge_requests/user_views_open_merge_request_spec.rb
index 3aac93eaf7c..6ac495aa03d 100644
--- a/spec/features/projects/merge_requests/user_views_open_merge_request_spec.rb
+++ b/spec/features/projects/merge_requests/user_views_open_merge_request_spec.rb
@@ -31,7 +31,7 @@ describe 'User views an open merge request' do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
 
         visit(edit_project_merge_request_path(project, merge_request))
diff --git a/spec/features/projects/milestones/user_interacts_with_labels_spec.rb b/spec/features/projects/milestones/user_interacts_with_labels_spec.rb
index f6a82f80d65..a6d58be7b13 100644
--- a/spec/features/projects/milestones/user_interacts_with_labels_spec.rb
+++ b/spec/features/projects/milestones/user_interacts_with_labels_spec.rb
@@ -11,7 +11,7 @@ describe 'User interacts with labels' do
   let(:label_enhancement) { create(:label, project: project, title: 'enhancement') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     issue1.labels << [label_bug, label_feature]
diff --git a/spec/features/projects/new_project_spec.rb b/spec/features/projects/new_project_spec.rb
index f23ec11a458..df8528e79dd 100644
--- a/spec/features/projects/new_project_spec.rb
+++ b/spec/features/projects/new_project_spec.rb
@@ -94,7 +94,7 @@ describe 'New project' do
       let(:subgroup) { create(:group, parent: group) }
 
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
         visit new_project_path(namespace_id: subgroup.id)
       end
 
diff --git a/spec/features/projects/pages_spec.rb b/spec/features/projects/pages_spec.rb
index 6bf65e16291..831f22a0e69 100644
--- a/spec/features/projects/pages_spec.rb
+++ b/spec/features/projects/pages_spec.rb
@@ -3,7 +3,7 @@ require 'spec_helper'
 describe 'Pages' do
   let(:project) { create(:project) }
   let(:user) { create(:user) }
-  let(:role) { :master }
+  let(:role) { :maintainer }
 
   before do
     allow(Gitlab.config.pages).to receive(:enabled).and_return(true)
diff --git a/spec/features/projects/pipeline_schedules_spec.rb b/spec/features/projects/pipeline_schedules_spec.rb
index 220b3529c59..ee6b67b2188 100644
--- a/spec/features/projects/pipeline_schedules_spec.rb
+++ b/spec/features/projects/pipeline_schedules_spec.rb
@@ -9,9 +9,9 @@ describe 'Pipeline Schedules', :js do
   let(:scope) { nil }
   let!(:user) { create(:user) }
 
-  context 'logged in as master' do
+  context 'logged in as maintainer' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       gitlab_sign_in(user)
     end
 
diff --git a/spec/features/projects/pipelines/pipelines_spec.rb b/spec/features/projects/pipelines/pipelines_spec.rb
index 7d47e342e92..4a83bcc3efb 100644
--- a/spec/features/projects/pipelines/pipelines_spec.rb
+++ b/spec/features/projects/pipelines/pipelines_spec.rb
@@ -595,7 +595,7 @@ describe 'Pipelines', :js do
 
       before do
         create(:ci_empty_pipeline, status: 'success', project: project, sha: project.commit.id, ref: 'master')
-        project.add_master(user)
+        project.add_maintainer(user)
         visit project_pipelines_path(project)
       end
 
diff --git a/spec/features/projects/remote_mirror_spec.rb b/spec/features/projects/remote_mirror_spec.rb
index 97db4a2b8f2..5259a8942dc 100644
--- a/spec/features/projects/remote_mirror_spec.rb
+++ b/spec/features/projects/remote_mirror_spec.rb
@@ -7,7 +7,7 @@ describe 'Project remote mirror', :feature do
 
   describe 'On a project', :js do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
     end
 
diff --git a/spec/features/projects/services/user_activates_asana_spec.rb b/spec/features/projects/services/user_activates_asana_spec.rb
index db836d2985c..c44e07dd3b4 100644
--- a/spec/features/projects/services/user_activates_asana_spec.rb
+++ b/spec/features/projects/services/user_activates_asana_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Asana' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_assembla_spec.rb b/spec/features/projects/services/user_activates_assembla_spec.rb
index f099b332785..9c3884a7c74 100644
--- a/spec/features/projects/services/user_activates_assembla_spec.rb
+++ b/spec/features/projects/services/user_activates_assembla_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Assembla' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_atlassian_bamboo_ci_spec.rb b/spec/features/projects/services/user_activates_atlassian_bamboo_ci_spec.rb
index a00c2e0ad99..19573565265 100644
--- a/spec/features/projects/services/user_activates_atlassian_bamboo_ci_spec.rb
+++ b/spec/features/projects/services/user_activates_atlassian_bamboo_ci_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Atlassian Bamboo CI' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_emails_on_push_spec.rb b/spec/features/projects/services/user_activates_emails_on_push_spec.rb
index 3769875b29c..cc55f7b2060 100644
--- a/spec/features/projects/services/user_activates_emails_on_push_spec.rb
+++ b/spec/features/projects/services/user_activates_emails_on_push_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Emails on push' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_flowdock_spec.rb b/spec/features/projects/services/user_activates_flowdock_spec.rb
index 5298d8acaf5..f981b7e9da9 100644
--- a/spec/features/projects/services/user_activates_flowdock_spec.rb
+++ b/spec/features/projects/services/user_activates_flowdock_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Flowdock' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_hipchat_spec.rb b/spec/features/projects/services/user_activates_hipchat_spec.rb
index a9bf16642c7..2f5313c91f9 100644
--- a/spec/features/projects/services/user_activates_hipchat_spec.rb
+++ b/spec/features/projects/services/user_activates_hipchat_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates HipChat' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_irker_spec.rb b/spec/features/projects/services/user_activates_irker_spec.rb
index 435663c818f..4c8e321b411 100644
--- a/spec/features/projects/services/user_activates_irker_spec.rb
+++ b/spec/features/projects/services/user_activates_irker_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Irker (IRC gateway)' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_issue_tracker_spec.rb b/spec/features/projects/services/user_activates_issue_tracker_spec.rb
index e9502178bd7..7cd5b12802b 100644
--- a/spec/features/projects/services/user_activates_issue_tracker_spec.rb
+++ b/spec/features/projects/services/user_activates_issue_tracker_spec.rb
@@ -15,7 +15,7 @@ describe 'User activates issue tracker', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_settings_integrations_path(project)
diff --git a/spec/features/projects/services/user_activates_jetbrains_teamcity_ci_spec.rb b/spec/features/projects/services/user_activates_jetbrains_teamcity_ci_spec.rb
index 1048803fde8..28d83a8b961 100644
--- a/spec/features/projects/services/user_activates_jetbrains_teamcity_ci_spec.rb
+++ b/spec/features/projects/services/user_activates_jetbrains_teamcity_ci_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates JetBrains TeamCity CI' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_jira_spec.rb b/spec/features/projects/services/user_activates_jira_spec.rb
index 429128ec096..08e1855d034 100644
--- a/spec/features/projects/services/user_activates_jira_spec.rb
+++ b/spec/features/projects/services/user_activates_jira_spec.rb
@@ -17,7 +17,7 @@ describe 'User activates Jira', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_settings_integrations_path(project)
diff --git a/spec/features/projects/services/user_activates_mattermost_slash_command_spec.rb b/spec/features/projects/services/user_activates_mattermost_slash_command_spec.rb
index d4a6417290d..25b74cc481d 100644
--- a/spec/features/projects/services/user_activates_mattermost_slash_command_spec.rb
+++ b/spec/features/projects/services/user_activates_mattermost_slash_command_spec.rb
@@ -8,7 +8,7 @@ describe 'Setup Mattermost slash commands', :js do
 
   before do
     stub_mattermost_setting(enabled: mattermost_enabled)
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit edit_project_service_path(project, service)
   end
diff --git a/spec/features/projects/services/user_activates_packagist_spec.rb b/spec/features/projects/services/user_activates_packagist_spec.rb
index b0cc818f093..756e9b33c07 100644
--- a/spec/features/projects/services/user_activates_packagist_spec.rb
+++ b/spec/features/projects/services/user_activates_packagist_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Packagist' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_pivotaltracker_spec.rb b/spec/features/projects/services/user_activates_pivotaltracker_spec.rb
index d5d109ba48b..1d6b19e0b0c 100644
--- a/spec/features/projects/services/user_activates_pivotaltracker_spec.rb
+++ b/spec/features/projects/services/user_activates_pivotaltracker_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates PivotalTracker' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_prometheus_spec.rb b/spec/features/projects/services/user_activates_prometheus_spec.rb
index 33f884eb148..61361c8a2e3 100644
--- a/spec/features/projects/services/user_activates_prometheus_spec.rb
+++ b/spec/features/projects/services/user_activates_prometheus_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Prometheus' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_pushover_spec.rb b/spec/features/projects/services/user_activates_pushover_spec.rb
index 9b7e8d62792..24612ee1457 100644
--- a/spec/features/projects/services/user_activates_pushover_spec.rb
+++ b/spec/features/projects/services/user_activates_pushover_spec.rb
@@ -5,7 +5,7 @@ describe 'User activates Pushover' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/services/user_activates_slack_notifications_spec.rb b/spec/features/projects/services/user_activates_slack_notifications_spec.rb
index 727b1fe2d11..24b5d5259db 100644
--- a/spec/features/projects/services/user_activates_slack_notifications_spec.rb
+++ b/spec/features/projects/services/user_activates_slack_notifications_spec.rb
@@ -6,7 +6,7 @@ describe 'User activates Slack notifications' do
   let(:project) { create(:project, slack_service: service) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/services/user_activates_slack_slash_command_spec.rb b/spec/features/projects/services/user_activates_slack_slash_command_spec.rb
index f540b76c784..08cfddf7993 100644
--- a/spec/features/projects/services/user_activates_slack_slash_command_spec.rb
+++ b/spec/features/projects/services/user_activates_slack_slash_command_spec.rb
@@ -6,7 +6,7 @@ describe 'Slack slash commands' do
   let(:service) { project.create_slack_slash_commands_service }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit edit_project_service_path(project, service)
   end
diff --git a/spec/features/projects/services/user_views_services_spec.rb b/spec/features/projects/services/user_views_services_spec.rb
index 5c5e8b66642..e9c8cf0fe34 100644
--- a/spec/features/projects/services/user_views_services_spec.rb
+++ b/spec/features/projects/services/user_views_services_spec.rb
@@ -5,7 +5,7 @@ describe 'User views services' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_integrations_path(project))
diff --git a/spec/features/projects/settings/forked_project_settings_spec.rb b/spec/features/projects/settings/forked_project_settings_spec.rb
index a4d1b78b83b..df33d215602 100644
--- a/spec/features/projects/settings/forked_project_settings_spec.rb
+++ b/spec/features/projects/settings/forked_project_settings_spec.rb
@@ -7,8 +7,8 @@ describe 'Projects > Settings > For a forked project', :js do
   let(:forked_project) { fork_project(original_project, user) }
 
   before do
-    original_project.add_master(user)
-    forked_project.add_master(user)
+    original_project.add_maintainer(user)
+    forked_project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/settings/integration_settings_spec.rb b/spec/features/projects/settings/integration_settings_spec.rb
index 5178d63050e..8745ff72df0 100644
--- a/spec/features/projects/settings/integration_settings_spec.rb
+++ b/spec/features/projects/settings/integration_settings_spec.rb
@@ -21,8 +21,8 @@ describe 'Projects > Settings > Integration settings' do
     end
   end
 
-  context 'for master' do
-    let(:role) { :master }
+  context 'for maintainer' do
+    let(:role) { :maintainer }
 
     context 'Webhooks' do
       let(:hook) { create(:project_hook, :all_events_enabled, enable_ssl_verification: true, project: project) }
diff --git a/spec/features/projects/settings/lfs_settings_spec.rb b/spec/features/projects/settings/lfs_settings_spec.rb
index 342be1d2a9d..befb306b48d 100644
--- a/spec/features/projects/settings/lfs_settings_spec.rb
+++ b/spec/features/projects/settings/lfs_settings_spec.rb
@@ -3,7 +3,7 @@ require 'rails_helper'
 describe 'Projects > Settings > LFS settings' do
   let(:project) { create(:project) }
   let(:user) { create(:user) }
-  let(:role) { :master }
+  let(:role) { :maintainer }
 
   context 'LFS enabled setting' do
     before do
@@ -13,8 +13,8 @@ describe 'Projects > Settings > LFS settings' do
       project.add_role(user, role)
     end
 
-    context 'for master' do
-      let(:role) { :master }
+    context 'for maintainer' do
+      let(:role) { :maintainer }
 
       it 'displays the correct elements', :js do
         visit edit_project_path(project)
diff --git a/spec/features/projects/settings/pipelines_settings_spec.rb b/spec/features/projects/settings/pipelines_settings_spec.rb
index cfdae246c09..742ecf82c38 100644
--- a/spec/features/projects/settings/pipelines_settings_spec.rb
+++ b/spec/features/projects/settings/pipelines_settings_spec.rb
@@ -21,8 +21,8 @@ describe "Projects > Settings > Pipelines settings" do
     end
   end
 
-  context 'for master' do
-    let(:role) { :master }
+  context 'for maintainer' do
+    let(:role) { :maintainer }
 
     it 'be allowed to change' do
       visit project_settings_ci_cd_path(project)
diff --git a/spec/features/projects/settings/project_badges_spec.rb b/spec/features/projects/settings/project_badges_spec.rb
index e53da997c1d..2ec94274f80 100644
--- a/spec/features/projects/settings/project_badges_spec.rb
+++ b/spec/features/projects/settings/project_badges_spec.rb
@@ -12,7 +12,7 @@ describe 'Project Badges' do
   let!(:group_badge) { create(:group_badge, group: group) }
 
   before do
-    group.add_master(user)
+    group.add_maintainer(user)
     sign_in(user)
 
     visit(project_settings_badges_path(project))
diff --git a/spec/features/projects/settings/repository_settings_spec.rb b/spec/features/projects/settings/repository_settings_spec.rb
index f085e1aa50a..a0f5b234ebc 100644
--- a/spec/features/projects/settings/repository_settings_spec.rb
+++ b/spec/features/projects/settings/repository_settings_spec.rb
@@ -20,8 +20,8 @@ describe 'Projects > Settings > Repository settings' do
     end
   end
 
-  context 'for master' do
-    let(:role) { :master }
+  context 'for maintainer' do
+    let(:role) { :maintainer }
 
     context 'Deploy Keys', :js do
       let(:private_deploy_key) { create(:deploy_key, title: 'private_deploy_key', public: false) }
@@ -124,7 +124,7 @@ describe 'Projects > Settings > Repository settings' do
       let(:user2) { create(:user) }
 
       before do
-        project.add_master(user2)
+        project.add_maintainer(user2)
 
         visit project_settings_repository_path(project)
       end
diff --git a/spec/features/projects/settings/user_archives_project_spec.rb b/spec/features/projects/settings/user_archives_project_spec.rb
index 38c8a8c2468..5008eab4d39 100644
--- a/spec/features/projects/settings/user_archives_project_spec.rb
+++ b/spec/features/projects/settings/user_archives_project_spec.rb
@@ -4,7 +4,7 @@ describe 'Projects > Settings > User archives a project' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/projects/settings/user_changes_avatar_spec.rb b/spec/features/projects/settings/user_changes_avatar_spec.rb
index 2dcc79d8a12..64335163016 100644
--- a/spec/features/projects/settings/user_changes_avatar_spec.rb
+++ b/spec/features/projects/settings/user_changes_avatar_spec.rb
@@ -5,7 +5,7 @@ describe 'Projects > Settings > User changes avatar' do
   let(:user) { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/settings/user_interacts_with_deploy_keys_spec.rb b/spec/features/projects/settings/user_interacts_with_deploy_keys_spec.rb
index 71a077039b7..ecfb49b9efe 100644
--- a/spec/features/projects/settings/user_interacts_with_deploy_keys_spec.rb
+++ b/spec/features/projects/settings/user_interacts_with_deploy_keys_spec.rb
@@ -50,7 +50,7 @@ describe "User interacts with deploy keys", :js do
       before do
         create(:deploy_keys_project, project: another_project, deploy_key: deploy_key)
 
-        another_project.add_master(user)
+        another_project.add_maintainer(user)
       end
 
       it "shows deploy keys" do
@@ -110,7 +110,7 @@ describe "User interacts with deploy keys", :js do
       before do
         create(:deploy_keys_project, project: another_project, deploy_key: deploy_key)
 
-        another_project.add_master(user)
+        another_project.add_maintainer(user)
       end
 
       it_behaves_like "attaches a key"
diff --git a/spec/features/projects/settings/user_manages_group_links_spec.rb b/spec/features/projects/settings/user_manages_group_links_spec.rb
index 92ce2ca83c7..2f1824d7849 100644
--- a/spec/features/projects/settings/user_manages_group_links_spec.rb
+++ b/spec/features/projects/settings/user_manages_group_links_spec.rb
@@ -9,10 +9,10 @@ describe 'Projects > Settings > User manages group links' do
   let(:group_market) { create(:group, name: 'Market', path: 'market') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
-    share_link = project.project_group_links.new(group_access: Gitlab::Access::MASTER)
+    share_link = project.project_group_links.new(group_access: Gitlab::Access::MAINTAINER)
     share_link.group_id = group_ops.id
     share_link.save!
 
diff --git a/spec/features/projects/settings/user_manages_project_members_spec.rb b/spec/features/projects/settings/user_manages_project_members_spec.rb
index d3003753ae6..b8ca11d53f0 100644
--- a/spec/features/projects/settings/user_manages_project_members_spec.rb
+++ b/spec/features/projects/settings/user_manages_project_members_spec.rb
@@ -9,7 +9,7 @@ describe 'Projects > Settings > User manages project members' do
   let(:user_mike) { create(:user, name: 'Mike') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user_dmitriy)
     sign_in(user)
   end
@@ -30,7 +30,7 @@ describe 'Projects > Settings > User manages project members' do
   end
 
   it 'imports a team from another project' do
-    project2.add_master(user)
+    project2.add_maintainer(user)
     project2.add_reporter(user_mike)
 
     visit(project_project_members_path(project))
@@ -54,7 +54,7 @@ describe 'Projects > Settings > User manages project members' do
     group.add_owner(user)
     group.add_developer(user_dmitriy)
 
-    share_link = project.project_group_links.new(group_access: Gitlab::Access::MASTER)
+    share_link = project.project_group_links.new(group_access: Gitlab::Access::MAINTAINER)
     share_link.group_id = group.id
     share_link.save!
 
diff --git a/spec/features/projects/settings/visibility_settings_spec.rb b/spec/features/projects/settings/visibility_settings_spec.rb
index 2ec6990313f..1fbc108697f 100644
--- a/spec/features/projects/settings/visibility_settings_spec.rb
+++ b/spec/features/projects/settings/visibility_settings_spec.rb
@@ -59,12 +59,12 @@ describe 'Projects > Settings > Visibility settings', :js do
     end
   end
 
-  context 'as master' do
-    let(:master_user) { create(:user) }
+  context 'as maintainer' do
+    let(:maintainer_user) { create(:user) }
 
     before do
-      project.add_master(master_user)
-      sign_in(master_user)
+      project.add_maintainer(maintainer_user)
+      sign_in(maintainer_user)
       visit edit_project_path(project)
     end
 
diff --git a/spec/features/projects/show/user_sees_setup_shortcut_buttons_spec.rb b/spec/features/projects/show/user_sees_setup_shortcut_buttons_spec.rb
index 7b9242f0631..0405e21a0d7 100644
--- a/spec/features/projects/show/user_sees_setup_shortcut_buttons_spec.rb
+++ b/spec/features/projects/show/user_sees_setup_shortcut_buttons_spec.rb
@@ -38,9 +38,9 @@ describe 'Projects > Show > User sees setup shortcut buttons' do
       end
     end
 
-    describe 'as a master' do
+    describe 'as a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
 
         visit project_path(project)
@@ -138,10 +138,10 @@ describe 'Projects > Show > User sees setup shortcut buttons' do
       end
     end
 
-    describe 'as a master' do
+    describe 'as a maintainer' do
       before do
         allow_any_instance_of(AutoDevopsHelper).to receive(:show_auto_devops_callout?).and_return(false)
-        project.add_master(user)
+        project.add_maintainer(user)
         sign_in(user)
       end
 
diff --git a/spec/features/projects/snippets/create_snippet_spec.rb b/spec/features/projects/snippets/create_snippet_spec.rb
index 2388feeb980..6d8a72dd6a3 100644
--- a/spec/features/projects/snippets/create_snippet_spec.rb
+++ b/spec/features/projects/snippets/create_snippet_spec.rb
@@ -16,7 +16,7 @@ describe 'Projects > Snippets > Create Snippet', :js do
 
   context 'when a user is authenticated' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
 
       visit project_snippets_path(project)
diff --git a/spec/features/projects/snippets/show_spec.rb b/spec/features/projects/snippets/show_spec.rb
index 004ac55b656..3cc797277dd 100644
--- a/spec/features/projects/snippets/show_spec.rb
+++ b/spec/features/projects/snippets/show_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Snippets > Project snippet', :js do
   let(:snippet) { create(:project_snippet, project: project, file_name: file_name, content: content) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/snippets/user_comments_on_snippet_spec.rb b/spec/features/projects/snippets/user_comments_on_snippet_spec.rb
index 01cf9740d1f..d82e350e0f7 100644
--- a/spec/features/projects/snippets/user_comments_on_snippet_spec.rb
+++ b/spec/features/projects/snippets/user_comments_on_snippet_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Snippets > User comments on a snippet', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_snippet_path(project, snippet))
diff --git a/spec/features/projects/snippets/user_deletes_snippet_spec.rb b/spec/features/projects/snippets/user_deletes_snippet_spec.rb
index e64837ad59e..2bd8bb9d551 100644
--- a/spec/features/projects/snippets/user_deletes_snippet_spec.rb
+++ b/spec/features/projects/snippets/user_deletes_snippet_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Snippets > User deletes a snippet' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_snippet_path(project, snippet))
diff --git a/spec/features/projects/snippets/user_updates_snippet_spec.rb b/spec/features/projects/snippets/user_updates_snippet_spec.rb
index eaedbbf32b6..33f77d55f89 100644
--- a/spec/features/projects/snippets/user_updates_snippet_spec.rb
+++ b/spec/features/projects/snippets/user_updates_snippet_spec.rb
@@ -6,7 +6,7 @@ describe 'Projects > Snippets > User updates a snippet' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_snippet_path(project, snippet))
diff --git a/spec/features/projects/snippets/user_views_snippets_spec.rb b/spec/features/projects/snippets/user_views_snippets_spec.rb
index 376b76e0001..1243db9d9f7 100644
--- a/spec/features/projects/snippets/user_views_snippets_spec.rb
+++ b/spec/features/projects/snippets/user_views_snippets_spec.rb
@@ -8,7 +8,7 @@ describe 'Projects > Snippets > User views snippets' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_snippets_path(project))
diff --git a/spec/features/projects/sub_group_issuables_spec.rb b/spec/features/projects/sub_group_issuables_spec.rb
index eb2d3ff50a0..50e7e934cf6 100644
--- a/spec/features/projects/sub_group_issuables_spec.rb
+++ b/spec/features/projects/sub_group_issuables_spec.rb
@@ -7,7 +7,7 @@ describe 'Subgroup Issuables', :js, :nested_groups do
   let(:user)      { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in user
   end
 
diff --git a/spec/features/projects/tree/create_directory_spec.rb b/spec/features/projects/tree/create_directory_spec.rb
index d0902bce7f3..057b49cc68c 100644
--- a/spec/features/projects/tree/create_directory_spec.rb
+++ b/spec/features/projects/tree/create_directory_spec.rb
@@ -5,7 +5,7 @@ describe 'Multi-file editor new directory', :js do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_tree_path(project, :master)
diff --git a/spec/features/projects/tree/create_file_spec.rb b/spec/features/projects/tree/create_file_spec.rb
index 03a29fae0bd..b324ab01383 100644
--- a/spec/features/projects/tree/create_file_spec.rb
+++ b/spec/features/projects/tree/create_file_spec.rb
@@ -5,7 +5,7 @@ describe 'Multi-file editor new file', :js do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_path(project)
diff --git a/spec/features/projects/tree/tree_show_spec.rb b/spec/features/projects/tree/tree_show_spec.rb
index dc59666ffce..9e15163fd72 100644
--- a/spec/features/projects/tree/tree_show_spec.rb
+++ b/spec/features/projects/tree/tree_show_spec.rb
@@ -5,7 +5,7 @@ describe 'Projects tree' do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_tree_path(project, 'master')
diff --git a/spec/features/projects/tree/upload_file_spec.rb b/spec/features/projects/tree/upload_file_spec.rb
index 804a4450ae2..28da0a87f22 100644
--- a/spec/features/projects/tree/upload_file_spec.rb
+++ b/spec/features/projects/tree/upload_file_spec.rb
@@ -7,7 +7,7 @@ describe 'Multi-file editor upload file', :js do
   let(:img_file) { File.join(Rails.root, 'spec', 'fixtures', 'dk.png') }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_tree_path(project, :master)
diff --git a/spec/features/projects/user_uses_shortcuts_spec.rb b/spec/features/projects/user_uses_shortcuts_spec.rb
index c8b3104b9fe..df9ee69aadb 100644
--- a/spec/features/projects/user_uses_shortcuts_spec.rb
+++ b/spec/features/projects/user_uses_shortcuts_spec.rb
@@ -5,7 +5,7 @@ describe 'User uses shortcuts', :js do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_path(project))
diff --git a/spec/features/projects/user_views_empty_project_spec.rb b/spec/features/projects/user_views_empty_project_spec.rb
index 7b982301ffc..b7c0834d33a 100644
--- a/spec/features/projects/user_views_empty_project_spec.rb
+++ b/spec/features/projects/user_views_empty_project_spec.rb
@@ -15,9 +15,9 @@ describe 'User views an empty project' do
     end
   end
 
-  describe 'as a master' do
+  describe 'as a maintainer' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it_behaves_like 'allowing push to default branch'
diff --git a/spec/features/projects/view_on_env_spec.rb b/spec/features/projects/view_on_env_spec.rb
index 84ec32b3fac..a48ad94e9fa 100644
--- a/spec/features/projects/view_on_env_spec.rb
+++ b/spec/features/projects/view_on_env_spec.rb
@@ -7,7 +7,7 @@ describe 'View on environment', :js do
   let(:user) { project.creator }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   context 'when the branch has a route map' do
diff --git a/spec/features/projects/wiki/markdown_preview_spec.rb b/spec/features/projects/wiki/markdown_preview_spec.rb
index 0bec5f185d6..ed5f8105487 100644
--- a/spec/features/projects/wiki/markdown_preview_spec.rb
+++ b/spec/features/projects/wiki/markdown_preview_spec.rb
@@ -14,7 +14,7 @@ describe 'Projects > Wiki > User previews markdown changes', :js do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
diff --git a/spec/features/projects/wiki/user_creates_wiki_page_spec.rb b/spec/features/projects/wiki/user_creates_wiki_page_spec.rb
index 733e6c89de7..830565620d6 100644
--- a/spec/features/projects/wiki/user_creates_wiki_page_spec.rb
+++ b/spec/features/projects/wiki/user_creates_wiki_page_spec.rb
@@ -4,7 +4,7 @@ describe "User creates wiki page" do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(project_wikis_path(project))
diff --git a/spec/features/projects/wiki/user_updates_wiki_page_spec.rb b/spec/features/projects/wiki/user_updates_wiki_page_spec.rb
index 2ccbc15b6da..2840d28cf30 100644
--- a/spec/features/projects/wiki/user_updates_wiki_page_spec.rb
+++ b/spec/features/projects/wiki/user_updates_wiki_page_spec.rb
@@ -4,7 +4,7 @@ describe 'User updates wiki page' do
   shared_examples 'wiki page user update' do
     let(:user) { create(:user) }
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/features/projects/wiki/user_views_wiki_in_project_page_spec.rb b/spec/features/projects/wiki/user_views_wiki_in_project_page_spec.rb
index 92b50169476..fb0ebe22bf7 100644
--- a/spec/features/projects/wiki/user_views_wiki_in_project_page_spec.rb
+++ b/spec/features/projects/wiki/user_views_wiki_in_project_page_spec.rb
@@ -4,7 +4,7 @@ describe 'Projects > Wiki > User views wiki in project page' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/projects/wiki/user_views_wiki_page_spec.rb b/spec/features/projects/wiki/user_views_wiki_page_spec.rb
index 1de7d9a56a8..0ef7f35f64a 100644
--- a/spec/features/projects/wiki/user_views_wiki_page_spec.rb
+++ b/spec/features/projects/wiki/user_views_wiki_page_spec.rb
@@ -11,7 +11,7 @@ describe 'User views a wiki page' do
     end
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/features/projects_spec.rb b/spec/features/projects_spec.rb
index 8636d17f2c4..00946bccd9a 100644
--- a/spec/features/projects_spec.rb
+++ b/spec/features/projects_spec.rb
@@ -151,7 +151,7 @@ describe 'Project' do
 
     before do
       sign_in(user)
-      project.add_master(user)
+      project.add_maintainer(user)
       visit edit_project_path(project)
     end
 
@@ -169,7 +169,7 @@ describe 'Project' do
     let(:project) { create(:forked_project_with_submodules) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
       visit project_path(project)
     end
@@ -198,7 +198,7 @@ describe 'Project' do
     let(:project) { create(:project, :repository) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in user
       visit project_path(project)
     end
diff --git a/spec/features/protected_branches_spec.rb b/spec/features/protected_branches_spec.rb
index 83a5f88f0b5..63c38a25f4b 100644
--- a/spec/features/protected_branches_spec.rb
+++ b/spec/features/protected_branches_spec.rb
@@ -28,9 +28,9 @@ describe 'Protected Branches', :js do
     end
   end
 
-  context 'logged in as master' do
+  context 'logged in as maintainer' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/features/reportable_note/commit_spec.rb b/spec/features/reportable_note/commit_spec.rb
index 9b6864eb90f..54ebda9dcab 100644
--- a/spec/features/reportable_note/commit_spec.rb
+++ b/spec/features/reportable_note/commit_spec.rb
@@ -7,7 +7,7 @@ describe 'Reportable note on commit', :js do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/reportable_note/issue_spec.rb b/spec/features/reportable_note/issue_spec.rb
index f5a1950e48e..bce1f7a3780 100644
--- a/spec/features/reportable_note/issue_spec.rb
+++ b/spec/features/reportable_note/issue_spec.rb
@@ -7,7 +7,7 @@ describe 'Reportable note on issue', :js do
   let!(:note) { create(:note_on_issue, noteable: issue, project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_issue_path(project, issue)
diff --git a/spec/features/reportable_note/merge_request_spec.rb b/spec/features/reportable_note/merge_request_spec.rb
index 1f69257f7ed..d00324156c4 100644
--- a/spec/features/reportable_note/merge_request_spec.rb
+++ b/spec/features/reportable_note/merge_request_spec.rb
@@ -6,7 +6,7 @@ describe 'Reportable note on merge request', :js do
   let(:merge_request) { create(:merge_request, source_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit project_merge_request_path(project, merge_request)
diff --git a/spec/features/reportable_note/snippets_spec.rb b/spec/features/reportable_note/snippets_spec.rb
index 98ef50b78de..06218d9b286 100644
--- a/spec/features/reportable_note/snippets_spec.rb
+++ b/spec/features/reportable_note/snippets_spec.rb
@@ -5,7 +5,7 @@ describe 'Reportable note on snippets', :js do
   let(:project) { create(:project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/runners_spec.rb b/spec/features/runners_spec.rb
index 443c2b9acae..0c6cf3dc477 100644
--- a/spec/features/runners_spec.rb
+++ b/spec/features/runners_spec.rb
@@ -11,7 +11,7 @@ describe 'Runners' do
     let(:project) { create(:project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it 'user can see a button to install runners on kubernetes clusters' do
@@ -25,7 +25,7 @@ describe 'Runners' do
     let(:project) { create(:project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when a project_type runner is activated on the project' do
@@ -125,7 +125,7 @@ describe 'Runners' do
       let!(:specific_runner) { create(:ci_runner, :project, projects: [another_project]) }
 
       before do
-        another_project.add_master(user)
+        another_project.add_maintainer(user)
       end
 
       it 'user enables and disables a specific runner' do
@@ -165,7 +165,7 @@ describe 'Runners' do
     let(:project) { create(:project, shared_runners_enabled: false) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it 'user enables shared runners' do
@@ -179,14 +179,14 @@ describe 'Runners' do
 
   context 'group runners in project settings' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     let(:group) { create :group }
 
     context 'as project and group maintainer' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       context 'project with a group but no group runner' do
@@ -260,7 +260,7 @@ describe 'Runners' do
   context 'group runners in group settings' do
     let(:group) { create(:group) }
     before do
-      group.add_master(user)
+      group.add_maintainer(user)
     end
 
     context 'group with no runners' do
diff --git a/spec/features/search/user_searches_for_code_spec.rb b/spec/features/search/user_searches_for_code_spec.rb
index 9e089c5a6cb..ecec2f3e043 100644
--- a/spec/features/search/user_searches_for_code_spec.rb
+++ b/spec/features/search/user_searches_for_code_spec.rb
@@ -6,7 +6,7 @@ describe 'User searches for code' do
 
   context 'when signed in' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
     end
 
diff --git a/spec/features/search/user_searches_for_issues_spec.rb b/spec/features/search/user_searches_for_issues_spec.rb
index d6120ff8517..4bff269f89e 100644
--- a/spec/features/search/user_searches_for_issues_spec.rb
+++ b/spec/features/search/user_searches_for_issues_spec.rb
@@ -8,7 +8,7 @@ describe 'User searches for issues', :js do
 
   context 'when signed in' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       sign_in(user)
 
       visit(search_path)
diff --git a/spec/features/search/user_searches_for_merge_requests_spec.rb b/spec/features/search/user_searches_for_merge_requests_spec.rb
index 68e2f7a857d..75d44e413cb 100644
--- a/spec/features/search/user_searches_for_merge_requests_spec.rb
+++ b/spec/features/search/user_searches_for_merge_requests_spec.rb
@@ -7,7 +7,7 @@ describe 'User searches for merge requests', :js do
   let!(:merge_request2) { create(:merge_request, :simple, title: 'Bar', source_project: project, target_project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(search_path)
diff --git a/spec/features/search/user_searches_for_milestones_spec.rb b/spec/features/search/user_searches_for_milestones_spec.rb
index fc6cd81eb68..7d52c4c8bcc 100644
--- a/spec/features/search/user_searches_for_milestones_spec.rb
+++ b/spec/features/search/user_searches_for_milestones_spec.rb
@@ -7,7 +7,7 @@ describe 'User searches for milestones', :js do
   let!(:milestone2) { create(:milestone, title: 'Bar', project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(search_path)
diff --git a/spec/features/search/user_searches_for_wiki_pages_spec.rb b/spec/features/search/user_searches_for_wiki_pages_spec.rb
index 5098fb49ee1..3ee753b7d23 100644
--- a/spec/features/search/user_searches_for_wiki_pages_spec.rb
+++ b/spec/features/search/user_searches_for_wiki_pages_spec.rb
@@ -6,7 +6,7 @@ describe 'User searches for wiki pages', :js do
   let!(:wiki_page) { create(:wiki_page, wiki: project.wiki, attrs: { title: 'test_wiki', content: 'Some Wiki content' }) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
 
     visit(search_path)
diff --git a/spec/features/security/group/internal_access_spec.rb b/spec/features/security/group/internal_access_spec.rb
index 5067f0b0a49..51b32ba6c03 100644
--- a/spec/features/security/group/internal_access_spec.rb
+++ b/spec/features/security/group/internal_access_spec.rb
@@ -23,7 +23,7 @@ describe 'Internal Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -38,7 +38,7 @@ describe 'Internal Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -54,7 +54,7 @@ describe 'Internal Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -69,7 +69,7 @@ describe 'Internal Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -84,7 +84,7 @@ describe 'Internal Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_denied_for(:master).of(group) }
+    it { is_expected.to be_denied_for(:maintainer).of(group) }
     it { is_expected.to be_denied_for(:developer).of(group) }
     it { is_expected.to be_denied_for(:reporter).of(group) }
     it { is_expected.to be_denied_for(:guest).of(group) }
diff --git a/spec/features/security/group/private_access_spec.rb b/spec/features/security/group/private_access_spec.rb
index ff32413dc7e..4705cd12d23 100644
--- a/spec/features/security/group/private_access_spec.rb
+++ b/spec/features/security/group/private_access_spec.rb
@@ -23,7 +23,7 @@ describe 'Private Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -38,7 +38,7 @@ describe 'Private Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -54,7 +54,7 @@ describe 'Private Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -69,7 +69,7 @@ describe 'Private Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -84,7 +84,7 @@ describe 'Private Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_denied_for(:master).of(group) }
+    it { is_expected.to be_denied_for(:maintainer).of(group) }
     it { is_expected.to be_denied_for(:developer).of(group) }
     it { is_expected.to be_denied_for(:reporter).of(group) }
     it { is_expected.to be_denied_for(:guest).of(group) }
diff --git a/spec/features/security/group/public_access_spec.rb b/spec/features/security/group/public_access_spec.rb
index 16d114fb3f7..3a53c3c2bc7 100644
--- a/spec/features/security/group/public_access_spec.rb
+++ b/spec/features/security/group/public_access_spec.rb
@@ -23,7 +23,7 @@ describe 'Public Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -38,7 +38,7 @@ describe 'Public Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -54,7 +54,7 @@ describe 'Public Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -69,7 +69,7 @@ describe 'Public Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_allowed_for(:master).of(group) }
+    it { is_expected.to be_allowed_for(:maintainer).of(group) }
     it { is_expected.to be_allowed_for(:developer).of(group) }
     it { is_expected.to be_allowed_for(:reporter).of(group) }
     it { is_expected.to be_allowed_for(:guest).of(group) }
@@ -84,7 +84,7 @@ describe 'Public Group access' do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(group) }
-    it { is_expected.to be_denied_for(:master).of(group) }
+    it { is_expected.to be_denied_for(:maintainer).of(group) }
     it { is_expected.to be_denied_for(:developer).of(group) }
     it { is_expected.to be_denied_for(:reporter).of(group) }
     it { is_expected.to be_denied_for(:guest).of(group) }
diff --git a/spec/features/security/project/internal_access_spec.rb b/spec/features/security/project/internal_access_spec.rb
index a7928857b7d..001e6c10eb2 100644
--- a/spec/features/security/project/internal_access_spec.rb
+++ b/spec/features/security/project/internal_access_spec.rb
@@ -17,7 +17,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -31,7 +31,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -45,7 +45,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -59,7 +59,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -73,7 +73,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -87,7 +87,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -101,7 +101,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -115,7 +115,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -130,7 +130,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -144,7 +144,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -158,7 +158,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -172,7 +172,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -187,7 +187,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -201,7 +201,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -215,7 +215,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -229,7 +229,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -243,7 +243,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -262,7 +262,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -281,7 +281,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -295,7 +295,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -309,7 +309,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -324,7 +324,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -343,7 +343,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -359,7 +359,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -381,7 +381,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -397,7 +397,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -419,7 +419,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -435,7 +435,7 @@ describe "Internal Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -450,7 +450,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -464,7 +464,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -479,7 +479,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -494,7 +494,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -508,7 +508,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -530,7 +530,7 @@ describe "Internal Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
diff --git a/spec/features/security/project/private_access_spec.rb b/spec/features/security/project/private_access_spec.rb
index a4396b20afd..c6618355eea 100644
--- a/spec/features/security/project/private_access_spec.rb
+++ b/spec/features/security/project/private_access_spec.rb
@@ -17,7 +17,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -31,7 +31,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -45,7 +45,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -59,7 +59,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -73,7 +73,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -87,7 +87,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -101,7 +101,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -115,7 +115,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -130,7 +130,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -144,7 +144,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -158,7 +158,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -172,7 +172,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -187,7 +187,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -201,7 +201,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -215,7 +215,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -234,7 +234,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -253,7 +253,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -267,7 +267,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -281,7 +281,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -308,7 +308,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -334,7 +334,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -362,7 +362,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -395,7 +395,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -425,7 +425,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -440,7 +440,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -455,7 +455,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -469,7 +469,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -483,7 +483,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -497,7 +497,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -511,7 +511,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -533,7 +533,7 @@ describe "Private Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
diff --git a/spec/features/security/project/public_access_spec.rb b/spec/features/security/project/public_access_spec.rb
index fccdeb0e5b7..3717dc13f1e 100644
--- a/spec/features/security/project/public_access_spec.rb
+++ b/spec/features/security/project/public_access_spec.rb
@@ -17,7 +17,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -31,7 +31,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -45,7 +45,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -59,7 +59,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -73,7 +73,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -87,7 +87,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -101,7 +101,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -115,7 +115,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -129,7 +129,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -144,7 +144,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -163,7 +163,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -179,7 +179,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -201,7 +201,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -217,7 +217,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -239,7 +239,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -255,7 +255,7 @@ describe "Public Project Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_denied_for(:guest).of(project) }
@@ -270,7 +270,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -284,7 +284,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -299,7 +299,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -314,7 +314,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -328,7 +328,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -344,7 +344,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -357,7 +357,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -371,7 +371,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -385,7 +385,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -400,7 +400,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -414,7 +414,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -428,7 +428,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -442,7 +442,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -456,7 +456,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -475,7 +475,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -494,7 +494,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -508,7 +508,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_denied_for(:developer).of(project) }
     it { is_expected.to be_denied_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -530,7 +530,7 @@ describe "Public Project Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
diff --git a/spec/features/security/project/snippet/internal_access_spec.rb b/spec/features/security/project/snippet/internal_access_spec.rb
index d7dc99c0a57..b87eb86b88b 100644
--- a/spec/features/security/project/snippet/internal_access_spec.rb
+++ b/spec/features/security/project/snippet/internal_access_spec.rb
@@ -13,7 +13,7 @@ describe "Internal Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -27,7 +27,7 @@ describe "Internal Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -42,7 +42,7 @@ describe "Internal Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -56,7 +56,7 @@ describe "Internal Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -72,7 +72,7 @@ describe "Internal Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -86,7 +86,7 @@ describe "Internal Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
diff --git a/spec/features/security/project/snippet/private_access_spec.rb b/spec/features/security/project/snippet/private_access_spec.rb
index 3ec1a388185..ead91d9a5fa 100644
--- a/spec/features/security/project/snippet/private_access_spec.rb
+++ b/spec/features/security/project/snippet/private_access_spec.rb
@@ -12,7 +12,7 @@ describe "Private Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -26,7 +26,7 @@ describe "Private Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -40,7 +40,7 @@ describe "Private Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -54,7 +54,7 @@ describe "Private Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
diff --git a/spec/features/security/project/snippet/public_access_spec.rb b/spec/features/security/project/snippet/public_access_spec.rb
index 39b104bfe27..9bab3a474b8 100644
--- a/spec/features/security/project/snippet/public_access_spec.rb
+++ b/spec/features/security/project/snippet/public_access_spec.rb
@@ -14,7 +14,7 @@ describe "Public Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -28,7 +28,7 @@ describe "Public Project Snippets Access"  do
 
     it { is_expected.to be_allowed_for(:admin) }
     it { is_expected.to be_allowed_for(:owner).of(project) }
-    it { is_expected.to be_allowed_for(:master).of(project) }
+    it { is_expected.to be_allowed_for(:maintainer).of(project) }
     it { is_expected.to be_allowed_for(:developer).of(project) }
     it { is_expected.to be_allowed_for(:reporter).of(project) }
     it { is_expected.to be_denied_for(:guest).of(project) }
@@ -43,7 +43,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -57,7 +57,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -71,7 +71,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -87,7 +87,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -101,7 +101,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
@@ -115,7 +115,7 @@ describe "Public Project Snippets Access"  do
 
       it { is_expected.to be_allowed_for(:admin) }
       it { is_expected.to be_allowed_for(:owner).of(project) }
-      it { is_expected.to be_allowed_for(:master).of(project) }
+      it { is_expected.to be_allowed_for(:maintainer).of(project) }
       it { is_expected.to be_allowed_for(:developer).of(project) }
       it { is_expected.to be_allowed_for(:reporter).of(project) }
       it { is_expected.to be_allowed_for(:guest).of(project) }
diff --git a/spec/features/signed_commits_spec.rb b/spec/features/signed_commits_spec.rb
index bc9443c6093..3d05474dca2 100644
--- a/spec/features/signed_commits_spec.rb
+++ b/spec/features/signed_commits_spec.rb
@@ -5,7 +5,7 @@ describe 'GPG signed commits', :js do
 
   it 'changes from unverified to verified when the user changes his email to match the gpg key' do
     user = create :user, email: 'unrelated.user@example.org'
-    project.add_master(user)
+    project.add_maintainer(user)
 
     Sidekiq::Testing.inline! do
       create :gpg_key, key: GpgHelpers::User1.public_key, user: user
@@ -36,7 +36,7 @@ describe 'GPG signed commits', :js do
 
   it 'changes from unverified to verified when the user adds the missing gpg key' do
     user = create :user, email: GpgHelpers::User1.emails.first
-    project.add_master(user)
+    project.add_maintainer(user)
 
     sign_in(user)
 
@@ -86,7 +86,7 @@ describe 'GPG signed commits', :js do
 
     before do
       user = create :user
-      project.add_master(user)
+      project.add_maintainer(user)
 
       sign_in(user)
     end
diff --git a/spec/features/tags/master_creates_tag_spec.rb b/spec/features/tags/master_creates_tag_spec.rb
index b4e8253057b..db2970f3340 100644
--- a/spec/features/tags/master_creates_tag_spec.rb
+++ b/spec/features/tags/master_creates_tag_spec.rb
@@ -1,11 +1,11 @@
 require 'spec_helper'
 
-describe 'Master creates tag' do
+describe 'Maintainer creates tag' do
   let(:user) { create(:user) }
   let(:project) { create(:project, :repository, namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/tags/master_deletes_tag_spec.rb b/spec/features/tags/master_deletes_tag_spec.rb
index 1443e259ed9..8d567e925ef 100644
--- a/spec/features/tags/master_deletes_tag_spec.rb
+++ b/spec/features/tags/master_deletes_tag_spec.rb
@@ -1,11 +1,11 @@
 require 'spec_helper'
 
-describe 'Master deletes tag' do
+describe 'Maintainer deletes tag' do
   let(:user) { create(:user) }
   let(:project) { create(:project, :repository, namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_tags_path(project)
   end
diff --git a/spec/features/tags/master_updates_tag_spec.rb b/spec/features/tags/master_updates_tag_spec.rb
index 4c0be6be96c..d8b5b3c4cc4 100644
--- a/spec/features/tags/master_updates_tag_spec.rb
+++ b/spec/features/tags/master_updates_tag_spec.rb
@@ -1,11 +1,11 @@
 require 'spec_helper'
 
-describe 'Master updates tag' do
+describe 'Maintainer updates tag' do
   let(:user) { create(:user) }
   let(:project) { create(:project, :repository, namespace: user.namespace) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
     visit project_tags_path(project)
   end
diff --git a/spec/features/tags/master_views_tags_spec.rb b/spec/features/tags/master_views_tags_spec.rb
index 02ce0242614..3f4fe549f3e 100644
--- a/spec/features/tags/master_views_tags_spec.rb
+++ b/spec/features/tags/master_views_tags_spec.rb
@@ -1,10 +1,10 @@
 require 'spec_helper'
 
-describe 'Master views tags' do
+describe 'Maintainer views tags' do
   let(:user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/features/task_lists_spec.rb b/spec/features/task_lists_spec.rb
index 64d05c57d3c..9c9127980a1 100644
--- a/spec/features/task_lists_spec.rb
+++ b/spec/features/task_lists_spec.rb
@@ -65,7 +65,7 @@ describe 'Task Lists' do
   before do
     Warden.test_mode!
 
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_guest(user2)
 
     login_as(user)
diff --git a/spec/features/triggers_spec.rb b/spec/features/triggers_spec.rb
index 36dafccd186..919859c145a 100644
--- a/spec/features/triggers_spec.rb
+++ b/spec/features/triggers_spec.rb
@@ -10,8 +10,8 @@ describe 'Triggers', :js do
     sign_in(user)
 
     @project = create(:project)
-    @project.add_master(user)
-    @project.add_master(user2)
+    @project.add_maintainer(user)
+    @project.add_maintainer(user2)
     @project.add_guest(guest_user)
 
     visit project_settings_ci_cd_path(@project)
diff --git a/spec/features/users/user_browses_projects_on_user_page_spec.rb b/spec/features/users/user_browses_projects_on_user_page_spec.rb
index 5478e38ce70..6a9b281fb4c 100644
--- a/spec/features/users/user_browses_projects_on_user_page_spec.rb
+++ b/spec/features/users/user_browses_projects_on_user_page_spec.rb
@@ -4,19 +4,19 @@ describe 'Users > User browses projects on user page', :js do
   let!(:user) { create :user }
   let!(:private_project) do
     create :project, :private, name: 'private', namespace: user.namespace do |project|
-      project.add_master(user)
+      project.add_maintainer(user)
     end
   end
 
   let!(:internal_project) do
     create :project, :internal, name: 'internal', namespace: user.namespace do |project|
-      project.add_master(user)
+      project.add_maintainer(user)
     end
   end
 
   let!(:public_project) do
     create :project, :public, name: 'public', namespace: user.namespace do |project|
-      project.add_master(user)
+      project.add_maintainer(user)
     end
   end
 
diff --git a/spec/finders/access_requests_finder_spec.rb b/spec/finders/access_requests_finder_spec.rb
index 650f7229647..605777462bb 100644
--- a/spec/finders/access_requests_finder_spec.rb
+++ b/spec/finders/access_requests_finder_spec.rb
@@ -51,7 +51,7 @@ describe AccessRequestsFinder do
 
     context 'when current user can see access requests' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         group.add_owner(user)
       end
 
@@ -78,7 +78,7 @@ describe AccessRequestsFinder do
 
     context 'when current user can see access requests' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         group.add_owner(user)
       end
 
diff --git a/spec/finders/admin/projects_finder_spec.rb b/spec/finders/admin/projects_finder_spec.rb
index 7901d5fee28..44cc8debd04 100644
--- a/spec/finders/admin/projects_finder_spec.rb
+++ b/spec/finders/admin/projects_finder_spec.rb
@@ -54,7 +54,7 @@ describe Admin::ProjectsFinder do
 
     context 'filter by visibility_level' do
       before do
-        private_project.add_master(user)
+        private_project.add_maintainer(user)
       end
 
       context 'private' do
diff --git a/spec/finders/concerns/finder_with_cross_project_access_spec.rb b/spec/finders/concerns/finder_with_cross_project_access_spec.rb
index c784fb87972..1ff65a8101b 100644
--- a/spec/finders/concerns/finder_with_cross_project_access_spec.rb
+++ b/spec/finders/concerns/finder_with_cross_project_access_spec.rb
@@ -25,7 +25,7 @@ describe FinderWithCrossProjectAccess do
   let!(:result) { create(:issue) }
 
   before do
-    result.project.add_master(user)
+    result.project.add_maintainer(user)
   end
 
   def expect_access_check_on_result
diff --git a/spec/finders/contributed_projects_finder_spec.rb b/spec/finders/contributed_projects_finder_spec.rb
index 60ea98e61c7..9155a8d6fe9 100644
--- a/spec/finders/contributed_projects_finder_spec.rb
+++ b/spec/finders/contributed_projects_finder_spec.rb
@@ -10,9 +10,9 @@ describe ContributedProjectsFinder do
   let!(:private_project) { create(:project, :private) }
 
   before do
-    private_project.add_master(source_user)
+    private_project.add_maintainer(source_user)
     private_project.add_developer(current_user)
-    public_project.add_master(source_user)
+    public_project.add_maintainer(source_user)
 
     create(:push_event, project: public_project, author: source_user)
     create(:push_event, project: private_project, author: source_user)
diff --git a/spec/finders/environments_finder_spec.rb b/spec/finders/environments_finder_spec.rb
index 3a8a1e7de74..3cd421f22eb 100644
--- a/spec/finders/environments_finder_spec.rb
+++ b/spec/finders/environments_finder_spec.rb
@@ -7,7 +7,7 @@ describe EnvironmentsFinder do
     let(:environment) { create(:environment, project: project) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'tagged deployment' do
diff --git a/spec/finders/group_members_finder_spec.rb b/spec/finders/group_members_finder_spec.rb
index 63e15b365a4..f545da3aee4 100644
--- a/spec/finders/group_members_finder_spec.rb
+++ b/spec/finders/group_members_finder_spec.rb
@@ -9,9 +9,9 @@ describe GroupMembersFinder, '#execute' do
   let(:user4)        { create(:user) }
 
   it 'returns members for top-level group' do
-    member1 = group.add_master(user1)
-    member2 = group.add_master(user2)
-    member3 = group.add_master(user3)
+    member1 = group.add_maintainer(user1)
+    member2 = group.add_maintainer(user2)
+    member3 = group.add_maintainer(user3)
 
     result = described_class.new(group).execute
 
@@ -19,11 +19,11 @@ describe GroupMembersFinder, '#execute' do
   end
 
   it 'returns members for nested group', :nested_groups do
-    group.add_master(user2)
+    group.add_maintainer(user2)
     nested_group.request_access(user4)
-    member1 = group.add_master(user1)
-    member3 = nested_group.add_master(user2)
-    member4 = nested_group.add_master(user3)
+    member1 = group.add_maintainer(user1)
+    member3 = nested_group.add_maintainer(user2)
+    member4 = nested_group.add_maintainer(user3)
 
     result = described_class.new(nested_group).execute
 
@@ -31,11 +31,11 @@ describe GroupMembersFinder, '#execute' do
   end
 
   it 'returns members for descendant groups if requested', :nested_groups do
-    member1 = group.add_master(user2)
-    member2 = group.add_master(user1)
-    nested_group.add_master(user2)
-    member3 = nested_group.add_master(user3)
-    member4 = nested_group.add_master(user4)
+    member1 = group.add_maintainer(user2)
+    member2 = group.add_maintainer(user1)
+    nested_group.add_maintainer(user2)
+    member3 = nested_group.add_maintainer(user3)
+    member4 = nested_group.add_maintainer(user4)
 
     result = described_class.new(group).execute(include_descendants: true)
 
diff --git a/spec/finders/group_projects_finder_spec.rb b/spec/finders/group_projects_finder_spec.rb
index 0a69c03e491..d6d95906f5e 100644
--- a/spec/finders/group_projects_finder_spec.rb
+++ b/spec/finders/group_projects_finder_spec.rb
@@ -17,16 +17,16 @@ describe GroupProjectsFinder do
   let!(:subgroup_private_project) { create(:project, :private, path: '7', group: subgroup) }
 
   before do
-    shared_project_1.project_group_links.create(group_access: Gitlab::Access::MASTER, group: group)
-    shared_project_2.project_group_links.create(group_access: Gitlab::Access::MASTER, group: group)
-    shared_project_3.project_group_links.create(group_access: Gitlab::Access::MASTER, group: group)
+    shared_project_1.project_group_links.create(group_access: Gitlab::Access::MAINTAINER, group: group)
+    shared_project_2.project_group_links.create(group_access: Gitlab::Access::MAINTAINER, group: group)
+    shared_project_3.project_group_links.create(group_access: Gitlab::Access::MAINTAINER, group: group)
   end
 
   subject { finder.execute }
 
   describe 'with a group member current user' do
     before do
-      group.add_master(current_user)
+      group.add_maintainer(current_user)
     end
 
     context "only shared" do
@@ -68,7 +68,7 @@ describe GroupProjectsFinder do
 
   describe 'without group member current_user' do
     before do
-      shared_project_2.add_master(current_user)
+      shared_project_2.add_maintainer(current_user)
       current_user.reload
     end
 
@@ -93,8 +93,8 @@ describe GroupProjectsFinder do
 
       context "without external user" do
         before do
-          private_project.add_master(current_user)
-          subgroup_private_project.add_master(current_user)
+          private_project.add_maintainer(current_user)
+          subgroup_private_project.add_maintainer(current_user)
         end
 
         context 'with subgroups projects', :nested_groups do
diff --git a/spec/finders/issues_finder_spec.rb b/spec/finders/issues_finder_spec.rb
index 74e91b02f0f..07a2fa86dd7 100644
--- a/spec/finders/issues_finder_spec.rb
+++ b/spec/finders/issues_finder_spec.rb
@@ -26,7 +26,7 @@ describe IssuesFinder do
     let(:issues) { described_class.new(search_user, params.reverse_merge(scope: scope, state: 'opened')).execute }
 
     before(:context) do
-      project1.add_master(user)
+      project1.add_maintainer(user)
       project2.add_developer(user)
       project2.add_developer(user2)
       project3.add_developer(user)
diff --git a/spec/finders/joined_groups_finder_spec.rb b/spec/finders/joined_groups_finder_spec.rb
index 7f77a713b12..ae3e55f90f1 100644
--- a/spec/finders/joined_groups_finder_spec.rb
+++ b/spec/finders/joined_groups_finder_spec.rb
@@ -15,7 +15,7 @@ describe JoinedGroupsFinder do
 
     context 'without a user' do
       before do
-        public_group.add_master(profile_owner)
+        public_group.add_maintainer(profile_owner)
       end
 
       it 'only shows public groups from profile owner' do
@@ -25,9 +25,9 @@ describe JoinedGroupsFinder do
 
     context "with a user" do
       before do
-        private_group.add_master(profile_owner)
-        internal_group.add_master(profile_owner)
-        public_group.add_master(profile_owner)
+        private_group.add_maintainer(profile_owner)
+        internal_group.add_maintainer(profile_owner)
+        public_group.add_maintainer(profile_owner)
       end
 
       context "when the profile visitor is in the private group" do
@@ -64,7 +64,7 @@ describe JoinedGroupsFinder do
 
         context "if authorized" do
           before do
-            internal_group.add_master(profile_visitor)
+            internal_group.add_maintainer(profile_visitor)
           end
 
           it "shows internal groups if authorized" do
diff --git a/spec/finders/members_finder_spec.rb b/spec/finders/members_finder_spec.rb
index 2fc5299b0f4..db48f00cd74 100644
--- a/spec/finders/members_finder_spec.rb
+++ b/spec/finders/members_finder_spec.rb
@@ -11,9 +11,9 @@ describe MembersFinder, '#execute' do
 
   it 'returns members for project and parent groups', :nested_groups do
     nested_group.request_access(user1)
-    member1 = group.add_master(user2)
-    member2 = nested_group.add_master(user3)
-    member3 = project.add_master(user4)
+    member1 = group.add_maintainer(user2)
+    member2 = nested_group.add_maintainer(user3)
+    member3 = project.add_maintainer(user4)
 
     result = described_class.new(project, user2).execute
 
@@ -23,9 +23,9 @@ describe MembersFinder, '#execute' do
   it 'includes nested group members if asked', :nested_groups do
     project = create(:project, namespace: group)
     nested_group.request_access(user1)
-    member1 = group.add_master(user2)
-    member2 = nested_group.add_master(user3)
-    member3 = project.add_master(user4)
+    member1 = group.add_maintainer(user2)
+    member2 = nested_group.add_maintainer(user3)
+    member3 = project.add_maintainer(user4)
 
     result = described_class.new(project, user2).execute(include_descendants: true)
 
diff --git a/spec/finders/merge_requests_finder_spec.rb b/spec/finders/merge_requests_finder_spec.rb
index 669ec602f11..35d0eeda8f6 100644
--- a/spec/finders/merge_requests_finder_spec.rb
+++ b/spec/finders/merge_requests_finder_spec.rb
@@ -24,7 +24,7 @@ describe MergeRequestsFinder do
   let!(:merge_request5) { create(:merge_request, :simple, author: user, source_project: project4, target_project: project4) }
 
   before do
-    project1.add_master(user)
+    project1.add_maintainer(user)
     project2.add_developer(user)
     project3.add_developer(user)
     project2.add_developer(user2)
@@ -142,7 +142,7 @@ describe MergeRequestsFinder do
       end
 
       before do
-        new_project.add_master(user)
+        new_project.add_maintainer(user)
       end
 
       it 'filters by created_after' do
diff --git a/spec/finders/move_to_project_finder_spec.rb b/spec/finders/move_to_project_finder_spec.rb
index e1faf3d569c..1511cb0e04c 100644
--- a/spec/finders/move_to_project_finder_spec.rb
+++ b/spec/finders/move_to_project_finder_spec.rb
@@ -8,7 +8,7 @@ describe MoveToProjectFinder do
   let(:guest_project) { create(:project) }
   let(:reporter_project) { create(:project) }
   let(:developer_project) { create(:project) }
-  let(:master_project) { create(:project) }
+  let(:maintainer_project) { create(:project) }
 
   subject { described_class.new(user) }
 
@@ -23,9 +23,9 @@ describe MoveToProjectFinder do
       it 'returns projects equal or above Gitlab::Access::REPORTER ordered by id in descending order' do
         reporter_project.add_reporter(user)
         developer_project.add_developer(user)
-        master_project.add_master(user)
+        maintainer_project.add_maintainer(user)
 
-        expect(subject.execute(project).to_a).to eq([master_project, developer_project, reporter_project])
+        expect(subject.execute(project).to_a).to eq([maintainer_project, developer_project, reporter_project])
       end
 
       it 'does not include the source project' do
@@ -57,9 +57,9 @@ describe MoveToProjectFinder do
 
         reporter_project.add_reporter(user)
         developer_project.add_developer(user)
-        master_project.add_master(user)
+        maintainer_project.add_maintainer(user)
 
-        expect(subject.execute(project).to_a).to eq([master_project, developer_project])
+        expect(subject.execute(project).to_a).to eq([maintainer_project, developer_project])
       end
 
       it 'returns projects after the given offset id' do
@@ -67,9 +67,9 @@ describe MoveToProjectFinder do
 
         reporter_project.add_reporter(user)
         developer_project.add_developer(user)
-        master_project.add_master(user)
+        maintainer_project.add_maintainer(user)
 
-        expect(subject.execute(project, search: nil, offset_id: master_project.id).to_a).to eq([developer_project, reporter_project])
+        expect(subject.execute(project, search: nil, offset_id: maintainer_project.id).to_a).to eq([developer_project, reporter_project])
         expect(subject.execute(project, search: nil, offset_id: developer_project.id).to_a).to eq([reporter_project])
         expect(subject.execute(project, search: nil, offset_id: reporter_project.id).to_a).to be_empty
       end
@@ -84,10 +84,10 @@ describe MoveToProjectFinder do
 
       it 'returns projects matching a search query' do
         foo_project = create(:project)
-        foo_project.add_master(user)
+        foo_project.add_maintainer(user)
 
         wadus_project = create(:project, name: 'wadus')
-        wadus_project.add_master(user)
+        wadus_project.add_maintainer(user)
 
         expect(subject.execute(project).to_a).to eq([wadus_project, foo_project])
         expect(subject.execute(project, search: 'wadus').to_a).to eq([wadus_project])
diff --git a/spec/finders/notes_finder_spec.rb b/spec/finders/notes_finder_spec.rb
index 232f35c86f9..b776e9d856a 100644
--- a/spec/finders/notes_finder_spec.rb
+++ b/spec/finders/notes_finder_spec.rb
@@ -5,7 +5,7 @@ describe NotesFinder do
   let(:project) { create(:project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/finders/projects_finder_spec.rb b/spec/finders/projects_finder_spec.rb
index 0dfe6ba9c32..7931ad9b9f0 100644
--- a/spec/finders/projects_finder_spec.rb
+++ b/spec/finders/projects_finder_spec.rb
@@ -41,7 +41,7 @@ describe ProjectsFinder do
 
       describe 'with private projects' do
         before do
-          private_project.add_master(user)
+          private_project.add_maintainer(user)
         end
 
         it { is_expected.to match_array([public_project, internal_project, private_project]) }
@@ -56,7 +56,7 @@ describe ProjectsFinder do
 
     describe 'filter by visibility_level' do
       before do
-        private_project.add_master(user)
+        private_project.add_maintainer(user)
       end
 
       context 'private' do
diff --git a/spec/fixtures/trace/sample_trace b/spec/fixtures/trace/sample_trace
index c65cf05d5ca..7bfe3f83b7b 100644
--- a/spec/fixtures/trace/sample_trace
+++ b/spec/fixtures/trace/sample_trace
@@ -41,7 +41,7 @@ From https://gitlab.com/gitlab-org/gitlab-ce
 section_end:1522927113:get_sources
 section_start:1522927113:restore_cache
 Checking cache for ruby-2.3.6-with-yarn...
-Downloading cache.zip from http://runners-cache-5-internal.gitlab.com:444/runner/project/13083/ruby-2.3.6-with-yarn 
+Downloading cache.zip from http://runners-cache-5-internal.gitlab.com:444/runner/project/13083/ruby-2.3.6-with-yarn
 Successfully extracted cache
 section_end:1522927128:restore_cache
 section_start:1522927128:download_artifacts
@@ -51,7 +51,7 @@ Downloading artifacts from coordinator... ok        id=61303215 respon
 Downloading artifacts from coordinator... ok        id=61303216 responseStatus=200 OK token=iy2yYbq8
 Downloading artifacts for setup-test-env (61303217)...
 Downloading artifacts from coordinator... ok        id=61303217 responseStatus=200 OK token=ur1g79-4
-WARNING: tmp/tests/gitlab-shell/.gitlab_shell_secret: chmod tmp/tests/gitlab-shell/.gitlab_shell_secret: no such file or directory (suppressing repeats) 
+WARNING: tmp/tests/gitlab-shell/.gitlab_shell_secret: chmod tmp/tests/gitlab-shell/.gitlab_shell_secret: no such file or directory (suppressing repeats)
 section_end:1522927141:download_artifacts
 section_start:1522927141:build_script
 $ bundle --version
@@ -1486,7 +1486,7 @@ Gitlab::ImportExport::ProjectTreeSaver
         overrides the project description
       group members
         does not export group members if it has no permission
-        does not export group members as master
+        does not export group members as maintainer
         exports group members as group owner
         as admin
           exports group members as admin
@@ -1690,7 +1690,7 @@ GroupsController
         and logged in as Developer
           behaves like member without ability to create subgroups
             renders the 404 page (PENDING: around hook at ./spec/spec_helper.rb:186 did not execute the example)
-        and logged in as Master
+        and logged in as Maintainer
           behaves like member without ability to create subgroups
             renders the 404 page (PENDING: around hook at ./spec/spec_helper.rb:186 did not execute the example)
       and can_create_group is false
@@ -1706,7 +1706,7 @@ GroupsController
         and logged in as Developer
           behaves like member without ability to create subgroups
             renders the 404 page (PENDING: around hook at ./spec/spec_helper.rb:186 did not execute the example)
-        and logged in as Master
+        and logged in as Maintainer
           behaves like member without ability to create subgroups
             renders the 404 page (PENDING: around hook at ./spec/spec_helper.rb:186 did not execute the example)
   GET #activity
@@ -2324,7 +2324,7 @@ Editing file blob
         shows blob editor with same branch
       with protected branch
         shows blob editor with patch branch
-    as master
+    as maintainer
       shows blob editor with same branch
 
 Boards::Lists::MoveService
@@ -2880,7 +2880,7 @@ API::V3::Environments
     won't update the external_url if only the name is passed
     returns a 404 if the environment does not exist
   DELETE /projects/:id/environments/:environment_id
-    as a master
+    as a maintainer
       returns a 200 for an existing environment
       returns a 404 for non existing id
     a non member
@@ -3001,11 +3001,11 @@ LfsFileLock
   #can_be_unlocked_by?
     when it's forced
       can be unlocked by the author
-      can be unlocked by a master
+      can be unlocked by a maintainer
       can't be unlocked by other user
     when it isn't forced
       can be unlocked by the author
-      can't be unlocked by a master
+      can't be unlocked by a maintainer
       can't be unlocked by other user
 
 Gitlab::Ci::Config::Entry::Boolean
@@ -3069,7 +3069,7 @@ Pending: (Failures listed here are expected and do not affect your suite's statu
      # around hook at ./spec/spec_helper.rb:186 did not execute the example
      # ./spec/controllers/groups_controller_spec.rb:25
 
-  5) GroupsController GET #new when creating subgroups and can_create_group is true and logged in as Master behaves like member without ability to create subgroups renders the 404 page
+  5) GroupsController GET #new when creating subgroups and can_create_group is true and logged in as Maintainer behaves like member without ability to create subgroups renders the 404 page
      # around hook at ./spec/spec_helper.rb:186 did not execute the example
      # ./spec/controllers/groups_controller_spec.rb:25
 
@@ -3089,7 +3089,7 @@ Pending: (Failures listed here are expected and do not affect your suite's statu
      # around hook at ./spec/spec_helper.rb:186 did not execute the example
      # ./spec/controllers/groups_controller_spec.rb:25
 
-  10) GroupsController GET #new when creating subgroups and can_create_group is false and logged in as Master behaves like member without ability to create subgroups renders the 404 page
+  10) GroupsController GET #new when creating subgroups and can_create_group is false and logged in as Maintainer behaves like member without ability to create subgroups renders the 404 page
      # around hook at ./spec/spec_helper.rb:186 did not execute the example
      # ./spec/controllers/groups_controller_spec.rb:25
 
@@ -3237,7 +3237,7 @@ Pending: (Failures listed here are expected and do not affect your suite's statu
      # around hook at ./spec/spec_helper.rb:190 did not execute the example
      # ./spec/services/groups/transfer_service_spec.rb:212
 
-  47) Groups::TransferService#execute when transferring a subgroup into another group when the group is allowed to be transferred should update parent group to the new parent 
+  47) Groups::TransferService#execute when transferring a subgroup into another group when the group is allowed to be transferred should update parent group to the new parent
      # around hook at ./spec/spec_helper.rb:190 did not execute the example
      # ./spec/services/groups/transfer_service_spec.rb:216
 
@@ -3435,10 +3435,10 @@ section_end:1522927515:after_script
 section_end:1522927516:archive_cache
 section_start:1522927516:upload_artifacts
 Uploading artifacts...
-coverage/: found 5 matching files                  
-knapsack/: found 5 matching files                  
-rspec_flaky/: found 4 matching files               
-WARNING: tmp/capybara/: no matching files          
+coverage/: found 5 matching files                 
+knapsack/: found 5 matching files                 
+rspec_flaky/: found 4 matching files              
+WARNING: tmp/capybara/: no matching files         
 Uploading artifacts to coordinator... ok            id=61303283 responseStatus=201 Created token=rusBKvxM
 section_end:1522927520:upload_artifacts
 Job succeeded
diff --git a/spec/helpers/markup_helper_spec.rb b/spec/helpers/markup_helper_spec.rb
index d5ed5c59c61..597648b064d 100644
--- a/spec/helpers/markup_helper_spec.rb
+++ b/spec/helpers/markup_helper_spec.rb
@@ -11,7 +11,7 @@ describe MarkupHelper do
 
   before do
     # Ensure the generated reference links aren't redacted
-    project.add_master(user)
+    project.add_maintainer(user)
 
     # Helper expects a @project instance variable
     helper.instance_variable_set(:@project, project)
diff --git a/spec/helpers/notes_helper_spec.rb b/spec/helpers/notes_helper_spec.rb
index b992bdb4a5e..21461e46cf4 100644
--- a/spec/helpers/notes_helper_spec.rb
+++ b/spec/helpers/notes_helper_spec.rb
@@ -6,18 +6,18 @@ describe NotesHelper do
   let(:owner) { create(:owner) }
   let(:group) { create(:group) }
   let(:project) { create(:project, namespace: group) }
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:reporter) { create(:user) }
   let(:guest) { create(:user) }
 
   let(:owner_note) { create(:note, author: owner, project: project) }
-  let(:master_note) { create(:note, author: master, project: project) }
+  let(:maintainer_note) { create(:note, author: maintainer, project: project) }
   let(:reporter_note) { create(:note, author: reporter, project: project) }
-  let!(:notes) { [owner_note, master_note, reporter_note] }
+  let!(:notes) { [owner_note, maintainer_note, reporter_note] }
 
   before do
     group.add_owner(owner)
-    project.add_master(master)
+    project.add_maintainer(maintainer)
     project.add_reporter(reporter)
     project.add_guest(guest)
   end
@@ -25,16 +25,16 @@ describe NotesHelper do
   describe "#notes_max_access_for_users" do
     it 'returns access levels' do
       expect(helper.note_max_access_for_user(owner_note)).to eq(Gitlab::Access::OWNER)
-      expect(helper.note_max_access_for_user(master_note)).to eq(Gitlab::Access::MASTER)
+      expect(helper.note_max_access_for_user(maintainer_note)).to eq(Gitlab::Access::MAINTAINER)
       expect(helper.note_max_access_for_user(reporter_note)).to eq(Gitlab::Access::REPORTER)
     end
 
     it 'handles access in different projects' do
       second_project = create(:project)
-      second_project.add_reporter(master)
-      other_note = create(:note, author: master, project: second_project)
+      second_project.add_reporter(maintainer)
+      other_note = create(:note, author: maintainer, project: second_project)
 
-      expect(helper.note_max_access_for_user(master_note)).to eq(Gitlab::Access::MASTER)
+      expect(helper.note_max_access_for_user(maintainer_note)).to eq(Gitlab::Access::MAINTAINER)
       expect(helper.note_max_access_for_user(other_note)).to eq(Gitlab::Access::REPORTER)
     end
   end
diff --git a/spec/javascripts/fixtures/commit.rb b/spec/javascripts/fixtures/commit.rb
index 351db6ba184..24ab8159a18 100644
--- a/spec/javascripts/fixtures/commit.rb
+++ b/spec/javascripts/fixtures/commit.rb
@@ -14,7 +14,7 @@ describe Projects::CommitController, '(JavaScript fixtures)', type: :controller
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     sign_in(user)
   end
 
diff --git a/spec/javascripts/fixtures/groups.rb b/spec/javascripts/fixtures/groups.rb
index 35be52fbf97..a2035ceae15 100644
--- a/spec/javascripts/fixtures/groups.rb
+++ b/spec/javascripts/fixtures/groups.rb
@@ -13,7 +13,7 @@ describe 'Groups (JavaScript fixtures)', type: :controller do
   end
 
   before do
-    group.add_master(admin)
+    group.add_maintainer(admin)
     sign_in(admin)
   end
 
diff --git a/spec/javascripts/fixtures/projects.rb b/spec/javascripts/fixtures/projects.rb
index e8865b04874..57c78182abc 100644
--- a/spec/javascripts/fixtures/projects.rb
+++ b/spec/javascripts/fixtures/projects.rb
@@ -17,7 +17,7 @@ describe 'Projects (JavaScript fixtures)', type: :controller do
   end
 
   before do
-    project.add_master(admin)
+    project.add_maintainer(admin)
     sign_in(admin)
   end
 
diff --git a/spec/lib/banzai/filter/redactor_filter_spec.rb b/spec/lib/banzai/filter/redactor_filter_spec.rb
index 9a2e521fdcf..919825a6102 100644
--- a/spec/lib/banzai/filter/redactor_filter_spec.rb
+++ b/spec/lib/banzai/filter/redactor_filter_spec.rb
@@ -46,7 +46,7 @@ describe Banzai::Filter::RedactorFilter do
       it 'allows permitted Project references' do
         user = create(:user)
         project = create(:project)
-        project.add_master(user)
+        project.add_maintainer(user)
 
         link = reference_link(project: project.id, reference_type: 'test')
         doc = filter(link, current_user: user)
diff --git a/spec/lib/gitlab/checks/change_access_spec.rb b/spec/lib/gitlab/checks/change_access_spec.rb
index 1cb8143a9e9..7c04aa27971 100644
--- a/spec/lib/gitlab/checks/change_access_spec.rb
+++ b/spec/lib/gitlab/checks/change_access_spec.rb
@@ -54,7 +54,7 @@ describe Gitlab::Checks::ChangeAccess do
 
         context 'as maintainer' do
           before do
-            project.add_master(user)
+            project.add_maintainer(user)
           end
 
           context 'deletion' do
@@ -144,7 +144,7 @@ describe Gitlab::Checks::ChangeAccess do
 
           context 'if the user is allowed to delete protected branches' do
             before do
-              project.add_master(user)
+              project.add_maintainer(user)
             end
 
             context 'through the web interface' do
diff --git a/spec/lib/gitlab/ci/pipeline/chain/validate/abilities_spec.rb b/spec/lib/gitlab/ci/pipeline/chain/validate/abilities_spec.rb
index a973ccda8de..8ba56d73838 100644
--- a/spec/lib/gitlab/ci/pipeline/chain/validate/abilities_spec.rb
+++ b/spec/lib/gitlab/ci/pipeline/chain/validate/abilities_spec.rb
@@ -99,9 +99,9 @@ describe Gitlab::Ci::Pipeline::Chain::Validate::Abilities do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it { is_expected.to be_truthy }
diff --git a/spec/lib/gitlab/ci/status/build/play_spec.rb b/spec/lib/gitlab/ci/status/build/play_spec.rb
index e2bb378f663..02f8c4c114b 100644
--- a/spec/lib/gitlab/ci/status/build/play_spec.rb
+++ b/spec/lib/gitlab/ci/status/build/play_spec.rb
@@ -46,7 +46,7 @@ describe Gitlab::Ci::Status::Build::Play do
       context 'when user can not push to the branch' do
         before do
           build.project.add_developer(user)
-          create(:protected_branch, :masters_can_push,
+          create(:protected_branch, :maintainers_can_push,
                  name: build.ref, project: project)
         end
 
diff --git a/spec/lib/gitlab/ci/status/stage/common_spec.rb b/spec/lib/gitlab/ci/status/stage/common_spec.rb
index 6ec35f8da7e..bb2d0a2c75c 100644
--- a/spec/lib/gitlab/ci/status/stage/common_spec.rb
+++ b/spec/lib/gitlab/ci/status/stage/common_spec.rb
@@ -27,7 +27,7 @@ describe Gitlab::Ci::Status::Stage::Common do
 
   context 'when user has permission to read pipeline' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it 'has details' do
diff --git a/spec/lib/gitlab/closing_issue_extractor_spec.rb b/spec/lib/gitlab/closing_issue_extractor_spec.rb
index 8d4862932b2..3a0688b7cbb 100644
--- a/spec/lib/gitlab/closing_issue_extractor_spec.rb
+++ b/spec/lib/gitlab/closing_issue_extractor_spec.rb
@@ -15,7 +15,7 @@ describe Gitlab::ClosingIssueExtractor do
   before do
     project.add_developer(project.creator)
     project.add_developer(project2.creator)
-    project2.add_master(project.creator)
+    project2.add_maintainer(project.creator)
   end
 
   describe "#closed_by_message" do
@@ -298,7 +298,7 @@ describe Gitlab::ClosingIssueExtractor do
       context 'with an external issue tracker reference' do
         it 'extracts the referenced issue' do
           jira_project = create(:jira_project, name: 'JIRA_EXT1')
-          jira_project.add_master(jira_project.creator)
+          jira_project.add_maintainer(jira_project.creator)
           jira_issue = ExternalIssue.new("#{jira_project.name}-1", project: jira_project)
           closing_issue_extractor = described_class.new(jira_project, jira_project.creator)
           message = "Resolve #{jira_issue.to_reference}"
diff --git a/spec/lib/gitlab/cycle_analytics/permissions_spec.rb b/spec/lib/gitlab/cycle_analytics/permissions_spec.rb
index 6de4bd3dc7c..f670c7f6c75 100644
--- a/spec/lib/gitlab/cycle_analytics/permissions_spec.rb
+++ b/spec/lib/gitlab/cycle_analytics/permissions_spec.rb
@@ -36,9 +36,9 @@ describe Gitlab::CycleAnalytics::Permissions do
     end
   end
 
-  context 'user is master' do
+  context 'user is maintainer' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it 'has permissions to issue stage' do
diff --git a/spec/lib/gitlab/git_access_spec.rb b/spec/lib/gitlab/git_access_spec.rb
index 6d11efb42c8..832db2bd906 100644
--- a/spec/lib/gitlab/git_access_spec.rb
+++ b/spec/lib/gitlab/git_access_spec.rb
@@ -40,7 +40,7 @@ describe Gitlab::GitAccess do
 
       before do
         disable_protocol('http')
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'blocks http push and pull' do
@@ -105,7 +105,7 @@ describe Gitlab::GitAccess do
         context 'when actor is a User' do
           context 'when the User can read the project' do
             before do
-              project.add_master(user)
+              project.add_maintainer(user)
             end
 
             it 'allows push and pull access' do
@@ -246,7 +246,7 @@ describe Gitlab::GitAccess do
 
   shared_examples '#check with a key that is not valid' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'key is too small' do
@@ -299,7 +299,7 @@ describe Gitlab::GitAccess do
 
   describe '#add_project_moved_message!', :clean_gitlab_redis_shared_state do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when a redirect was not followed to find the project' do
@@ -327,7 +327,7 @@ describe Gitlab::GitAccess do
 
   describe '#check_authentication_abilities!' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when download' do
@@ -373,7 +373,7 @@ describe Gitlab::GitAccess do
 
   describe '#check_command_disabled!' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'over http' do
@@ -521,8 +521,8 @@ describe Gitlab::GitAccess do
   end
 
   describe '#check_download_access!' do
-    it 'allows masters to pull' do
-      project.add_master(user)
+    it 'allows maintainers to pull' do
+      project.add_maintainer(user)
 
       expect { pull_access_check }.not_to raise_error
     end
@@ -534,7 +534,7 @@ describe Gitlab::GitAccess do
     end
 
     it 'disallows blocked users to pull' do
-      project.add_master(user)
+      project.add_maintainer(user)
       user.block
 
       expect { pull_access_check }.to raise_unauthorized('Your account has been blocked.')
@@ -805,7 +805,7 @@ describe Gitlab::GitAccess do
         merge_into_protected_branch: true
       },
 
-      master: {
+      maintainer: {
         push_new_branch: true,
         push_master: true,
         push_protected_branch: true,
@@ -910,7 +910,7 @@ describe Gitlab::GitAccess do
         end
 
         run_permission_checks(permissions_matrix.deep_merge(developer: { push_protected_branch: false, push_all: false, merge_into_protected_branch: false },
-                                                            master: { push_protected_branch: false, push_all: false, merge_into_protected_branch: false },
+                                                            maintainer: { push_protected_branch: false, push_all: false, merge_into_protected_branch: false },
                                                             admin: { push_protected_branch: false, push_all: false, merge_into_protected_branch: false }))
       end
     end
@@ -982,7 +982,7 @@ describe Gitlab::GitAccess do
     let(:project) { create(:project, :repository, :read_only) }
 
     it 'denies push access' do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       expect { push_access_check }.to raise_unauthorized('The repository is temporarily read-only. Please try again later.')
     end
@@ -1112,9 +1112,9 @@ describe Gitlab::GitAccess do
       it_behaves_like 'access after accepting terms'
     end
 
-    describe 'as a master of the project' do
+    describe 'as a maintainer of the project' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'access after accepting terms'
diff --git a/spec/lib/gitlab/google_code_import/importer_spec.rb b/spec/lib/gitlab/google_code_import/importer_spec.rb
index 017facd0f5e..031f57dbc65 100644
--- a/spec/lib/gitlab/google_code_import/importer_spec.rb
+++ b/spec/lib/gitlab/google_code_import/importer_spec.rb
@@ -15,7 +15,7 @@ describe Gitlab::GoogleCodeImport::Importer do
   subject { described_class.new(project) }
 
   before do
-    project.add_master(project.creator)
+    project.add_maintainer(project.creator)
     project.create_import_data(data: import_data)
   end
 
diff --git a/spec/lib/gitlab/import_export/members_mapper_spec.rb b/spec/lib/gitlab/import_export/members_mapper_spec.rb
index 246f009ad27..67e4c289906 100644
--- a/spec/lib/gitlab/import_export/members_mapper_spec.rb
+++ b/spec/lib/gitlab/import_export/members_mapper_spec.rb
@@ -111,7 +111,7 @@ describe Gitlab::ImportExport::MembersMapper do
       end
 
       it 'maps the project member if it already exists' do
-        project.add_master(user2)
+        project.add_maintainer(user2)
 
         expect(members_mapper.map[exported_user_id]).to eq(user2.id)
       end
diff --git a/spec/lib/gitlab/import_export/project_tree_saver_spec.rb b/spec/lib/gitlab/import_export/project_tree_saver_spec.rb
index 2b8a11ce8f9..fec8a2af9ab 100644
--- a/spec/lib/gitlab/import_export/project_tree_saver_spec.rb
+++ b/spec/lib/gitlab/import_export/project_tree_saver_spec.rb
@@ -9,7 +9,7 @@ describe Gitlab::ImportExport::ProjectTreeSaver do
     let!(:project) { setup_project }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       allow_any_instance_of(Gitlab::ImportExport).to receive(:storage_path).and_return(export_path)
       allow_any_instance_of(MergeRequest).to receive(:source_branch_sha).and_return('ABCD')
       allow_any_instance_of(MergeRequest).to receive(:target_branch_sha).and_return('DCBA')
@@ -217,8 +217,8 @@ describe Gitlab::ImportExport::ProjectTreeSaver do
           expect(member_emails).not_to include('group@member.com')
         end
 
-        it 'does not export group members as master' do
-          Group.first.add_master(user)
+        it 'does not export group members as maintainer' do
+          Group.first.add_maintainer(user)
 
           expect(member_emails).not_to include('group@member.com')
         end
diff --git a/spec/lib/gitlab/import_export/repo_saver_spec.rb b/spec/lib/gitlab/import_export/repo_saver_spec.rb
index 187ec8fcfa2..5a646b4aac8 100644
--- a/spec/lib/gitlab/import_export/repo_saver_spec.rb
+++ b/spec/lib/gitlab/import_export/repo_saver_spec.rb
@@ -9,7 +9,7 @@ describe Gitlab::ImportExport::RepoSaver do
     let(:bundler) { described_class.new(project: project, shared: shared) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       allow_any_instance_of(Gitlab::ImportExport).to receive(:storage_path).and_return(export_path)
     end
 
diff --git a/spec/lib/gitlab/import_export/wiki_repo_saver_spec.rb b/spec/lib/gitlab/import_export/wiki_repo_saver_spec.rb
index 24bc231d5a0..441aa1defe6 100644
--- a/spec/lib/gitlab/import_export/wiki_repo_saver_spec.rb
+++ b/spec/lib/gitlab/import_export/wiki_repo_saver_spec.rb
@@ -10,7 +10,7 @@ describe Gitlab::ImportExport::WikiRepoSaver do
     let!(:project_wiki) { ProjectWiki.new(project, user) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       allow_any_instance_of(Gitlab::ImportExport).to receive(:storage_path).and_return(export_path)
       project_wiki.wiki
       project_wiki.create_page("index", "test content")
diff --git a/spec/lib/gitlab/middleware/go_spec.rb b/spec/lib/gitlab/middleware/go_spec.rb
index b24c9882c0c..7a3a9ab875b 100644
--- a/spec/lib/gitlab/middleware/go_spec.rb
+++ b/spec/lib/gitlab/middleware/go_spec.rb
@@ -79,7 +79,7 @@ describe Gitlab::Middleware::Go do
                 let(:current_user) { project.creator }
 
                 before do
-                  project.team.add_master(current_user)
+                  project.team.add_maintainer(current_user)
                 end
 
                 shared_examples 'authenticated' do
diff --git a/spec/lib/gitlab/project_authorizations_spec.rb b/spec/lib/gitlab/project_authorizations_spec.rb
index f3cd6961e94..00c62c7bf96 100644
--- a/spec/lib/gitlab/project_authorizations_spec.rb
+++ b/spec/lib/gitlab/project_authorizations_spec.rb
@@ -41,7 +41,7 @@ describe Gitlab::ProjectAuthorizations do
   it 'includes the correct access levels' do
     mapping = map_access_levels(authorizations)
 
-    expect(mapping[owned_project.id]).to eq(Gitlab::Access::MASTER)
+    expect(mapping[owned_project.id]).to eq(Gitlab::Access::MAINTAINER)
     expect(mapping[other_project.id]).to eq(Gitlab::Access::REPORTER)
     expect(mapping[group_project.id]).to eq(Gitlab::Access::DEVELOPER)
   end
@@ -62,11 +62,11 @@ describe Gitlab::ProjectAuthorizations do
       end
 
       it 'uses the greatest access level when a user is a member of a nested group' do
-        nested_group.add_master(user)
+        nested_group.add_maintainer(user)
 
         mapping = map_access_levels(authorizations)
 
-        expect(mapping[nested_project.id]).to eq(Gitlab::Access::MASTER)
+        expect(mapping[nested_project.id]).to eq(Gitlab::Access::MAINTAINER)
       end
     end
   end
diff --git a/spec/lib/gitlab/project_search_results_spec.rb b/spec/lib/gitlab/project_search_results_spec.rb
index 50224bde722..767a3092c73 100644
--- a/spec/lib/gitlab/project_search_results_spec.rb
+++ b/spec/lib/gitlab/project_search_results_spec.rb
@@ -385,7 +385,7 @@ describe Gitlab::ProjectSearchResults do
       let!(:private_project) { create(:project, :private, :repository, creator: creator, namespace: creator.namespace) }
       let(:team_master) do
         user = create(:user, username: 'private-project-master')
-        private_project.add_master(user)
+        private_project.add_maintainer(user)
         user
       end
       let(:team_reporter) do
diff --git a/spec/lib/gitlab/slash_commands/issue_move_spec.rb b/spec/lib/gitlab/slash_commands/issue_move_spec.rb
index d41441c9472..9a990e1fad7 100644
--- a/spec/lib/gitlab/slash_commands/issue_move_spec.rb
+++ b/spec/lib/gitlab/slash_commands/issue_move_spec.rb
@@ -27,7 +27,7 @@ describe Gitlab::SlashCommands::IssueMove, service: true do
     set(:other_project) { create(:project, namespace: project.namespace) }
 
     before do
-      [project, other_project].each { |prj| prj.add_master(user) }
+      [project, other_project].each { |prj| prj.add_maintainer(user) }
     end
 
     subject { described_class.new(project, chat_name) }
diff --git a/spec/lib/gitlab/slash_commands/issue_new_spec.rb b/spec/lib/gitlab/slash_commands/issue_new_spec.rb
index 8e7df946529..724c76ade6e 100644
--- a/spec/lib/gitlab/slash_commands/issue_new_spec.rb
+++ b/spec/lib/gitlab/slash_commands/issue_new_spec.rb
@@ -8,7 +8,7 @@ describe Gitlab::SlashCommands::IssueNew do
     let(:regex_match) { described_class.match("issue create bird is the word") }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     subject do
diff --git a/spec/lib/gitlab/slash_commands/issue_search_spec.rb b/spec/lib/gitlab/slash_commands/issue_search_spec.rb
index 189e9592f1b..47787307990 100644
--- a/spec/lib/gitlab/slash_commands/issue_search_spec.rb
+++ b/spec/lib/gitlab/slash_commands/issue_search_spec.rb
@@ -22,7 +22,7 @@ describe Gitlab::SlashCommands::IssueSearch do
 
     context 'the user has access' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'returns all results' do
diff --git a/spec/lib/gitlab/slash_commands/issue_show_spec.rb b/spec/lib/gitlab/slash_commands/issue_show_spec.rb
index b1db1638237..5c4ba2736ba 100644
--- a/spec/lib/gitlab/slash_commands/issue_show_spec.rb
+++ b/spec/lib/gitlab/slash_commands/issue_show_spec.rb
@@ -9,7 +9,7 @@ describe Gitlab::SlashCommands::IssueShow do
     let(:regex_match) { described_class.match("issue show #{issue.iid}") }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     subject do
diff --git a/spec/lib/gitlab/user_access_spec.rb b/spec/lib/gitlab/user_access_spec.rb
index 0469d984a40..9da06bb40f4 100644
--- a/spec/lib/gitlab/user_access_spec.rb
+++ b/spec/lib/gitlab/user_access_spec.rb
@@ -9,8 +9,8 @@ describe Gitlab::UserAccess do
 
   describe '#can_push_to_branch?' do
     describe 'push to none protected branch' do
-      it 'returns true if user is a master' do
-        project.add_master(user)
+      it 'returns true if user is a maintainer' do
+        project.add_maintainer(user)
 
         expect(access.can_push_to_branch?('random_branch')).to be_truthy
       end
@@ -38,8 +38,8 @@ describe Gitlab::UserAccess do
         expect(access.can_push_to_branch?('master')).to be_truthy
       end
 
-      it 'returns true if user is master' do
-        empty_project.add_master(user)
+      it 'returns true if user is maintainer' do
+        empty_project.add_maintainer(user)
 
         expect(project_access.can_push_to_branch?('master')).to be_truthy
       end
@@ -83,8 +83,8 @@ describe Gitlab::UserAccess do
         expect(access.can_push_to_branch?(branch.name)).to be_truthy
       end
 
-      it 'returns true if user is a master' do
-        project.add_master(user)
+      it 'returns true if user is a maintainer' do
+        project.add_maintainer(user)
 
         expect(access.can_push_to_branch?(branch.name)).to be_truthy
       end
@@ -113,8 +113,8 @@ describe Gitlab::UserAccess do
         @branch = create :protected_branch, :developers_can_push, project: project
       end
 
-      it 'returns true if user is a master' do
-        project.add_master(user)
+      it 'returns true if user is a maintainer' do
+        project.add_maintainer(user)
 
         expect(access.can_push_to_branch?(@branch.name)).to be_truthy
       end
@@ -170,8 +170,8 @@ describe Gitlab::UserAccess do
         @branch = create :protected_branch, :developers_can_merge, project: project
       end
 
-      it 'returns true if user is a master' do
-        project.add_master(user)
+      it 'returns true if user is a maintainer' do
+        project.add_maintainer(user)
 
         expect(access.can_merge_to_branch?(@branch.name)).to be_truthy
       end
@@ -192,8 +192,8 @@ describe Gitlab::UserAccess do
 
   describe '#can_create_tag?' do
     describe 'push to none protected tag' do
-      it 'returns true if user is a master' do
-        project.add_user(user, :master)
+      it 'returns true if user is a maintainer' do
+        project.add_user(user, :maintainer)
 
         expect(access.can_create_tag?('random_tag')).to be_truthy
       end
@@ -215,8 +215,8 @@ describe Gitlab::UserAccess do
       let(:tag) { create(:protected_tag, project: project, name: "test") }
       let(:not_existing_tag) { create :protected_tag, project: project }
 
-      it 'returns true if user is a master' do
-        project.add_user(user, :master)
+      it 'returns true if user is a maintainer' do
+        project.add_user(user, :maintainer)
 
         expect(access.can_create_tag?(tag.name)).to be_truthy
       end
@@ -239,8 +239,8 @@ describe Gitlab::UserAccess do
         @tag = create(:protected_tag, :developers_can_create, project: project)
       end
 
-      it 'returns true if user is a master' do
-        project.add_user(user, :master)
+      it 'returns true if user is a maintainer' do
+        project.add_user(user, :maintainer)
 
         expect(access.can_create_tag?(@tag.name)).to be_truthy
       end
@@ -261,8 +261,8 @@ describe Gitlab::UserAccess do
 
   describe '#can_delete_branch?' do
     describe 'delete unprotected branch' do
-      it 'returns true if user is a master' do
-        project.add_user(user, :master)
+      it 'returns true if user is a maintainer' do
+        project.add_user(user, :maintainer)
 
         expect(access.can_delete_branch?('random_branch')).to be_truthy
       end
@@ -283,8 +283,8 @@ describe Gitlab::UserAccess do
     describe 'delete protected branch' do
       let(:branch) { create(:protected_branch, project: project, name: "test") }
 
-      it 'returns true if user is a master' do
-        project.add_user(user, :master)
+      it 'returns true if user is a maintainer' do
+        project.add_user(user, :maintainer)
 
         expect(access.can_delete_branch?(branch.name)).to be_truthy
       end
diff --git a/spec/mailers/notify_spec.rb b/spec/mailers/notify_spec.rb
index effbfb1ba84..581132b6672 100644
--- a/spec/mailers/notify_spec.rb
+++ b/spec/mailers/notify_spec.rb
@@ -552,7 +552,7 @@ describe Notify do
     describe 'project access requested' do
       let(:project) do
         create(:project, :public, :access_requestable) do |project|
-          project.add_master(project.owner)
+          project.add_maintainer(project.owner)
         end
       end
 
@@ -627,8 +627,8 @@ describe Notify do
     end
 
     describe 'project invitation' do
-      let(:master) { create(:user).tap { |u| project.add_master(u) } }
-      let(:project_member) { invite_to_project(project, inviter: master) }
+      let(:maintainer) { create(:user).tap { |u| project.add_maintainer(u) } }
+      let(:project_member) { invite_to_project(project, inviter: maintainer) }
 
       subject { described_class.member_invited_email('project', project_member.id, project_member.invite_token) }
 
@@ -647,9 +647,9 @@ describe Notify do
 
     describe 'project invitation accepted' do
       let(:invited_user) { create(:user, name: 'invited user') }
-      let(:master) { create(:user).tap { |u| project.add_master(u) } }
+      let(:maintainer) { create(:user).tap { |u| project.add_maintainer(u) } }
       let(:project_member) do
-        invitee = invite_to_project(project, inviter: master)
+        invitee = invite_to_project(project, inviter: maintainer)
         invitee.accept_invite!(invited_user)
         invitee
       end
@@ -670,14 +670,14 @@ describe Notify do
     end
 
     describe 'project invitation declined' do
-      let(:master) { create(:user).tap { |u| project.add_master(u) } }
+      let(:maintainer) { create(:user).tap { |u| project.add_maintainer(u) } }
       let(:project_member) do
-        invitee = invite_to_project(project, inviter: master)
+        invitee = invite_to_project(project, inviter: maintainer)
         invitee.decline_invite!
         invitee
       end
 
-      subject { described_class.member_invite_declined_email('project', project.id, project_member.invite_email, master.id) }
+      subject { described_class.member_invite_declined_email('project', project.id, project_member.invite_email, maintainer.id) }
 
       it_behaves_like 'an email sent from GitLab'
       it_behaves_like 'it should not have Gmail Actions links'
diff --git a/spec/models/concerns/issuable_spec.rb b/spec/models/concerns/issuable_spec.rb
index 1cfd526834c..ec6374f3963 100644
--- a/spec/models/concerns/issuable_spec.rb
+++ b/spec/models/concerns/issuable_spec.rb
@@ -549,7 +549,7 @@ describe Issuable do
     let(:project) { create(:project, namespace: group) }
     let(:other_project) { create(:project) }
     let(:owner) { create(:owner) }
-    let(:master) { create(:user) }
+    let(:maintainer) { create(:user) }
     let(:reporter) { create(:user) }
     let(:guest) { create(:user) }
 
@@ -558,7 +558,7 @@ describe Issuable do
 
     before do
       group.add_owner(owner)
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.add_reporter(reporter)
       project.add_guest(guest)
       project.add_guest(contributor)
@@ -570,8 +570,8 @@ describe Issuable do
     let(:merged_mr_other_project) { create(:merge_request, :merged, author: first_time_contributor, target_project: other_project, source_project: other_project) }
 
     context "for merge requests" do
-      it "is false for MASTER" do
-        mr = create(:merge_request, author: master, target_project: project, source_project: project)
+      it "is false for MAINTAINER" do
+        mr = create(:merge_request, author: maintainer, target_project: project, source_project: project)
 
         expect(mr).not_to be_first_contribution
       end
diff --git a/spec/models/concerns/protected_ref_access_spec.rb b/spec/models/concerns/protected_ref_access_spec.rb
index a62ca391e25..ce602337647 100644
--- a/spec/models/concerns/protected_ref_access_spec.rb
+++ b/spec/models/concerns/protected_ref_access_spec.rb
@@ -2,7 +2,7 @@ require 'spec_helper'
 
 describe ProtectedRefAccess do
   subject(:protected_ref_access) do
-    create(:protected_branch, :masters_can_push).push_access_levels.first
+    create(:protected_branch, :maintainers_can_push).push_access_levels.first
   end
 
   let(:project) { protected_ref_access.project }
@@ -14,11 +14,11 @@ describe ProtectedRefAccess do
       expect(protected_ref_access.check_access(admin)).to be_truthy
     end
 
-    it 'is true for masters' do
-      master = create(:user)
-      project.add_master(master)
+    it 'is true for maintainers' do
+      maintainer = create(:user)
+      project.add_maintainer(maintainer)
 
-      expect(protected_ref_access.check_access(master)).to be_truthy
+      expect(protected_ref_access.check_access(maintainer)).to be_truthy
     end
 
     it 'is for developers of the project' do
diff --git a/spec/models/concerns/resolvable_discussion_spec.rb b/spec/models/concerns/resolvable_discussion_spec.rb
index 2f9f63ce7e0..97b046b0f21 100644
--- a/spec/models/concerns/resolvable_discussion_spec.rb
+++ b/spec/models/concerns/resolvable_discussion_spec.rb
@@ -190,7 +190,7 @@ describe Discussion, ResolvableDiscussion do
 
         context "when the signed in user can push to the project" do
           before do
-            subject.project.add_master(current_user)
+            subject.project.add_maintainer(current_user)
           end
 
           it "returns true" do
diff --git a/spec/models/group_spec.rb b/spec/models/group_spec.rb
index aeec485358e..0729eb99e78 100644
--- a/spec/models/group_spec.rb
+++ b/spec/models/group_spec.rb
@@ -177,7 +177,7 @@ describe Group do
 
     describe 'when the user has access to a group' do
       before do
-        group.add_user(user, Gitlab::Access::MASTER)
+        group.add_user(user, Gitlab::Access::MAINTAINER)
       end
 
       it { is_expected.to eq([group]) }
@@ -229,10 +229,10 @@ describe Group do
     let(:user) { create(:user) }
 
     before do
-      group.add_user(user, GroupMember::MASTER)
+      group.add_user(user, GroupMember::MAINTAINER)
     end
 
-    it { expect(group.group_members.masters.map(&:user)).to include(user) }
+    it { expect(group.group_members.maintainers.map(&:user)).to include(user) }
   end
 
   describe '#add_users' do
@@ -254,7 +254,7 @@ describe Group do
     let(:user) { create(:user) }
 
     before do
-      group.add_user(user, GroupMember::MASTER)
+      group.add_user(user, GroupMember::MAINTAINER)
     end
 
     it "is true if avatar is image" do
@@ -274,7 +274,7 @@ describe Group do
 
     context 'when avatar file is uploaded' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'shows correct avatar url' do
@@ -317,7 +317,7 @@ describe Group do
     end
 
     it { expect(group.has_owner?(@members[:owner])).to be_truthy }
-    it { expect(group.has_owner?(@members[:master])).to be_falsey }
+    it { expect(group.has_owner?(@members[:maintainer])).to be_falsey }
     it { expect(group.has_owner?(@members[:developer])).to be_falsey }
     it { expect(group.has_owner?(@members[:reporter])).to be_falsey }
     it { expect(group.has_owner?(@members[:guest])).to be_falsey }
@@ -325,19 +325,19 @@ describe Group do
     it { expect(group.has_owner?(nil)).to be_falsey }
   end
 
-  describe '#has_master?' do
+  describe '#has_maintainer?' do
     before do
       @members = setup_group_members(group)
-      create(:group_member, :invited, :master, group: group)
+      create(:group_member, :invited, :maintainer, group: group)
     end
 
-    it { expect(group.has_master?(@members[:owner])).to be_falsey }
-    it { expect(group.has_master?(@members[:master])).to be_truthy }
-    it { expect(group.has_master?(@members[:developer])).to be_falsey }
-    it { expect(group.has_master?(@members[:reporter])).to be_falsey }
-    it { expect(group.has_master?(@members[:guest])).to be_falsey }
-    it { expect(group.has_master?(@members[:requester])).to be_falsey }
-    it { expect(group.has_master?(nil)).to be_falsey }
+    it { expect(group.has_maintainer?(@members[:owner])).to be_falsey }
+    it { expect(group.has_maintainer?(@members[:maintainer])).to be_truthy }
+    it { expect(group.has_maintainer?(@members[:developer])).to be_falsey }
+    it { expect(group.has_maintainer?(@members[:reporter])).to be_falsey }
+    it { expect(group.has_maintainer?(@members[:guest])).to be_falsey }
+    it { expect(group.has_maintainer?(@members[:requester])).to be_falsey }
+    it { expect(group.has_maintainer?(nil)).to be_falsey }
   end
 
   describe '#lfs_enabled?' do
@@ -401,7 +401,7 @@ describe Group do
   def setup_group_members(group)
     members = {
       owner: create(:user),
-      master: create(:user),
+      maintainer: create(:user),
       developer: create(:user),
       reporter: create(:user),
       guest: create(:user),
@@ -409,7 +409,7 @@ describe Group do
     }
 
     group.add_user(members[:owner], GroupMember::OWNER)
-    group.add_user(members[:master], GroupMember::MASTER)
+    group.add_user(members[:maintainer], GroupMember::MAINTAINER)
     group.add_user(members[:developer], GroupMember::DEVELOPER)
     group.add_user(members[:reporter], GroupMember::REPORTER)
     group.add_user(members[:guest], GroupMember::GUEST)
@@ -439,25 +439,25 @@ describe Group do
 
   describe '#members_with_parents', :nested_groups do
     let!(:group) { create(:group, :nested) }
-    let!(:master) { group.parent.add_user(create(:user), GroupMember::MASTER) }
+    let!(:maintainer) { group.parent.add_user(create(:user), GroupMember::MAINTAINER) }
     let!(:developer) { group.add_user(create(:user), GroupMember::DEVELOPER) }
 
     it 'returns parents members' do
       expect(group.members_with_parents).to include(developer)
-      expect(group.members_with_parents).to include(master)
+      expect(group.members_with_parents).to include(maintainer)
     end
   end
 
   describe '#direct_and_indirect_members', :nested_groups do
     let!(:group) { create(:group, :nested) }
     let!(:sub_group) { create(:group, parent: group) }
-    let!(:master) { group.parent.add_user(create(:user), GroupMember::MASTER) }
+    let!(:maintainer) { group.parent.add_user(create(:user), GroupMember::MAINTAINER) }
     let!(:developer) { group.add_user(create(:user), GroupMember::DEVELOPER) }
     let!(:other_developer) { group.add_user(create(:user), GroupMember::DEVELOPER) }
 
     it 'returns parents members' do
       expect(group.direct_and_indirect_members).to include(developer)
-      expect(group.direct_and_indirect_members).to include(master)
+      expect(group.direct_and_indirect_members).to include(maintainer)
     end
 
     it 'returns descendant members' do
@@ -539,14 +539,14 @@ describe Group do
 
   describe '#user_ids_for_project_authorizations' do
     it 'returns the user IDs for which to refresh authorizations' do
-      master = create(:user)
+      maintainer = create(:user)
       developer = create(:user)
 
-      group.add_user(master, GroupMember::MASTER)
+      group.add_user(maintainer, GroupMember::MAINTAINER)
       group.add_user(developer, GroupMember::DEVELOPER)
 
       expect(group.user_ids_for_project_authorizations)
-        .to include(master.id, developer.id)
+        .to include(maintainer.id, developer.id)
     end
   end
 
diff --git a/spec/models/hooks/system_hook_spec.rb b/spec/models/hooks/system_hook_spec.rb
index 8bc45715dcd..01129df1107 100644
--- a/spec/models/hooks/system_hook_spec.rb
+++ b/spec/models/hooks/system_hook_spec.rb
@@ -63,7 +63,7 @@ describe SystemHook do
     end
 
     it "project_create hook" do
-      project.add_master(user)
+      project.add_maintainer(user)
 
       expect(WebMock).to have_requested(:post, system_hook.url).with(
         body: /user_add_to_team/,
@@ -72,7 +72,7 @@ describe SystemHook do
     end
 
     it "project_destroy hook" do
-      project.add_master(user)
+      project.add_maintainer(user)
       project.project_members.destroy_all
 
       expect(WebMock).to have_requested(:post, system_hook.url).with(
@@ -100,7 +100,7 @@ describe SystemHook do
     end
 
     it 'group member create hook' do
-      group.add_master(user)
+      group.add_maintainer(user)
 
       expect(WebMock).to have_requested(:post, system_hook.url).with(
         body: /user_add_to_group/,
@@ -109,7 +109,7 @@ describe SystemHook do
     end
 
     it 'group member destroy hook' do
-      group.add_master(user)
+      group.add_maintainer(user)
       group.group_members.destroy_all
 
       expect(WebMock).to have_requested(:post, system_hook.url).with(
diff --git a/spec/models/issue_spec.rb b/spec/models/issue_spec.rb
index e818fbeb9cf..84edfc3ff00 100644
--- a/spec/models/issue_spec.rb
+++ b/spec/models/issue_spec.rb
@@ -669,7 +669,7 @@ describe Issue do
 
         context 'when the user is the project owner' do
           before do
-            project.add_master(user)
+            project.add_maintainer(user)
           end
 
           it 'returns true for a regular issue' do
diff --git a/spec/models/lfs_file_lock_spec.rb b/spec/models/lfs_file_lock_spec.rb
index ce87b01b49c..e74f342d3eb 100644
--- a/spec/models/lfs_file_lock_spec.rb
+++ b/spec/models/lfs_file_lock_spec.rb
@@ -13,13 +13,13 @@ describe LfsFileLock do
 
   describe '#can_be_unlocked_by?' do
     let(:developer) { create(:user) }
-    let(:master)    { create(:user) }
+    let(:maintainer)    { create(:user) }
 
     before do
       project = lfs_file_lock.project
 
       project.add_developer(developer)
-      project.add_master(master)
+      project.add_maintainer(maintainer)
     end
 
     context "when it's forced" do
@@ -29,8 +29,8 @@ describe LfsFileLock do
         expect(lfs_file_lock.can_be_unlocked_by?(user, true)).to eq(true)
       end
 
-      it 'can be unlocked by a master' do
-        expect(lfs_file_lock.can_be_unlocked_by?(master, true)).to eq(true)
+      it 'can be unlocked by a maintainer' do
+        expect(lfs_file_lock.can_be_unlocked_by?(maintainer, true)).to eq(true)
       end
 
       it "can't be unlocked by other user" do
@@ -45,8 +45,8 @@ describe LfsFileLock do
         expect(lfs_file_lock.can_be_unlocked_by?(user)).to eq(true)
       end
 
-      it "can't be unlocked by a master" do
-        expect(lfs_file_lock.can_be_unlocked_by?(master)).to eq(false)
+      it "can't be unlocked by a maintainer" do
+        expect(lfs_file_lock.can_be_unlocked_by?(maintainer)).to eq(false)
       end
 
       it "can't be unlocked by other user" do
diff --git a/spec/models/member_spec.rb b/spec/models/member_spec.rb
index c64cdf8f812..fca1b1f90d9 100644
--- a/spec/models/member_spec.rb
+++ b/spec/models/member_spec.rb
@@ -62,16 +62,16 @@ describe Member do
       @owner_user = create(:user).tap { |u| group.add_owner(u) }
       @owner = group.members.find_by(user_id: @owner_user.id)
 
-      @master_user = create(:user).tap { |u| project.add_master(u) }
-      @master = project.members.find_by(user_id: @master_user.id)
+      @maintainer_user = create(:user).tap { |u| project.add_maintainer(u) }
+      @maintainer = project.members.find_by(user_id: @maintainer_user.id)
 
       @blocked_user = create(:user).tap do |u|
-        project.add_master(u)
+        project.add_maintainer(u)
         project.add_developer(u)
 
         u.block!
       end
-      @blocked_master = project.members.find_by(user_id: @blocked_user.id, access_level: Gitlab::Access::MASTER)
+      @blocked_maintainer = project.members.find_by(user_id: @blocked_user.id, access_level: Gitlab::Access::MAINTAINER)
       @blocked_developer = project.members.find_by(user_id: @blocked_user.id, access_level: Gitlab::Access::DEVELOPER)
 
       @invited_member = create(:project_member, :developer,
@@ -95,10 +95,10 @@ describe Member do
 
     describe '.access_for_user_ids' do
       it 'returns the right access levels' do
-        users = [@owner_user.id, @master_user.id, @blocked_user.id]
+        users = [@owner_user.id, @maintainer_user.id, @blocked_user.id]
         expected = {
           @owner_user.id => Gitlab::Access::OWNER,
-          @master_user.id => Gitlab::Access::MASTER
+          @maintainer_user.id => Gitlab::Access::MAINTAINER
         }
 
         expect(described_class.access_for_user_ids(users)).to eq(expected)
@@ -106,7 +106,7 @@ describe Member do
     end
 
     describe '.invite' do
-      it { expect(described_class.invite).not_to include @master }
+      it { expect(described_class.invite).not_to include @maintainer }
       it { expect(described_class.invite).to include @invited_member }
       it { expect(described_class.invite).not_to include @accepted_invite_member }
       it { expect(described_class.invite).not_to include @requested_member }
@@ -114,7 +114,7 @@ describe Member do
     end
 
     describe '.non_invite' do
-      it { expect(described_class.non_invite).to include @master }
+      it { expect(described_class.non_invite).to include @maintainer }
       it { expect(described_class.non_invite).not_to include @invited_member }
       it { expect(described_class.non_invite).to include @accepted_invite_member }
       it { expect(described_class.non_invite).to include @requested_member }
@@ -122,7 +122,7 @@ describe Member do
     end
 
     describe '.request' do
-      it { expect(described_class.request).not_to include @master }
+      it { expect(described_class.request).not_to include @maintainer }
       it { expect(described_class.request).not_to include @invited_member }
       it { expect(described_class.request).not_to include @accepted_invite_member }
       it { expect(described_class.request).to include @requested_member }
@@ -130,7 +130,7 @@ describe Member do
     end
 
     describe '.non_request' do
-      it { expect(described_class.non_request).to include @master }
+      it { expect(described_class.non_request).to include @maintainer }
       it { expect(described_class.non_request).to include @invited_member }
       it { expect(described_class.non_request).to include @accepted_invite_member }
       it { expect(described_class.non_request).not_to include @requested_member }
@@ -141,35 +141,35 @@ describe Member do
       subject { described_class.developers.to_a }
 
       it { is_expected.not_to include @owner }
-      it { is_expected.not_to include @master }
+      it { is_expected.not_to include @maintainer }
       it { is_expected.to include @invited_member }
       it { is_expected.to include @accepted_invite_member }
       it { is_expected.not_to include @requested_member }
       it { is_expected.to include @accepted_request_member }
-      it { is_expected.not_to include @blocked_master }
+      it { is_expected.not_to include @blocked_maintainer }
       it { is_expected.not_to include @blocked_developer }
     end
 
-    describe '.owners_and_masters' do
-      it { expect(described_class.owners_and_masters).to include @owner }
-      it { expect(described_class.owners_and_masters).to include @master }
-      it { expect(described_class.owners_and_masters).not_to include @invited_member }
-      it { expect(described_class.owners_and_masters).not_to include @accepted_invite_member }
-      it { expect(described_class.owners_and_masters).not_to include @requested_member }
-      it { expect(described_class.owners_and_masters).not_to include @accepted_request_member }
-      it { expect(described_class.owners_and_masters).not_to include @blocked_master }
+    describe '.owners_and_maintainers' do
+      it { expect(described_class.owners_and_maintainers).to include @owner }
+      it { expect(described_class.owners_and_maintainers).to include @maintainer }
+      it { expect(described_class.owners_and_maintainers).not_to include @invited_member }
+      it { expect(described_class.owners_and_maintainers).not_to include @accepted_invite_member }
+      it { expect(described_class.owners_and_maintainers).not_to include @requested_member }
+      it { expect(described_class.owners_and_maintainers).not_to include @accepted_request_member }
+      it { expect(described_class.owners_and_maintainers).not_to include @blocked_maintainer }
     end
 
     describe '.has_access' do
       subject { described_class.has_access.to_a }
 
       it { is_expected.to include @owner }
-      it { is_expected.to include @master }
+      it { is_expected.to include @maintainer }
       it { is_expected.to include @invited_member }
       it { is_expected.to include @accepted_invite_member }
       it { is_expected.not_to include @requested_member }
       it { is_expected.to include @accepted_request_member }
-      it { is_expected.not_to include @blocked_master }
+      it { is_expected.not_to include @blocked_maintainer }
       it { is_expected.not_to include @blocked_developer }
     end
   end
@@ -187,20 +187,20 @@ describe Member do
         let!(:admin) { create(:admin) }
 
         it 'returns a <Source>Member object' do
-          member = described_class.add_user(source, user, :master)
+          member = described_class.add_user(source, user, :maintainer)
 
           expect(member).to be_a "#{source_type.classify}Member".constantize
           expect(member).to be_persisted
         end
 
         it 'sets members.created_by to the given current_user' do
-          member = described_class.add_user(source, user, :master, current_user: admin)
+          member = described_class.add_user(source, user, :maintainer, current_user: admin)
 
           expect(member.created_by).to eq(admin)
         end
 
         it 'sets members.expires_at to the given expires_at' do
-          member = described_class.add_user(source, user, :master, expires_at: Date.new(2016, 9, 22))
+          member = described_class.add_user(source, user, :maintainer, expires_at: Date.new(2016, 9, 22))
 
           expect(member.expires_at).to eq(Date.new(2016, 9, 22))
         end
@@ -230,7 +230,7 @@ describe Member do
             it 'adds the user as a member' do
               expect(source.users).not_to include(user)
 
-              described_class.add_user(source, user.id, :master)
+              described_class.add_user(source, user.id, :maintainer)
 
               expect(source.users.reload).to include(user)
             end
@@ -240,7 +240,7 @@ describe Member do
             it 'adds the user as a member' do
               expect(source.users).not_to include(user)
 
-              described_class.add_user(source, 42, :master)
+              described_class.add_user(source, 42, :maintainer)
 
               expect(source.users.reload).not_to include(user)
             end
@@ -250,7 +250,7 @@ describe Member do
             it 'adds the user as a member' do
               expect(source.users).not_to include(user)
 
-              described_class.add_user(source, user, :master)
+              described_class.add_user(source, user, :maintainer)
 
               expect(source.users.reload).to include(user)
             end
@@ -265,7 +265,7 @@ describe Member do
               expect(source.users).not_to include(user)
               expect(source.requesters.exists?(user_id: user)).to be_truthy
 
-              expect { described_class.add_user(source, user, :master) }
+              expect { described_class.add_user(source, user, :maintainer) }
                 .to raise_error(Gitlab::Access::AccessDeniedError)
 
               expect(source.users.reload).not_to include(user)
@@ -277,7 +277,7 @@ describe Member do
             it 'adds the user as a member' do
               expect(source.users).not_to include(user)
 
-              described_class.add_user(source, user.email, :master)
+              described_class.add_user(source, user.email, :maintainer)
 
               expect(source.users.reload).to include(user)
             end
@@ -287,7 +287,7 @@ describe Member do
             it 'creates an invited member' do
               expect(source.users).not_to include(user)
 
-              described_class.add_user(source, 'user@example.com', :master)
+              described_class.add_user(source, 'user@example.com', :maintainer)
 
               expect(source.members.invite.pluck(:invite_email)).to include('user@example.com')
             end
@@ -298,7 +298,7 @@ describe Member do
           it 'creates the member' do
             expect(source.users).not_to include(user)
 
-            described_class.add_user(source, user, :master, current_user: admin)
+            described_class.add_user(source, user, :maintainer, current_user: admin)
 
             expect(source.users.reload).to include(user)
           end
@@ -312,7 +312,7 @@ describe Member do
               expect(source.users).not_to include(user)
               expect(source.requesters.exists?(user_id: user)).to be_truthy
 
-              described_class.add_user(source, user, :master, current_user: admin)
+              described_class.add_user(source, user, :maintainer, current_user: admin)
 
               expect(source.users.reload).to include(user)
               expect(source.requesters.reload.exists?(user_id: user)).to be_falsy
@@ -324,7 +324,7 @@ describe Member do
           it 'does not create the member' do
             expect(source.users).not_to include(user)
 
-            member = described_class.add_user(source, user, :master, current_user: user)
+            member = described_class.add_user(source, user, :maintainer, current_user: user)
 
             expect(source.users.reload).not_to include(user)
             expect(member).not_to be_persisted
@@ -339,7 +339,7 @@ describe Member do
               expect(source.users).not_to include(user)
               expect(source.requesters.exists?(user_id: user)).to be_truthy
 
-              described_class.add_user(source, user, :master, current_user: user)
+              described_class.add_user(source, user, :maintainer, current_user: user)
 
               expect(source.users.reload).not_to include(user)
               expect(source.requesters.exists?(user_id: user)).to be_truthy
@@ -356,9 +356,9 @@ describe Member do
             it 'updates the member' do
               expect(source.users).to include(user)
 
-              described_class.add_user(source, user, :master)
+              described_class.add_user(source, user, :maintainer)
 
-              expect(source.members.find_by(user_id: user).access_level).to eq(Gitlab::Access::MASTER)
+              expect(source.members.find_by(user_id: user).access_level).to eq(Gitlab::Access::MAINTAINER)
             end
           end
 
@@ -366,9 +366,9 @@ describe Member do
             it 'updates the member' do
               expect(source.users).to include(user)
 
-              described_class.add_user(source, user, :master, current_user: admin)
+              described_class.add_user(source, user, :maintainer, current_user: admin)
 
-              expect(source.members.find_by(user_id: user).access_level).to eq(Gitlab::Access::MASTER)
+              expect(source.members.find_by(user_id: user).access_level).to eq(Gitlab::Access::MAINTAINER)
             end
           end
 
@@ -376,7 +376,7 @@ describe Member do
             it 'does not update the member' do
               expect(source.users).to include(user)
 
-              described_class.add_user(source, user, :master, current_user: user)
+              described_class.add_user(source, user, :maintainer, current_user: user)
 
               expect(source.members.find_by(user_id: user).access_level).to eq(Gitlab::Access::DEVELOPER)
             end
@@ -395,7 +395,7 @@ describe Member do
         let(:user2) { create(:user) }
 
         it 'returns a <Source>Member objects' do
-          members = described_class.add_users(source, [user1, user2], :master)
+          members = described_class.add_users(source, [user1, user2], :maintainer)
 
           expect(members).to be_a Array
           expect(members.size).to eq(2)
@@ -404,7 +404,7 @@ describe Member do
         end
 
         it 'returns an empty array' do
-          members = described_class.add_users(source, [], :master)
+          members = described_class.add_users(source, [], :maintainer)
 
           expect(members).to be_a Array
           expect(members).to be_empty
@@ -413,7 +413,7 @@ describe Member do
         it 'supports differents formats' do
           list = ['joe@local.test', admin, user1.id, user2.id.to_s]
 
-          members = described_class.add_users(source, list, :master)
+          members = described_class.add_users(source, list, :maintainer)
 
           expect(members.size).to eq(4)
           expect(members.first).to be_invite
diff --git a/spec/models/members/group_member_spec.rb b/spec/models/members/group_member_spec.rb
index ffc78015f94..97959ed4304 100644
--- a/spec/models/members/group_member_spec.rb
+++ b/spec/models/members/group_member_spec.rb
@@ -21,7 +21,7 @@ describe GroupMember do
       described_class.add_users(
         group,
         [users.first.id, users.second],
-        described_class::MASTER
+        described_class::MAINTAINER
       )
 
       expect(group.users).to include(users.first, users.second)
diff --git a/spec/models/members/project_member_spec.rb b/spec/models/members/project_member_spec.rb
index 574eb468e4c..334d4f95f53 100644
--- a/spec/models/members/project_member_spec.rb
+++ b/spec/models/members/project_member_spec.rb
@@ -28,7 +28,7 @@ describe ProjectMember do
 
       expect(project.users).not_to include(user)
 
-      described_class.add_user(project, user, :master, current_user: project.owner)
+      described_class.add_user(project, user, :maintainer, current_user: project.owner)
 
       expect(project.users.reload).to include(user)
     end
@@ -41,9 +41,9 @@ describe ProjectMember do
   end
 
   describe "#destroy" do
-    let(:owner)   { create(:project_member, access_level: ProjectMember::MASTER) }
+    let(:owner)   { create(:project_member, access_level: ProjectMember::MAINTAINER) }
     let(:project) { owner.project }
-    let(:master)  { create(:project_member, project: project) }
+    let(:maintainer)  { create(:project_member, project: project) }
 
     it "creates an expired event when left due to expiry" do
       expired = create(:project_member, project: project, expires_at: Time.now - 6.days)
@@ -52,7 +52,7 @@ describe ProjectMember do
     end
 
     it "creates a left event when left due to leave" do
-      master.destroy
+      maintainer.destroy
       expect(Event.recent.first.action).to eq(Event::LEFT)
     end
   end
@@ -95,7 +95,7 @@ describe ProjectMember do
       described_class.add_users_to_projects(
         [projects.first.id, projects.second.id],
         [users.first.id, users.second],
-        described_class::MASTER)
+        described_class::MAINTAINER)
 
       expect(projects.first.users).to include(users.first)
       expect(projects.first.users).to include(users.second)
diff --git a/spec/models/merge_request_spec.rb b/spec/models/merge_request_spec.rb
index c7eead2bdaa..b0d9d03bf6c 100644
--- a/spec/models/merge_request_spec.rb
+++ b/spec/models/merge_request_spec.rb
@@ -724,7 +724,7 @@ describe MergeRequest do
     subject { merge_request }
 
     before do
-      subject.source_project.add_master(user)
+      subject.source_project.add_maintainer(user)
     end
 
     it "can't be removed when its a protected branch" do
@@ -1199,7 +1199,7 @@ describe MergeRequest do
         end
 
         before do
-          project.add_master(current_user)
+          project.add_maintainer(current_user)
 
           ProcessCommitWorker.new.perform(project.id,
                                           current_user.id,
@@ -1569,8 +1569,8 @@ describe MergeRequest do
     let(:merge_request) { create(:merge_request, source_project: project) }
 
     before do
-      merge_request.source_project.add_master(user)
-      merge_request.target_project.add_master(user)
+      merge_request.source_project.add_maintainer(user)
+      merge_request.target_project.add_maintainer(user)
     end
 
     context 'with multiple environments' do
diff --git a/spec/models/note_spec.rb b/spec/models/note_spec.rb
index a2cb716cb93..947be44c903 100644
--- a/spec/models/note_spec.rb
+++ b/spec/models/note_spec.rb
@@ -144,8 +144,8 @@ describe Note do
     describe 'admin' do
       before do
         @p1.project_members.create(user: @u1, access_level: ProjectMember::REPORTER)
-        @p1.project_members.create(user: @u2, access_level: ProjectMember::MASTER)
-        @p2.project_members.create(user: @u3, access_level: ProjectMember::MASTER)
+        @p1.project_members.create(user: @u2, access_level: ProjectMember::MAINTAINER)
+        @p2.project_members.create(user: @u3, access_level: ProjectMember::MAINTAINER)
       end
 
       it { expect(Ability.allowed?(@u1, :admin_note, @p1)).to be_falsey }
@@ -225,7 +225,7 @@ describe Note do
 
   describe "cross_reference_not_visible_for?" do
     let(:private_user)    { create(:user) }
-    let(:private_project) { create(:project, namespace: private_user.namespace) { |p| p.add_master(private_user) } }
+    let(:private_project) { create(:project, namespace: private_user.namespace) { |p| p.add_maintainer(private_user) } }
     let(:private_issue)   { create(:issue, project: private_project) }
 
     let(:ext_proj)  { create(:project, :public) }
diff --git a/spec/models/project_authorization_spec.rb b/spec/models/project_authorization_spec.rb
index 9e7e525b2c0..c289ee0859a 100644
--- a/spec/models/project_authorization_spec.rb
+++ b/spec/models/project_authorization_spec.rb
@@ -8,15 +8,15 @@ describe ProjectAuthorization do
   describe '.insert_authorizations' do
     it 'inserts the authorizations' do
       described_class
-        .insert_authorizations([[user.id, project1.id, Gitlab::Access::MASTER]])
+        .insert_authorizations([[user.id, project1.id, Gitlab::Access::MAINTAINER]])
 
       expect(user.project_authorizations.count).to eq(1)
     end
 
     it 'inserts rows in batches' do
       described_class.insert_authorizations([
-        [user.id, project1.id, Gitlab::Access::MASTER],
-        [user.id, project2.id, Gitlab::Access::MASTER]
+        [user.id, project1.id, Gitlab::Access::MAINTAINER],
+        [user.id, project2.id, Gitlab::Access::MAINTAINER]
       ], 1)
 
       expect(user.project_authorizations.count).to eq(2)
diff --git a/spec/models/project_spec.rb b/spec/models/project_spec.rb
index bbf37ca59b9..c01c7bc47b5 100644
--- a/spec/models/project_spec.rb
+++ b/spec/models/project_spec.rb
@@ -336,7 +336,7 @@ describe Project do
   end
 
   describe 'delegation' do
-    [:add_guest, :add_reporter, :add_developer, :add_master, :add_user, :add_users].each do |method|
+    [:add_guest, :add_reporter, :add_developer, :add_maintainer, :add_user, :add_users].each do |method|
       it { is_expected.to delegate_method(method).to(:team) }
     end
 
@@ -1130,7 +1130,7 @@ describe Project do
 
     describe 'when a user has access to a project' do
       before do
-        project.add_user(user, Gitlab::Access::MASTER)
+        project.add_user(user, Gitlab::Access::MAINTAINER)
       end
 
       it { is_expected.to eq([project]) }
@@ -3496,8 +3496,8 @@ describe Project do
 
         expect(project.protected_branches).not_to be_empty
         expect(project.default_branch).to eq(project.protected_branches.first.name)
-        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
-        expect(project.protected_branches.first.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
+        expect(project.protected_branches.first.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
       end
     end
   end
@@ -3733,7 +3733,7 @@ describe Project do
       end
 
       it 'does not allow access if the user cannot merge the merge request' do
-        create(:protected_branch, :masters_can_push, project: target_project, name: 'target-branch')
+        create(:protected_branch, :maintainers_can_push, project: target_project, name: 'target-branch')
 
         expect(project.branch_allows_collaboration?(user, 'awesome-feature-1'))
           .to be_falsy
diff --git a/spec/models/project_team_spec.rb b/spec/models/project_team_spec.rb
index 9978f3e9566..c4af17f4726 100644
--- a/spec/models/project_team_spec.rb
+++ b/spec/models/project_team_spec.rb
@@ -1,7 +1,7 @@
 require "spec_helper"
 
 describe ProjectTeam do
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:reporter) { create(:user) }
   let(:guest) { create(:user) }
   let(:nonmember) { create(:user) }
@@ -10,23 +10,23 @@ describe ProjectTeam do
     let(:project) { create(:project) }
 
     before do
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.add_reporter(reporter)
       project.add_guest(guest)
     end
 
     describe 'members collection' do
-      it { expect(project.team.masters).to include(master) }
-      it { expect(project.team.masters).not_to include(guest) }
-      it { expect(project.team.masters).not_to include(reporter) }
-      it { expect(project.team.masters).not_to include(nonmember) }
+      it { expect(project.team.maintainers).to include(maintainer) }
+      it { expect(project.team.maintainers).not_to include(guest) }
+      it { expect(project.team.maintainers).not_to include(reporter) }
+      it { expect(project.team.maintainers).not_to include(nonmember) }
     end
 
     describe 'access methods' do
-      it { expect(project.team.master?(master)).to be_truthy }
-      it { expect(project.team.master?(guest)).to be_falsey }
-      it { expect(project.team.master?(reporter)).to be_falsey }
-      it { expect(project.team.master?(nonmember)).to be_falsey }
+      it { expect(project.team.maintainer?(maintainer)).to be_truthy }
+      it { expect(project.team.maintainer?(guest)).to be_falsey }
+      it { expect(project.team.maintainer?(reporter)).to be_falsey }
+      it { expect(project.team.maintainer?(nonmember)).to be_falsey }
       it { expect(project.team.member?(nonmember)).to be_falsey }
       it { expect(project.team.member?(guest)).to be_truthy }
       it { expect(project.team.member?(reporter, Gitlab::Access::REPORTER)).to be_truthy }
@@ -40,35 +40,35 @@ describe ProjectTeam do
     let!(:project) { create(:project, group: group) }
 
     before do
-      group.add_master(master)
+      group.add_maintainer(maintainer)
       group.add_reporter(reporter)
       group.add_guest(guest)
 
       # If user is a group and a project member - GitLab uses highest permission
-      # So we add group guest as master and add group master as guest
+      # So we add group guest as maintainer and add group maintainer as guest
       # to this project to test highest access
-      project.add_master(guest)
-      project.add_guest(master)
+      project.add_maintainer(guest)
+      project.add_guest(maintainer)
     end
 
     describe 'members collection' do
       it { expect(project.team.reporters).to include(reporter) }
-      it { expect(project.team.masters).to include(master) }
-      it { expect(project.team.masters).to include(guest) }
-      it { expect(project.team.masters).not_to include(reporter) }
-      it { expect(project.team.masters).not_to include(nonmember) }
+      it { expect(project.team.maintainers).to include(maintainer) }
+      it { expect(project.team.maintainers).to include(guest) }
+      it { expect(project.team.maintainers).not_to include(reporter) }
+      it { expect(project.team.maintainers).not_to include(nonmember) }
     end
 
     describe 'access methods' do
       it { expect(project.team.reporter?(reporter)).to be_truthy }
-      it { expect(project.team.master?(master)).to be_truthy }
-      it { expect(project.team.master?(guest)).to be_truthy }
-      it { expect(project.team.master?(reporter)).to be_falsey }
-      it { expect(project.team.master?(nonmember)).to be_falsey }
+      it { expect(project.team.maintainer?(maintainer)).to be_truthy }
+      it { expect(project.team.maintainer?(guest)).to be_truthy }
+      it { expect(project.team.maintainer?(reporter)).to be_falsey }
+      it { expect(project.team.maintainer?(nonmember)).to be_falsey }
       it { expect(project.team.member?(nonmember)).to be_falsey }
       it { expect(project.team.member?(guest)).to be_truthy }
-      it { expect(project.team.member?(guest, Gitlab::Access::MASTER)).to be_truthy }
-      it { expect(project.team.member?(reporter, Gitlab::Access::MASTER)).to be_falsey }
+      it { expect(project.team.member?(guest, Gitlab::Access::MAINTAINER)).to be_truthy }
+      it { expect(project.team.member?(reporter, Gitlab::Access::MAINTAINER)).to be_falsey }
       it { expect(project.team.member?(nonmember, Gitlab::Access::GUEST)).to be_falsey }
     end
   end
@@ -145,13 +145,13 @@ describe ProjectTeam do
       let(:requester) { create(:user) }
 
       before do
-        project.add_master(master)
+        project.add_maintainer(maintainer)
         project.add_reporter(reporter)
         project.add_guest(guest)
         project.request_access(requester)
       end
 
-      it { expect(project.team.find_member(master.id)).to be_a(ProjectMember) }
+      it { expect(project.team.find_member(maintainer.id)).to be_a(ProjectMember) }
       it { expect(project.team.find_member(reporter.id)).to be_a(ProjectMember) }
       it { expect(project.team.find_member(guest.id)).to be_a(ProjectMember) }
       it { expect(project.team.find_member(nonmember.id)).to be_nil }
@@ -164,13 +164,13 @@ describe ProjectTeam do
       let(:requester) { create(:user) }
 
       before do
-        group.add_master(master)
+        group.add_maintainer(maintainer)
         group.add_reporter(reporter)
         group.add_guest(guest)
         group.request_access(requester)
       end
 
-      it { expect(project.team.find_member(master.id)).to be_a(GroupMember) }
+      it { expect(project.team.find_member(maintainer.id)).to be_a(GroupMember) }
       it { expect(project.team.find_member(reporter.id)).to be_a(GroupMember) }
       it { expect(project.team.find_member(guest.id)).to be_a(GroupMember) }
       it { expect(project.team.find_member(nonmember.id)).to be_nil }
@@ -184,7 +184,7 @@ describe ProjectTeam do
       group = create(:group)
       project = create(:project, namespace: group)
 
-      group.add_master(user)
+      group.add_maintainer(user)
 
       expect(project.team.human_max_access(user.id)).to eq 'Maintainer'
     end
@@ -210,13 +210,13 @@ describe ProjectTeam do
 
       context 'when project is not shared with group' do
         before do
-          project.add_master(master)
+          project.add_maintainer(maintainer)
           project.add_reporter(reporter)
           project.add_guest(guest)
           project.request_access(requester)
         end
 
-        it { expect(project.team.max_member_access(master.id)).to eq(Gitlab::Access::MASTER) }
+        it { expect(project.team.max_member_access(maintainer.id)).to eq(Gitlab::Access::MAINTAINER) }
         it { expect(project.team.max_member_access(reporter.id)).to eq(Gitlab::Access::REPORTER) }
         it { expect(project.team.max_member_access(guest.id)).to eq(Gitlab::Access::GUEST) }
         it { expect(project.team.max_member_access(nonmember.id)).to eq(Gitlab::Access::NO_ACCESS) }
@@ -230,11 +230,11 @@ describe ProjectTeam do
             group: group,
             group_access: Gitlab::Access::DEVELOPER)
 
-          group.add_master(master)
+          group.add_maintainer(maintainer)
           group.add_reporter(reporter)
         end
 
-        it { expect(project.team.max_member_access(master.id)).to eq(Gitlab::Access::DEVELOPER) }
+        it { expect(project.team.max_member_access(maintainer.id)).to eq(Gitlab::Access::DEVELOPER) }
         it { expect(project.team.max_member_access(reporter.id)).to eq(Gitlab::Access::REPORTER) }
         it { expect(project.team.max_member_access(nonmember.id)).to eq(Gitlab::Access::NO_ACCESS) }
         it { expect(project.team.max_member_access(requester.id)).to eq(Gitlab::Access::NO_ACCESS) }
@@ -244,7 +244,7 @@ describe ProjectTeam do
             project.namespace.update(share_with_group_lock: true)
           end
 
-          it { expect(project.team.max_member_access(master.id)).to eq(Gitlab::Access::NO_ACCESS) }
+          it { expect(project.team.max_member_access(maintainer.id)).to eq(Gitlab::Access::NO_ACCESS) }
           it { expect(project.team.max_member_access(reporter.id)).to eq(Gitlab::Access::NO_ACCESS) }
         end
       end
@@ -257,13 +257,13 @@ describe ProjectTeam do
       end
 
       before do
-        group.add_master(master)
+        group.add_maintainer(maintainer)
         group.add_reporter(reporter)
         group.add_guest(guest)
         group.request_access(requester)
       end
 
-      it { expect(project.team.max_member_access(master.id)).to eq(Gitlab::Access::MASTER) }
+      it { expect(project.team.max_member_access(maintainer.id)).to eq(Gitlab::Access::MAINTAINER) }
       it { expect(project.team.max_member_access(reporter.id)).to eq(Gitlab::Access::REPORTER) }
       it { expect(project.team.max_member_access(guest.id)).to eq(Gitlab::Access::GUEST) }
       it { expect(project.team.max_member_access(nonmember.id)).to eq(Gitlab::Access::NO_ACCESS) }
@@ -274,7 +274,7 @@ describe ProjectTeam do
   describe '#member?' do
     let(:group) { create(:group) }
     let(:developer) { create(:user) }
-    let(:master) { create(:user) }
+    let(:maintainer) { create(:user) }
 
     let(:personal_project) do
       create(:project, namespace: developer.namespace)
@@ -288,11 +288,11 @@ describe ProjectTeam do
     let(:shared_project) { create(:project) }
 
     before do
-      group.add_master(master)
+      group.add_maintainer(maintainer)
       group.add_developer(developer)
 
       members_project.add_developer(developer)
-      members_project.add_master(master)
+      members_project.add_maintainer(maintainer)
 
       create(:project_group_link, project: shared_project, group: group)
     end
@@ -318,14 +318,14 @@ describe ProjectTeam do
     end
 
     it 'checks for the correct minimum level access' do
-      expect(group_project.team.member?(developer, Gitlab::Access::MASTER)).to be(false)
-      expect(group_project.team.member?(master, Gitlab::Access::MASTER)).to be(true)
-      expect(members_project.team.member?(developer, Gitlab::Access::MASTER)).to be(false)
-      expect(members_project.team.member?(master, Gitlab::Access::MASTER)).to be(true)
-      expect(shared_project.team.member?(developer, Gitlab::Access::MASTER)).to be(false)
-      expect(shared_project.team.member?(master, Gitlab::Access::MASTER)).to be(false)
+      expect(group_project.team.member?(developer, Gitlab::Access::MAINTAINER)).to be(false)
+      expect(group_project.team.member?(maintainer, Gitlab::Access::MAINTAINER)).to be(true)
+      expect(members_project.team.member?(developer, Gitlab::Access::MAINTAINER)).to be(false)
+      expect(members_project.team.member?(maintainer, Gitlab::Access::MAINTAINER)).to be(true)
+      expect(shared_project.team.member?(developer, Gitlab::Access::MAINTAINER)).to be(false)
+      expect(shared_project.team.member?(maintainer, Gitlab::Access::MAINTAINER)).to be(false)
       expect(shared_project.team.member?(developer, Gitlab::Access::DEVELOPER)).to be(true)
-      expect(shared_project.team.member?(master, Gitlab::Access::DEVELOPER)).to be(true)
+      expect(shared_project.team.member?(maintainer, Gitlab::Access::DEVELOPER)).to be(true)
     end
   end
 
@@ -334,7 +334,7 @@ describe ProjectTeam do
     let(:group) { create(:group) }
     let(:second_group) { create(:group) }
 
-    let(:master) { create(:user) }
+    let(:maintainer) { create(:user) }
     let(:reporter) { create(:user) }
     let(:guest) { create(:user) }
 
@@ -347,23 +347,23 @@ describe ProjectTeam do
     let(:second_user_without_access) { create(:user) }
 
     let(:users) do
-      [master, reporter, promoted_guest, guest, group_developer, second_developer, user_without_access].map(&:id)
+      [maintainer, reporter, promoted_guest, guest, group_developer, second_developer, user_without_access].map(&:id)
     end
 
     let(:expected) do
       {
-        master.id => Gitlab::Access::MASTER,
+        maintainer.id => Gitlab::Access::MAINTAINER,
         reporter.id => Gitlab::Access::REPORTER,
         promoted_guest.id => Gitlab::Access::DEVELOPER,
         guest.id => Gitlab::Access::GUEST,
         group_developer.id => Gitlab::Access::DEVELOPER,
-        second_developer.id => Gitlab::Access::MASTER,
+        second_developer.id => Gitlab::Access::MAINTAINER,
         user_without_access.id => Gitlab::Access::NO_ACCESS
       }
     end
 
     before do
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.add_reporter(reporter)
       project.add_guest(promoted_guest)
       project.add_guest(guest)
@@ -373,16 +373,16 @@ describe ProjectTeam do
         group_access: Gitlab::Access::DEVELOPER
       )
 
-      group.add_master(promoted_guest)
+      group.add_maintainer(promoted_guest)
       group.add_developer(group_developer)
       group.add_developer(second_developer)
 
       project.project_group_links.create(
         group: second_group,
-        group_access: Gitlab::Access::MASTER
+        group_access: Gitlab::Access::MAINTAINER
       )
 
-      second_group.add_master(second_developer)
+      second_group.add_maintainer(second_developer)
     end
 
     it 'returns correct roles for different users' do
diff --git a/spec/models/protected_branch/merge_access_level_spec.rb b/spec/models/protected_branch/merge_access_level_spec.rb
index f70503eadbc..612e4a0e332 100644
--- a/spec/models/protected_branch/merge_access_level_spec.rb
+++ b/spec/models/protected_branch/merge_access_level_spec.rb
@@ -1,5 +1,5 @@
 require 'spec_helper'
 
 describe ProtectedBranch::MergeAccessLevel do
-  it { is_expected.to validate_inclusion_of(:access_level).in_array([Gitlab::Access::MASTER, Gitlab::Access::DEVELOPER, Gitlab::Access::NO_ACCESS]) }
+  it { is_expected.to validate_inclusion_of(:access_level).in_array([Gitlab::Access::MAINTAINER, Gitlab::Access::DEVELOPER, Gitlab::Access::NO_ACCESS]) }
 end
diff --git a/spec/models/protected_branch/push_access_level_spec.rb b/spec/models/protected_branch/push_access_level_spec.rb
index f161f345761..9ccdc22fd41 100644
--- a/spec/models/protected_branch/push_access_level_spec.rb
+++ b/spec/models/protected_branch/push_access_level_spec.rb
@@ -1,5 +1,5 @@
 require 'spec_helper'
 
 describe ProtectedBranch::PushAccessLevel do
-  it { is_expected.to validate_inclusion_of(:access_level).in_array([Gitlab::Access::MASTER, Gitlab::Access::DEVELOPER, Gitlab::Access::NO_ACCESS]) }
+  it { is_expected.to validate_inclusion_of(:access_level).in_array([Gitlab::Access::MAINTAINER, Gitlab::Access::DEVELOPER, Gitlab::Access::NO_ACCESS]) }
 end
diff --git a/spec/models/user_spec.rb b/spec/models/user_spec.rb
index 6d7b733dd4f..fc46551c3be 100644
--- a/spec/models/user_spec.rb
+++ b/spec/models/user_spec.rb
@@ -700,7 +700,7 @@ describe User do
 
       @project = create(:project, namespace: @user.namespace)
       @project_2 = create(:project, group: create(:group)) do |project|
-        project.add_master(@user)
+        project.add_maintainer(@user)
       end
       @project_3 = create(:project, group: create(:group)) do |project|
         project.add_developer(@user)
@@ -836,7 +836,7 @@ describe User do
 
     before do
       # add user to project
-      project.add_master(user)
+      project.add_maintainer(user)
 
       # create invite to projet
       create(:project_member, :developer, project: project, invite_token: '1234', invite_email: 'inviteduser1@example.com')
@@ -1581,8 +1581,8 @@ describe User do
     let!(:merge_event) { create(:event, :created, project: project3, target: merge_request, author: subject) }
 
     before do
-      project1.add_master(subject)
-      project2.add_master(subject)
+      project1.add_maintainer(subject)
+      project2.add_maintainer(subject)
     end
 
     it "includes IDs for projects the user has pushed to" do
@@ -1663,8 +1663,8 @@ describe User do
     let!(:project) { create(:project, group: project_group) }
 
     before do
-      private_group.add_user(user, Gitlab::Access::MASTER)
-      project.add_master(user)
+      private_group.add_user(user, Gitlab::Access::MAINTAINER)
+      project.add_maintainer(user)
     end
 
     subject { user.authorized_groups }
@@ -1678,7 +1678,7 @@ describe User do
     let!(:child_group) { create(:group, parent: parent_group) }
 
     before do
-      parent_group.add_user(user, Gitlab::Access::MASTER)
+      parent_group.add_user(user, Gitlab::Access::MAINTAINER)
     end
 
     subject { user.membership_groups }
@@ -1696,7 +1696,7 @@ describe User do
 
     it 'includes projects that belong to a user, but no other projects' do
       owned = create(:project, :private, namespace: user.namespace)
-      member = create(:project, :private).tap { |p| p.add_master(user) }
+      member = create(:project, :private).tap { |p| p.add_maintainer(user) }
       other = create(:project)
 
       expect(subject).to include(owned)
@@ -1726,11 +1726,11 @@ describe User do
           .to contain_exactly(project)
       end
 
-      it 'includes projects for which the user is a master' do
+      it 'includes projects for which the user is a maintainer' do
         user = create(:user)
         project = create(:project, :private)
 
-        project.add_master(user)
+        project.add_maintainer(user)
 
         expect(user.authorized_projects(Gitlab::Access::REPORTER))
           .to contain_exactly(project)
@@ -1824,10 +1824,10 @@ describe User do
     it 'includes projects for which the user access level is above or equal to reporter' do
       reporter_project  = create(:project) { |p| p.add_reporter(user) }
       developer_project = create(:project) { |p| p.add_developer(user) }
-      master_project    = create(:project) { |p| p.add_master(user) }
+      maintainer_project = create(:project) { |p| p.add_maintainer(user) }
 
-      expect(user.projects_where_can_admin_issues.to_a).to match_array([master_project, developer_project, reporter_project])
-      expect(user.can?(:admin_issue, master_project)).to eq(true)
+      expect(user.projects_where_can_admin_issues.to_a).to match_array([maintainer_project, developer_project, reporter_project])
+      expect(user.can?(:admin_issue, maintainer_project)).to eq(true)
       expect(user.can?(:admin_issue, developer_project)).to eq(true)
       expect(user.can?(:admin_issue, reporter_project)).to eq(true)
     end
@@ -1907,9 +1907,9 @@ describe User do
     end
 
     shared_examples :member do
-      context 'when the user is a master' do
+      context 'when the user is a maintainer' do
         before do
-          add_user(:master)
+          add_user(:maintainer)
         end
 
         it 'loads' do
@@ -2668,20 +2668,20 @@ describe User do
       let(:user) { create(:user) }
       let(:group) { create(:group) }
       let(:owner_project) { create(:project, group: group) }
-      let(:master_project) { create(:project) }
+      let(:maintainer_project) { create(:project) }
       let(:reporter_project) { create(:project) }
       let(:developer_project) { create(:project) }
       let(:guest_project) { create(:project) }
       let(:no_access_project) { create(:project) }
 
       let(:projects) do
-        [owner_project, master_project, reporter_project, developer_project, guest_project, no_access_project].map(&:id)
+        [owner_project, maintainer_project, reporter_project, developer_project, guest_project, no_access_project].map(&:id)
       end
 
       let(:expected) do
         {
           owner_project.id => Gitlab::Access::OWNER,
-          master_project.id => Gitlab::Access::MASTER,
+          maintainer_project.id => Gitlab::Access::MAINTAINER,
           reporter_project.id => Gitlab::Access::REPORTER,
           developer_project.id => Gitlab::Access::DEVELOPER,
           guest_project.id => Gitlab::Access::GUEST,
@@ -2691,7 +2691,7 @@ describe User do
 
       before do
         create(:group_member, user: user, group: group)
-        master_project.add_master(user)
+        maintainer_project.add_maintainer(user)
         reporter_project.add_reporter(user)
         developer_project.add_developer(user)
         guest_project.add_guest(user)
@@ -2718,14 +2718,14 @@ describe User do
       end
 
       it 'only requests the extra projects when uncached projects are passed' do
-        second_master_project = create(:project)
+        second_maintainer_project = create(:project)
         second_developer_project = create(:project)
-        second_master_project.add_master(user)
+        second_maintainer_project.add_maintainer(user)
         second_developer_project.add_developer(user)
 
-        all_projects = projects + [second_master_project.id, second_developer_project.id]
+        all_projects = projects + [second_maintainer_project.id, second_developer_project.id]
 
-        expected_all = expected.merge(second_master_project.id => Gitlab::Access::MASTER,
+        expected_all = expected.merge(second_maintainer_project.id => Gitlab::Access::MAINTAINER,
                                       second_developer_project.id => Gitlab::Access::DEVELOPER)
 
         access_levels(projects)
@@ -2733,7 +2733,7 @@ describe User do
         queries = ActiveRecord::QueryRecorder.new { access_levels(all_projects) }
 
         expect(queries.count).to eq(1)
-        expect(queries.log_message).to match(/\W(#{second_master_project.id}, #{second_developer_project.id})\W/)
+        expect(queries.log_message).to match(/\W(#{second_maintainer_project.id}, #{second_developer_project.id})\W/)
         expect(access_levels(all_projects)).to eq(expected_all)
       end
     end
@@ -2747,20 +2747,20 @@ describe User do
     shared_examples 'max member access for groups' do
       let(:user) { create(:user) }
       let(:owner_group) { create(:group) }
-      let(:master_group) { create(:group) }
+      let(:maintainer_group) { create(:group) }
       let(:reporter_group) { create(:group) }
       let(:developer_group) { create(:group) }
       let(:guest_group) { create(:group) }
       let(:no_access_group) { create(:group) }
 
       let(:groups) do
-        [owner_group, master_group, reporter_group, developer_group, guest_group, no_access_group].map(&:id)
+        [owner_group, maintainer_group, reporter_group, developer_group, guest_group, no_access_group].map(&:id)
       end
 
       let(:expected) do
         {
           owner_group.id => Gitlab::Access::OWNER,
-          master_group.id => Gitlab::Access::MASTER,
+          maintainer_group.id => Gitlab::Access::MAINTAINER,
           reporter_group.id => Gitlab::Access::REPORTER,
           developer_group.id => Gitlab::Access::DEVELOPER,
           guest_group.id => Gitlab::Access::GUEST,
@@ -2770,7 +2770,7 @@ describe User do
 
       before do
         owner_group.add_owner(user)
-        master_group.add_master(user)
+        maintainer_group.add_maintainer(user)
         reporter_group.add_reporter(user)
         developer_group.add_developer(user)
         guest_group.add_guest(user)
@@ -2797,14 +2797,14 @@ describe User do
       end
 
       it 'only requests the extra groups when uncached groups are passed' do
-        second_master_group = create(:group)
+        second_maintainer_group = create(:group)
         second_developer_group = create(:group)
-        second_master_group.add_master(user)
+        second_maintainer_group.add_maintainer(user)
         second_developer_group.add_developer(user)
 
-        all_groups = groups + [second_master_group.id, second_developer_group.id]
+        all_groups = groups + [second_maintainer_group.id, second_developer_group.id]
 
-        expected_all = expected.merge(second_master_group.id => Gitlab::Access::MASTER,
+        expected_all = expected.merge(second_maintainer_group.id => Gitlab::Access::MAINTAINER,
                                       second_developer_group.id => Gitlab::Access::DEVELOPER)
 
         access_levels(groups)
@@ -2812,7 +2812,7 @@ describe User do
         queries = ActiveRecord::QueryRecorder.new { access_levels(all_groups) }
 
         expect(queries.count).to eq(1)
-        expect(queries.log_message).to match(/\W(#{second_master_group.id}, #{second_developer_group.id})\W/)
+        expect(queries.log_message).to match(/\W(#{second_maintainer_group.id}, #{second_developer_group.id})\W/)
         expect(access_levels(all_groups)).to eq(expected_all)
       end
     end
diff --git a/spec/policies/ci/build_policy_spec.rb b/spec/policies/ci/build_policy_spec.rb
index eead55d33ca..79a616899fa 100644
--- a/spec/policies/ci/build_policy_spec.rb
+++ b/spec/policies/ci/build_policy_spec.rb
@@ -204,18 +204,18 @@ describe Ci::BuildPolicy do
         end
       end
 
-      context 'when a master erases a build' do
+      context 'when a maintainer erases a build' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
-        context 'when masters can push to the branch' do
+        context 'when maintainers can push to the branch' do
           before do
-            create(:protected_branch, :masters_can_push,
+            create(:protected_branch, :maintainers_can_push,
                    name: build.ref, project: project)
           end
 
-          context 'when the build was created by the master' do
+          context 'when the build was created by the maintainer' do
             let(:owner) { user }
 
             it { expect(policy).to be_allowed :erase_build }
diff --git a/spec/policies/ci/pipeline_schedule_policy_spec.rb b/spec/policies/ci/pipeline_schedule_policy_spec.rb
index c0c3eda4911..f1d3cd04e32 100644
--- a/spec/policies/ci/pipeline_schedule_policy_spec.rb
+++ b/spec/policies/ci/pipeline_schedule_policy_spec.rb
@@ -77,9 +77,9 @@ describe Ci::PipelineSchedulePolicy, :models do
       end
     end
 
-    describe 'rules for a master' do
+    describe 'rules for a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'includes abilities to do do all operations on pipeline schedule' do
@@ -93,8 +93,8 @@ describe Ci::PipelineSchedulePolicy, :models do
       let(:owner) { create(:user) }
 
       before do
-        project.add_master(owner)
-        project.add_master(user)
+        project.add_maintainer(owner)
+        project.add_maintainer(user)
         pipeline_schedule.update(owner: owner)
       end
 
diff --git a/spec/policies/ci/trigger_policy_spec.rb b/spec/policies/ci/trigger_policy_spec.rb
index 14630748c90..d8a63066265 100644
--- a/spec/policies/ci/trigger_policy_spec.rb
+++ b/spec/policies/ci/trigger_policy_spec.rb
@@ -43,9 +43,9 @@ describe Ci::TriggerPolicy do
     context 'when owner is undefined' do
       let(:owner) { nil }
 
-      context 'when user is master of the project' do
+      context 'when user is maintainer of the project' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it_behaves_like 'allows to admin and manage trigger'
@@ -67,9 +67,9 @@ describe Ci::TriggerPolicy do
     context 'when owner is an user' do
       let(:owner) { user }
 
-      context 'when user is master of the project' do
+      context 'when user is maintainer of the project' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it_behaves_like 'allows to admin and manage trigger'
@@ -79,9 +79,9 @@ describe Ci::TriggerPolicy do
     context 'when owner is another user' do
       let(:owner) { create(:user) }
 
-      context 'when user is master of the project' do
+      context 'when user is maintainer of the project' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it_behaves_like 'allows to manage trigger'
diff --git a/spec/policies/clusters/cluster_policy_spec.rb b/spec/policies/clusters/cluster_policy_spec.rb
index 4207f42b07f..ced969830d8 100644
--- a/spec/policies/clusters/cluster_policy_spec.rb
+++ b/spec/policies/clusters/cluster_policy_spec.rb
@@ -16,9 +16,9 @@ describe Clusters::ClusterPolicy, :models do
       it { expect(policy).to be_disallowed :admin_cluster }
     end
 
-    context 'when master' do
+    context 'when maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it { expect(policy).to be_allowed :update_cluster }
diff --git a/spec/policies/deploy_key_policy_spec.rb b/spec/policies/deploy_key_policy_spec.rb
index ca7b7fe7ef7..e7263d49613 100644
--- a/spec/policies/deploy_key_policy_spec.rb
+++ b/spec/policies/deploy_key_policy_spec.rb
@@ -12,7 +12,7 @@ describe DeployKeyPolicy do
         let(:project) { create(:project_empty_repo) }
 
         before do
-          project.add_master(current_user)
+          project.add_maintainer(current_user)
           project.deploy_keys << deploy_key
         end
 
diff --git a/spec/policies/deploy_token_policy_spec.rb b/spec/policies/deploy_token_policy_spec.rb
index eea287d895e..cef5a4a22bc 100644
--- a/spec/policies/deploy_token_policy_spec.rb
+++ b/spec/policies/deploy_token_policy_spec.rb
@@ -8,15 +8,15 @@ describe DeployTokenPolicy do
   subject { described_class.new(current_user, deploy_token) }
 
   describe 'creating a deploy key' do
-    context 'when user is master' do
+    context 'when user is maintainer' do
       before do
-        project.add_master(current_user)
+        project.add_maintainer(current_user)
       end
 
       it { is_expected.to be_allowed(:create_deploy_token) }
     end
 
-    context 'when user is not master' do
+    context 'when user is not maintainer' do
       before do
         project.add_developer(current_user)
       end
@@ -26,15 +26,15 @@ describe DeployTokenPolicy do
   end
 
   describe 'updating a deploy key' do
-    context 'when user is master' do
+    context 'when user is maintainer' do
       before do
-        project.add_master(current_user)
+        project.add_maintainer(current_user)
       end
 
       it { is_expected.to be_allowed(:update_deploy_token) }
     end
 
-    context 'when user is not master' do
+    context 'when user is not maintainer' do
       before do
         project.add_developer(current_user)
       end
diff --git a/spec/policies/environment_policy_spec.rb b/spec/policies/environment_policy_spec.rb
index 3728218accc..0442b032e89 100644
--- a/spec/policies/environment_policy_spec.rb
+++ b/spec/policies/environment_policy_spec.rb
@@ -17,11 +17,11 @@ describe EnvironmentPolicy do
         end
 
         where(:access_level, :allowed?) do
-          nil        | false
-          :guest     | false
-          :reporter  | false
-          :developer | true
-          :master    | true
+          nil         | false
+          :guest      | false
+          :reporter   | false
+          :developer  | true
+          :maintainer | true
         end
 
         with_them do
@@ -63,11 +63,11 @@ describe EnvironmentPolicy do
         end
 
         where(:access_level, :allowed?) do
-          nil        | false
-          :guest     | false
-          :reporter  | false
-          :developer | false
-          :master    | true
+          nil         | false
+          :guest      | false
+          :reporter   | false
+          :developer  | false
+          :maintainer | true
         end
 
         with_them do
diff --git a/spec/policies/global_policy_spec.rb b/spec/policies/global_policy_spec.rb
index 873673b50ef..a2047b54deb 100644
--- a/spec/policies/global_policy_spec.rb
+++ b/spec/policies/global_policy_spec.rb
@@ -65,12 +65,12 @@ describe GlobalPolicy do
       it { is_expected.not_to be_allowed(:create_fork) }
     end
 
-    context "when user is a master in a group" do
+    context "when user is a maintainer in a group" do
       let(:group) { create(:group) }
       let(:current_user) { create(:user, projects_limit: 0) }
 
       before do
-        group.add_master(current_user)
+        group.add_maintainer(current_user)
       end
 
       it { is_expected.to be_allowed(:create_fork) }
diff --git a/spec/policies/group_policy_spec.rb b/spec/policies/group_policy_spec.rb
index d6d340bd806..35951251bc5 100644
--- a/spec/policies/group_policy_spec.rb
+++ b/spec/policies/group_policy_spec.rb
@@ -4,7 +4,7 @@ describe GroupPolicy do
   let(:guest) { create(:user) }
   let(:reporter) { create(:user) }
   let(:developer) { create(:user) }
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:owner) { create(:user) }
   let(:admin) { create(:admin) }
   let(:group) { create(:group, :private) }
@@ -19,7 +19,7 @@ describe GroupPolicy do
 
   let(:developer_permissions) { [:admin_milestones] }
 
-  let(:master_permissions) do
+  let(:maintainer_permissions) do
     [
       :create_projects
     ]
@@ -39,7 +39,7 @@ describe GroupPolicy do
     group.add_guest(guest)
     group.add_reporter(reporter)
     group.add_developer(developer)
-    group.add_master(master)
+    group.add_maintainer(maintainer)
     group.add_owner(owner)
   end
 
@@ -62,7 +62,7 @@ describe GroupPolicy do
       expect_disallowed(:upload_file)
       expect_disallowed(*reporter_permissions)
       expect_disallowed(*developer_permissions)
-      expect_disallowed(*master_permissions)
+      expect_disallowed(*maintainer_permissions)
       expect_disallowed(*owner_permissions)
       expect_disallowed(:read_namespace)
     end
@@ -97,7 +97,7 @@ describe GroupPolicy do
       expect_allowed(*guest_permissions)
       expect_disallowed(*reporter_permissions)
       expect_disallowed(*developer_permissions)
-      expect_disallowed(*master_permissions)
+      expect_disallowed(*maintainer_permissions)
       expect_disallowed(*owner_permissions)
     end
   end
@@ -109,7 +109,7 @@ describe GroupPolicy do
       expect_allowed(*guest_permissions)
       expect_allowed(*reporter_permissions)
       expect_disallowed(*developer_permissions)
-      expect_disallowed(*master_permissions)
+      expect_disallowed(*maintainer_permissions)
       expect_disallowed(*owner_permissions)
     end
   end
@@ -121,19 +121,19 @@ describe GroupPolicy do
       expect_allowed(*guest_permissions)
       expect_allowed(*reporter_permissions)
       expect_allowed(*developer_permissions)
-      expect_disallowed(*master_permissions)
+      expect_disallowed(*maintainer_permissions)
       expect_disallowed(*owner_permissions)
     end
   end
 
-  context 'master' do
-    let(:current_user) { master }
+  context 'maintainer' do
+    let(:current_user) { maintainer }
 
     it do
       expect_allowed(*guest_permissions)
       expect_allowed(*reporter_permissions)
       expect_allowed(*developer_permissions)
-      expect_allowed(*master_permissions)
+      expect_allowed(*maintainer_permissions)
       expect_disallowed(*owner_permissions)
     end
   end
@@ -147,7 +147,7 @@ describe GroupPolicy do
       expect_allowed(*guest_permissions)
       expect_allowed(*reporter_permissions)
       expect_allowed(*developer_permissions)
-      expect_allowed(*master_permissions)
+      expect_allowed(*maintainer_permissions)
       expect_allowed(*owner_permissions)
     end
   end
@@ -161,7 +161,7 @@ describe GroupPolicy do
       expect_allowed(*guest_permissions)
       expect_allowed(*reporter_permissions)
       expect_allowed(*developer_permissions)
-      expect_allowed(*master_permissions)
+      expect_allowed(*maintainer_permissions)
       expect_allowed(*owner_permissions)
     end
   end
@@ -203,7 +203,7 @@ describe GroupPolicy do
       nested_group.add_guest(guest)
       nested_group.add_guest(reporter)
       nested_group.add_guest(developer)
-      nested_group.add_guest(master)
+      nested_group.add_guest(maintainer)
 
       group.owners.destroy_all
 
@@ -220,7 +220,7 @@ describe GroupPolicy do
         expect_disallowed(*guest_permissions)
         expect_disallowed(*reporter_permissions)
         expect_disallowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
     end
@@ -232,7 +232,7 @@ describe GroupPolicy do
         expect_allowed(*guest_permissions)
         expect_disallowed(*reporter_permissions)
         expect_disallowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
     end
@@ -244,7 +244,7 @@ describe GroupPolicy do
         expect_allowed(*guest_permissions)
         expect_allowed(*reporter_permissions)
         expect_disallowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
     end
@@ -256,19 +256,19 @@ describe GroupPolicy do
         expect_allowed(*guest_permissions)
         expect_allowed(*reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
     end
 
-    context 'master' do
-      let(:current_user) { master }
+    context 'maintainer' do
+      let(:current_user) { maintainer }
 
       it do
         expect_allowed(*guest_permissions)
         expect_allowed(*reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_allowed(*master_permissions)
+        expect_allowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
     end
@@ -282,7 +282,7 @@ describe GroupPolicy do
         expect_allowed(*guest_permissions)
         expect_allowed(*reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_allowed(*master_permissions)
+        expect_allowed(*maintainer_permissions)
         expect_allowed(*owner_permissions)
       end
     end
diff --git a/spec/policies/project_policy_spec.rb b/spec/policies/project_policy_spec.rb
index 6d4676c25a5..dd3fa4e6a51 100644
--- a/spec/policies/project_policy_spec.rb
+++ b/spec/policies/project_policy_spec.rb
@@ -4,7 +4,7 @@ describe ProjectPolicy do
   set(:guest) { create(:user) }
   set(:reporter) { create(:user) }
   set(:developer) { create(:user) }
-  set(:master) { create(:user) }
+  set(:maintainer) { create(:user) }
   set(:owner) { create(:user) }
   set(:admin) { create(:admin) }
   let(:project) { create(:project, :public, namespace: owner.namespace) }
@@ -42,7 +42,7 @@ describe ProjectPolicy do
     ]
   end
 
-  let(:base_master_permissions) do
+  let(:base_maintainer_permissions) do
     %i[
       push_to_delete_protected_branch update_project_snippet update_environment
       update_deployment admin_project_snippet
@@ -70,15 +70,15 @@ describe ProjectPolicy do
   # Used in EE specs
   let(:additional_guest_permissions)  { [] }
   let(:additional_reporter_permissions) { [] }
-  let(:additional_master_permissions) { [] }
+  let(:additional_maintainer_permissions) { [] }
 
   let(:guest_permissions) { base_guest_permissions + additional_guest_permissions }
   let(:reporter_permissions) { base_reporter_permissions + additional_reporter_permissions }
-  let(:master_permissions) { base_master_permissions + additional_master_permissions }
+  let(:maintainer_permissions) { base_maintainer_permissions + additional_maintainer_permissions }
 
   before do
     project.add_guest(guest)
-    project.add_master(master)
+    project.add_maintainer(maintainer)
     project.add_developer(developer)
     project.add_reporter(reporter)
   end
@@ -276,7 +276,7 @@ describe ProjectPolicy do
         expect_disallowed(*reporter_public_build_permissions)
         expect_disallowed(*team_member_reporter_permissions)
         expect_disallowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
 
@@ -326,7 +326,7 @@ describe ProjectPolicy do
         expect_allowed(*reporter_permissions)
         expect_allowed(*team_member_reporter_permissions)
         expect_disallowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
 
@@ -347,7 +347,7 @@ describe ProjectPolicy do
         expect_allowed(*reporter_permissions)
         expect_allowed(*team_member_reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_disallowed(*master_permissions)
+        expect_disallowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
 
@@ -357,23 +357,23 @@ describe ProjectPolicy do
     end
   end
 
-  shared_examples 'project policies as master' do
+  shared_examples 'project policies as maintainer' do
     context 'abilities for non-public projects' do
       let(:project) { create(:project, namespace: owner.namespace) }
 
-      subject { described_class.new(master, project) }
+      subject { described_class.new(maintainer, project) }
 
       it do
         expect_allowed(*guest_permissions)
         expect_allowed(*reporter_permissions)
         expect_allowed(*team_member_reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_allowed(*master_permissions)
+        expect_allowed(*maintainer_permissions)
         expect_disallowed(*owner_permissions)
       end
 
       it_behaves_like 'archived project policies' do
-        let(:regular_abilities) { master_permissions }
+        let(:regular_abilities) { maintainer_permissions }
       end
     end
   end
@@ -389,7 +389,7 @@ describe ProjectPolicy do
         expect_allowed(*reporter_permissions)
         expect_allowed(*team_member_reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_allowed(*master_permissions)
+        expect_allowed(*maintainer_permissions)
         expect_allowed(*owner_permissions)
       end
 
@@ -410,7 +410,7 @@ describe ProjectPolicy do
         expect_allowed(*reporter_permissions)
         expect_disallowed(*team_member_reporter_permissions)
         expect_allowed(*developer_permissions)
-        expect_allowed(*master_permissions)
+        expect_allowed(*maintainer_permissions)
         expect_allowed(*owner_permissions)
       end
 
@@ -424,7 +424,7 @@ describe ProjectPolicy do
   it_behaves_like 'project policies as guest'
   it_behaves_like 'project policies as reporter'
   it_behaves_like 'project policies as developer'
-  it_behaves_like 'project policies as master'
+  it_behaves_like 'project policies as maintainer'
   it_behaves_like 'project policies as owner'
   it_behaves_like 'project policies as admin'
 
diff --git a/spec/policies/protected_branch_policy_spec.rb b/spec/policies/protected_branch_policy_spec.rb
index b39de42d721..1587196754d 100644
--- a/spec/policies/protected_branch_policy_spec.rb
+++ b/spec/policies/protected_branch_policy_spec.rb
@@ -8,8 +8,8 @@ describe ProtectedBranchPolicy do
 
   subject { described_class.new(user, protected_branch) }
 
-  it 'branches can be updated via project masters' do
-    project.add_master(user)
+  it 'branches can be updated via project maintainers' do
+    project.add_maintainer(user)
 
     is_expected.to be_allowed(:update_protected_branch)
   end
diff --git a/spec/presenters/merge_request_presenter_spec.rb b/spec/presenters/merge_request_presenter_spec.rb
index e3b37739e8e..46ba6f442f5 100644
--- a/spec/presenters/merge_request_presenter_spec.rb
+++ b/spec/presenters/merge_request_presenter_spec.rb
@@ -270,7 +270,7 @@ describe MergeRequestPresenter do
     context 'when can create issue and issues enabled' do
       it 'returns path' do
         allow(project).to receive(:issues_enabled?) { true }
-        project.add_master(user)
+        project.add_maintainer(user)
 
         is_expected
           .to eq("/#{resource.project.full_path}/issues/new?merge_request_to_resolve_discussions_of=#{resource.iid}")
@@ -288,7 +288,7 @@ describe MergeRequestPresenter do
     context 'when issues disabled' do
       it 'returns nil' do
         allow(project).to receive(:issues_enabled?) { false }
-        project.add_master(user)
+        project.add_maintainer(user)
 
         is_expected.to be_nil
       end
@@ -307,7 +307,7 @@ describe MergeRequestPresenter do
     context 'when merge request enabled and has permission' do
       it 'has remove_wip_path' do
         allow(project).to receive(:merge_requests_enabled?) { true }
-        project.add_master(user)
+        project.add_maintainer(user)
 
         is_expected
           .to eq("/#{resource.project.full_path}/merge_requests/#{resource.iid}/remove_wip")
diff --git a/spec/presenters/project_presenter_spec.rb b/spec/presenters/project_presenter_spec.rb
index 830d2ee3b20..01085dbcb49 100644
--- a/spec/presenters/project_presenter_spec.rb
+++ b/spec/presenters/project_presenter_spec.rb
@@ -326,7 +326,7 @@ describe ProjectPresenter do
 
       context 'when user can admin pipeline and CI yml does not exists' do
         it 'returns anchor data' do
-          project.add_master(user)
+          project.add_maintainer(user)
           allow(project).to receive(:auto_devops_enabled?).and_return(false)
           allow(project.repository).to receive(:gitlab_ci_yml).and_return(nil)
 
@@ -340,7 +340,7 @@ describe ProjectPresenter do
     describe '#kubernetes_cluster_anchor_data' do
       context 'when user can create Kubernetes cluster' do
         it 'returns link to cluster if only one exists' do
-          project.add_master(user)
+          project.add_maintainer(user)
           cluster = create(:cluster, projects: [project])
 
           expect(presenter.kubernetes_cluster_anchor_data).to eq(OpenStruct.new(enabled: true,
@@ -349,7 +349,7 @@ describe ProjectPresenter do
         end
 
         it 'returns link to clusters page if more than one exists' do
-          project.add_master(user)
+          project.add_maintainer(user)
           create(:cluster, :production_environment, projects: [project])
           create(:cluster, projects: [project])
 
@@ -359,7 +359,7 @@ describe ProjectPresenter do
         end
 
         it 'returns link to create a cluster if no cluster exists' do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           expect(presenter.kubernetes_cluster_anchor_data).to eq(OpenStruct.new(enabled: false,
                                                                                 label: 'Add Kubernetes cluster',
diff --git a/spec/requests/api/access_requests_spec.rb b/spec/requests/api/access_requests_spec.rb
index ffca7ab8e45..e13129967b2 100644
--- a/spec/requests/api/access_requests_spec.rb
+++ b/spec/requests/api/access_requests_spec.rb
@@ -1,15 +1,15 @@
 require 'spec_helper'
 
 describe API::AccessRequests do
-  set(:master) { create(:user) }
+  set(:maintainer) { create(:user) }
   set(:developer) { create(:user) }
   set(:access_requester) { create(:user) }
   set(:stranger) { create(:user) }
 
   set(:project) do
-    create(:project, :public, :access_requestable, creator_id: master.id, namespace: master.namespace) do |project|
+    create(:project, :public, :access_requestable, creator_id: maintainer.id, namespace: maintainer.namespace) do |project|
       project.add_developer(developer)
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.request_access(access_requester)
     end
   end
@@ -17,7 +17,7 @@ describe API::AccessRequests do
   set(:group) do
     create(:group, :public, :access_requestable) do |group|
       group.add_developer(developer)
-      group.add_owner(master)
+      group.add_owner(maintainer)
       group.request_access(access_requester)
     end
   end
@@ -28,7 +28,7 @@ describe API::AccessRequests do
         let(:route) { get api("/#{source_type.pluralize}/#{source.id}/access_requests", stranger) }
       end
 
-      context 'when authenticated as a non-master/owner' do
+      context 'when authenticated as a non-maintainer/owner' do
         %i[developer access_requester stranger].each do |type|
           context "as a #{type}" do
             it 'returns 403' do
@@ -41,9 +41,9 @@ describe API::AccessRequests do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'returns access requesters' do
-          get api("/#{source_type.pluralize}/#{source.id}/access_requests", master)
+          get api("/#{source_type.pluralize}/#{source.id}/access_requests", maintainer)
 
           expect(response).to have_gitlab_http_status(200)
           expect(response).to include_pagination_headers
@@ -61,7 +61,7 @@ describe API::AccessRequests do
       end
 
       context 'when authenticated as a member' do
-        %i[developer master].each do |type|
+        %i[developer maintainer].each do |type|
           context "as a #{type}" do
             it 'returns 403' do
               expect do
@@ -128,7 +128,7 @@ describe API::AccessRequests do
         let(:route) { put api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}/approve", stranger) }
       end
 
-      context 'when authenticated as a non-master/owner' do
+      context 'when authenticated as a non-maintainer/owner' do
         %i[developer access_requester stranger].each do |type|
           context "as a #{type}" do
             it 'returns 403' do
@@ -141,11 +141,11 @@ describe API::AccessRequests do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'returns 201' do
           expect do
-            put api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}/approve", master),
-                access_level: Member::MASTER
+            put api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}/approve", maintainer),
+                access_level: Member::MAINTAINER
 
             expect(response).to have_gitlab_http_status(201)
           end.to change { source.members.count }.by(1)
@@ -158,13 +158,13 @@ describe API::AccessRequests do
           expect(json_response['web_url']).to eq(Gitlab::Routing.url_helpers.user_url(access_requester))
 
           # Member attributes
-          expect(json_response['access_level']).to eq(Member::MASTER)
+          expect(json_response['access_level']).to eq(Member::MAINTAINER)
         end
 
         context 'user_id does not match an existing access requester' do
           it 'returns 404' do
             expect do
-              put api("/#{source_type.pluralize}/#{source.id}/access_requests/#{stranger.id}/approve", master)
+              put api("/#{source_type.pluralize}/#{source.id}/access_requests/#{stranger.id}/approve", maintainer)
 
               expect(response).to have_gitlab_http_status(404)
             end.not_to change { source.members.count }
@@ -180,7 +180,7 @@ describe API::AccessRequests do
         let(:route) { delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}", stranger) }
       end
 
-      context 'when authenticated as a non-master/owner' do
+      context 'when authenticated as a non-maintainer/owner' do
         %i[developer stranger].each do |type|
           context "as a #{type}" do
             it 'returns 403' do
@@ -203,10 +203,10 @@ describe API::AccessRequests do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'deletes the access requester' do
           expect do
-            delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}", master)
+            delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{access_requester.id}", maintainer)
 
             expect(response).to have_gitlab_http_status(204)
           end.to change { source.requesters.count }.by(-1)
@@ -215,7 +215,7 @@ describe API::AccessRequests do
         context 'user_id matches a member, not an access requester' do
           it 'returns 404' do
             expect do
-              delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{developer.id}", master)
+              delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{developer.id}", maintainer)
 
               expect(response).to have_gitlab_http_status(404)
             end.not_to change { source.requesters.count }
@@ -225,7 +225,7 @@ describe API::AccessRequests do
         context 'user_id does not match an existing access requester' do
           it 'returns 404' do
             expect do
-              delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{stranger.id}", master)
+              delete api("/#{source_type.pluralize}/#{source.id}/access_requests/#{stranger.id}", maintainer)
 
               expect(response).to have_gitlab_http_status(404)
             end.not_to change { source.requesters.count }
diff --git a/spec/requests/api/award_emoji_spec.rb b/spec/requests/api/award_emoji_spec.rb
index 5adfb33677f..0921fecb933 100644
--- a/spec/requests/api/award_emoji_spec.rb
+++ b/spec/requests/api/award_emoji_spec.rb
@@ -10,7 +10,7 @@ describe API::AwardEmoji do
   set(:note)          { create(:note, project: project, noteable: issue) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "GET /projects/:id/awardable/:awardable_id/award_emoji" do
diff --git a/spec/requests/api/badges_spec.rb b/spec/requests/api/badges_spec.rb
index ae64a9ca162..e232e2e04ee 100644
--- a/spec/requests/api/badges_spec.rb
+++ b/spec/requests/api/badges_spec.rb
@@ -1,7 +1,7 @@
 require 'spec_helper'
 
 describe API::Badges do
-  let(:master) { create(:user, username: 'master_user') }
+  let(:maintainer) { create(:user, username: 'maintainer_user') }
   let(:developer) { create(:user) }
   let(:access_requester) { create(:user) }
   let(:stranger) { create(:user) }
@@ -25,7 +25,7 @@ describe API::Badges do
         let(:route) { get api("/#{source_type.pluralize}/#{source.id}/badges", stranger) }
       end
 
-      %i[master developer access_requester stranger].each do |type|
+      %i[maintainer developer access_requester stranger].each do |type|
         context "when authenticated as a #{type}" do
           it 'returns 200' do
             user = public_send(type)
@@ -43,16 +43,16 @@ describe API::Badges do
 
       it 'avoids N+1 queries' do
         # Establish baseline
-        get api("/#{source_type.pluralize}/#{source.id}/badges", master)
+        get api("/#{source_type.pluralize}/#{source.id}/badges", maintainer)
 
         control = ActiveRecord::QueryRecorder.new do
-          get api("/#{source_type.pluralize}/#{source.id}/badges", master)
+          get api("/#{source_type.pluralize}/#{source.id}/badges", maintainer)
         end
 
         project.add_developer(create(:user))
 
         expect do
-          get api("/#{source_type.pluralize}/#{source.id}/badges", master)
+          get api("/#{source_type.pluralize}/#{source.id}/badges", maintainer)
         end.not_to exceed_query_limit(control)
       end
     end
@@ -69,7 +69,7 @@ describe API::Badges do
       end
 
       context 'when authenticated as a non-member' do
-        %i[master developer access_requester stranger].each do |type|
+        %i[maintainer developer access_requester stranger].each do |type|
           let(:badge) { source.badges.first }
 
           context "as a #{type}" do
@@ -122,10 +122,10 @@ describe API::Badges do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'creates a new badge' do
           expect do
-            post api("/#{source_type.pluralize}/#{source.id}/badges", master),
+            post api("/#{source_type.pluralize}/#{source.id}/badges", maintainer),
                 link_url: example_url, image_url: example_url2
 
             expect(response).to have_gitlab_http_status(201)
@@ -138,21 +138,21 @@ describe API::Badges do
       end
 
       it 'returns 400 when link_url is not given' do
-        post api("/#{source_type.pluralize}/#{source.id}/badges", master),
+        post api("/#{source_type.pluralize}/#{source.id}/badges", maintainer),
              link_url: example_url
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400 when image_url is not given' do
-        post api("/#{source_type.pluralize}/#{source.id}/badges", master),
+        post api("/#{source_type.pluralize}/#{source.id}/badges", maintainer),
              image_url: example_url2
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400 when link_url or image_url is not valid' do
-        post api("/#{source_type.pluralize}/#{source.id}/badges", master),
+        post api("/#{source_type.pluralize}/#{source.id}/badges", maintainer),
              link_url: 'whatever', image_url: 'whatever'
 
         expect(response).to have_gitlab_http_status(400)
@@ -192,9 +192,9 @@ describe API::Badges do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'updates the member' do
-          put api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", master),
+          put api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", maintainer),
               link_url: example_url, image_url: example_url2
 
           expect(response).to have_gitlab_http_status(200)
@@ -205,7 +205,7 @@ describe API::Badges do
       end
 
       it 'returns 400 when link_url or image_url is not valid' do
-        put api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", master),
+        put api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", maintainer),
             link_url: 'whatever', image_url: 'whatever'
 
         expect(response).to have_gitlab_http_status(400)
@@ -239,22 +239,22 @@ describe API::Badges do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'deletes the badge' do
           expect do
-            delete api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", master)
+            delete api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", maintainer)
 
             expect(response).to have_gitlab_http_status(204)
           end.to change { source.badges.count }.by(-1)
         end
 
         it_behaves_like '412 response' do
-          let(:request) { api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", master) }
+          let(:request) { api("/#{source_type.pluralize}/#{source.id}/badges/#{badge.id}", maintainer) }
         end
       end
 
       it 'returns 404 if badge does not exist' do
-        delete api("/#{source_type.pluralize}/#{source.id}/badges/123", master)
+        delete api("/#{source_type.pluralize}/#{source.id}/badges/123", maintainer)
 
         expect(response).to have_gitlab_http_status(404)
       end
@@ -289,9 +289,9 @@ describe API::Badges do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'gets the rendered badge values' do
-          get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=#{example_url}&image_url=#{example_url2}", master)
+          get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=#{example_url}&image_url=#{example_url2}", maintainer)
 
           expect(response).to have_gitlab_http_status(200)
 
@@ -304,19 +304,19 @@ describe API::Badges do
       end
 
       it 'returns 400 when link_url is not given' do
-        get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=#{example_url}", master)
+        get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=#{example_url}", maintainer)
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400 when image_url is not given' do
-        get api("/#{source_type.pluralize}/#{source.id}/badges/render?image_url=#{example_url}", master)
+        get api("/#{source_type.pluralize}/#{source.id}/badges/render?image_url=#{example_url}", maintainer)
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400 when link_url or image_url is not valid' do
-        get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=whatever&image_url=whatever", master)
+        get api("/#{source_type.pluralize}/#{source.id}/badges/render?link_url=whatever&image_url=whatever", maintainer)
 
         expect(response).to have_gitlab_http_status(400)
       end
@@ -326,7 +326,7 @@ describe API::Badges do
   context 'when deleting a badge' do
     context 'and the source is a project' do
       it 'cannot delete badges owned by the project group' do
-        delete api("/projects/#{project.id}/badges/#{project_group.badges.first.id}", master)
+        delete api("/projects/#{project.id}/badges/#{project_group.badges.first.id}", maintainer)
 
         expect(response).to have_gitlab_http_status(403)
       end
@@ -345,9 +345,9 @@ describe API::Badges do
   end
 
   def setup_project
-    create(:project, :public, :access_requestable, creator_id: master.id, namespace: project_group) do |project|
+    create(:project, :public, :access_requestable, creator_id: maintainer.id, namespace: project_group) do |project|
       project.add_developer(developer)
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.request_access(access_requester)
       project.project_badges << build(:project_badge, project: project)
       project.project_badges << build(:project_badge, project: project)
@@ -358,7 +358,7 @@ describe API::Badges do
   def setup_group
     create(:group, :public, :access_requestable) do |group|
       group.add_developer(developer)
-      group.add_owner(master)
+      group.add_owner(maintainer)
       group.request_access(access_requester)
       group.badges << build(:group_badge, group: group)
       group.badges << build(:group_badge, group: group)
diff --git a/spec/requests/api/branches_spec.rb b/spec/requests/api/branches_spec.rb
index 9bb6ed62393..7fff0a6cce6 100644
--- a/spec/requests/api/branches_spec.rb
+++ b/spec/requests/api/branches_spec.rb
@@ -13,7 +13,7 @@ describe API::Branches do
   let(:current_user) { nil }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "GET /projects/:id/repository/branches" do
@@ -75,7 +75,7 @@ describe API::Branches do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository branches'
@@ -170,7 +170,7 @@ describe API::Branches do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository branch'
@@ -324,7 +324,7 @@ describe API::Branches do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       context "when a protected branch doesn't already exist" do
@@ -381,8 +381,8 @@ describe API::Branches do
             expect(json_response['protected']).to eq(true)
             expect(json_response['developers_can_push']).to eq(false)
             expect(json_response['developers_can_merge']).to eq(false)
-            expect(protected_branch.reload.push_access_levels.first.access_level).to eq(Gitlab::Access::MASTER)
-            expect(protected_branch.reload.merge_access_levels.first.access_level).to eq(Gitlab::Access::MASTER)
+            expect(protected_branch.reload.push_access_levels.first.access_level).to eq(Gitlab::Access::MAINTAINER)
+            expect(protected_branch.reload.merge_access_levels.first.access_level).to eq(Gitlab::Access::MAINTAINER)
           end
         end
 
@@ -458,7 +458,7 @@ describe API::Branches do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       context "when a protected branch doesn't already exist" do
@@ -534,7 +534,7 @@ describe API::Branches do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       context "when a protected branch doesn't already exist" do
diff --git a/spec/requests/api/commits_spec.rb b/spec/requests/api/commits_spec.rb
index e73d1a252f5..113703fac38 100644
--- a/spec/requests/api/commits_spec.rb
+++ b/spec/requests/api/commits_spec.rb
@@ -12,7 +12,7 @@ describe API::Commits do
   let(:current_user) { nil }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/repository/commits' do
@@ -55,7 +55,7 @@ describe API::Commits do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'project commits'
@@ -667,7 +667,7 @@ describe API::Commits do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'ref commit'
@@ -785,7 +785,7 @@ describe API::Commits do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'ref diff'
@@ -884,7 +884,7 @@ describe API::Commits do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'ref comments'
diff --git a/spec/requests/api/deployments_spec.rb b/spec/requests/api/deployments_spec.rb
index 51b70fda148..61ae053cea7 100644
--- a/spec/requests/api/deployments_spec.rb
+++ b/spec/requests/api/deployments_spec.rb
@@ -5,7 +5,7 @@ describe API::Deployments do
   let(:non_member)  { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/deployments' do
diff --git a/spec/requests/api/environments_spec.rb b/spec/requests/api/environments_spec.rb
index fdddca5d0ef..bf93555b0f0 100644
--- a/spec/requests/api/environments_spec.rb
+++ b/spec/requests/api/environments_spec.rb
@@ -7,7 +7,7 @@ describe API::Environments do
   let!(:environment)  { create(:environment, project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/environments' do
@@ -126,7 +126,7 @@ describe API::Environments do
   end
 
   describe 'DELETE /projects/:id/environments/:environment_id' do
-    context 'as a master' do
+    context 'as a maintainer' do
       it 'returns a 200 for an existing environment' do
         delete api("/projects/#{project.id}/environments/#{environment.id}", user)
 
@@ -155,7 +155,7 @@ describe API::Environments do
   end
 
   describe 'POST /projects/:id/environments/:environment_id/stop' do
-    context 'as a master' do
+    context 'as a maintainer' do
       context 'with a stoppable environment' do
         before do
           environment.update(state: :available)
diff --git a/spec/requests/api/group_variables_spec.rb b/spec/requests/api/group_variables_spec.rb
index 64fa7dc824c..f87e035c89d 100644
--- a/spec/requests/api/group_variables_spec.rb
+++ b/spec/requests/api/group_variables_spec.rb
@@ -9,7 +9,7 @@ describe API::GroupVariables do
 
     context 'authorized user with proper permissions' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'returns group variables' do
@@ -42,7 +42,7 @@ describe API::GroupVariables do
 
     context 'authorized user with proper permissions' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'returns group variable details' do
@@ -82,7 +82,7 @@ describe API::GroupVariables do
       let!(:variable) { create(:ci_group_variable, group: group) }
 
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'creates variable' do
@@ -138,7 +138,7 @@ describe API::GroupVariables do
 
     context 'authorized user with proper permissions' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'updates variable data' do
@@ -184,7 +184,7 @@ describe API::GroupVariables do
 
     context 'authorized user with proper permissions' do
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'deletes variable' do
diff --git a/spec/requests/api/groups_spec.rb b/spec/requests/api/groups_spec.rb
index 5a04e699d60..65b387a2170 100644
--- a/spec/requests/api/groups_spec.rb
+++ b/spec/requests/api/groups_spec.rb
@@ -215,7 +215,7 @@ describe API::Groups do
 
     context 'when using owned in the request' do
       it 'returns an array of groups the user owns' do
-        group1.add_master(user2)
+        group1.add_maintainer(user2)
 
         get api('/groups', user2), owned: true
 
@@ -734,9 +734,9 @@ describe API::Groups do
         end
       end
 
-      context 'as master', :nested_groups do
+      context 'as maintainer', :nested_groups do
         before do
-          group2.add_master(user1)
+          group2.add_maintainer(user1)
         end
 
         it 'cannot create subgroups' do
@@ -812,7 +812,7 @@ describe API::Groups do
 
       it "does not remove a group if not an owner" do
         user4 = create(:user)
-        group1.add_master(user4)
+        group1.add_maintainer(user4)
 
         delete api("/groups/#{group1.id}", user3)
 
diff --git a/spec/requests/api/issues_spec.rb b/spec/requests/api/issues_spec.rb
index 95eff029f98..66eb18229fa 100644
--- a/spec/requests/api/issues_spec.rb
+++ b/spec/requests/api/issues_spec.rb
@@ -1083,7 +1083,7 @@ describe API::Issues do
       let(:project) { merge_request.source_project }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       context 'resolving all discussions in a merge request' do
diff --git a/spec/requests/api/jobs_spec.rb b/spec/requests/api/jobs_spec.rb
index 0609166ed90..7d1a5c12805 100644
--- a/spec/requests/api/jobs_spec.rb
+++ b/spec/requests/api/jobs_spec.rb
@@ -645,7 +645,7 @@ describe API::Jobs do
   end
 
   describe 'POST /projects/:id/jobs/:job_id/erase' do
-    let(:role) { :master }
+    let(:role) { :maintainer }
 
     before do
       project.add_role(user, role)
diff --git a/spec/requests/api/labels_spec.rb b/spec/requests/api/labels_spec.rb
index 34cbf75f4c1..a4220f5b2be 100644
--- a/spec/requests/api/labels_spec.rb
+++ b/spec/requests/api/labels_spec.rb
@@ -7,7 +7,7 @@ describe API::Labels do
   let!(:priority_label) { create(:label, title: 'bug', project: project, priority: 3) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/labels' do
diff --git a/spec/requests/api/members_spec.rb b/spec/requests/api/members_spec.rb
index ec500838eb2..01bbe7f5ec6 100644
--- a/spec/requests/api/members_spec.rb
+++ b/spec/requests/api/members_spec.rb
@@ -1,15 +1,15 @@
 require 'spec_helper'
 
 describe API::Members do
-  let(:master) { create(:user, username: 'master_user') }
+  let(:maintainer) { create(:user, username: 'maintainer_user') }
   let(:developer) { create(:user) }
   let(:access_requester) { create(:user) }
   let(:stranger) { create(:user) }
 
   let(:project) do
-    create(:project, :public, :access_requestable, creator_id: master.id, namespace: master.namespace) do |project|
+    create(:project, :public, :access_requestable, creator_id: maintainer.id, namespace: maintainer.namespace) do |project|
       project.add_developer(developer)
-      project.add_master(master)
+      project.add_maintainer(maintainer)
       project.request_access(access_requester)
     end
   end
@@ -17,7 +17,7 @@ describe API::Members do
   let!(:group) do
     create(:group, :public, :access_requestable) do |group|
       group.add_developer(developer)
-      group.add_owner(master)
+      group.add_owner(maintainer)
       group.request_access(access_requester)
     end
   end
@@ -28,7 +28,7 @@ describe API::Members do
         let(:route) { get api("/#{source_type.pluralize}/#{source.id}/members", stranger) }
       end
 
-      %i[master developer access_requester stranger].each do |type|
+      %i[maintainer developer access_requester stranger].each do |type|
         context "when authenticated as a #{type}" do
           it 'returns 200' do
             user = public_send(type)
@@ -39,23 +39,23 @@ describe API::Members do
             expect(response).to include_pagination_headers
             expect(json_response).to be_an Array
             expect(json_response.size).to eq(2)
-            expect(json_response.map { |u| u['id'] }).to match_array [master.id, developer.id]
+            expect(json_response.map { |u| u['id'] }).to match_array [maintainer.id, developer.id]
           end
         end
       end
 
       it 'avoids N+1 queries' do
         # Establish baseline
-        get api("/#{source_type.pluralize}/#{source.id}/members", master)
+        get api("/#{source_type.pluralize}/#{source.id}/members", maintainer)
 
         control = ActiveRecord::QueryRecorder.new do
-          get api("/#{source_type.pluralize}/#{source.id}/members", master)
+          get api("/#{source_type.pluralize}/#{source.id}/members", maintainer)
         end
 
         project.add_developer(create(:user))
 
         expect do
-          get api("/#{source_type.pluralize}/#{source.id}/members", master)
+          get api("/#{source_type.pluralize}/#{source.id}/members", maintainer)
         end.not_to exceed_query_limit(control)
       end
 
@@ -68,17 +68,17 @@ describe API::Members do
         expect(response).to include_pagination_headers
         expect(json_response).to be_an Array
         expect(json_response.size).to eq(2)
-        expect(json_response.map { |u| u['id'] }).to match_array [master.id, developer.id]
+        expect(json_response.map { |u| u['id'] }).to match_array [maintainer.id, developer.id]
       end
 
       it 'finds members with query string' do
-        get api("/#{source_type.pluralize}/#{source.id}/members", developer), query: master.username
+        get api("/#{source_type.pluralize}/#{source.id}/members", developer), query: maintainer.username
 
         expect(response).to have_gitlab_http_status(200)
         expect(response).to include_pagination_headers
         expect(json_response).to be_an Array
         expect(json_response.count).to eq(1)
-        expect(json_response.first['username']).to eq(master.username)
+        expect(json_response.first['username']).to eq(maintainer.username)
       end
 
       it 'finds all members with no query specified' do
@@ -88,7 +88,7 @@ describe API::Members do
         expect(response).to include_pagination_headers
         expect(json_response).to be_an Array
         expect(json_response.count).to eq(2)
-        expect(json_response.map { |u| u['id'] }).to match_array [master.id, developer.id]
+        expect(json_response.map { |u| u['id'] }).to match_array [maintainer.id, developer.id]
       end
     end
   end
@@ -129,7 +129,7 @@ describe API::Members do
       it_behaves_like 'a 404 response when source is private' do
         let(:route) do
           post api("/#{source_type.pluralize}/#{source.id}/members", stranger),
-               user_id: access_requester.id, access_level: Member::MASTER
+               user_id: access_requester.id, access_level: Member::MAINTAINER
         end
       end
 
@@ -139,7 +139,7 @@ describe API::Members do
             it 'returns 403' do
               user = public_send(type)
               post api("/#{source_type.pluralize}/#{source.id}/members", user),
-                   user_id: access_requester.id, access_level: Member::MASTER
+                   user_id: access_requester.id, access_level: Member::MAINTAINER
 
               expect(response).to have_gitlab_http_status(403)
             end
@@ -147,24 +147,24 @@ describe API::Members do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         context 'and new member is already a requester' do
           it 'transforms the requester into a proper member' do
             expect do
-              post api("/#{source_type.pluralize}/#{source.id}/members", master),
-                   user_id: access_requester.id, access_level: Member::MASTER
+              post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
+                   user_id: access_requester.id, access_level: Member::MAINTAINER
 
               expect(response).to have_gitlab_http_status(201)
             end.to change { source.members.count }.by(1)
             expect(source.requesters.count).to eq(0)
             expect(json_response['id']).to eq(access_requester.id)
-            expect(json_response['access_level']).to eq(Member::MASTER)
+            expect(json_response['access_level']).to eq(Member::MAINTAINER)
           end
         end
 
         it 'creates a new member' do
           expect do
-            post api("/#{source_type.pluralize}/#{source.id}/members", master),
+            post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
                  user_id: stranger.id, access_level: Member::DEVELOPER, expires_at: '2016-08-05'
 
             expect(response).to have_gitlab_http_status(201)
@@ -176,28 +176,28 @@ describe API::Members do
       end
 
       it "returns 409 if member already exists" do
-        post api("/#{source_type.pluralize}/#{source.id}/members", master),
-             user_id: master.id, access_level: Member::MASTER
+        post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
+             user_id: maintainer.id, access_level: Member::MAINTAINER
 
         expect(response).to have_gitlab_http_status(409)
       end
 
       it 'returns 400 when user_id is not given' do
-        post api("/#{source_type.pluralize}/#{source.id}/members", master),
-             access_level: Member::MASTER
+        post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
+             access_level: Member::MAINTAINER
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400 when access_level is not given' do
-        post api("/#{source_type.pluralize}/#{source.id}/members", master),
+        post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
              user_id: stranger.id
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400  when access_level is not valid' do
-        post api("/#{source_type.pluralize}/#{source.id}/members", master),
+        post api("/#{source_type.pluralize}/#{source.id}/members", maintainer),
              user_id: stranger.id, access_level: 1234
 
         expect(response).to have_gitlab_http_status(400)
@@ -210,7 +210,7 @@ describe API::Members do
       it_behaves_like 'a 404 response when source is private' do
         let(:route) do
           put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", stranger),
-              access_level: Member::MASTER
+              access_level: Member::MAINTAINER
         end
       end
 
@@ -220,7 +220,7 @@ describe API::Members do
             it 'returns 403' do
               user = public_send(type)
               put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", user),
-                  access_level: Member::MASTER
+                  access_level: Member::MAINTAINER
 
               expect(response).to have_gitlab_http_status(403)
             end
@@ -228,33 +228,33 @@ describe API::Members do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         it 'updates the member' do
-          put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", master),
-              access_level: Member::MASTER, expires_at: '2016-08-05'
+          put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", maintainer),
+              access_level: Member::MAINTAINER, expires_at: '2016-08-05'
 
           expect(response).to have_gitlab_http_status(200)
           expect(json_response['id']).to eq(developer.id)
-          expect(json_response['access_level']).to eq(Member::MASTER)
+          expect(json_response['access_level']).to eq(Member::MAINTAINER)
           expect(json_response['expires_at']).to eq('2016-08-05')
         end
       end
 
       it 'returns 409 if member does not exist' do
-        put api("/#{source_type.pluralize}/#{source.id}/members/123", master),
-            access_level: Member::MASTER
+        put api("/#{source_type.pluralize}/#{source.id}/members/123", maintainer),
+            access_level: Member::MAINTAINER
 
         expect(response).to have_gitlab_http_status(404)
       end
 
       it 'returns 400 when access_level is not given' do
-        put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", master)
+        put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", maintainer)
 
         expect(response).to have_gitlab_http_status(400)
       end
 
       it 'returns 400  when access level is not valid' do
-        put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", master),
+        put api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", maintainer),
             access_level: 1234
 
         expect(response).to have_gitlab_http_status(400)
@@ -291,11 +291,11 @@ describe API::Members do
         end
       end
 
-      context 'when authenticated as a master/owner' do
+      context 'when authenticated as a maintainer/owner' do
         context 'and member is a requester' do
           it 'returns 404' do
             expect do
-              delete api("/#{source_type.pluralize}/#{source.id}/members/#{access_requester.id}", master)
+              delete api("/#{source_type.pluralize}/#{source.id}/members/#{access_requester.id}", maintainer)
 
               expect(response).to have_gitlab_http_status(404)
             end.not_to change { source.requesters.count }
@@ -304,19 +304,19 @@ describe API::Members do
 
         it 'deletes the member' do
           expect do
-            delete api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", master)
+            delete api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", maintainer)
 
             expect(response).to have_gitlab_http_status(204)
           end.to change { source.members.count }.by(-1)
         end
 
         it_behaves_like '412 response' do
-          let(:request) { api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", master) }
+          let(:request) { api("/#{source_type.pluralize}/#{source.id}/members/#{developer.id}", maintainer) }
         end
       end
 
       it 'returns 404 if member does not exist' do
-        delete api("/#{source_type.pluralize}/#{source.id}/members/123", master)
+        delete api("/#{source_type.pluralize}/#{source.id}/members/123", maintainer)
 
         expect(response).to have_gitlab_http_status(404)
       end
@@ -366,7 +366,7 @@ describe API::Members do
   context 'Adding owner to project' do
     it 'returns 403' do
       expect do
-        post api("/projects/#{project.id}/members", master),
+        post api("/projects/#{project.id}/members", maintainer),
              user_id: stranger.id, access_level: Member::OWNER
 
         expect(response).to have_gitlab_http_status(400)
diff --git a/spec/requests/api/merge_request_diffs_spec.rb b/spec/requests/api/merge_request_diffs_spec.rb
index cb647aee70f..6530dc956cb 100644
--- a/spec/requests/api/merge_request_diffs_spec.rb
+++ b/spec/requests/api/merge_request_diffs_spec.rb
@@ -8,7 +8,7 @@ describe API::MergeRequestDiffs, 'MergeRequestDiffs' do
   before do
     merge_request.merge_request_diffs.create(head_commit_sha: '6f6d7e7ed97bb5f0054f2b1df789b39ca89b6ff9')
     merge_request.merge_request_diffs.create(head_commit_sha: '5937ac0a7beb003549fc5fd26fc247adbce4a52e')
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/merge_requests/:merge_request_iid/versions' do
diff --git a/spec/requests/api/notes_spec.rb b/spec/requests/api/notes_spec.rb
index f4cf5bd0530..3fb45449c74 100644
--- a/spec/requests/api/notes_spec.rb
+++ b/spec/requests/api/notes_spec.rb
@@ -44,7 +44,7 @@ describe API::Notes do
       # For testing the cross-reference of a private issue in a public project
       let(:private_project) do
         create(:project, namespace: private_user.namespace)
-        .tap { |p| p.add_master(private_user) }
+        .tap { |p| p.add_maintainer(private_user) }
       end
       let(:private_issue)    { create(:issue, project: private_project) }
 
diff --git a/spec/requests/api/pages_domains_spec.rb b/spec/requests/api/pages_domains_spec.rb
index a9ccbb32666..35b6ed8d5c0 100644
--- a/spec/requests/api/pages_domains_spec.rb
+++ b/spec/requests/api/pages_domains_spec.rb
@@ -80,7 +80,7 @@ describe API::PagesDomains do
     context 'when pages is disabled' do
       before do
         allow(Gitlab.config.pages).to receive(:enabled).and_return(false)
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like '404 response' do
@@ -88,9 +88,9 @@ describe API::PagesDomains do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'get pages domains'
@@ -177,7 +177,7 @@ describe API::PagesDomains do
 
     context 'when domain is vacant' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like '404 response' do
@@ -185,9 +185,9 @@ describe API::PagesDomains do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'get pages domain'
@@ -270,9 +270,9 @@ describe API::PagesDomains do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'post pages domains'
@@ -380,7 +380,7 @@ describe API::PagesDomains do
 
     context 'when domain is vacant' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like '404 response' do
@@ -388,9 +388,9 @@ describe API::PagesDomains do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'put pages domain'
@@ -444,7 +444,7 @@ describe API::PagesDomains do
 
     context 'when domain is vacant' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like '404 response' do
@@ -452,9 +452,9 @@ describe API::PagesDomains do
       end
     end
 
-    context 'when user is a master' do
+    context 'when user is a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'delete pages domain'
diff --git a/spec/requests/api/pipeline_schedules_spec.rb b/spec/requests/api/pipeline_schedules_spec.rb
index 173f2a0dea0..997d413eb4f 100644
--- a/spec/requests/api/pipeline_schedules_spec.rb
+++ b/spec/requests/api/pipeline_schedules_spec.rb
@@ -270,38 +270,38 @@ describe API::PipelineSchedules do
   end
 
   describe 'DELETE /projects/:id/pipeline_schedules/:pipeline_schedule_id' do
-    let(:master) { create(:user) }
+    let(:maintainer) { create(:user) }
 
     let!(:pipeline_schedule) do
       create(:ci_pipeline_schedule, project: project, owner: developer)
     end
 
     before do
-      project.add_master(master)
+      project.add_maintainer(maintainer)
     end
 
     context 'authenticated user with valid permissions' do
       it 'deletes pipeline_schedule' do
         expect do
-          delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}", master)
+          delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}", maintainer)
         end.to change { project.pipeline_schedules.count }.by(-1)
 
         expect(response).to have_gitlab_http_status(204)
       end
 
       it 'responds with 404 Not Found if requesting non-existing pipeline_schedule' do
-        delete api("/projects/#{project.id}/pipeline_schedules/-5", master)
+        delete api("/projects/#{project.id}/pipeline_schedules/-5", maintainer)
 
         expect(response).to have_gitlab_http_status(:not_found)
       end
 
       it_behaves_like '412 response' do
-        let(:request) { api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}", master) }
+        let(:request) { api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}", maintainer) }
       end
     end
 
     context 'authenticated user with invalid permissions' do
-      let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: master) }
+      let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: maintainer) }
 
       it 'does not delete pipeline_schedule' do
         delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}", developer)
@@ -415,7 +415,7 @@ describe API::PipelineSchedules do
   end
 
   describe 'DELETE /projects/:id/pipeline_schedules/:pipeline_schedule_id/variables/:key' do
-    let(:master) { create(:user) }
+    let(:maintainer) { create(:user) }
 
     set(:pipeline_schedule) do
       create(:ci_pipeline_schedule, project: project, owner: developer)
@@ -426,13 +426,13 @@ describe API::PipelineSchedules do
     end
 
     before do
-      project.add_master(master)
+      project.add_maintainer(maintainer)
     end
 
     context 'authenticated user with valid permissions' do
       it 'deletes pipeline_schedule_variable' do
         expect do
-          delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}/variables/#{pipeline_schedule_variable.key}", master)
+          delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}/variables/#{pipeline_schedule_variable.key}", maintainer)
         end.to change { Ci::PipelineScheduleVariable.count }.by(-1)
 
         expect(response).to have_gitlab_http_status(:accepted)
@@ -440,14 +440,14 @@ describe API::PipelineSchedules do
       end
 
       it 'responds with 404 Not Found if requesting non-existing pipeline_schedule_variable' do
-        delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}/variables/____", master)
+        delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}/variables/____", maintainer)
 
         expect(response).to have_gitlab_http_status(:not_found)
       end
     end
 
     context 'authenticated user with invalid permissions' do
-      let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: master) }
+      let!(:pipeline_schedule) { create(:ci_pipeline_schedule, project: project, owner: maintainer) }
 
       it 'does not delete pipeline_schedule_variable' do
         delete api("/projects/#{project.id}/pipeline_schedules/#{pipeline_schedule.id}/variables/#{pipeline_schedule_variable.key}", developer)
diff --git a/spec/requests/api/pipelines_spec.rb b/spec/requests/api/pipelines_spec.rb
index 78ea77cb3bb..e2ca27f5d41 100644
--- a/spec/requests/api/pipelines_spec.rb
+++ b/spec/requests/api/pipelines_spec.rb
@@ -11,7 +11,7 @@ describe API::Pipelines do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/pipelines ' do
diff --git a/spec/requests/api/project_export_spec.rb b/spec/requests/api/project_export_spec.rb
index a4615bd081f..45e4e35d773 100644
--- a/spec/requests/api/project_export_spec.rb
+++ b/spec/requests/api/project_export_spec.rb
@@ -109,13 +109,13 @@ describe API::ProjectExport do
         it_behaves_like 'get project export status ok'
       end
 
-      context 'when user is a master' do
+      context 'when user is a maintainer' do
         before do
-          project.add_master(user)
-          project_none.add_master(user)
-          project_started.add_master(user)
-          project_finished.add_master(user)
-          project_after_export.add_master(user)
+          project.add_maintainer(user)
+          project_none.add_maintainer(user)
+          project_started.add_maintainer(user)
+          project_finished.add_maintainer(user)
+          project_after_export.add_maintainer(user)
         end
 
         it_behaves_like 'get project export status ok'
@@ -228,13 +228,13 @@ describe API::ProjectExport do
         it_behaves_like 'get project download by strategy'
       end
 
-      context 'when user is a master' do
+      context 'when user is a maintainer' do
         before do
-          project.add_master(user)
-          project_none.add_master(user)
-          project_started.add_master(user)
-          project_finished.add_master(user)
-          project_after_export.add_master(user)
+          project.add_maintainer(user)
+          project_none.add_maintainer(user)
+          project_started.add_maintainer(user)
+          project_finished.add_maintainer(user)
+          project_after_export.add_maintainer(user)
         end
 
         it_behaves_like 'get project download by strategy'
@@ -274,7 +274,7 @@ describe API::ProjectExport do
         stub_uploads_object_storage(ImportExportUploader)
 
         [project, project_finished, project_after_export].each do |p|
-          p.add_master(user)
+          p.add_maintainer(user)
 
           upload = ImportExportUpload.new(project: p)
           upload.export_file = fixture_file_upload('spec/fixtures/project_export.tar.gz', "`/tar.gz")
@@ -338,13 +338,13 @@ describe API::ProjectExport do
         it_behaves_like 'post project export start'
       end
 
-      context 'when user is a master' do
+      context 'when user is a maintainer' do
         before do
-          project.add_master(user)
-          project_none.add_master(user)
-          project_started.add_master(user)
-          project_finished.add_master(user)
-          project_after_export.add_master(user)
+          project.add_maintainer(user)
+          project_none.add_maintainer(user)
+          project_started.add_maintainer(user)
+          project_finished.add_maintainer(user)
+          project_after_export.add_maintainer(user)
         end
 
         it_behaves_like 'post project export start'
diff --git a/spec/requests/api/project_hooks_spec.rb b/spec/requests/api/project_hooks_spec.rb
index 12a183fed1e..bc45a63d9f1 100644
--- a/spec/requests/api/project_hooks_spec.rb
+++ b/spec/requests/api/project_hooks_spec.rb
@@ -13,7 +13,7 @@ describe API::ProjectHooks, 'ProjectHooks' do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user3)
   end
 
@@ -214,7 +214,7 @@ describe API::ProjectHooks, 'ProjectHooks' do
     it "returns a 404 if a user attempts to delete project hooks he/she does not own" do
       test_user = create(:user)
       other_project = create(:project)
-      other_project.add_master(test_user)
+      other_project.add_maintainer(test_user)
 
       delete api("/projects/#{other_project.id}/hooks/#{hook.id}", test_user)
       expect(response).to have_gitlab_http_status(404)
diff --git a/spec/requests/api/project_import_spec.rb b/spec/requests/api/project_import_spec.rb
index 24b7835abf5..41243854ebc 100644
--- a/spec/requests/api/project_import_spec.rb
+++ b/spec/requests/api/project_import_spec.rb
@@ -146,7 +146,7 @@ describe API::ProjectImport do
   describe 'GET /projects/:id/import' do
     it 'returns the import status' do
       project = create(:project, :import_started)
-      project.add_master(user)
+      project.add_maintainer(user)
 
       get api("/projects/#{project.id}/import", user)
 
@@ -156,7 +156,7 @@ describe API::ProjectImport do
 
     it 'returns the import status and the error if failed' do
       project = create(:project, :import_failed)
-      project.add_master(user)
+      project.add_maintainer(user)
       project.import_state.update(last_error: 'error')
 
       get api("/projects/#{project.id}/import", user)
diff --git a/spec/requests/api/projects_spec.rb b/spec/requests/api/projects_spec.rb
index 15da81b57db..8389cb7cf9c 100644
--- a/spec/requests/api/projects_spec.rb
+++ b/spec/requests/api/projects_spec.rb
@@ -40,7 +40,7 @@ describe API::Projects do
     create(:project_member,
     user: user4,
     project: project3,
-    access_level: ProjectMember::MASTER)
+    access_level: ProjectMember::MAINTAINER)
   end
   let(:project4) do
     create(:project,
@@ -353,7 +353,7 @@ describe API::Projects do
             create(:project_member,
                    user: user,
                    project: project5,
-                   access_level: ProjectMember::MASTER)
+                   access_level: ProjectMember::MAINTAINER)
           end
 
           it 'returns only projects that satisfy all query parameters' do
@@ -961,7 +961,7 @@ describe API::Projects do
       describe 'permissions' do
         context 'all projects' do
           before do
-            project.add_master(user)
+            project.add_maintainer(user)
           end
 
           it 'contains permission information' do
@@ -969,19 +969,19 @@ describe API::Projects do
 
             expect(response).to have_gitlab_http_status(200)
             expect(json_response.first['permissions']['project_access']['access_level'])
-            .to eq(Gitlab::Access::MASTER)
+            .to eq(Gitlab::Access::MAINTAINER)
             expect(json_response.first['permissions']['group_access']).to be_nil
           end
         end
 
         context 'personal project' do
           it 'sets project access and returns 200' do
-            project.add_master(user)
+            project.add_maintainer(user)
             get api("/projects/#{project.id}", user)
 
             expect(response).to have_gitlab_http_status(200)
             expect(json_response['permissions']['project_access']['access_level'])
-            .to eq(Gitlab::Access::MASTER)
+            .to eq(Gitlab::Access::MAINTAINER)
             expect(json_response['permissions']['group_access']).to be_nil
           end
         end
@@ -1542,7 +1542,7 @@ describe API::Projects do
       end
     end
 
-    context 'when authenticated as project master' do
+    context 'when authenticated as project maintainer' do
       it 'updates path' do
         project_param = { path: 'bar' }
         put api("/projects/#{project3.id}", user4), project_param
diff --git a/spec/requests/api/protected_branches_spec.rb b/spec/requests/api/protected_branches_spec.rb
index 576fde46615..69a601d7b40 100644
--- a/spec/requests/api/protected_branches_spec.rb
+++ b/spec/requests/api/protected_branches_spec.rb
@@ -26,9 +26,9 @@ describe API::ProtectedBranches do
       end
     end
 
-    context 'when authenticated as a master' do
+    context 'when authenticated as a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'protected branches'
@@ -54,8 +54,8 @@ describe API::ProtectedBranches do
 
         expect(response).to have_gitlab_http_status(200)
         expect(json_response['name']).to eq(branch_name)
-        expect(json_response['push_access_levels'][0]['access_level']).to eq(::Gitlab::Access::MASTER)
-        expect(json_response['merge_access_levels'][0]['access_level']).to eq(::Gitlab::Access::MASTER)
+        expect(json_response['push_access_levels'][0]['access_level']).to eq(::Gitlab::Access::MAINTAINER)
+        expect(json_response['merge_access_levels'][0]['access_level']).to eq(::Gitlab::Access::MAINTAINER)
       end
 
       context 'when protected branch does not exist' do
@@ -68,9 +68,9 @@ describe API::ProtectedBranches do
       end
     end
 
-    context 'when authenticated as a master' do
+    context 'when authenticated as a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it_behaves_like 'protected branch'
@@ -108,9 +108,9 @@ describe API::ProtectedBranches do
       expect(json_response['name']).to eq(branch_name)
     end
 
-    context 'when authenticated as a master' do
+    context 'when authenticated as a maintainer' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'protects a single branch' do
@@ -118,8 +118,8 @@ describe API::ProtectedBranches do
 
         expect(response).to have_gitlab_http_status(201)
         expect(json_response['name']).to eq(branch_name)
-        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
-        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
+        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
       end
 
       it 'protects a single branch and developers can push' do
@@ -128,7 +128,7 @@ describe API::ProtectedBranches do
         expect(response).to have_gitlab_http_status(201)
         expect(json_response['name']).to eq(branch_name)
         expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::DEVELOPER)
-        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
       end
 
       it 'protects a single branch and developers can merge' do
@@ -136,7 +136,7 @@ describe API::ProtectedBranches do
 
         expect(response).to have_gitlab_http_status(201)
         expect(json_response['name']).to eq(branch_name)
-        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
         expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::DEVELOPER)
       end
 
@@ -155,7 +155,7 @@ describe API::ProtectedBranches do
         expect(response).to have_gitlab_http_status(201)
         expect(json_response['name']).to eq(branch_name)
         expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::NO_ACCESS)
-        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+        expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
       end
 
       it 'protects a single branch and no one can merge' do
@@ -163,7 +163,7 @@ describe API::ProtectedBranches do
 
         expect(response).to have_gitlab_http_status(201)
         expect(json_response['name']).to eq(branch_name)
-        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+        expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
         expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::NO_ACCESS)
       end
 
@@ -189,8 +189,8 @@ describe API::ProtectedBranches do
           post post_endpoint, name: branch_name
 
           expect_protection_to_be_successful
-          expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
-          expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MASTER)
+          expect(json_response['push_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
+          expect(json_response['merge_access_levels'][0]['access_level']).to eq(Gitlab::Access::MAINTAINER)
         end
       end
 
@@ -225,7 +225,7 @@ describe API::ProtectedBranches do
     let(:delete_endpoint) { api("/projects/#{project.id}/protected_branches/#{branch_name}", user) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it "unprotects a single branch" do
diff --git a/spec/requests/api/repositories_spec.rb b/spec/requests/api/repositories_spec.rb
index 28f8564ae92..6063afc213d 100644
--- a/spec/requests/api/repositories_spec.rb
+++ b/spec/requests/api/repositories_spec.rb
@@ -8,7 +8,7 @@ describe API::Repositories do
   let(:user) { create(:user) }
   let(:guest) { create(:user).tap { |u| create(:project_member, :guest, user: u, project: project) } }
   let!(:project) { create(:project, :repository, creator: user) }
-  let!(:master) { create(:project_member, :master, user: user, project: project) }
+  let!(:maintainer) { create(:project_member, :maintainer, user: user, project: project) }
 
   describe "GET /projects/:id/repository/tree" do
     let(:route) { "/projects/#{project.id}/repository/tree" }
diff --git a/spec/requests/api/runners_spec.rb b/spec/requests/api/runners_spec.rb
index eb57c734e92..3ebdb54f71f 100644
--- a/spec/requests/api/runners_spec.rb
+++ b/spec/requests/api/runners_spec.rb
@@ -18,8 +18,8 @@ describe API::Runners do
 
   before do
     # Set project access for users
-    create(:project_member, :master, user: user, project: project)
-    create(:project_member, :master, user: user, project: project2)
+    create(:project_member, :maintainer, user: user, project: project)
+    create(:project_member, :maintainer, user: user, project: project2)
     create(:project_member, :reporter, user: user2, project: project)
   end
 
@@ -576,7 +576,7 @@ describe API::Runners do
   end
 
   describe 'GET /projects/:id/runners' do
-    context 'authorized user with master privileges' do
+    context 'authorized user with maintainer privileges' do
       it "returns project's runners" do
         get api("/projects/#{project.id}/runners", user)
 
@@ -589,7 +589,7 @@ describe API::Runners do
       end
     end
 
-    context 'authorized user without master privileges' do
+    context 'authorized user without maintainer privileges' do
       it "does not return project's runners" do
         get api("/projects/#{project.id}/runners", user2)
 
diff --git a/spec/requests/api/tags_spec.rb b/spec/requests/api/tags_spec.rb
index 8df08dd1818..98f995df06f 100644
--- a/spec/requests/api/tags_spec.rb
+++ b/spec/requests/api/tags_spec.rb
@@ -10,7 +10,7 @@ describe API::Tags do
   let(:current_user) { nil }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'GET /projects/:id/repository/tags' do
@@ -86,7 +86,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository tags'
@@ -168,7 +168,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository tag'
@@ -222,7 +222,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       context "when a protected branch doesn't already exist" do
@@ -341,7 +341,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository delete tag'
@@ -386,7 +386,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository new release'
@@ -452,7 +452,7 @@ describe API::Tags do
       end
     end
 
-    context 'when authenticated', 'as a master' do
+    context 'when authenticated', 'as a maintainer' do
       let(:current_user) { user }
 
       it_behaves_like 'repository update release'
diff --git a/spec/requests/api/triggers_spec.rb b/spec/requests/api/triggers_spec.rb
index b2c56f7af2c..0ae6796d1e4 100644
--- a/spec/requests/api/triggers_spec.rb
+++ b/spec/requests/api/triggers_spec.rb
@@ -6,7 +6,7 @@ describe API::Triggers do
   let!(:trigger_token) { 'secure_token' }
   let!(:trigger_token_2) { 'secure_token_2' }
   let!(:project) { create(:project, :repository, creator: user) }
-  let!(:master) { create(:project_member, :master, user: user, project: project) }
+  let!(:maintainer) { create(:project_member, :maintainer, user: user, project: project) }
   let!(:developer) { create(:project_member, :developer, user: user2, project: project) }
   let!(:trigger) { create(:ci_trigger, project: project, token: trigger_token, owner: user) }
   let!(:trigger2) { create(:ci_trigger, project: project, token: trigger_token_2, owner: user2) }
diff --git a/spec/requests/api/variables_spec.rb b/spec/requests/api/variables_spec.rb
index 62215ea3d7d..be333df1d78 100644
--- a/spec/requests/api/variables_spec.rb
+++ b/spec/requests/api/variables_spec.rb
@@ -4,7 +4,7 @@ describe API::Variables do
   let(:user) { create(:user) }
   let(:user2) { create(:user) }
   let!(:project) { create(:project, creator_id: user.id) }
-  let!(:master) { create(:project_member, :master, user: user, project: project) }
+  let!(:maintainer) { create(:project_member, :maintainer, user: user, project: project) }
   let!(:developer) { create(:project_member, :developer, user: user2, project: project) }
   let!(:variable) { create(:ci_variable, project: project) }
 
diff --git a/spec/requests/api/wikis_spec.rb b/spec/requests/api/wikis_spec.rb
index 850ba696098..489cb001b82 100644
--- a/spec/requests/api/wikis_spec.rb
+++ b/spec/requests/api/wikis_spec.rb
@@ -7,7 +7,7 @@ require 'spec_helper'
 # Every state is tested for 3 user roles:
 # - guest
 # - developer
-# - master
+# - maintainer
 # because they are 3 edge cases of using wiki pages.
 
 describe API::Wikis do
@@ -163,9 +163,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           get api(url, user)
         end
@@ -193,9 +193,9 @@ describe API::Wikis do
         include_examples 'returns list of wiki pages'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         include_examples 'returns list of wiki pages'
@@ -221,9 +221,9 @@ describe API::Wikis do
         include_examples 'returns list of wiki pages'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         include_examples 'returns list of wiki pages'
@@ -256,9 +256,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           get api(url, user)
         end
@@ -293,9 +293,9 @@ describe API::Wikis do
         end
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           get api(url, user)
         end
@@ -337,9 +337,9 @@ describe API::Wikis do
         end
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           get api(url, user)
         end
@@ -379,9 +379,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
           post(api(url, user), payload)
         end
 
@@ -408,9 +408,9 @@ describe API::Wikis do
         include_examples 'creates wiki page'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         include_examples 'creates wiki page'
@@ -436,9 +436,9 @@ describe API::Wikis do
         include_examples 'creates wiki page'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         include_examples 'creates wiki page'
@@ -472,9 +472,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           put(api(url, user), payload)
         end
@@ -510,9 +510,9 @@ describe API::Wikis do
         end
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           put(api(url, user), payload)
         end
@@ -554,9 +554,9 @@ describe API::Wikis do
         end
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           put(api(url, user), payload)
         end
@@ -607,9 +607,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           delete(api(url, user))
         end
@@ -639,9 +639,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           delete(api(url, user))
         end
@@ -671,9 +671,9 @@ describe API::Wikis do
         include_examples '403 Forbidden'
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
 
           delete(api(url, user))
         end
diff --git a/spec/requests/git_http_spec.rb b/spec/requests/git_http_spec.rb
index 92fcfb65269..b030d9862c6 100644
--- a/spec/requests/git_http_spec.rb
+++ b/spec/requests/git_http_spec.rb
@@ -312,7 +312,7 @@ describe 'Git HTTP requests' do
               let(:project) { fork_project(canonical_project, nil, repository: true) }
 
               before do
-                canonical_project.add_master(user)
+                canonical_project.add_maintainer(user)
                 create(:merge_request,
                        source_project: project,
                        target_project:  canonical_project,
@@ -398,13 +398,13 @@ describe 'Git HTTP requests' do
 
             context "when the user has access to the project" do
               before do
-                project.add_master(user)
+                project.add_maintainer(user)
               end
 
               context "when the user is blocked" do
                 it "rejects pulls with 401 Unauthorized" do
                   user.block
-                  project.add_master(user)
+                  project.add_maintainer(user)
 
                   download(path, env) do |response|
                     expect(response).to have_gitlab_http_status(:unauthorized)
@@ -467,7 +467,7 @@ describe 'Git HTTP requests' do
                 let(:path) { "#{project.full_path}.git" }
 
                 before do
-                  project.add_master(user)
+                  project.add_maintainer(user)
                 end
 
                 context 'when username and password are provided' do
@@ -827,7 +827,7 @@ describe 'Git HTTP requests' do
 
         context 'and the user is on the team' do
           before do
-            project.add_master(user)
+            project.add_maintainer(user)
           end
 
           it "responds with status 200" do
@@ -850,7 +850,7 @@ describe 'Git HTTP requests' do
     let(:env) { { user: user.username, password: user.password } }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       enforce_terms
     end
 
diff --git a/spec/requests/lfs_http_spec.rb b/spec/requests/lfs_http_spec.rb
index 4d30b99262e..de39abdb746 100644
--- a/spec/requests/lfs_http_spec.rb
+++ b/spec/requests/lfs_http_spec.rb
@@ -63,7 +63,7 @@ describe 'Git LFS API and storage' do
 
     context 'with LFS disabled globally' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         allow(Gitlab.config.lfs).to receive(:enabled).and_return(false)
       end
 
@@ -106,7 +106,7 @@ describe 'Git LFS API and storage' do
 
     context 'with LFS enabled globally' do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         enable_lfs
       end
 
@@ -236,7 +236,7 @@ describe 'Git LFS API and storage' do
 
           context 'and does have project access' do
             let(:update_permissions) do
-              project.add_master(user)
+              project.add_maintainer(user)
               project.lfs_objects << lfs_object
             end
 
@@ -293,7 +293,7 @@ describe 'Git LFS API and storage' do
 
           context 'when user allowed' do
             let(:update_permissions) do
-              project.add_master(user)
+              project.add_maintainer(user)
               project.lfs_objects << lfs_object
             end
 
@@ -829,7 +829,7 @@ describe 'Git LFS API and storage' do
       context 'when user is not authenticated' do
         context 'when user has push access' do
           let(:update_user_permissions) do
-            project.add_master(user)
+            project.add_maintainer(user)
           end
 
           it 'responds with status 401' do
@@ -874,7 +874,7 @@ describe 'Git LFS API and storage' do
 
     before do
       allow(Gitlab::Database).to receive(:read_only?) { true }
-      project.add_master(user)
+      project.add_maintainer(user)
       enable_lfs
     end
 
@@ -1307,7 +1307,7 @@ describe 'Git LFS API and storage' do
         let(:authorization) { authorize_user }
 
         before do
-          second_project.add_master(user)
+          second_project.add_maintainer(user)
           upstream_project.lfs_objects << lfs_object
         end
 
diff --git a/spec/requests/lfs_locks_api_spec.rb b/spec/requests/lfs_locks_api_spec.rb
index e44a11a7232..a44b43a591f 100644
--- a/spec/requests/lfs_locks_api_spec.rb
+++ b/spec/requests/lfs_locks_api_spec.rb
@@ -4,7 +4,7 @@ describe 'Git LFS File Locking API' do
   include WorkhorseHelpers
 
   let(:project)   { create(:project) }
-  let(:master)    { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:developer) { create(:user) }
   let(:guest)     { create(:user) }
   let(:path)      { 'README.md' }
@@ -29,7 +29,7 @@ describe 'Git LFS File Locking API' do
   before do
     allow(Gitlab.config.lfs).to receive(:enabled).and_return(true)
 
-    project.add_developer(master)
+    project.add_developer(maintainer)
     project.add_developer(developer)
     project.add_guest(guest)
   end
@@ -99,7 +99,7 @@ describe 'Git LFS File Locking API' do
     include_examples 'unauthorized request'
 
     it 'returns the list of locked files grouped by owner' do
-      lock_file('README.md', master)
+      lock_file('README.md', maintainer)
       lock_file('README', developer)
 
       post_lfs_json url, nil, headers
diff --git a/spec/serializers/deploy_key_entity_spec.rb b/spec/serializers/deploy_key_entity_spec.rb
index 2bd8162d1b7..01264cf7fb5 100644
--- a/spec/serializers/deploy_key_entity_spec.rb
+++ b/spec/serializers/deploy_key_entity_spec.rb
@@ -44,9 +44,9 @@ describe DeployKeyEntity do
     it { expect(entity.as_json).to eq(expected_result) }
   end
 
-  describe 'returns can_edit true if user is a master of project' do
+  describe 'returns can_edit true if user is a maintainer of project' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it { expect(entity.as_json).to include(can_edit: true) }
diff --git a/spec/serializers/group_child_entity_spec.rb b/spec/serializers/group_child_entity_spec.rb
index 505a9eaac5a..dbc40bddc30 100644
--- a/spec/serializers/group_child_entity_spec.rb
+++ b/spec/serializers/group_child_entity_spec.rb
@@ -42,7 +42,7 @@ describe GroupChildEntity do
     end
 
     before do
-      object.add_master(user)
+      object.add_maintainer(user)
     end
 
     it 'has the correct type' do
diff --git a/spec/services/auth/container_registry_authentication_service_spec.rb b/spec/services/auth/container_registry_authentication_service_spec.rb
index fce73e0ac1f..037484931b8 100644
--- a/spec/services/auth/container_registry_authentication_service_spec.rb
+++ b/spec/services/auth/container_registry_authentication_service_spec.rb
@@ -348,7 +348,7 @@ describe Auth::ContainerRegistryAuthenticationService do
     end
   end
 
-  context 'delete authorized as master' do
+  context 'delete authorized as maintainer' do
     let(:current_project) { create(:project) }
     let(:current_user) { create(:user) }
 
@@ -357,7 +357,7 @@ describe Auth::ContainerRegistryAuthenticationService do
     end
 
     before do
-      current_project.add_master(current_user)
+      current_project.add_maintainer(current_user)
     end
 
     it_behaves_like 'a valid token'
diff --git a/spec/services/ci/create_pipeline_service_spec.rb b/spec/services/ci/create_pipeline_service_spec.rb
index 2b88fcc9a96..054b7b1561c 100644
--- a/spec/services/ci/create_pipeline_service_spec.rb
+++ b/spec/services/ci/create_pipeline_service_spec.rb
@@ -462,11 +462,11 @@ describe Ci::CreatePipelineService do
         end
       end
 
-      context 'when user is master' do
+      context 'when user is maintainer' do
         let(:pipeline) { execute_service }
 
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'creates a protected pipeline' do
@@ -503,13 +503,13 @@ describe Ci::CreatePipelineService do
         end
       end
 
-      context 'when trigger belongs to a master' do
+      context 'when trigger belongs to a maintainer' do
         let(:user) { create(:user) }
         let(:trigger) { create(:ci_trigger, owner: user) }
         let(:trigger_request) { create(:ci_trigger_request, trigger: trigger) }
 
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'creates a pipeline' do
diff --git a/spec/services/ci/retry_pipeline_service_spec.rb b/spec/services/ci/retry_pipeline_service_spec.rb
index 688d3b8c038..55445e71539 100644
--- a/spec/services/ci/retry_pipeline_service_spec.rb
+++ b/spec/services/ci/retry_pipeline_service_spec.rb
@@ -237,7 +237,7 @@ describe Ci::RetryPipelineService, '#execute' do
   context 'when user is not allowed to trigger manual action' do
     before do
       project.add_developer(user)
-      create(:protected_branch, :masters_can_push,
+      create(:protected_branch, :maintainers_can_push,
              name: pipeline.ref, project: project)
     end
 
@@ -275,7 +275,7 @@ describe Ci::RetryPipelineService, '#execute' do
     let(:pipeline) { create(:ci_pipeline, project: forked_project, ref: 'fixes') }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       create(:merge_request,
         source_project: forked_project,
         target_project: project,
diff --git a/spec/services/ci/stop_environments_service_spec.rb b/spec/services/ci/stop_environments_service_spec.rb
index 3fc4e499b0c..cdd3d851f61 100644
--- a/spec/services/ci/stop_environments_service_spec.rb
+++ b/spec/services/ci/stop_environments_service_spec.rb
@@ -86,7 +86,7 @@ describe Ci::StopEnvironmentsService do
 
       context 'when user has permission to stop environments' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'does not stop environment' do
diff --git a/spec/services/discussions/resolve_service_spec.rb b/spec/services/discussions/resolve_service_spec.rb
index 3895a0b3aea..4e0d4749239 100644
--- a/spec/services/discussions/resolve_service_spec.rb
+++ b/spec/services/discussions/resolve_service_spec.rb
@@ -9,7 +9,7 @@ describe Discussions::ResolveService do
     let(:service) { described_class.new(discussion.noteable.project, user, merge_request: merge_request) }
 
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it "doesn't resolve discussions the user can't resolve" do
diff --git a/spec/services/files/create_service_spec.rb b/spec/services/files/create_service_spec.rb
index abe99b9e794..30d94e4318d 100644
--- a/spec/services/files/create_service_spec.rb
+++ b/spec/services/files/create_service_spec.rb
@@ -23,7 +23,7 @@ describe Files::CreateService do
   subject { described_class.new(project, user, commit_params) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "#execute" do
diff --git a/spec/services/files/delete_service_spec.rb b/spec/services/files/delete_service_spec.rb
index ace5f293097..73566afe8c8 100644
--- a/spec/services/files/delete_service_spec.rb
+++ b/spec/services/files/delete_service_spec.rb
@@ -37,7 +37,7 @@ describe Files::DeleteService do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "#execute" do
diff --git a/spec/services/files/multi_service_spec.rb b/spec/services/files/multi_service_spec.rb
index 59984c10990..3bdedaf3770 100644
--- a/spec/services/files/multi_service_spec.rb
+++ b/spec/services/files/multi_service_spec.rb
@@ -38,7 +38,7 @@ describe Files::MultiService do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/services/files/update_service_spec.rb b/spec/services/files/update_service_spec.rb
index eaee89fb1a5..e01fe487ffa 100644
--- a/spec/services/files/update_service_spec.rb
+++ b/spec/services/files/update_service_spec.rb
@@ -24,7 +24,7 @@ describe Files::UpdateService do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe "#execute" do
diff --git a/spec/services/git_push_service_spec.rb b/spec/services/git_push_service_spec.rb
index 35826de5814..3f62e7e61e1 100644
--- a/spec/services/git_push_service_spec.rb
+++ b/spec/services/git_push_service_spec.rb
@@ -11,7 +11,7 @@ describe GitPushService, services: true do
   let(:ref)      { 'refs/heads/master' }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe 'with remote mirrors' do
@@ -267,8 +267,8 @@ describe GitPushService, services: true do
         expect(project.default_branch).to eq("master")
         execute_service(project, user, blankrev, 'newrev', ref)
         expect(project.protected_branches).not_to be_empty
-        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
-        expect(project.protected_branches.first.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
+        expect(project.protected_branches.first.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
       end
 
       it "when pushing a branch for the first time with default branch protection disabled" do
@@ -290,7 +290,7 @@ describe GitPushService, services: true do
 
         expect(project.protected_branches).not_to be_empty
         expect(project.protected_branches.last.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::DEVELOPER])
-        expect(project.protected_branches.last.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+        expect(project.protected_branches.last.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
       end
 
       it "when pushing a branch for the first time with an existing branch permission configured" do
@@ -315,7 +315,7 @@ describe GitPushService, services: true do
         expect(project.default_branch).to eq("master")
         execute_service(project, user, blankrev, 'newrev', ref)
         expect(project.protected_branches).not_to be_empty
-        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+        expect(project.protected_branches.first.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
         expect(project.protected_branches.first.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::DEVELOPER])
       end
 
@@ -442,7 +442,7 @@ describe GitPushService, services: true do
       allow_any_instance_of(ProcessCommitWorker).to receive(:build_commit)
         .and_return(closing_commit)
 
-      project.add_master(commit_author)
+      project.add_maintainer(commit_author)
     end
 
     context "to default branches" do
diff --git a/spec/services/groups/update_service_spec.rb b/spec/services/groups/update_service_spec.rb
index 1737fd0a9fc..48d689e11d4 100644
--- a/spec/services/groups/update_service_spec.rb
+++ b/spec/services/groups/update_service_spec.rb
@@ -12,7 +12,7 @@ describe Groups::UpdateService do
         let!(:service) { described_class.new(public_group, user, visibility_level: Gitlab::VisibilityLevel::INTERNAL) }
 
         before do
-          public_group.add_user(user, Gitlab::Access::MASTER)
+          public_group.add_user(user, Gitlab::Access::MAINTAINER)
           create(:project, :public, group: public_group)
         end
 
@@ -26,7 +26,7 @@ describe Groups::UpdateService do
         let!(:service) { described_class.new(internal_group, user, visibility_level: Gitlab::VisibilityLevel::PRIVATE) }
 
         before do
-          internal_group.add_user(user, Gitlab::Access::MASTER)
+          internal_group.add_user(user, Gitlab::Access::MAINTAINER)
           create(:project, :internal, group: internal_group)
         end
 
@@ -55,7 +55,7 @@ describe Groups::UpdateService do
   context "unauthorized visibility_level validation" do
     let!(:service) { described_class.new(internal_group, user, visibility_level: 99) }
     before do
-      internal_group.add_user(user, Gitlab::Access::MASTER)
+      internal_group.add_user(user, Gitlab::Access::MAINTAINER)
     end
 
     it "does not change permission level" do
@@ -68,7 +68,7 @@ describe Groups::UpdateService do
     let!(:service) { described_class.new(internal_group, user, path: SecureRandom.hex) }
 
     before do
-      internal_group.add_user(user, Gitlab::Access::MASTER)
+      internal_group.add_user(user, Gitlab::Access::MAINTAINER)
       create(:project, :internal, group: internal_group)
     end
 
diff --git a/spec/services/issues/close_service_spec.rb b/spec/services/issues/close_service_spec.rb
index 7ae49c06896..5e38d0aeb6a 100644
--- a/spec/services/issues/close_service_spec.rb
+++ b/spec/services/issues/close_service_spec.rb
@@ -9,7 +9,7 @@ describe Issues::CloseService do
   let!(:todo) { create(:todo, :assigned, user: user, project: project, target: issue, author: user2) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_guest(guest)
   end
diff --git a/spec/services/issues/create_service_spec.rb b/spec/services/issues/create_service_spec.rb
index 79bcdc41fb0..c61c1ddcb3d 100644
--- a/spec/services/issues/create_service_spec.rb
+++ b/spec/services/issues/create_service_spec.rb
@@ -13,8 +13,8 @@ describe Issues::CreateService do
       let(:labels) { create_pair(:label, project: project) }
 
       before do
-        project.add_master(user)
-        project.add_master(assignee)
+        project.add_maintainer(user)
+        project.add_maintainer(assignee)
       end
 
       let(:opts) do
@@ -130,7 +130,7 @@ describe Issues::CreateService do
         end
 
         it 'invalidates open issues counter for assignees when issue is assigned' do
-          project.add_master(assignee)
+          project.add_maintainer(assignee)
 
           described_class.new(project, user, opts).execute
 
@@ -160,7 +160,7 @@ describe Issues::CreateService do
     context 'issue create service' do
       context 'assignees' do
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'removes assignee when user id is invalid' do
@@ -180,7 +180,7 @@ describe Issues::CreateService do
         end
 
         it 'saves assignee when user id is valid' do
-          project.add_master(assignee)
+          project.add_maintainer(assignee)
           opts = { title: 'Title', description: 'Description', assignee_ids: [assignee.id] }
 
           issue = described_class.new(project, user, opts).execute
@@ -224,8 +224,8 @@ describe Issues::CreateService do
         end
 
         before do
-          project.add_master(user)
-          project.add_master(assignee)
+          project.add_maintainer(user)
+          project.add_maintainer(assignee)
         end
 
         it 'assigns and sets milestone to issuable from command' do
@@ -242,7 +242,7 @@ describe Issues::CreateService do
       let(:project) { merge_request.source_project }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       describe 'for a single discussion' do
diff --git a/spec/services/issues/reopen_service_spec.rb b/spec/services/issues/reopen_service_spec.rb
index 42e5d544f4c..3b617d4ca54 100644
--- a/spec/services/issues/reopen_service_spec.rb
+++ b/spec/services/issues/reopen_service_spec.rb
@@ -24,7 +24,7 @@ describe Issues::ReopenService do
       let(:user) { create(:user) }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'invalidates counter cache for assignees' do
diff --git a/spec/services/issues/update_service_spec.rb b/spec/services/issues/update_service_spec.rb
index 4cbf1a52e29..fa98d05c61b 100644
--- a/spec/services/issues/update_service_spec.rb
+++ b/spec/services/issues/update_service_spec.rb
@@ -18,7 +18,7 @@ describe Issues::UpdateService, :mailer do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_developer(user3)
   end
@@ -596,7 +596,7 @@ describe Issues::UpdateService, :mailer do
 
       context 'valid project' do
         before do
-          target_project.add_master(user)
+          target_project.add_maintainer(user)
         end
 
         it 'calls the move service with the proper issue and project' do
diff --git a/spec/services/lfs/unlock_file_service_spec.rb b/spec/services/lfs/unlock_file_service_spec.rb
index 948401d7bdc..539417644db 100644
--- a/spec/services/lfs/unlock_file_service_spec.rb
+++ b/spec/services/lfs/unlock_file_service_spec.rb
@@ -62,11 +62,11 @@ describe Lfs::UnlockFileService do
 
       context 'when forced' do
         let(:developer) { create(:user) }
-        let(:master)    { create(:user) }
+        let(:maintainer)    { create(:user) }
 
         before do
           project.add_developer(developer)
-          project.add_master(master)
+          project.add_maintainer(maintainer)
         end
 
         context 'by a regular user' do
@@ -86,7 +86,7 @@ describe Lfs::UnlockFileService do
         end
 
         context 'by a maintainer user' do
-          let(:current_user) { master }
+          let(:current_user) { maintainer }
           let(:params) do
             { id: lock.id,
               force: true }
diff --git a/spec/services/members/approve_access_request_service_spec.rb b/spec/services/members/approve_access_request_service_spec.rb
index 7076571b753..5c30f5b6a61 100644
--- a/spec/services/members/approve_access_request_service_spec.rb
+++ b/spec/services/members/approve_access_request_service_spec.rb
@@ -34,9 +34,9 @@ describe Members::ApproveAccessRequestService do
 
     context 'with a custom access level' do
       it 'returns a ProjectMember with the custom access level' do
-        member = described_class.new(current_user, access_level: Gitlab::Access::MASTER).execute(access_requester, opts)
+        member = described_class.new(current_user, access_level: Gitlab::Access::MAINTAINER).execute(access_requester, opts)
 
-        expect(member.access_level).to eq(Gitlab::Access::MASTER)
+        expect(member.access_level).to eq(Gitlab::Access::MAINTAINER)
       end
     end
   end
@@ -97,7 +97,7 @@ describe Members::ApproveAccessRequestService do
 
     context 'when current user can approve access request to the project' do
       before do
-        project.add_master(current_user)
+        project.add_maintainer(current_user)
         group.add_owner(current_user)
       end
 
diff --git a/spec/services/members/create_service_spec.rb b/spec/services/members/create_service_spec.rb
index 1831c62d788..5c01463d757 100644
--- a/spec/services/members/create_service_spec.rb
+++ b/spec/services/members/create_service_spec.rb
@@ -6,7 +6,7 @@ describe Members::CreateService do
   let(:project_user) { create(:user) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   it 'adds user to members' do
diff --git a/spec/services/members/destroy_service_spec.rb b/spec/services/members/destroy_service_spec.rb
index b4e9f6af43a..ef47b0a450b 100644
--- a/spec/services/members/destroy_service_spec.rb
+++ b/spec/services/members/destroy_service_spec.rb
@@ -114,7 +114,7 @@ describe Members::DestroyService do
 
     context 'when current user can destroy the given member' do
       before do
-        group_project.add_master(current_user)
+        group_project.add_maintainer(current_user)
         group.add_owner(current_user)
       end
 
@@ -170,7 +170,7 @@ describe Members::DestroyService do
 
     context 'when current user can destroy the given access requester' do
       before do
-        group_project.add_master(current_user)
+        group_project.add_maintainer(current_user)
         group.add_owner(current_user)
       end
 
@@ -210,7 +210,7 @@ describe Members::DestroyService do
 
     context 'when current user can destroy the given invited user' do
       before do
-        group_project.add_master(current_user)
+        group_project.add_maintainer(current_user)
         group.add_owner(current_user)
       end
 
diff --git a/spec/services/members/update_service_spec.rb b/spec/services/members/update_service_spec.rb
index a451272dd1f..6d19a95ffeb 100644
--- a/spec/services/members/update_service_spec.rb
+++ b/spec/services/members/update_service_spec.rb
@@ -8,7 +8,7 @@ describe Members::UpdateService do
   let(:permission) { :update }
   let(:member) { source.members_and_requesters.find_by!(user_id: member_user.id) }
   let(:params) do
-    { access_level: Gitlab::Access::MASTER }
+    { access_level: Gitlab::Access::MAINTAINER }
   end
 
   shared_examples 'a service raising Gitlab::Access::AccessDeniedError' do
@@ -23,7 +23,7 @@ describe Members::UpdateService do
       updated_member = described_class.new(current_user, params).execute(member, permission: permission)
 
       expect(updated_member).to be_valid
-      expect(updated_member.access_level).to eq(Gitlab::Access::MASTER)
+      expect(updated_member.access_level).to eq(Gitlab::Access::MAINTAINER)
     end
   end
 
@@ -44,7 +44,7 @@ describe Members::UpdateService do
 
   context 'when current user can update the given member' do
     before do
-      project.add_master(current_user)
+      project.add_maintainer(current_user)
       group.add_owner(current_user)
     end
 
diff --git a/spec/services/merge_requests/close_service_spec.rb b/spec/services/merge_requests/close_service_spec.rb
index 216e0cd4266..433ffbd97f0 100644
--- a/spec/services/merge_requests/close_service_spec.rb
+++ b/spec/services/merge_requests/close_service_spec.rb
@@ -9,7 +9,7 @@ describe MergeRequests::CloseService do
   let!(:todo) { create(:todo, :assigned, user: user, project: project, target: merge_request, author: user2) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_guest(guest)
   end
diff --git a/spec/services/merge_requests/create_service_spec.rb b/spec/services/merge_requests/create_service_spec.rb
index 736a50b2c15..06fb61baf33 100644
--- a/spec/services/merge_requests/create_service_spec.rb
+++ b/spec/services/merge_requests/create_service_spec.rb
@@ -23,7 +23,7 @@ describe MergeRequests::CreateService do
       let(:merge_request) { service.execute }
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         project.add_developer(assignee)
         allow(service).to receive(:execute_hooks)
       end
@@ -185,8 +185,8 @@ describe MergeRequests::CreateService do
         end
 
         before do
-          project.add_master(user)
-          project.add_master(assignee)
+          project.add_maintainer(user)
+          project.add_maintainer(assignee)
         end
 
         it 'assigns and sets milestone to issuable from command' do
@@ -202,7 +202,7 @@ describe MergeRequests::CreateService do
         let(:assignee) { create(:user) }
 
         before do
-          project.add_master(user)
+          project.add_maintainer(user)
         end
 
         it 'removes assignee_id when user id is invalid' do
@@ -222,7 +222,7 @@ describe MergeRequests::CreateService do
         end
 
         it 'saves assignee when user id is valid' do
-          project.add_master(assignee)
+          project.add_maintainer(assignee)
           opts = { title: 'Title', description: 'Description', assignee_id: assignee.id }
 
           merge_request = described_class.new(project, user, opts).execute
@@ -242,7 +242,7 @@ describe MergeRequests::CreateService do
           end
 
           it 'invalidates open merge request counter for assignees when merge request is assigned' do
-            project.add_master(assignee)
+            project.add_maintainer(assignee)
 
             described_class.new(project, user, opts).execute
 
@@ -286,7 +286,7 @@ describe MergeRequests::CreateService do
       end
 
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
         project.add_developer(assignee)
       end
 
@@ -316,7 +316,7 @@ describe MergeRequests::CreateService do
       context 'when user can not access source project' do
         before do
           target_project.add_developer(assignee)
-          target_project.add_master(user)
+          target_project.add_maintainer(user)
         end
 
         it 'raises an error' do
@@ -328,7 +328,7 @@ describe MergeRequests::CreateService do
       context 'when user can not access target project' do
         before do
           target_project.add_developer(assignee)
-          target_project.add_master(user)
+          target_project.add_maintainer(user)
         end
 
         it 'raises an error' do
@@ -372,7 +372,7 @@ describe MergeRequests::CreateService do
 
       before do
         project.add_developer(assignee)
-        project.add_master(user)
+        project.add_maintainer(user)
       end
 
       it 'ignores source_project_id' do
diff --git a/spec/services/merge_requests/ff_merge_service_spec.rb b/spec/services/merge_requests/ff_merge_service_spec.rb
index 28f56d19657..fe673de46aa 100644
--- a/spec/services/merge_requests/ff_merge_service_spec.rb
+++ b/spec/services/merge_requests/ff_merge_service_spec.rb
@@ -13,7 +13,7 @@ describe MergeRequests::FfMergeService do
   let(:project) { merge_request.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
   end
 
diff --git a/spec/services/merge_requests/merge_service_spec.rb b/spec/services/merge_requests/merge_service_spec.rb
index 33eea2cf5c3..9dd235f6660 100644
--- a/spec/services/merge_requests/merge_service_spec.rb
+++ b/spec/services/merge_requests/merge_service_spec.rb
@@ -7,7 +7,7 @@ describe MergeRequests::MergeService do
   let(:project) { merge_request.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
   end
 
diff --git a/spec/services/merge_requests/post_merge_service_spec.rb b/spec/services/merge_requests/post_merge_service_spec.rb
index 46e4e3559dc..ba2b062875b 100644
--- a/spec/services/merge_requests/post_merge_service_spec.rb
+++ b/spec/services/merge_requests/post_merge_service_spec.rb
@@ -6,7 +6,7 @@ describe MergeRequests::PostMergeService do
   let(:project) { merge_request.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/services/merge_requests/rebase_service_spec.rb b/spec/services/merge_requests/rebase_service_spec.rb
index 4daa25f8cf2..2703da7ae44 100644
--- a/spec/services/merge_requests/rebase_service_spec.rb
+++ b/spec/services/merge_requests/rebase_service_spec.rb
@@ -15,7 +15,7 @@ describe MergeRequests::RebaseService do
   subject(:service) { described_class.new(project, user, {}) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/services/merge_requests/reopen_service_spec.rb b/spec/services/merge_requests/reopen_service_spec.rb
index 9ee37c51d95..e10eaa95da4 100644
--- a/spec/services/merge_requests/reopen_service_spec.rb
+++ b/spec/services/merge_requests/reopen_service_spec.rb
@@ -8,7 +8,7 @@ describe MergeRequests::ReopenService do
   let(:project) { merge_request.project }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_guest(guest)
   end
diff --git a/spec/services/merge_requests/update_service_spec.rb b/spec/services/merge_requests/update_service_spec.rb
index 443dcd92a8b..f0029af83cc 100644
--- a/spec/services/merge_requests/update_service_spec.rb
+++ b/spec/services/merge_requests/update_service_spec.rb
@@ -19,7 +19,7 @@ describe MergeRequests::UpdateService, :mailer do
   end
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_developer(user3)
   end
diff --git a/spec/services/milestones/close_service_spec.rb b/spec/services/milestones/close_service_spec.rb
index adad73f7e11..3f7a544ea0a 100644
--- a/spec/services/milestones/close_service_spec.rb
+++ b/spec/services/milestones/close_service_spec.rb
@@ -6,7 +6,7 @@ describe Milestones::CloseService do
   let(:milestone) { create(:milestone, title: "Milestone v1.2", project: project) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/services/milestones/create_service_spec.rb b/spec/services/milestones/create_service_spec.rb
index f2a18c7295a..0c91112026f 100644
--- a/spec/services/milestones/create_service_spec.rb
+++ b/spec/services/milestones/create_service_spec.rb
@@ -7,7 +7,7 @@ describe Milestones::CreateService do
   describe '#execute' do
     context "valid params" do
       before do
-        project.add_master(user)
+        project.add_maintainer(user)
 
         opts = {
           title: 'v2.1.9',
diff --git a/spec/services/milestones/destroy_service_spec.rb b/spec/services/milestones/destroy_service_spec.rb
index 9703780b0e9..6f3612501f4 100644
--- a/spec/services/milestones/destroy_service_spec.rb
+++ b/spec/services/milestones/destroy_service_spec.rb
@@ -8,7 +8,7 @@ describe Milestones::DestroyService do
   let!(:merge_request) { create(:merge_request, source_project: project, milestone: milestone) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
   end
 
   def service
diff --git a/spec/services/milestones/promote_service_spec.rb b/spec/services/milestones/promote_service_spec.rb
index a0a2843b676..df212d912e9 100644
--- a/spec/services/milestones/promote_service_spec.rb
+++ b/spec/services/milestones/promote_service_spec.rb
@@ -10,7 +10,7 @@ describe Milestones::PromoteService do
 
   describe '#execute' do
     before do
-      group.add_master(user)
+      group.add_maintainer(user)
     end
 
     context 'validations' do
diff --git a/spec/services/notes/create_service_spec.rb b/spec/services/notes/create_service_spec.rb
index 2b2b983494f..0fd37c95e42 100644
--- a/spec/services/notes/create_service_spec.rb
+++ b/spec/services/notes/create_service_spec.rb
@@ -10,7 +10,7 @@ describe Notes::CreateService do
 
   describe '#execute' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context "valid params" do
diff --git a/spec/services/notes/post_process_service_spec.rb b/spec/services/notes/post_process_service_spec.rb
index 4e2ab919f0f..5aae0d711c3 100644
--- a/spec/services/notes/post_process_service_spec.rb
+++ b/spec/services/notes/post_process_service_spec.rb
@@ -7,7 +7,7 @@ describe Notes::PostProcessService do
 
   describe '#execute' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
       note_opts = {
         note: 'Awesome comment',
         noteable_type: 'Issue',
diff --git a/spec/services/notes/quick_actions_service_spec.rb b/spec/services/notes/quick_actions_service_spec.rb
index b1e218821d2..784dac55454 100644
--- a/spec/services/notes/quick_actions_service_spec.rb
+++ b/spec/services/notes/quick_actions_service_spec.rb
@@ -3,11 +3,11 @@ require 'spec_helper'
 describe Notes::QuickActionsService do
   shared_context 'note on noteable' do
     let(:project) { create(:project) }
-    let(:master) { create(:user).tap { |u| project.add_master(u) } }
+    let(:maintainer) { create(:user).tap { |u| project.add_maintainer(u) } }
     let(:assignee) { create(:user) }
 
     before do
-      project.add_master(assignee)
+      project.add_maintainer(assignee)
     end
   end
 
@@ -184,7 +184,7 @@ describe Notes::QuickActionsService do
     include_context 'note on noteable'
 
     it 'delegates to the class method' do
-      service = described_class.new(project, master)
+      service = described_class.new(project, maintainer)
       note = create(:note_on_issue, project: project)
 
       expect(described_class).to receive(:supported?).with(note)
@@ -194,7 +194,7 @@ describe Notes::QuickActionsService do
   end
 
   describe '#execute' do
-    let(:service) { described_class.new(project, master) }
+    let(:service) { described_class.new(project, maintainer) }
 
     it_behaves_like 'note on noteable that supports quick actions' do
       let(:note) { build(:note_on_issue, project: project) }
@@ -212,19 +212,19 @@ describe Notes::QuickActionsService do
   context 'CE restriction for issue assignees' do
     describe '/assign' do
       let(:project) { create(:project) }
-      let(:master) { create(:user).tap { |u| project.add_master(u) } }
+      let(:maintainer) { create(:user).tap { |u| project.add_maintainer(u) } }
       let(:assignee) { create(:user) }
-      let(:master) { create(:user) }
-      let(:service) { described_class.new(project, master) }
+      let(:maintainer) { create(:user) }
+      let(:service) { described_class.new(project, maintainer) }
       let(:note) { create(:note_on_issue, note: note_text, project: project) }
 
       let(:note_text) do
-        %(/assign @#{assignee.username} @#{master.username}\n")
+        %(/assign @#{assignee.username} @#{maintainer.username}\n")
       end
 
       before do
-        project.add_master(master)
-        project.add_master(assignee)
+        project.add_maintainer(maintainer)
+        project.add_maintainer(assignee)
       end
 
       it 'adds only one assignee from the list' do
diff --git a/spec/services/notes/update_service_spec.rb b/spec/services/notes/update_service_spec.rb
index 65b1d613998..533dcdcd6cd 100644
--- a/spec/services/notes/update_service_spec.rb
+++ b/spec/services/notes/update_service_spec.rb
@@ -9,7 +9,7 @@ describe Notes::UpdateService do
   let(:note) { create(:note, project: project, noteable: issue, author: user, note: "Old note #{user2.to_reference}") }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     project.add_developer(user2)
     project.add_developer(user3)
   end
diff --git a/spec/services/notification_service_spec.rb b/spec/services/notification_service_spec.rb
index ab91176737d..c442f6fe32f 100644
--- a/spec/services/notification_service_spec.rb
+++ b/spec/services/notification_service_spec.rb
@@ -172,9 +172,9 @@ describe NotificationService, :mailer do
 
       before do
         build_team(note.project)
-        project.add_master(issue.author)
-        project.add_master(assignee)
-        project.add_master(note.author)
+        project.add_maintainer(issue.author)
+        project.add_maintainer(assignee)
+        project.add_maintainer(note.author)
 
         @u_custom_off = create_user_with_notification(:custom, 'custom_off')
         project.add_guest(@u_custom_off)
@@ -255,8 +255,8 @@ describe NotificationService, :mailer do
       describe 'new note on issue in project that belongs to a group' do
         before do
           note.project.namespace_id = group.id
-          group.add_user(@u_watcher, GroupMember::MASTER)
-          group.add_user(@u_custom_global, GroupMember::MASTER)
+          group.add_user(@u_watcher, GroupMember::MAINTAINER)
+          group.add_user(@u_custom_global, GroupMember::MAINTAINER)
           note.project.save
 
           @u_watcher.notification_settings_for(note.project).participating!
@@ -373,7 +373,7 @@ describe NotificationService, :mailer do
       before do
         build_team(note.project)
         build_group(note.project)
-        note.project.add_master(note.author)
+        note.project.add_maintainer(note.author)
         add_users_with_subscription(note.project, issue)
         reset_delivered_emails!
       end
@@ -436,7 +436,7 @@ describe NotificationService, :mailer do
         project.add_guest(@u_guest_watcher)
         project.add_guest(@u_guest_custom)
         add_member_for_parent_group(@pg_watcher, project)
-        note.project.add_master(note.author)
+        note.project.add_maintainer(note.author)
         reset_delivered_emails!
       end
 
@@ -577,8 +577,8 @@ describe NotificationService, :mailer do
 
       before do
         build_team(note.project)
-        project.add_master(merge_request.author)
-        project.add_master(merge_request.assignee)
+        project.add_maintainer(merge_request.author)
+        project.add_maintainer(merge_request.assignee)
       end
 
       describe '#new_note' do
@@ -1088,8 +1088,8 @@ describe NotificationService, :mailer do
     let(:merge_request) { create :merge_request, source_project: project, assignee: create(:user), description: 'cc @participant' }
 
     before do
-      project.add_master(merge_request.author)
-      project.add_master(merge_request.assignee)
+      project.add_maintainer(merge_request.author)
+      project.add_maintainer(merge_request.assignee)
       build_team(merge_request.target_project)
       add_users_with_subscription(merge_request.target_project, merge_request)
       update_custom_notification(:new_merge_request, @u_guest_custom, resource: project)
@@ -1529,13 +1529,13 @@ describe NotificationService, :mailer do
     let(:added_user) { create(:user) }
 
     describe '#new_access_request' do
-      let(:master) { create(:user) }
+      let(:maintainer) { create(:user) }
       let(:owner) { create(:user) }
       let(:developer) { create(:user) }
       let!(:group) do
         create(:group, :public, :access_requestable) do |group|
           group.add_owner(owner)
-          group.add_master(master)
+          group.add_maintainer(maintainer)
           group.add_developer(developer)
         end
       end
@@ -1544,11 +1544,11 @@ describe NotificationService, :mailer do
         reset_delivered_emails!
       end
 
-      it 'sends notification to group owners_and_masters' do
+      it 'sends notification to group owners_and_maintainers' do
         group.request_access(added_user)
 
         should_email(owner)
-        should_email(master)
+        should_email(maintainer)
         should_not_email(developer)
       end
     end
@@ -1601,11 +1601,11 @@ describe NotificationService, :mailer do
       context 'for a project in a user namespace' do
         let(:project) do
           create(:project, :public, :access_requestable) do |project|
-            project.add_master(project.owner)
+            project.add_maintainer(project.owner)
           end
         end
 
-        it 'sends notification to project owners_and_masters' do
+        it 'sends notification to project owners_and_maintainers' do
           project.request_access(added_user)
 
           should_only_email(project.owner)
@@ -1621,7 +1621,7 @@ describe NotificationService, :mailer do
           reset_delivered_emails!
         end
 
-        it 'sends notification to group owners_and_masters' do
+        it 'sends notification to group owners_and_maintainers' do
           project.request_access(added_user)
 
           should_only_email(group_owner)
@@ -1759,11 +1759,11 @@ describe NotificationService, :mailer do
       end
 
       before do
-        project.add_master(u_member)
-        project.add_master(u_watcher)
-        project.add_master(u_custom_notification_unset)
-        project.add_master(u_custom_notification_enabled)
-        project.add_master(u_custom_notification_disabled)
+        project.add_maintainer(u_member)
+        project.add_maintainer(u_watcher)
+        project.add_maintainer(u_custom_notification_unset)
+        project.add_maintainer(u_custom_notification_enabled)
+        project.add_maintainer(u_custom_notification_disabled)
 
         reset_delivered_emails!
       end
@@ -1903,15 +1903,15 @@ describe NotificationService, :mailer do
     set(:u_blocked) { create(:user, :blocked) }
     set(:u_silence) { create_user_with_notification(:disabled, 'silent', project) }
     set(:u_owner)   { project.owner }
-    set(:u_master1) { create(:user) }
-    set(:u_master2) { create(:user) }
+    set(:u_maintainer1) { create(:user) }
+    set(:u_maintainer2) { create(:user) }
     set(:u_developer) { create(:user) }
 
     before do
-      project.add_master(u_blocked)
-      project.add_master(u_silence)
-      project.add_master(u_master1)
-      project.add_master(u_master2)
+      project.add_maintainer(u_blocked)
+      project.add_maintainer(u_silence)
+      project.add_maintainer(u_maintainer1)
+      project.add_maintainer(u_maintainer2)
       project.add_developer(u_developer)
 
       reset_delivered_emails!
@@ -1926,12 +1926,12 @@ describe NotificationService, :mailer do
       describe "##{sym}" do
         subject(:notify!) { notification.send(sym, domain) }
 
-        it 'emails current watching masters' do
+        it 'emails current watching maintainers' do
           expect(Notify).to receive(:"#{sym}_email").at_least(:once).and_call_original
 
           notify!
 
-          should_only_email(u_master1, u_master2, u_owner)
+          should_only_email(u_maintainer1, u_maintainer2, u_owner)
         end
 
         it 'emails nobody if the project is missing' do
@@ -1945,26 +1945,26 @@ describe NotificationService, :mailer do
     end
 
     describe '#pages_domain_verification_failed' do
-      it 'emails current watching masters' do
+      it 'emails current watching maintainers' do
         notification.pages_domain_verification_failed(domain)
 
-        should_only_email(u_master1, u_master2, u_owner)
+        should_only_email(u_maintainer1, u_maintainer2, u_owner)
       end
     end
 
     describe '#pages_domain_enabled' do
-      it 'emails current watching masters' do
+      it 'emails current watching maintainers' do
         notification.pages_domain_enabled(domain)
 
-        should_only_email(u_master1, u_master2, u_owner)
+        should_only_email(u_maintainer1, u_maintainer2, u_owner)
       end
     end
 
     describe '#pages_domain_disabled' do
-      it 'emails current watching masters' do
+      it 'emails current watching maintainers' do
         notification.pages_domain_disabled(domain)
 
-        should_only_email(u_master1, u_master2, u_owner)
+        should_only_email(u_maintainer1, u_maintainer2, u_owner)
       end
     end
   end
@@ -1988,15 +1988,15 @@ describe NotificationService, :mailer do
     @u_guest_watcher = create_user_with_notification(:watch, 'guest_watching')
     @u_guest_custom = create_user_with_notification(:custom, 'guest_custom')
 
-    project.add_master(@u_watcher)
-    project.add_master(@u_participating)
-    project.add_master(@u_participant_mentioned)
-    project.add_master(@u_disabled)
-    project.add_master(@u_mentioned)
-    project.add_master(@u_committer)
-    project.add_master(@u_not_mentioned)
-    project.add_master(@u_lazy_participant)
-    project.add_master(@u_custom_global)
+    project.add_maintainer(@u_watcher)
+    project.add_maintainer(@u_participating)
+    project.add_maintainer(@u_participant_mentioned)
+    project.add_maintainer(@u_disabled)
+    project.add_maintainer(@u_mentioned)
+    project.add_maintainer(@u_committer)
+    project.add_maintainer(@u_not_mentioned)
+    project.add_maintainer(@u_lazy_participant)
+    project.add_maintainer(@u_custom_global)
   end
 
   # Users in the project's group but not part of project's team
@@ -2011,7 +2011,7 @@ describe NotificationService, :mailer do
 
     # Group member: global=watch, group=global
     @g_global_watcher ||= create_global_setting_for(create(:user), :watch)
-    group.add_users([@g_watcher, @g_global_watcher], :master)
+    group.add_users([@g_watcher, @g_global_watcher], :maintainer)
 
     group
   end
@@ -2050,7 +2050,7 @@ describe NotificationService, :mailer do
 
     project.reload
 
-    project.group.parent.add_master(user)
+    project.group.parent.add_maintainer(user)
   end
 
   def should_email_nested_group_user(user, times: 1, recipients: email_recipients)
@@ -2072,11 +2072,11 @@ describe NotificationService, :mailer do
     @subscribed_participant = create_global_setting_for(create(:user, username: 'subscribed_participant'), :participating)
     @watcher_and_subscriber = create_global_setting_for(create(:user), :watch)
 
-    project.add_master(@subscribed_participant)
-    project.add_master(@subscriber)
-    project.add_master(@unsubscriber)
-    project.add_master(@watcher_and_subscriber)
-    project.add_master(@unsubscribed_mentioned)
+    project.add_maintainer(@subscribed_participant)
+    project.add_maintainer(@subscriber)
+    project.add_maintainer(@unsubscriber)
+    project.add_maintainer(@watcher_and_subscriber)
+    project.add_maintainer(@unsubscribed_mentioned)
 
     issuable.subscriptions.create(user: @unsubscribed_mentioned, project: project, subscribed: false)
     issuable.subscriptions.create(user: @subscriber, project: project, subscribed: true)
diff --git a/spec/services/projects/create_service_spec.rb b/spec/services/projects/create_service_spec.rb
index 4e4329e898e..fd69fe04053 100644
--- a/spec/services/projects/create_service_spec.rb
+++ b/spec/services/projects/create_service_spec.rb
@@ -23,7 +23,7 @@ describe Projects::CreateService, '#execute' do
 
       expect(project).to be_valid
       expect(project.owner).to eq(user)
-      expect(project.team.masters).to include(user)
+      expect(project.team.maintainers).to include(user)
       expect(project.namespace).to eq(user.namespace)
     end
   end
@@ -47,7 +47,7 @@ describe Projects::CreateService, '#execute' do
 
       expect(project).to be_persisted
       expect(project.owner).to eq(user)
-      expect(project.team.masters).to contain_exactly(user)
+      expect(project.team.maintainers).to contain_exactly(user)
       expect(project.namespace).to eq(user.namespace)
     end
   end
diff --git a/spec/services/projects/move_access_service_spec.rb b/spec/services/projects/move_access_service_spec.rb
index a820ebd91f4..88d9d93c33b 100644
--- a/spec/services/projects/move_access_service_spec.rb
+++ b/spec/services/projects/move_access_service_spec.rb
@@ -4,18 +4,18 @@ describe Projects::MoveAccessService do
   let(:user) { create(:user) }
   let(:group) { create(:group) }
   let(:project_with_access) { create(:project, namespace: user.namespace) }
-  let(:master_user) { create(:user) }
+  let(:maintainer_user) { create(:user) }
   let(:reporter_user) { create(:user) }
   let(:developer_user) { create(:user) }
-  let(:master_group) { create(:group) }
+  let(:maintainer_group) { create(:group) }
   let(:reporter_group) { create(:group) }
   let(:developer_group) { create(:group) }
 
   before do
-    project_with_access.add_master(master_user)
+    project_with_access.add_maintainer(maintainer_user)
     project_with_access.add_developer(developer_user)
     project_with_access.add_reporter(reporter_user)
-    project_with_access.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+    project_with_access.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
     project_with_access.project_group_links.create(group: developer_group, group_access: Gitlab::Access::DEVELOPER)
     project_with_access.project_group_links.create(group: reporter_group, group_access: Gitlab::Access::REPORTER)
   end
@@ -87,7 +87,7 @@ describe Projects::MoveAccessService do
       let(:options) { { remove_remaining_elements: false } }
 
       it 'does not remove remaining memberships' do
-        target_project.add_master(master_user)
+        target_project.add_maintainer(maintainer_user)
 
         subject.execute(project_with_access, options)
 
@@ -95,7 +95,7 @@ describe Projects::MoveAccessService do
       end
 
       it 'does not remove remaining group links' do
-        target_project.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+        target_project.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
 
         subject.execute(project_with_access, options)
 
diff --git a/spec/services/projects/move_project_authorizations_service_spec.rb b/spec/services/projects/move_project_authorizations_service_spec.rb
index f7262b9b887..b4408393624 100644
--- a/spec/services/projects/move_project_authorizations_service_spec.rb
+++ b/spec/services/projects/move_project_authorizations_service_spec.rb
@@ -4,7 +4,7 @@ describe Projects::MoveProjectAuthorizationsService do
   let!(:user) { create(:user) }
   let(:project_with_users) { create(:project, namespace: user.namespace) }
   let(:target_project) { create(:project, namespace: user.namespace) }
-  let(:master_user) { create(:user) }
+  let(:maintainer_user) { create(:user) }
   let(:reporter_user) { create(:user) }
   let(:developer_user) { create(:user) }
 
@@ -12,7 +12,7 @@ describe Projects::MoveProjectAuthorizationsService do
 
   describe '#execute' do
     before do
-      project_with_users.add_master(master_user)
+      project_with_users.add_maintainer(maintainer_user)
       project_with_users.add_developer(developer_user)
       project_with_users.add_reporter(reporter_user)
     end
@@ -28,7 +28,7 @@ describe Projects::MoveProjectAuthorizationsService do
     end
 
     it 'does not move existent authorizations to the current project' do
-      target_project.add_master(developer_user)
+      target_project.add_maintainer(developer_user)
       target_project.add_developer(reporter_user)
 
       expect(project_with_users.authorized_users.count).to eq 4
@@ -44,7 +44,7 @@ describe Projects::MoveProjectAuthorizationsService do
       let(:options) { { remove_remaining_elements: false } }
 
       it 'does not remove remaining project authorizations' do
-        target_project.add_master(developer_user)
+        target_project.add_maintainer(developer_user)
         target_project.add_developer(reporter_user)
 
         subject.execute(project_with_users, options)
diff --git a/spec/services/projects/move_project_group_links_service_spec.rb b/spec/services/projects/move_project_group_links_service_spec.rb
index e3d06e6d3d7..7ca8cf304fe 100644
--- a/spec/services/projects/move_project_group_links_service_spec.rb
+++ b/spec/services/projects/move_project_group_links_service_spec.rb
@@ -4,7 +4,7 @@ describe Projects::MoveProjectGroupLinksService do
   let!(:user) { create(:user) }
   let(:project_with_groups) { create(:project, namespace: user.namespace) }
   let(:target_project) { create(:project, namespace: user.namespace) }
-  let(:master_group) { create(:group) }
+  let(:maintainer_group) { create(:group) }
   let(:reporter_group) { create(:group) }
   let(:developer_group) { create(:group) }
 
@@ -12,7 +12,7 @@ describe Projects::MoveProjectGroupLinksService do
 
   describe '#execute' do
     before do
-      project_with_groups.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+      project_with_groups.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
       project_with_groups.project_group_links.create(group: developer_group, group_access: Gitlab::Access::DEVELOPER)
       project_with_groups.project_group_links.create(group: reporter_group, group_access: Gitlab::Access::REPORTER)
     end
@@ -28,7 +28,7 @@ describe Projects::MoveProjectGroupLinksService do
     end
 
     it 'does not move existent group links in the current project' do
-      target_project.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+      target_project.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
       target_project.project_group_links.create(group: developer_group, group_access: Gitlab::Access::DEVELOPER)
 
       expect(project_with_groups.project_group_links.count).to eq 3
@@ -53,7 +53,7 @@ describe Projects::MoveProjectGroupLinksService do
       let(:options) { { remove_remaining_elements: false } }
 
       it 'does not remove remaining project group links' do
-        target_project.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+        target_project.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
         target_project.project_group_links.create(group: developer_group, group_access: Gitlab::Access::DEVELOPER)
 
         subject.execute(project_with_groups, options)
diff --git a/spec/services/projects/move_project_members_service_spec.rb b/spec/services/projects/move_project_members_service_spec.rb
index 9c9a2d2fde1..c8c0eac1f13 100644
--- a/spec/services/projects/move_project_members_service_spec.rb
+++ b/spec/services/projects/move_project_members_service_spec.rb
@@ -4,7 +4,7 @@ describe Projects::MoveProjectMembersService do
   let!(:user) { create(:user) }
   let(:project_with_users) { create(:project, namespace: user.namespace) }
   let(:target_project) { create(:project, namespace: user.namespace) }
-  let(:master_user) { create(:user) }
+  let(:maintainer_user) { create(:user) }
   let(:reporter_user) { create(:user) }
   let(:developer_user) { create(:user) }
 
@@ -12,7 +12,7 @@ describe Projects::MoveProjectMembersService do
 
   describe '#execute' do
     before do
-      project_with_users.add_master(master_user)
+      project_with_users.add_maintainer(maintainer_user)
       project_with_users.add_developer(developer_user)
       project_with_users.add_reporter(reporter_user)
     end
@@ -28,7 +28,7 @@ describe Projects::MoveProjectMembersService do
     end
 
     it 'does not move existent members to the current project' do
-      target_project.add_master(developer_user)
+      target_project.add_maintainer(developer_user)
       target_project.add_developer(reporter_user)
 
       expect(project_with_users.project_members.count).to eq 4
@@ -53,7 +53,7 @@ describe Projects::MoveProjectMembersService do
       let(:options) { { remove_remaining_elements: false } }
 
       it 'does not remove remaining project members' do
-        target_project.add_master(developer_user)
+        target_project.add_maintainer(developer_user)
         target_project.add_developer(reporter_user)
 
         subject.execute(project_with_users, options)
diff --git a/spec/services/projects/overwrite_project_service_spec.rb b/spec/services/projects/overwrite_project_service_spec.rb
index 252c61f4224..c7900629f5f 100644
--- a/spec/services/projects/overwrite_project_service_spec.rb
+++ b/spec/services/projects/overwrite_project_service_spec.rb
@@ -96,10 +96,10 @@ describe Projects::OverwriteProjectService do
 
     context 'when project with elements' do
       it_behaves_like 'overwrite actions' do
-        let(:master_user) { create(:user) }
+        let(:maintainer_user) { create(:user) }
         let(:reporter_user) { create(:user) }
         let(:developer_user) { create(:user) }
-        let(:master_group) { create(:group) }
+        let(:maintainer_group) { create(:group) }
         let(:reporter_group) { create(:group) }
         let(:developer_group) { create(:group) }
 
@@ -107,10 +107,10 @@ describe Projects::OverwriteProjectService do
           create_list(:deploy_keys_project, 2, project: project_from)
           create_list(:notification_setting, 2, source: project_from)
           create_list(:users_star_project, 2, project: project_from)
-          project_from.project_group_links.create(group: master_group, group_access: Gitlab::Access::MASTER)
+          project_from.project_group_links.create(group: maintainer_group, group_access: Gitlab::Access::MAINTAINER)
           project_from.project_group_links.create(group: developer_group, group_access: Gitlab::Access::DEVELOPER)
           project_from.project_group_links.create(group: reporter_group, group_access: Gitlab::Access::REPORTER)
-          project_from.add_master(master_user)
+          project_from.add_maintainer(maintainer_user)
           project_from.add_developer(developer_user)
           project_from.add_reporter(reporter_user)
         end
diff --git a/spec/services/projects/transfer_service_spec.rb b/spec/services/projects/transfer_service_spec.rb
index 5100987c2fe..7e85f599afb 100644
--- a/spec/services/projects/transfer_service_spec.rb
+++ b/spec/services/projects/transfer_service_spec.rb
@@ -247,7 +247,7 @@ describe Projects::TransferService do
     let(:group_member) { create(:user) }
 
     before do
-      group.add_user(owner, GroupMember::MASTER)
+      group.add_user(owner, GroupMember::MAINTAINER)
       group.add_user(group_member, GroupMember::DEVELOPER)
     end
 
diff --git a/spec/services/protected_branches/create_service_spec.rb b/spec/services/protected_branches/create_service_spec.rb
index 786493c3577..79b744142c6 100644
--- a/spec/services/protected_branches/create_service_spec.rb
+++ b/spec/services/protected_branches/create_service_spec.rb
@@ -6,8 +6,8 @@ describe ProtectedBranches::CreateService do
   let(:params) do
     {
       name: 'master',
-      merge_access_levels_attributes: [{ access_level: Gitlab::Access::MASTER }],
-      push_access_levels_attributes: [{ access_level: Gitlab::Access::MASTER }]
+      merge_access_levels_attributes: [{ access_level: Gitlab::Access::MAINTAINER }],
+      push_access_levels_attributes: [{ access_level: Gitlab::Access::MAINTAINER }]
     }
   end
 
@@ -16,8 +16,8 @@ describe ProtectedBranches::CreateService do
 
     it 'creates a new protected branch' do
       expect { service.execute }.to change(ProtectedBranch, :count).by(1)
-      expect(project.protected_branches.last.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
-      expect(project.protected_branches.last.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+      expect(project.protected_branches.last.push_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
+      expect(project.protected_branches.last.merge_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
     end
 
     context 'when user does not have permission' do
diff --git a/spec/services/protected_tags/create_service_spec.rb b/spec/services/protected_tags/create_service_spec.rb
index c3ed95aaebf..b16acf1d36c 100644
--- a/spec/services/protected_tags/create_service_spec.rb
+++ b/spec/services/protected_tags/create_service_spec.rb
@@ -6,7 +6,7 @@ describe ProtectedTags::CreateService do
   let(:params) do
     {
       name: 'master',
-      create_access_levels_attributes: [{ access_level: Gitlab::Access::MASTER }]
+      create_access_levels_attributes: [{ access_level: Gitlab::Access::MAINTAINER }]
     }
   end
 
@@ -15,7 +15,7 @@ describe ProtectedTags::CreateService do
 
     it 'creates a new protected tag' do
       expect { service.execute }.to change(ProtectedTag, :count).by(1)
-      expect(project.protected_tags.last.create_access_levels.map(&:access_level)).to eq([Gitlab::Access::MASTER])
+      expect(project.protected_tags.last.create_access_levels.map(&:access_level)).to eq([Gitlab::Access::MAINTAINER])
     end
   end
 end
diff --git a/spec/services/search/global_service_spec.rb b/spec/services/search/global_service_spec.rb
index d8dba26e194..980545b8083 100644
--- a/spec/services/search/global_service_spec.rb
+++ b/spec/services/search/global_service_spec.rb
@@ -10,7 +10,7 @@ describe Search::GlobalService do
   let!(:public_project)   { create(:project, :public, name: 'searchable_public_project') }
 
   before do
-    found_project.add_master(user)
+    found_project.add_maintainer(user)
   end
 
   describe '#execute' do
diff --git a/spec/services/search_service_spec.rb b/spec/services/search_service_spec.rb
index 02de83a2df8..e5e036c7d44 100644
--- a/spec/services/search_service_spec.rb
+++ b/spec/services/search_service_spec.rb
@@ -16,7 +16,7 @@ describe SearchService do
   let(:public_project) { create(:project, :public, name: 'public_project') }
 
   before do
-    accessible_project.add_master(user)
+    accessible_project.add_maintainer(user)
   end
 
   describe '#project' do
diff --git a/spec/services/users/refresh_authorized_projects_service_spec.rb b/spec/services/users/refresh_authorized_projects_service_spec.rb
index e5fde07a6eb..122b96ef216 100644
--- a/spec/services/users/refresh_authorized_projects_service_spec.rb
+++ b/spec/services/users/refresh_authorized_projects_service_spec.rb
@@ -30,10 +30,10 @@ describe Users::RefreshAuthorizedProjectsService do
     it 'updates the authorized projects of the user' do
       project2 = create(:project)
       to_remove = user.project_authorizations
-        .create!(project: project2, access_level: Gitlab::Access::MASTER)
+        .create!(project: project2, access_level: Gitlab::Access::MAINTAINER)
 
       expect(service).to receive(:update_authorizations)
-        .with([to_remove.project_id], [[user.id, project.id, Gitlab::Access::MASTER]])
+        .with([to_remove.project_id], [[user.id, project.id, Gitlab::Access::MAINTAINER]])
 
       service.execute_without_lease
     end
@@ -45,7 +45,7 @@ describe Users::RefreshAuthorizedProjectsService do
         .create!(project: project, access_level: Gitlab::Access::DEVELOPER)
 
       expect(service).to receive(:update_authorizations)
-        .with([to_remove.project_id], [[user.id, project.id, Gitlab::Access::MASTER]])
+        .with([to_remove.project_id], [[user.id, project.id, Gitlab::Access::MAINTAINER]])
 
       service.execute_without_lease
     end
@@ -76,14 +76,14 @@ describe Users::RefreshAuthorizedProjectsService do
     it 'inserts authorizations that should be added' do
       user.project_authorizations.delete_all
 
-      service.update_authorizations([], [[user.id, project.id, Gitlab::Access::MASTER]])
+      service.update_authorizations([], [[user.id, project.id, Gitlab::Access::MAINTAINER]])
 
       authorizations = user.project_authorizations
 
       expect(authorizations.length).to eq(1)
       expect(authorizations[0].user_id).to eq(user.id)
       expect(authorizations[0].project_id).to eq(project.id)
-      expect(authorizations[0].access_level).to eq(Gitlab::Access::MASTER)
+      expect(authorizations[0].access_level).to eq(Gitlab::Access::MAINTAINER)
     end
   end
 
@@ -99,12 +99,12 @@ describe Users::RefreshAuthorizedProjectsService do
     end
 
     it 'sets the values to the access levels' do
-      expect(hash.values).to eq([Gitlab::Access::MASTER])
+      expect(hash.values).to eq([Gitlab::Access::MAINTAINER])
     end
 
     context 'personal projects' do
       it 'includes the project with the right access level' do
-        expect(hash[project.id]).to eq(Gitlab::Access::MASTER)
+        expect(hash[project.id]).to eq(Gitlab::Access::MAINTAINER)
       end
     end
 
@@ -139,11 +139,11 @@ describe Users::RefreshAuthorizedProjectsService do
       let!(:other_project) { create(:project, group: nested_group) }
 
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'includes the project with the right access level' do
-        expect(hash[other_project.id]).to eq(Gitlab::Access::MASTER)
+        expect(hash[other_project.id]).to eq(Gitlab::Access::MAINTAINER)
       end
     end
 
@@ -153,7 +153,7 @@ describe Users::RefreshAuthorizedProjectsService do
       let!(:project_group_link) { create(:project_group_link, project: other_project, group: group, group_access: Gitlab::Access::GUEST) }
 
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'includes the project with the right access level' do
@@ -168,7 +168,7 @@ describe Users::RefreshAuthorizedProjectsService do
       let!(:project_group_link) { create(:project_group_link, project: other_project, group: nested_group, group_access: Gitlab::Access::DEVELOPER) }
 
       before do
-        group.add_master(user)
+        group.add_maintainer(user)
       end
 
       it 'includes the project with the right access level' do
@@ -194,7 +194,7 @@ describe Users::RefreshAuthorizedProjectsService do
       value = hash.values[0]
 
       expect(value.project_id).to eq(project.id)
-      expect(value.access_level).to eq(Gitlab::Access::MASTER)
+      expect(value.access_level).to eq(Gitlab::Access::MAINTAINER)
     end
   end
 
@@ -219,7 +219,7 @@ describe Users::RefreshAuthorizedProjectsService do
       end
 
       it 'includes the access level for every row' do
-        expect(row.access_level).to eq(Gitlab::Access::MASTER)
+        expect(row.access_level).to eq(Gitlab::Access::MAINTAINER)
       end
     end
   end
@@ -235,7 +235,7 @@ describe Users::RefreshAuthorizedProjectsService do
       rows = service.fresh_authorizations.to_a
 
       expect(rows.length).to eq(1)
-      expect(rows.first.access_level).to eq(Gitlab::Access::MASTER)
+      expect(rows.first.access_level).to eq(Gitlab::Access::MAINTAINER)
     end
 
     context 'every returned row' do
@@ -246,7 +246,7 @@ describe Users::RefreshAuthorizedProjectsService do
       end
 
       it 'includes the access level' do
-        expect(row.access_level).to eq(Gitlab::Access::MASTER)
+        expect(row.access_level).to eq(Gitlab::Access::MAINTAINER)
       end
     end
   end
diff --git a/spec/support/features/issuable_slash_commands_shared_examples.rb b/spec/support/features/issuable_slash_commands_shared_examples.rb
index 1bd6c25100e..9b44c532ff6 100644
--- a/spec/support/features/issuable_slash_commands_shared_examples.rb
+++ b/spec/support/features/issuable_slash_commands_shared_examples.rb
@@ -4,7 +4,7 @@
 shared_examples 'issuable record that supports quick actions in its description and notes' do |issuable_type|
   include Spec::Support::Helpers::Features::NotesHelpers
 
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:project) do
     case issuable_type
     when :merge_request
@@ -19,9 +19,9 @@ shared_examples 'issuable record that supports quick actions in its description
   let(:new_url_opts) { {} }
 
   before do
-    project.add_master(master)
+    project.add_maintainer(maintainer)
 
-    gitlab_sign_in(master)
+    gitlab_sign_in(maintainer)
   end
 
   after do
@@ -210,31 +210,31 @@ shared_examples 'issuable record that supports quick actions in its description
         expect(page).not_to have_content '/todo'
         expect(page).to have_content 'Commands applied'
 
-        todos = TodosFinder.new(master).execute
+        todos = TodosFinder.new(maintainer).execute
         todo = todos.first
 
         expect(todos.size).to eq 1
         expect(todo).to be_pending
         expect(todo.target).to eq issuable
-        expect(todo.author).to eq master
-        expect(todo.user).to eq master
+        expect(todo.author).to eq maintainer
+        expect(todo.user).to eq maintainer
       end
     end
 
     context "with a note marking the #{issuable_type} as done" do
       before do
-        TodoService.new.mark_todo(issuable, master)
+        TodoService.new.mark_todo(issuable, maintainer)
       end
 
       it "creates a new todo for the #{issuable_type}" do
-        todos = TodosFinder.new(master).execute
+        todos = TodosFinder.new(maintainer).execute
         todo = todos.first
 
         expect(todos.size).to eq 1
         expect(todos.first).to be_pending
         expect(todo.target).to eq issuable
-        expect(todo.author).to eq master
-        expect(todo.user).to eq master
+        expect(todo.author).to eq maintainer
+        expect(todo.user).to eq maintainer
 
         add_note("/done")
 
@@ -247,31 +247,31 @@ shared_examples 'issuable record that supports quick actions in its description
 
     context "with a note subscribing to the #{issuable_type}" do
       it "creates a new todo for the #{issuable_type}" do
-        expect(issuable.subscribed?(master, project)).to be_falsy
+        expect(issuable.subscribed?(maintainer, project)).to be_falsy
 
         add_note("/subscribe")
 
         expect(page).not_to have_content '/subscribe'
         expect(page).to have_content 'Commands applied'
 
-        expect(issuable.subscribed?(master, project)).to be_truthy
+        expect(issuable.subscribed?(maintainer, project)).to be_truthy
       end
     end
 
     context "with a note unsubscribing to the #{issuable_type} as done" do
       before do
-        issuable.subscribe(master, project)
+        issuable.subscribe(maintainer, project)
       end
 
       it "creates a new todo for the #{issuable_type}" do
-        expect(issuable.subscribed?(master, project)).to be_truthy
+        expect(issuable.subscribed?(maintainer, project)).to be_truthy
 
         add_note("/unsubscribe")
 
         expect(page).not_to have_content '/unsubscribe'
         expect(page).to have_content 'Commands applied'
 
-        expect(issuable.subscribed?(master, project)).to be_falsy
+        expect(issuable.subscribed?(maintainer, project)).to be_falsy
       end
     end
 
@@ -282,7 +282,7 @@ shared_examples 'issuable record that supports quick actions in its description
         expect(page).not_to have_content '/assign me'
         expect(page).to have_content 'Commands applied'
 
-        expect(issuable.reload.assignees).to eq [master]
+        expect(issuable.reload.assignees).to eq [maintainer]
       end
     end
   end
diff --git a/spec/support/helpers/markdown_feature.rb b/spec/support/helpers/markdown_feature.rb
index 39e94ad53de..346f5b1cc4d 100644
--- a/spec/support/helpers/markdown_feature.rb
+++ b/spec/support/helpers/markdown_feature.rb
@@ -24,7 +24,7 @@ class MarkdownFeature
 
   def project
     @project ||= create(:project, :repository, group: group).tap do |project|
-      project.add_master(user)
+      project.add_maintainer(user)
     end
   end
 
diff --git a/spec/support/import_export/export_file_helper.rb b/spec/support/import_export/export_file_helper.rb
index 562423afc2a..4d925ac77f4 100644
--- a/spec/support/import_export/export_file_helper.rb
+++ b/spec/support/import_export/export_file_helper.rb
@@ -37,7 +37,7 @@ module ExportFileHelper
 
     event = create(:event, :created, target: milestone, project: project, author: user, action: 5)
     create(:push_event_payload, event: event)
-    create(:project_member, :master, user: user, project: project)
+    create(:project_member, :maintainer, user: user, project: project)
     create(:ci_variable, project: project)
     create(:ci_trigger, project: project)
     key = create(:deploy_key)
diff --git a/spec/support/matchers/access_matchers_for_controller.rb b/spec/support/matchers/access_matchers_for_controller.rb
index 42a9ed9ff34..429401a5da8 100644
--- a/spec/support/matchers/access_matchers_for_controller.rb
+++ b/spec/support/matchers/access_matchers_for_controller.rb
@@ -24,7 +24,7 @@ module AccessMatchersForController
     when User
       user = role
       sign_in(user)
-    when *Gitlab::Access.sym_options_with_owner.keys # owner, master, developer, reporter, guest
+    when *Gitlab::Access.sym_options_with_owner.keys # owner, maintainer, developer, reporter, guest
       raise ArgumentError, "cannot emulate #{role} without membership parent" unless membership
 
       user = create_user_by_membership(role, membership)
diff --git a/spec/support/services/issuable_create_service_slash_commands_shared_examples.rb b/spec/support/services/issuable_create_service_slash_commands_shared_examples.rb
index 7b064162726..8b4cffaac19 100644
--- a/spec/support/services/issuable_create_service_slash_commands_shared_examples.rb
+++ b/spec/support/services/issuable_create_service_slash_commands_shared_examples.rb
@@ -3,7 +3,7 @@
 
 shared_examples 'new issuable record that supports quick actions' do
   let!(:project) { create(:project, :repository) }
-  let(:user) { create(:user).tap { |u| project.add_master(u) } }
+  let(:user) { create(:user).tap { |u| project.add_maintainer(u) } }
   let(:assignee) { create(:user) }
   let!(:milestone) { create(:milestone, project: project) }
   let!(:labels) { create_list(:label, 3, project: project) }
@@ -12,7 +12,7 @@ shared_examples 'new issuable record that supports quick actions' do
   let(:issuable) { described_class.new(project, user, params).execute }
 
   before do
-    project.add_master(assignee)
+    project.add_maintainer(assignee)
   end
 
   context 'with labels in command only' do
diff --git a/spec/support/shared_examples/features/creatable_merge_request_shared_examples.rb b/spec/support/shared_examples/features/creatable_merge_request_shared_examples.rb
index 5a569d233bc..7038a366144 100644
--- a/spec/support/shared_examples/features/creatable_merge_request_shared_examples.rb
+++ b/spec/support/shared_examples/features/creatable_merge_request_shared_examples.rb
@@ -10,9 +10,9 @@ RSpec.shared_examples 'a creatable merge request' do
   let!(:label2)      { create(:label, project: target_project) }
 
   before do
-    source_project.add_master(user)
-    target_project.add_master(user)
-    target_project.add_master(user2)
+    source_project.add_maintainer(user)
+    target_project.add_maintainer(user)
+    target_project.add_maintainer(user2)
 
     sign_in(user)
     visit project_new_merge_request_path(
diff --git a/spec/support/shared_examples/features/editable_merge_request_shared_examples.rb b/spec/support/shared_examples/features/editable_merge_request_shared_examples.rb
index 645db41cddc..3057845061b 100644
--- a/spec/support/shared_examples/features/editable_merge_request_shared_examples.rb
+++ b/spec/support/shared_examples/features/editable_merge_request_shared_examples.rb
@@ -15,9 +15,9 @@ RSpec.shared_examples 'an editable merge request' do
   end
 
   before do
-    source_project.add_master(user)
-    target_project.add_master(user)
-    target_project.add_master(user2)
+    source_project.add_maintainer(user)
+    target_project.add_maintainer(user)
+    target_project.add_maintainer(user2)
 
     sign_in(user)
     visit edit_project_merge_request_path(target_project, merge_request)
diff --git a/spec/support/shared_examples/features/master_manages_access_requests_shared_example.rb b/spec/support/shared_examples/features/master_manages_access_requests_shared_example.rb
index b29bb3c2fc0..75ad948e42c 100644
--- a/spec/support/shared_examples/features/master_manages_access_requests_shared_example.rb
+++ b/spec/support/shared_examples/features/master_manages_access_requests_shared_example.rb
@@ -1,20 +1,20 @@
-RSpec.shared_examples 'Master manages access requests' do
+RSpec.shared_examples 'Maintainer manages access requests' do
   let(:user) { create(:user) }
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
 
   before do
     entity.request_access(user)
-    entity.respond_to?(:add_owner) ? entity.add_owner(master) : entity.add_master(master)
-    sign_in(master)
+    entity.respond_to?(:add_owner) ? entity.add_owner(maintainer) : entity.add_maintainer(maintainer)
+    sign_in(maintainer)
   end
 
-  it 'master can see access requests' do
+  it 'maintainer can see access requests' do
     visit members_page_path
 
     expect_visible_access_request(entity, user)
   end
 
-  it 'master can grant access', :js do
+  it 'maintainer can grant access', :js do
     visit members_page_path
 
     expect_visible_access_request(entity, user)
@@ -28,7 +28,7 @@ RSpec.shared_examples 'Master manages access requests' do
     end
   end
 
-  it 'master can deny access', :js do
+  it 'maintainer can deny access', :js do
     visit members_page_path
 
     expect_visible_access_request(entity, user)
diff --git a/spec/support/shared_examples/models/members_notifications_shared_example.rb b/spec/support/shared_examples/models/members_notifications_shared_example.rb
index 76611e54306..ef5cea3f2a5 100644
--- a/spec/support/shared_examples/models/members_notifications_shared_example.rb
+++ b/spec/support/shared_examples/models/members_notifications_shared_example.rb
@@ -21,7 +21,7 @@ RSpec.shared_examples 'members notifications' do |entity_type|
     it "calls NotificationService.update_#{entity_type}_member" do
       expect(notification_service).to receive(:"update_#{entity_type}_member").with(member)
 
-      member.update_attribute(:access_level, Member::MASTER)
+      member.update_attribute(:access_level, Member::MAINTAINER)
     end
 
     it "does not send an email when the access level has not changed" do
diff --git a/spec/views/projects/imports/new.html.haml_spec.rb b/spec/views/projects/imports/new.html.haml_spec.rb
index fc389641fcd..11fe144d1d2 100644
--- a/spec/views/projects/imports/new.html.haml_spec.rb
+++ b/spec/views/projects/imports/new.html.haml_spec.rb
@@ -9,7 +9,7 @@ describe "projects/imports/new.html.haml" do
     before do
       project.import_state.update(last_error: '<a href="http://googl.com">Foo</a>')
       sign_in(user)
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     it "escapes HTML in import errors" do
diff --git a/spec/views/projects/pipeline_schedules/_pipeline_schedule.html.haml_spec.rb b/spec/views/projects/pipeline_schedules/_pipeline_schedule.html.haml_spec.rb
index 6e7d8db99c4..5d60d6bc5e7 100644
--- a/spec/views/projects/pipeline_schedules/_pipeline_schedule.html.haml_spec.rb
+++ b/spec/views/projects/pipeline_schedules/_pipeline_schedule.html.haml_spec.rb
@@ -2,7 +2,7 @@ require 'spec_helper'
 
 describe 'projects/pipeline_schedules/_pipeline_schedule' do
   let(:owner) { create(:user) }
-  let(:master) { create(:user) }
+  let(:maintainer) { create(:user) }
   let(:project) { create(:project) }
   let(:pipeline_schedule) { create(:ci_pipeline_schedule, :nightly, project: project) }
 
@@ -17,10 +17,10 @@ describe 'projects/pipeline_schedules/_pipeline_schedule' do
 
   context 'taking ownership of schedule' do
     context 'when non-owner is signed in' do
-      let(:user) { master }
+      let(:user) { maintainer }
 
       before do
-        allow(view).to receive(:can?).with(master, :take_ownership_pipeline_schedule, pipeline_schedule).and_return(true)
+        allow(view).to receive(:can?).with(maintainer, :take_ownership_pipeline_schedule, pipeline_schedule).and_return(true)
       end
 
       it 'non-owner can take ownership of pipeline' do
diff --git a/spec/views/shared/notes/_form.html.haml_spec.rb b/spec/views/shared/notes/_form.html.haml_spec.rb
index 50980718e66..c57319869f3 100644
--- a/spec/views/shared/notes/_form.html.haml_spec.rb
+++ b/spec/views/shared/notes/_form.html.haml_spec.rb
@@ -7,7 +7,7 @@ describe 'shared/notes/_form' do
   let(:project) { create(:project, :repository) }
 
   before do
-    project.add_master(user)
+    project.add_maintainer(user)
     assign(:project, project)
     assign(:note, note)
 
diff --git a/spec/workers/merge_worker_spec.rb b/spec/workers/merge_worker_spec.rb
index c861a56497e..b57c275c770 100644
--- a/spec/workers/merge_worker_spec.rb
+++ b/spec/workers/merge_worker_spec.rb
@@ -8,7 +8,7 @@ describe MergeWorker do
     let!(:author) { merge_request.author }
 
     before do
-      source_project.add_master(author)
+      source_project.add_maintainer(author)
       source_project.repository.expire_branches_cache
     end
 
diff --git a/spec/workers/pipeline_schedule_worker_spec.rb b/spec/workers/pipeline_schedule_worker_spec.rb
index e7a4ac0f3d6..a2fe4734d47 100644
--- a/spec/workers/pipeline_schedule_worker_spec.rb
+++ b/spec/workers/pipeline_schedule_worker_spec.rb
@@ -18,7 +18,7 @@ describe PipelineScheduleWorker do
 
   context 'when the schedule is runnable by the user' do
     before do
-      project.add_master(user)
+      project.add_maintainer(user)
     end
 
     context 'when there is a scheduled pipeline within next_run_at' do

From 51da26fd550977ac92ef62c4444872e0a2e40a2c Mon Sep 17 00:00:00 2001
From: Sean McGivern <sean@gitlab.com>
Date: Wed, 11 Jul 2018 15:36:45 +0100
Subject: [PATCH 087/113] Fix long changelog file name

---
 ... process-commits-as-normal-in-forks-with-missing-upstream.yml} | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 rename changelogs/unreleased/{45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml => process-commits-as-normal-in-forks-with-missing-upstream.yml} (100%)

diff --git a/changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml b/changelogs/unreleased/process-commits-as-normal-in-forks-with-missing-upstream.yml
similarity index 100%
rename from changelogs/unreleased/45592-nomethoderror-undefined-method-commit-for-nil-nilclass-in-sidekiq-caused-by-a-merge-commit-in-a-forked-project-with-upstream-project-deleted.yml
rename to changelogs/unreleased/process-commits-as-normal-in-forks-with-missing-upstream.yml

From ca692fbcc1b639ea599b5d0fdf80e90e7a6aa5bf Mon Sep 17 00:00:00 2001
From: Nick Thomas <nick@gitlab.com>
Date: Wed, 11 Apr 2018 02:22:21 +0100
Subject: [PATCH 088/113] Fix an exception seen using the online terminal

---
 lib/gitlab/kubernetes.rb           |  7 ++++++-
 spec/lib/gitlab/kubernetes_spec.rb | 15 +++++++++++++++
 2 files changed, 21 insertions(+), 1 deletion(-)

diff --git a/lib/gitlab/kubernetes.rb b/lib/gitlab/kubernetes.rb
index da43bd0af4b..15c5ece2350 100644
--- a/lib/gitlab/kubernetes.rb
+++ b/lib/gitlab/kubernetes.rb
@@ -1,6 +1,10 @@
 module Gitlab
   # Helper methods to do with Kubernetes network services & resources
   module Kubernetes
+    def self.build_header_hash
+      Hash.new { |h, k| h[k] = [] }
+    end
+
     # This is the comand that is run to start a terminal session. Kubernetes
     # expects `command=foo&command=bar, not `command[]=foo&command[]=bar`
     EXEC_COMMAND = URI.encode_www_form(
@@ -37,13 +41,14 @@ module Gitlab
           selectors:    { pod: pod_name, container: container["name"] },
           url:          container_exec_url(api_url, namespace, pod_name, container["name"]),
           subprotocols: ['channel.k8s.io'],
-          headers:      Hash.new { |h, k| h[k] = [] },
+          headers:      ::Gitlab::Kubernetes.build_header_hash,
           created_at:   created_at
         }
       end
     end
 
     def add_terminal_auth(terminal, token:, max_session_time:, ca_pem: nil)
+      terminal[:headers] ||= ::Gitlab::Kubernetes.build_header_hash
       terminal[:headers]['Authorization'] << "Bearer #{token}"
       terminal[:max_session_time] = max_session_time
       terminal[:ca_pem] = ca_pem if ca_pem.present?
diff --git a/spec/lib/gitlab/kubernetes_spec.rb b/spec/lib/gitlab/kubernetes_spec.rb
index 34b33772578..5c03a2ce7d3 100644
--- a/spec/lib/gitlab/kubernetes_spec.rb
+++ b/spec/lib/gitlab/kubernetes_spec.rb
@@ -70,4 +70,19 @@ describe Gitlab::Kubernetes do
       it { is_expected.to eq(YAML.load_file(path)) }
     end
   end
+
+  describe '#add_terminal_auth' do
+    it 'adds authentication parameters to a hash' do
+      terminal = { original: 'value' }
+
+      add_terminal_auth(terminal, token: 'foo', max_session_time: 0, ca_pem: 'bar')
+
+      expect(terminal).to eq(
+        original: 'value',
+        headers: { 'Authorization' => ['Bearer foo'] },
+        max_session_time: 0,
+        ca_pem: 'bar'
+      )
+    end
+  end
 end

From f72adcc9819d49d438b3f4fb34c806eebe948ae2 Mon Sep 17 00:00:00 2001
From: Dan Davison <ddavison@gitlab.com>
Date: Wed, 11 Jul 2018 14:59:00 +0000
Subject: [PATCH 089/113] Milestone tests

---
 .../layouts/nav/sidebar/_project.html.haml    |  2 +-
 app/views/projects/milestones/_form.html.haml |  6 ++--
 app/views/projects/milestones/index.html.haml |  2 +-
 app/views/projects/milestones/show.html.haml  |  2 +-
 .../shared/_new_project_item_select.html.haml |  4 +--
 .../issuable/_milestone_dropdown.html.haml    |  2 +-
 .../shared/issuable/form/_metadata.html.haml  |  2 +-
 qa/qa.rb                                      |  6 ++++
 qa/qa/factory/resource/merge_request.rb       | 11 ++++--
 qa/qa/factory/resource/project_milestone.rb   | 36 +++++++++++++++++++
 qa/qa/page/menu/side.rb                       |  7 ++++
 qa/qa/page/merge_request/new.rb               | 15 ++++++++
 qa/qa/page/merge_request/show.rb              |  6 ++++
 qa/qa/page/project/milestone/index.rb         | 17 +++++++++
 qa/qa/page/project/milestone/new.rb           | 27 ++++++++++++++
 .../features/merge_request/create_spec.rb     | 26 ++++++++++----
 16 files changed, 152 insertions(+), 19 deletions(-)
 create mode 100644 qa/qa/factory/resource/project_milestone.rb
 create mode 100644 qa/qa/page/project/milestone/index.rb
 create mode 100644 qa/qa/page/project/milestone/new.rb

diff --git a/app/views/layouts/nav/sidebar/_project.html.haml b/app/views/layouts/nav/sidebar/_project.html.haml
index 00d75b3399b..33de74dbaa2 100644
--- a/app/views/layouts/nav/sidebar/_project.html.haml
+++ b/app/views/layouts/nav/sidebar/_project.html.haml
@@ -122,7 +122,7 @@
             = render_if_exists 'projects/sidebar/issues_service_desk'
 
             = nav_link(controller: :milestones) do
-              = link_to project_milestones_path(@project), title: 'Milestones' do
+              = link_to project_milestones_path(@project), title: 'Milestones', class: 'qa-milestones-link' do
                 %span
                   = _('Milestones')
       - if project_nav_tab? :external_issue_tracker
diff --git a/app/views/projects/milestones/_form.html.haml b/app/views/projects/milestones/_form.html.haml
index ace094a671a..28f0a167128 100644
--- a/app/views/projects/milestones/_form.html.haml
+++ b/app/views/projects/milestones/_form.html.haml
@@ -7,12 +7,12 @@
       .form-group.row
         = f.label :title, "Title", class: "col-form-label col-sm-2"
         .col-sm-10
-          = f.text_field :title, maxlength: 255, class: "form-control", required: true, autofocus: true
+          = f.text_field :title, maxlength: 255, class: "qa-milestone-title form-control", required: true, autofocus: true
       .form-group.row.milestone-description
         = f.label :description, "Description", class: "col-form-label col-sm-2"
         .col-sm-10
           = render layout: 'projects/md_preview', locals: { url: preview_markdown_path(@project) } do
-            = render 'projects/zen', f: f, attr: :description, classes: 'note-textarea', placeholder: 'Write milestone description...'
+            = render 'projects/zen', f: f, attr: :description, classes: 'qa-milestone-description note-textarea', placeholder: 'Write milestone description...'
             = render 'shared/notes/hints'
           .clearfix
           .error-alert
@@ -20,7 +20,7 @@
 
   .form-actions
     - if @milestone.new_record?
-      = f.submit 'Create milestone', class: "btn-create btn"
+      = f.submit 'Create milestone', class: "btn-create btn qa-milestone-create-button"
       = link_to "Cancel", project_milestones_path(@project), class: "btn btn-cancel"
     - else
       = f.submit 'Save changes', class: "btn-save btn"
diff --git a/app/views/projects/milestones/index.html.haml b/app/views/projects/milestones/index.html.haml
index 5b0197ed58c..26d2ea8447b 100644
--- a/app/views/projects/milestones/index.html.haml
+++ b/app/views/projects/milestones/index.html.haml
@@ -8,7 +8,7 @@
     .nav-controls
       = render 'shared/milestones_sort_dropdown'
       - if can?(current_user, :admin_milestone, @project)
-        = link_to new_project_milestone_path(@project), class: "btn btn-new", title: 'New milestone' do
+        = link_to new_project_milestone_path(@project), class: "btn btn-new qa-new-project-milestone", title: 'New milestone' do
           New milestone
 
   .milestones
diff --git a/app/views/projects/milestones/show.html.haml b/app/views/projects/milestones/show.html.haml
index f7b04c436a6..2a9e20c2caa 100644
--- a/app/views/projects/milestones/show.html.haml
+++ b/app/views/projects/milestones/show.html.haml
@@ -60,7 +60,7 @@
         = icon('angle-double-left')
 
   .detail-page-description.milestone-detail
-    %h2.title
+    %h2.title.qa-milestone-title
       = markdown_field(@milestone, :title)
 
     %div
diff --git a/app/views/shared/_new_project_item_select.html.haml b/app/views/shared/_new_project_item_select.html.haml
index ac2ebb701a5..d38d161047b 100644
--- a/app/views/shared/_new_project_item_select.html.haml
+++ b/app/views/shared/_new_project_item_select.html.haml
@@ -1,7 +1,7 @@
 - if any_projects?(@projects)
   .project-item-select-holder.btn-group
-    %a.btn.btn-new.new-project-item-link{ href: '', data: { label: local_assigns[:label], type: local_assigns[:type] } }
+    %a.btn.btn-new.new-project-item-link.qa-new-project-item-link{ href: '', data: { label: local_assigns[:label], type: local_assigns[:type] } }
       = icon('spinner spin')
     = project_select_tag :project_path, class: "project-item-select", data: { include_groups: local_assigns[:include_groups], order_by: 'last_activity_at', relative_path: local_assigns[:path] }, with_feature_enabled: local_assigns[:with_feature_enabled]
-    %button.btn.btn-new.new-project-item-select-button
+    %button.btn.btn-new.new-project-item-select-button.qa-new-project-item-select-button
       = icon('caret-down')
diff --git a/app/views/shared/issuable/_milestone_dropdown.html.haml b/app/views/shared/issuable/_milestone_dropdown.html.haml
index 37625a4a163..c2da363b8c6 100644
--- a/app/views/shared/issuable/_milestone_dropdown.html.haml
+++ b/app/views/shared/issuable/_milestone_dropdown.html.haml
@@ -7,7 +7,7 @@
 - dropdown_title = local_assigns.fetch(:dropdown_title, "Filter by milestone")
 - if selected.present? || params[:milestone_title].present?
   = hidden_field_tag(name, name == :milestone_title ? selected_text : selected.id)
-= dropdown_tag(milestone_dropdown_label(selected_text), options: { title: dropdown_title, toggle_class: "js-milestone-select js-filter-submit #{extra_class}", filter: true, dropdown_class: "dropdown-menu-selectable dropdown-menu-milestone",
+= dropdown_tag(milestone_dropdown_label(selected_text), options: { title: dropdown_title, toggle_class: "qa-issuable-milestone-dropdown js-milestone-select js-filter-submit #{extra_class}", filter: true, dropdown_class: "qa-issuable-dropdown-menu-milestone dropdown-menu-selectable dropdown-menu-milestone",
   placeholder: "Search milestones", footer_content: project.present?, data: { show_no: true, show_menu_above: show_menu_above, show_any: show_any, show_upcoming: show_upcoming, show_started: show_started, field_name: name, selected: selected_text, project_id: project.try(:id), milestones: milestones_filter_dropdown_path, default_label: "Milestone" } }) do
   - if project
     %ul.dropdown-footer-list
diff --git a/app/views/shared/issuable/form/_metadata.html.haml b/app/views/shared/issuable/form/_metadata.html.haml
index bd87bb38e77..3b017c62a80 100644
--- a/app/views/shared/issuable/form/_metadata.html.haml
+++ b/app/views/shared/issuable/form/_metadata.html.haml
@@ -18,7 +18,7 @@
       = form.label :milestone_id, "Milestone", class: "col-form-label #{has_due_date ? "col-md-2 col-lg-4" : "col-sm-2"}"
       .col-sm-10{ class: ("col-md-8" if has_due_date) }
         .issuable-form-select-holder
-          = render "shared/issuable/milestone_dropdown", selected: issuable.milestone, name: "#{issuable.class.model_name.param_key}[milestone_id]", show_any: false, show_upcoming: false, show_started: false, extra_class: "js-issuable-form-dropdown js-dropdown-keep-input", dropdown_title: "Select milestone"
+          = render "shared/issuable/milestone_dropdown", selected: issuable.milestone, name: "#{issuable.class.model_name.param_key}[milestone_id]", show_any: false, show_upcoming: false, show_started: false, extra_class: "qa-issuable-milestone-dropdown js-issuable-form-dropdown js-dropdown-keep-input", dropdown_title: "Select milestone"
     .form-group.row
       - has_labels = @labels && @labels.any?
       = form.label :label_ids, "Labels", class: "col-form-label #{has_due_date ? "col-md-2 col-lg-4" : "col-sm-2"}"
diff --git a/qa/qa.rb b/qa/qa.rb
index 6d0521f8ed0..be7bcf7a2ad 100644
--- a/qa/qa.rb
+++ b/qa/qa.rb
@@ -47,6 +47,7 @@ module QA
       autoload :Runner, 'qa/factory/resource/runner'
       autoload :PersonalAccessToken, 'qa/factory/resource/personal_access_token'
       autoload :KubernetesCluster, 'qa/factory/resource/kubernetes_cluster'
+      autoload :ProjectMilestone, 'qa/factory/resource/project_milestone'
       autoload :Wiki, 'qa/factory/resource/wiki'
     end
 
@@ -166,6 +167,11 @@ module QA
         autoload :Index, 'qa/page/project/issue/index'
       end
 
+      module Milestone
+        autoload :New, 'qa/page/project/milestone/new'
+        autoload :Index, 'qa/page/project/milestone/index'
+      end
+
       module Operations
         module Kubernetes
           autoload :Index, 'qa/page/project/operations/kubernetes/index'
diff --git a/qa/qa/factory/resource/merge_request.rb b/qa/qa/factory/resource/merge_request.rb
index 24d3597d993..ddb62bd0a68 100644
--- a/qa/qa/factory/resource/merge_request.rb
+++ b/qa/qa/factory/resource/merge_request.rb
@@ -7,7 +7,10 @@ module QA
         attr_accessor :title,
                       :description,
                       :source_branch,
-                      :target_branch
+                      :target_branch,
+                      :assignee,
+                      :milestone,
+                      :labels
 
         product :project do |factory|
           factory.project
@@ -41,16 +44,18 @@ module QA
           @description = 'This is a test merge request'
           @source_branch = "qa-test-feature-#{SecureRandom.hex(8)}"
           @target_branch = "master"
+          @assignee = nil
+          @milestone = nil
+          @labels = []
         end
 
         def fabricate!
           project.visit!
-
           Page::Project::Show.act { new_merge_request }
-
           Page::MergeRequest::New.perform do |page|
             page.fill_title(@title)
             page.fill_description(@description)
+            page.choose_milestone(@milestone) if @milestone
             page.create_merge_request
           end
         end
diff --git a/qa/qa/factory/resource/project_milestone.rb b/qa/qa/factory/resource/project_milestone.rb
new file mode 100644
index 00000000000..47a5e74204f
--- /dev/null
+++ b/qa/qa/factory/resource/project_milestone.rb
@@ -0,0 +1,36 @@
+module QA
+  module Factory
+    module Resource
+      class ProjectMilestone < Factory::Base
+        attr_accessor :description
+        attr_reader :title
+
+        dependency Factory::Resource::Project, as: :project
+
+        product(:title) { |factory| factory.title }
+
+        def title=(title)
+          @title = "#{title}-#{SecureRandom.hex(4)}"
+          @description = 'A milestone'
+        end
+
+        def fabricate!
+          project.visit!
+
+          Page::Menu::Side.act do
+            click_issues
+            click_milestones
+          end
+
+          Page::Project::Milestone::Index.act { click_new_milestone }
+
+          Page::Project::Milestone::New.perform do |milestone_new|
+            milestone_new.set_title(@title)
+            milestone_new.set_description(@description)
+            milestone_new.create_new_milestone
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/menu/side.rb b/qa/qa/page/menu/side.rb
index 333d871c51a..c14a835c2c9 100644
--- a/qa/qa/page/menu/side.rb
+++ b/qa/qa/page/menu/side.rb
@@ -16,6 +16,7 @@ module QA
           element :operations_section, "class: 'shortcuts-operations'"
           element :activity_link, "title: 'Activity'"
           element :wiki_link_text, "Wiki"
+          element :milestones_link
         end
 
         view 'app/assets/javascripts/fly_out_nav.js' do
@@ -70,6 +71,12 @@ module QA
           end
         end
 
+        def click_milestones
+          within_sidebar do
+            click_element :milestones_link
+          end
+        end
+
         def click_wiki
           within_sidebar do
             click_link('Wiki')
diff --git a/qa/qa/page/merge_request/new.rb b/qa/qa/page/merge_request/new.rb
index ec94ff4ac98..83cc4bbbace 100644
--- a/qa/qa/page/merge_request/new.rb
+++ b/qa/qa/page/merge_request/new.rb
@@ -10,10 +10,18 @@ module QA
           element :issuable_form_title
         end
 
+        view 'app/views/shared/issuable/form/_metadata.html.haml' do
+          element :issuable_milestone_dropdown
+        end
+
         view 'app/views/shared/form_elements/_description.html.haml' do
           element :issuable_form_description
         end
 
+        view 'app/views/shared/issuable/_milestone_dropdown.html.haml' do
+          element :issuable_dropdown_menu_milestone
+        end
+
         def create_merge_request
           click_element :issuable_create_button
         end
@@ -25,6 +33,13 @@ module QA
         def fill_description(description)
           fill_element :issuable_form_description, description
         end
+
+        def choose_milestone(milestone)
+          click_element :issuable_milestone_dropdown
+          within_element(:issuable_dropdown_menu_milestone) do
+            click_on milestone.title
+          end
+        end
       end
     end
   end
diff --git a/qa/qa/page/merge_request/show.rb b/qa/qa/page/merge_request/show.rb
index c200f14f4fb..f3200160a78 100644
--- a/qa/qa/page/merge_request/show.rb
+++ b/qa/qa/page/merge_request/show.rb
@@ -79,6 +79,12 @@ module QA
 
           click_element :squash_checkbox
         end
+
+        def has_milestone?(milestone_title)
+          page.within('.issuable-sidebar') do
+            !!find("[href*='/milestones/']", text: milestone_title, wait: 1)
+          end
+        end
       end
     end
   end
diff --git a/qa/qa/page/project/milestone/index.rb b/qa/qa/page/project/milestone/index.rb
new file mode 100644
index 00000000000..a1519c9ef1c
--- /dev/null
+++ b/qa/qa/page/project/milestone/index.rb
@@ -0,0 +1,17 @@
+module QA
+  module Page
+    module Project
+      module Milestone
+        class Index < Page::Base
+          view 'app/views/projects/milestones/index.html.haml' do
+            element :new_project_milestone
+          end
+
+          def click_new_milestone
+            click_element :new_project_milestone
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/project/milestone/new.rb b/qa/qa/page/project/milestone/new.rb
new file mode 100644
index 00000000000..992ef89004b
--- /dev/null
+++ b/qa/qa/page/project/milestone/new.rb
@@ -0,0 +1,27 @@
+module QA
+  module Page
+    module Project
+      module Milestone
+        class New < Page::Base
+          view 'app/views/projects/milestones/_form.html.haml' do
+            element :milestone_create_button
+            element :milestone_title
+            element :milestone_description
+          end
+
+          def set_title(title)
+            fill_element :milestone_title, title
+          end
+
+          def set_description(description)
+            fill_element :milestone_description, description
+          end
+
+          def create_new_milestone
+            click_element :milestone_create_button
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/specs/features/merge_request/create_spec.rb b/qa/qa/specs/features/merge_request/create_spec.rb
index 18e8c1f35af..5807e539699 100644
--- a/qa/qa/specs/features/merge_request/create_spec.rb
+++ b/qa/qa/specs/features/merge_request/create_spec.rb
@@ -4,14 +4,28 @@ module QA
       Runtime::Browser.visit(:gitlab, Page::Main::Login)
       Page::Main::Login.act { sign_in_using_credentials }
 
-      Factory::Resource::MergeRequest.fabricate! do |merge_request|
-        merge_request.title = 'This is a merge request'
-        merge_request.description = 'Great feature'
+      current_project = Factory::Resource::Project.fabricate! do |project|
+        project.name = 'project-with-merge-request-and-milestone'
       end
 
-      expect(page).to have_content('This is a merge request')
-      expect(page).to have_content('Great feature')
-      expect(page).to have_content(/Opened [\w\s]+ ago/)
+      current_milestone = Factory::Resource::ProjectMilestone.fabricate! do |milestone|
+        milestone.title = 'unique-milestone'
+        milestone.project = current_project
+      end
+
+      Factory::Resource::MergeRequest.fabricate! do |merge_request|
+        merge_request.title = 'This is a merge request with a milestone'
+        merge_request.description = 'Great feature with milestone'
+        merge_request.project = current_project
+        merge_request.milestone = current_milestone
+      end
+
+      Page::MergeRequest::Show.perform do |merge_request|
+        expect(page).to have_content('This is a merge request with a milestone')
+        expect(page).to have_content('Great feature with milestone')
+        expect(page).to have_content(/Opened [\w\s]+ ago/)
+        expect(merge_request).to have_milestone(current_milestone.title)
+      end
     end
   end
 end

From be74e3936d1103e0f7180a562fa43d8cdeaf020b Mon Sep 17 00:00:00 2001
From: Phil Hughes <me@iamphill.com>
Date: Tue, 10 Jul 2018 14:56:50 +0100
Subject: [PATCH 090/113] Improvements to new entry dropdowns in Web IDE

Closes #44845
---
 app/assets/javascripts/ide/components/ide.vue |   3 +
 .../javascripts/ide/components/ide_tree.vue   |  37 ++++-
 .../ide/components/new_dropdown/button.vue    |  51 +++++++
 .../ide/components/new_dropdown/index.vue     |  70 ++++-----
 .../ide/components/new_dropdown/modal.vue     |  72 +++++-----
 .../ide/components/new_dropdown/upload.vue    | 136 ++++++++++--------
 .../javascripts/ide/components/repo_file.vue  |  11 ++
 app/assets/javascripts/ide/stores/actions.js  |  13 +-
 .../javascripts/ide/stores/mutation_types.js  |   2 +
 .../javascripts/ide/stores/mutations.js       |   5 +
 app/assets/javascripts/ide/stores/state.js    |   4 +
 .../vue_shared/components/gl_modal.vue        |   6 +
 app/assets/stylesheets/pages/repo.scss        |  48 +++----
 .../ide-row-dropdown-design-update.yml        |   5 +
 locale/gitlab.pot                             |   3 +
 .../projects/tree/create_directory_spec.rb    |   8 +-
 .../projects/tree/create_file_spec.rb         |   4 +-
 .../projects/tree/upload_file_spec.rb         |   4 -
 .../components/new_dropdown/button_spec.js    |  49 +++++++
 .../ide/components/new_dropdown/index_spec.js |  46 ++----
 .../ide/components/new_dropdown/modal_spec.js |  36 ++---
 .../components/new_dropdown/upload_spec.js    |   3 -
 22 files changed, 363 insertions(+), 253 deletions(-)
 create mode 100644 app/assets/javascripts/ide/components/new_dropdown/button.vue
 create mode 100644 changelogs/unreleased/ide-row-dropdown-design-update.yml
 create mode 100644 spec/javascripts/ide/components/new_dropdown/button_spec.js

diff --git a/app/assets/javascripts/ide/components/ide.vue b/app/assets/javascripts/ide/components/ide.vue
index 9f016e0338f..257a7432c20 100644
--- a/app/assets/javascripts/ide/components/ide.vue
+++ b/app/assets/javascripts/ide/components/ide.vue
@@ -1,6 +1,7 @@
 <script>
 import Mousetrap from 'mousetrap';
 import { mapActions, mapState, mapGetters } from 'vuex';
+import NewModal from './new_dropdown/modal.vue';
 import IdeSidebar from './ide_side_bar.vue';
 import RepoTabs from './repo_tabs.vue';
 import IdeStatusBar from './ide_status_bar.vue';
@@ -13,6 +14,7 @@ const originalStopCallback = Mousetrap.stopCallback;
 
 export default {
   components: {
+    NewModal,
     IdeSidebar,
     RepoTabs,
     IdeStatusBar,
@@ -137,5 +139,6 @@ export default {
       />
     </div>
     <ide-status-bar :file="activeFile"/>
+    <new-modal />
   </article>
 </template>
diff --git a/app/assets/javascripts/ide/components/ide_tree.vue b/app/assets/javascripts/ide/components/ide_tree.vue
index 8fc4ebe6ca6..0a95c0bb30d 100644
--- a/app/assets/javascripts/ide/components/ide_tree.vue
+++ b/app/assets/javascripts/ide/components/ide_tree.vue
@@ -1,12 +1,16 @@
 <script>
 import { mapState, mapGetters, mapActions } from 'vuex';
-import NewDropdown from './new_dropdown/index.vue';
+import Icon from '~/vue_shared/components/icon.vue';
 import IdeTreeList from './ide_tree_list.vue';
+import Upload from './new_dropdown/upload.vue';
+import NewEntryButton from './new_dropdown/button.vue';
 
 export default {
   components: {
-    NewDropdown,
+    Icon,
+    Upload,
     IdeTreeList,
+    NewEntryButton,
   },
   computed: {
     ...mapState(['currentBranchId']),
@@ -20,23 +24,42 @@ export default {
     }
   },
   methods: {
-    ...mapActions(['updateViewer']),
+    ...mapActions(['updateViewer', 'openNewEntryModal', 'createTempEntry']),
   },
 };
 </script>
 
 <template>
   <ide-tree-list
+    header-class="d-flex w-100"
     viewer-type="editor"
   >
     <template
       slot="header"
     >
       {{ __('Edit') }}
-      <new-dropdown
-        :project-id="currentProject.name_with_namespace"
-        :branch="currentBranchId"
-      />
+      <div class="ml-auto d-flex">
+        <new-entry-button
+          :label="__('New file')"
+          :show-label="false"
+          class="d-flex border-0 p-0 mr-3"
+          icon="doc-new"
+          @click="openNewEntryModal({ type: 'blob' })"
+        />
+        <upload
+          :show-label="false"
+          class="d-flex mr-3"
+          button-css-classes="border-0 p-0"
+          @create="createTempEntry"
+        />
+        <new-entry-button
+          :label="__('New directory')"
+          :show-label="false"
+          class="d-flex border-0 p-0"
+          icon="folder-new"
+          @click="openNewEntryModal({ type: 'tree' })"
+        />
+      </div>
     </template>
   </ide-tree-list>
 </template>
diff --git a/app/assets/javascripts/ide/components/new_dropdown/button.vue b/app/assets/javascripts/ide/components/new_dropdown/button.vue
new file mode 100644
index 00000000000..7682b34ce4d
--- /dev/null
+++ b/app/assets/javascripts/ide/components/new_dropdown/button.vue
@@ -0,0 +1,51 @@
+<script>
+import Icon from '~/vue_shared/components/icon.vue';
+
+export default {
+  components: {
+    Icon,
+  },
+  props: {
+    label: {
+      type: String,
+      required: false,
+      default: null,
+    },
+    icon: {
+      type: String,
+      required: true,
+    },
+    iconClasses: {
+      type: String,
+      required: false,
+      default: null,
+    },
+    showLabel: {
+      type: Boolean,
+      required: false,
+      default: true,
+    },
+  },
+  methods: {
+    clicked() {
+      this.$emit('click');
+    },
+  },
+};
+</script>
+
+<template>
+  <button
+    :aria-label="label"
+    type="button"
+    @click.stop.prevent="clicked"
+  >
+    <icon
+      :name="icon"
+      :css-classes="iconClasses"
+    />
+    <template v-if="showLabel">
+      {{ label }}
+    </template>
+  </button>
+</template>
diff --git a/app/assets/javascripts/ide/components/new_dropdown/index.vue b/app/assets/javascripts/ide/components/new_dropdown/index.vue
index 1e398d7e1aa..c29e49ba766 100644
--- a/app/assets/javascripts/ide/components/new_dropdown/index.vue
+++ b/app/assets/javascripts/ide/components/new_dropdown/index.vue
@@ -3,12 +3,14 @@ import { mapActions } from 'vuex';
 import icon from '~/vue_shared/components/icon.vue';
 import newModal from './modal.vue';
 import upload from './upload.vue';
+import ItemButton from './button.vue';
 
 export default {
   components: {
     icon,
     newModal,
     upload,
+    ItemButton,
   },
   props: {
     branch: {
@@ -20,11 +22,13 @@ export default {
       required: false,
       default: '',
     },
+    mouseOver: {
+      type: Boolean,
+      required: true,
+    },
   },
   data() {
     return {
-      openModal: false,
-      modalType: '',
       dropdownOpen: false,
     };
   },
@@ -34,17 +38,18 @@ export default {
         this.$refs.dropdownMenu.scrollIntoView();
       });
     },
+    mouseOver() {
+      if (!this.mouseOver) {
+        this.dropdownOpen = false;
+      }
+    },
   },
   methods: {
-    ...mapActions(['createTempEntry']),
+    ...mapActions(['createTempEntry', 'openNewEntryModal']),
     createNewItem(type) {
-      this.modalType = type;
-      this.openModal = true;
+      this.openNewEntryModal({ type, path: this.path });
       this.dropdownOpen = false;
     },
-    hideModal() {
-      this.openModal = false;
-    },
     openDropdown() {
       this.dropdownOpen = !this.dropdownOpen;
     },
@@ -58,23 +63,19 @@ export default {
       :class="{
         show: dropdownOpen,
       }"
-      class="dropdown"
+      class="dropdown d-flex"
     >
       <button
+        :aria-label="__('Create new file or directory')"
         type="button"
-        class="btn btn-sm btn-default dropdown-toggle add-to-tree"
-        aria-label="Create new file or directory"
+        class="rounded border-0 d-flex ide-entry-dropdown-toggle"
         @click.stop="openDropdown()"
       >
         <icon
-          :size="12"
-          name="plus"
-          css-classes="float-left"
+          name="hamburger"
         />
         <icon
-          :size="12"
           name="arrow-down"
-          css-classes="float-left"
         />
       </button>
       <ul
@@ -82,39 +83,30 @@ export default {
         class="dropdown-menu dropdown-menu-right"
       >
         <li>
-          <a
-            href="#"
-            role="button"
-            @click.stop.prevent="createNewItem('blob')"
-          >
-            {{ __('New file') }}
-          </a>
+          <item-button
+            :label="__('New file')"
+            class="d-flex"
+            icon="doc-new"
+            icon-classes="mr-2"
+            @click="createNewItem('blob')"
+          />
         </li>
         <li>
           <upload
-            :branch-id="branch"
             :path="path"
             @create="createTempEntry"
           />
         </li>
         <li>
-          <a
-            href="#"
-            role="button"
-            @click.stop.prevent="createNewItem('tree')"
-          >
-            {{ __('New directory') }}
-          </a>
+          <item-button
+            :label="__('New directory')"
+            class="d-flex"
+            icon="folder-new"
+            icon-classes="mr-2"
+            @click="createNewItem('tree')"
+          />
         </li>
       </ul>
     </div>
-    <new-modal
-      v-if="openModal"
-      :type="modalType"
-      :branch-id="branch"
-      :path="path"
-      @hide="hideModal"
-      @create="createTempEntry"
-    />
   </div>
 </template>
diff --git a/app/assets/javascripts/ide/components/new_dropdown/modal.vue b/app/assets/javascripts/ide/components/new_dropdown/modal.vue
index 1e9668d5154..1867b7980d2 100644
--- a/app/assets/javascripts/ide/components/new_dropdown/modal.vue
+++ b/app/assets/javascripts/ide/components/new_dropdown/modal.vue
@@ -1,78 +1,70 @@
 <script>
 import { __ } from '~/locale';
-import DeprecatedModal from '~/vue_shared/components/deprecated_modal.vue';
+import { mapActions, mapState } from 'vuex';
+import GlModal from '~/vue_shared/components/gl_modal.vue';
 
 export default {
   components: {
-    DeprecatedModal,
-  },
-  props: {
-    branchId: {
-      type: String,
-      required: true,
-    },
-    type: {
-      type: String,
-      required: true,
-    },
-    path: {
-      type: String,
-      required: true,
-    },
+    GlModal,
   },
   data() {
     return {
-      entryName: this.path !== '' ? `${this.path}/` : '',
+      name: '',
     };
   },
   computed: {
+    ...mapState(['newEntryModal']),
+    entryName: {
+      get() {
+        return this.name || (this.newEntryModal.path !== '' ? `${this.newEntryModal.path}/` : '');
+      },
+      set(val) {
+        this.name = val;
+      },
+    },
     modalTitle() {
-      if (this.type === 'tree') {
+      if (this.newEntryModal.type === 'tree') {
         return __('Create new directory');
       }
 
       return __('Create new file');
     },
     buttonLabel() {
-      if (this.type === 'tree') {
+      if (this.newEntryModal.type === 'tree') {
         return __('Create directory');
       }
 
       return __('Create file');
     },
   },
-  mounted() {
-    this.$refs.fieldName.focus();
-  },
   methods: {
+    ...mapActions(['createTempEntry']),
     createEntryInStore() {
-      this.$emit('create', {
-        branchId: this.branchId,
-        name: this.entryName,
-        type: this.type,
+      this.createTempEntry({
+        name: this.name,
+        type: this.newEntryModal.type,
       });
-
-      this.hideModal();
     },
-    hideModal() {
-      this.$emit('hide');
+    focusInput() {
+      setTimeout(() => {
+        this.$refs.fieldName.focus();
+      });
     },
   },
 };
 </script>
 
 <template>
-  <deprecated-modal
-    :title="modalTitle"
-    :primary-button-label="buttonLabel"
-    kind="success"
-    @cancel="hideModal"
+  <gl-modal
+    id="ide-new-entry"
+    :header-title-text="modalTitle"
+    :footer-primary-button-text="buttonLabel"
+    footer-primary-button-variant="success"
     @submit="createEntryInStore"
+    @open="focusInput"
   >
-    <form
-      slot="body"
+    <div
       class="form-group row"
-      @submit.prevent="createEntryInStore"
     >
       <label class="label-light col-form-label col-sm-3">
         {{ __('Name') }}
@@ -85,6 +77,6 @@ export default {
           class="form-control"
         />
       </div>
-    </form>
-  </deprecated-modal>
+    </div>
+  </gl-modal>
 </template>
diff --git a/app/assets/javascripts/ide/components/new_dropdown/upload.vue b/app/assets/javascripts/ide/components/new_dropdown/upload.vue
index 677b282bd61..5b1743bb30e 100644
--- a/app/assets/javascripts/ide/components/new_dropdown/upload.vue
+++ b/app/assets/javascripts/ide/components/new_dropdown/upload.vue
@@ -1,71 +1,85 @@
 <script>
-  export default {
-    props: {
-      branchId: {
-        type: String,
-        required: true,
-      },
-      path: {
-        type: String,
-        required: false,
-        default: '',
-      },
-    },
-    mounted() {
-      this.$refs.fileUpload.addEventListener('change', this.openFile);
-    },
-    beforeDestroy() {
-      this.$refs.fileUpload.removeEventListener('change', this.openFile);
-    },
-    methods: {
-      createFile(target, file, isText) {
-        const { name } = file;
-        let { result } = target;
+import Icon from '~/vue_shared/components/icon.vue';
+import ItemButton from './button.vue';
 
-        if (!isText) {
-          // eslint-disable-next-line prefer-destructuring
-          result = result.split('base64,')[1];
-        }
-
-        this.$emit('create', {
-          name: `${(this.path ? `${this.path}/` : '')}${name}`,
-          branchId: this.branchId,
-          type: 'blob',
-          content: result,
-          base64: !isText,
-        });
-      },
-      readFile(file) {
-        const reader = new FileReader();
-        const isText = file.type.match(/text.*/) !== null;
-
-        reader.addEventListener('load', e => this.createFile(e.target, file, isText), { once: true });
-
-        if (isText) {
-          reader.readAsText(file);
-        } else {
-          reader.readAsDataURL(file);
-        }
-      },
-      openFile() {
-        Array.from(this.$refs.fileUpload.files).forEach(file => this.readFile(file));
-      },
-      startFileUpload() {
-        this.$refs.fileUpload.click();
-      },
+export default {
+  components: {
+    Icon,
+    ItemButton,
+  },
+  props: {
+    path: {
+      type: String,
+      required: false,
+      default: '',
     },
-  };
+    showLabel: {
+      type: Boolean,
+      required: false,
+      default: true,
+    },
+    buttonCssClasses: {
+      type: String,
+      required: false,
+      default: null,
+    },
+  },
+  mounted() {
+    this.$refs.fileUpload.addEventListener('change', this.openFile);
+  },
+  beforeDestroy() {
+    this.$refs.fileUpload.removeEventListener('change', this.openFile);
+  },
+  methods: {
+    createFile(target, file, isText) {
+      const { name } = file;
+      let { result } = target;
+
+      if (!isText) {
+        // eslint-disable-next-line prefer-destructuring
+        result = result.split('base64,')[1];
+      }
+
+      this.$emit('create', {
+        name: `${this.path ? `${this.path}/` : ''}${name}`,
+        type: 'blob',
+        content: result,
+        base64: !isText,
+      });
+    },
+    readFile(file) {
+      const reader = new FileReader();
+      const isText = file.type.match(/text.*/) !== null;
+
+      reader.addEventListener('load', e => this.createFile(e.target, file, isText), { once: true });
+
+      if (isText) {
+        reader.readAsText(file);
+      } else {
+        reader.readAsDataURL(file);
+      }
+    },
+    openFile() {
+      Array.from(this.$refs.fileUpload.files).forEach(file => this.readFile(file));
+    },
+    startFileUpload() {
+      this.$refs.fileUpload.click();
+    },
+  },
+};
 </script>
 
 <template>
   <div>
-    <a
-      href="#"
-      role="button"
-      @click.stop.prevent="startFileUpload"
-    >
-      {{ __('Upload file') }}
-    </a>
+    <item-button
+      :class="buttonCssClasses"
+      :show-label="showLabel"
+      :icon-classes="showLabel ? 'mr-2' : ''"
+      :label="__('Upload file')"
+      class="d-flex"
+      icon="upload"
+      @click="startFileUpload"
+    />
     <input
       id="file-upload"
       ref="fileUpload"
diff --git a/app/assets/javascripts/ide/components/repo_file.vue b/app/assets/javascripts/ide/components/repo_file.vue
index f490a3a2a39..3b4dd5ae9aa 100644
--- a/app/assets/javascripts/ide/components/repo_file.vue
+++ b/app/assets/javascripts/ide/components/repo_file.vue
@@ -40,6 +40,11 @@ export default {
       default: false,
     },
   },
+  data() {
+    return {
+      mouseOver: false,
+    };
+  },
   computed: {
     ...mapGetters([
       'getChangesInFolder',
@@ -142,6 +147,9 @@ export default {
     hasUrlAtCurrentRoute() {
       return this.$router.currentRoute.path === `/project${this.file.url}`;
     },
+    toggleHover(over) {
+      this.mouseOver = over;
+    },
   },
 };
 </script>
@@ -153,6 +161,8 @@ export default {
       class="file"
       role="button"
       @click="clickFile"
+      @mouseover="toggleHover(true)"
+      @mouseout="toggleHover(false)"
     >
       <div
         class="file-name"
@@ -206,6 +216,7 @@ export default {
           :project-id="file.projectId"
           :branch="file.branchId"
           :path="file.path"
+          :mouse-over="mouseOver"
           class="float-right prepend-left-8"
         />
       </div>
diff --git a/app/assets/javascripts/ide/stores/actions.js b/app/assets/javascripts/ide/stores/actions.js
index 5e91fa915ff..b5bd6f5a6bb 100644
--- a/app/assets/javascripts/ide/stores/actions.js
+++ b/app/assets/javascripts/ide/stores/actions.js
@@ -52,7 +52,7 @@ export const setResizingStatus = ({ commit }, resizing) => {
 
 export const createTempEntry = (
   { state, commit, dispatch },
-  { branchId, name, type, content = '', base64 = false },
+  { name, type, content = '', base64 = false },
 ) =>
   new Promise(resolve => {
     const worker = new FilesDecoratorWorker();
@@ -81,7 +81,7 @@ export const createTempEntry = (
       commit(types.CREATE_TMP_ENTRY, {
         data,
         projectId: state.currentProjectId,
-        branchId,
+        branchId: state.currentBranchId,
       });
 
       if (type === 'blob') {
@@ -100,7 +100,7 @@ export const createTempEntry = (
     worker.postMessage({
       data: [fullName],
       projectId: state.currentProjectId,
-      branchId,
+      branchId: state.currentBranchId,
       type,
       tempFile: true,
       base64,
@@ -178,6 +178,13 @@ export const setLinks = ({ commit }, links) => commit(types.SET_LINKS, links);
 export const setErrorMessage = ({ commit }, errorMessage) =>
   commit(types.SET_ERROR_MESSAGE, errorMessage);
 
+export const openNewEntryModal = ({ commit }, { type, path = '' }) => {
+  commit(types.OPEN_NEW_ENTRY_MODAL, { type, path });
+
+  // open the modal manually so we don't mess around with dropdown/rows
+  $('#ide-new-entry').modal('show');
+};
+
 export * from './actions/tree';
 export * from './actions/file';
 export * from './actions/project';
diff --git a/app/assets/javascripts/ide/stores/mutation_types.js b/app/assets/javascripts/ide/stores/mutation_types.js
index 555802e1811..8d6f9ccaf34 100644
--- a/app/assets/javascripts/ide/stores/mutation_types.js
+++ b/app/assets/javascripts/ide/stores/mutation_types.js
@@ -74,3 +74,5 @@ export const CLEAR_PROJECTS = 'CLEAR_PROJECTS';
 export const RESET_OPEN_FILES = 'RESET_OPEN_FILES';
 
 export const SET_ERROR_MESSAGE = 'SET_ERROR_MESSAGE';
+
+export const OPEN_NEW_ENTRY_MODAL = 'OPEN_NEW_ENTRY_MODAL';
diff --git a/app/assets/javascripts/ide/stores/mutations.js b/app/assets/javascripts/ide/stores/mutations.js
index 702be2140e2..f8091f5b5e0 100644
--- a/app/assets/javascripts/ide/stores/mutations.js
+++ b/app/assets/javascripts/ide/stores/mutations.js
@@ -166,6 +166,11 @@ export default {
   [types.SET_ERROR_MESSAGE](state, errorMessage) {
     Object.assign(state, { errorMessage });
   },
+  [types.OPEN_NEW_ENTRY_MODAL](state, { type, path }) {
+    Object.assign(state, {
+      newEntryModal: { type, path },
+    });
+  },
   ...projectMutations,
   ...mergeRequestMutation,
   ...fileMutations,
diff --git a/app/assets/javascripts/ide/stores/state.js b/app/assets/javascripts/ide/stores/state.js
index be229b2c723..0f32a267469 100644
--- a/app/assets/javascripts/ide/stores/state.js
+++ b/app/assets/javascripts/ide/stores/state.js
@@ -26,4 +26,8 @@ export default () => ({
   rightPane: null,
   links: {},
   errorMessage: null,
+  newEntryModal: {
+    type: '',
+    path: '',
+  },
 });
diff --git a/app/assets/javascripts/vue_shared/components/gl_modal.vue b/app/assets/javascripts/vue_shared/components/gl_modal.vue
index b298b989203..416eda796a7 100644
--- a/app/assets/javascripts/vue_shared/components/gl_modal.vue
+++ b/app/assets/javascripts/vue_shared/components/gl_modal.vue
@@ -45,6 +45,11 @@ export default {
     emitSubmit(event) {
       this.$emit('submit', event);
     },
+    opened({ propertyName }) {
+      if (propertyName === 'opacity') {
+        this.$emit('open');
+      }
+    },
   },
 };
 </script>
@@ -55,6 +60,7 @@ export default {
     class="modal fade"
     tabindex="-1"
     role="dialog"
+    @transitionend="opened"
   >
     <div
       :class="modalSizeClass"
diff --git a/app/assets/stylesheets/pages/repo.scss b/app/assets/stylesheets/pages/repo.scss
index 6e2b285285a..8b1227b9131 100644
--- a/app/assets/stylesheets/pages/repo.scss
+++ b/app/assets/stylesheets/pages/repo.scss
@@ -44,6 +44,7 @@
   padding-bottom: $grid-size;
 
   .file {
+    height: 32px;
     cursor: pointer;
 
     &.file-active {
@@ -716,32 +717,6 @@
   justify-content: center;
 }
 
-.ide-new-btn {
-  .btn {
-    padding-top: 3px;
-    padding-bottom: 3px;
-  }
-
-  .dropdown {
-    display: flex;
-  }
-
-  .dropdown-toggle svg {
-    top: 0;
-  }
-
-  .dropdown-menu {
-    left: auto;
-    right: 0;
-
-    label {
-      font-weight: $gl-font-weight-normal;
-      padding: 5px 8px;
-      margin-bottom: 0;
-    }
-  }
-}
-
 .ide {
   overflow: hidden;
 
@@ -1340,3 +1315,24 @@
     overflow: auto;
   }
 }
+
+.ide-entry-dropdown-toggle {
+  padding: $gl-padding-4;
+  background-color: $theme-gray-100;
+
+  &:hover {
+    background-color: $theme-gray-200;
+  }
+
+  &:active,
+  &:focus {
+    color: $white-normal;
+    background-color: $blue-500;
+    outline: 0;
+  }
+}
+
+.ide-new-btn .dropdown.show .ide-entry-dropdown-toggle {
+  color: $white-normal;
+  background-color: $blue-500;
+}
diff --git a/changelogs/unreleased/ide-row-dropdown-design-update.yml b/changelogs/unreleased/ide-row-dropdown-design-update.yml
new file mode 100644
index 00000000000..e0fe64c944e
--- /dev/null
+++ b/changelogs/unreleased/ide-row-dropdown-design-update.yml
@@ -0,0 +1,5 @@
+---
+title: Updated design of new entry dropdown in Web IDE
+merge_request: 20526
+author:
+type: changed
diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 83ff735580e..0c2541b17a7 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -1720,6 +1720,9 @@ msgstr ""
 msgid "Create new file"
 msgstr ""
 
+msgid "Create new file or directory"
+msgstr ""
+
 msgid "Create new label"
 msgstr ""
 
diff --git a/spec/features/projects/tree/create_directory_spec.rb b/spec/features/projects/tree/create_directory_spec.rb
index d0902bce7f3..a772d8666d4 100644
--- a/spec/features/projects/tree/create_directory_spec.rb
+++ b/spec/features/projects/tree/create_directory_spec.rb
@@ -22,9 +22,7 @@ describe 'Multi-file editor new directory', :js do
   end
 
   it 'creates directory in current directory' do
-    find('.add-to-tree').click
-
-    click_link('New directory')
+    all('.ide-tree-header button').last.click
 
     page.within('.modal') do
       find('.form-control').set('folder name')
@@ -32,9 +30,7 @@ describe 'Multi-file editor new directory', :js do
       click_button('Create directory')
     end
 
-    find('.add-to-tree').click
-
-    click_link('New file')
+    first('.ide-tree-header button').click
 
     page.within('.modal-dialog') do
       find('.form-control').set('file name')
diff --git a/spec/features/projects/tree/create_file_spec.rb b/spec/features/projects/tree/create_file_spec.rb
index 03a29fae0bd..f13f71c0f9c 100644
--- a/spec/features/projects/tree/create_file_spec.rb
+++ b/spec/features/projects/tree/create_file_spec.rb
@@ -22,9 +22,7 @@ describe 'Multi-file editor new file', :js do
   end
 
   it 'creates file in current directory' do
-    find('.add-to-tree').click
-
-    click_link('New file')
+    first('.ide-tree-header button').click
 
     page.within('.modal') do
       find('.form-control').set('file name')
diff --git a/spec/features/projects/tree/upload_file_spec.rb b/spec/features/projects/tree/upload_file_spec.rb
index 804a4450ae2..05d73bacf01 100644
--- a/spec/features/projects/tree/upload_file_spec.rb
+++ b/spec/features/projects/tree/upload_file_spec.rb
@@ -24,14 +24,10 @@ describe 'Multi-file editor upload file', :js do
   end
 
   it 'uploads text file' do
-    find('.add-to-tree').click
-
     # make the field visible so capybara can use it
     execute_script('document.querySelector("#file-upload").classList.remove("hidden")')
     attach_file('file-upload', txt_file)
 
-    find('.add-to-tree').click
-
     expect(page).to have_selector('.multi-file-tab', text: 'doc_sample.txt')
     expect(find('.blob-editor-container .lines-content')['innerText']).to have_content(File.open(txt_file, &:readline))
   end
diff --git a/spec/javascripts/ide/components/new_dropdown/button_spec.js b/spec/javascripts/ide/components/new_dropdown/button_spec.js
new file mode 100644
index 00000000000..ef083d06ba7
--- /dev/null
+++ b/spec/javascripts/ide/components/new_dropdown/button_spec.js
@@ -0,0 +1,49 @@
+import Vue from 'vue';
+import mountComponent from 'spec/helpers/vue_mount_component_helper';
+import Button from '~/ide/components/new_dropdown/button.vue';
+
+describe('IDE new entry dropdown button component', () => {
+  let Component;
+  let vm;
+
+  beforeAll(() => {
+    Component = Vue.extend(Button);
+  });
+
+  beforeEach(() => {
+    vm = mountComponent(Component, {
+      label: 'Testing',
+      icon: 'doc-new',
+    });
+
+    spyOn(vm, '$emit');
+  });
+
+  afterEach(() => {
+    vm.$destroy();
+  });
+
+  it('renders button with label', () => {
+    expect(vm.$el.textContent).toContain('Testing');
+  });
+
+  it('renders icon', () => {
+    expect(vm.$el.querySelector('.ic-doc-new')).not.toBe(null);
+  });
+
+  it('emits click event', () => {
+    vm.$el.click();
+
+    expect(vm.$emit).toHaveBeenCalledWith('click');
+  });
+
+  it('hides label if showLabel is false', done => {
+    vm.showLabel = false;
+
+    vm.$nextTick(() => {
+      expect(vm.$el.textContent).not.toContain('Testing');
+
+      done();
+    });
+  });
+});
diff --git a/spec/javascripts/ide/components/new_dropdown/index_spec.js b/spec/javascripts/ide/components/new_dropdown/index_spec.js
index 7b637f37eba..4d704b80209 100644
--- a/spec/javascripts/ide/components/new_dropdown/index_spec.js
+++ b/spec/javascripts/ide/components/new_dropdown/index_spec.js
@@ -13,6 +13,7 @@ describe('new dropdown component', () => {
     vm = createComponentWithStore(component, store, {
       branch: 'master',
       path: '',
+      mouseOver: false,
     });
 
     vm.$store.state.currentProjectId = 'abcproject';
@@ -21,6 +22,8 @@ describe('new dropdown component', () => {
       tree: [],
     };
 
+    spyOn(vm, 'openNewEntryModal');
+
     vm.$mount();
   });
 
@@ -31,50 +34,23 @@ describe('new dropdown component', () => {
   });
 
   it('renders new file, upload and new directory links', () => {
-    expect(vm.$el.querySelectorAll('a')[0].textContent.trim()).toBe('New file');
-    expect(vm.$el.querySelectorAll('a')[1].textContent.trim()).toBe('Upload file');
-    expect(vm.$el.querySelectorAll('a')[2].textContent.trim()).toBe('New directory');
+    const buttons = vm.$el.querySelectorAll('.dropdown-menu button');
+    expect(buttons[0].textContent.trim()).toBe('New file');
+    expect(buttons[1].textContent.trim()).toBe('Upload file');
+    expect(buttons[2].textContent.trim()).toBe('New directory');
   });
 
   describe('createNewItem', () => {
     it('sets modalType to blob when new file is clicked', () => {
-      vm.$el.querySelectorAll('a')[0].click();
+      vm.$el.querySelectorAll('.dropdown-menu button')[0].click();
 
-      expect(vm.modalType).toBe('blob');
+      expect(vm.openNewEntryModal).toHaveBeenCalledWith({ type: 'blob', path: '' });
     });
 
     it('sets modalType to tree when new directory is clicked', () => {
-      vm.$el.querySelectorAll('a')[2].click();
+      vm.$el.querySelectorAll('.dropdown-menu button')[2].click();
 
-      expect(vm.modalType).toBe('tree');
-    });
-
-    it('opens modal when link is clicked', done => {
-      vm.$el.querySelectorAll('a')[0].click();
-
-      Vue.nextTick(() => {
-        expect(vm.$el.querySelector('.modal')).not.toBeNull();
-
-        done();
-      });
-    });
-  });
-
-  describe('hideModal', () => {
-    beforeAll(done => {
-      vm.openModal = true;
-      Vue.nextTick(done);
-    });
-
-    it('closes modal after toggling', done => {
-      vm.hideModal();
-
-      Vue.nextTick()
-        .then(() => {
-          expect(vm.$el.querySelector('.modal')).toBeNull();
-        })
-        .then(done)
-        .catch(done.fail);
+      expect(vm.openNewEntryModal).toHaveBeenCalledWith({ type: 'tree', path: '' });
     });
   });
 
diff --git a/spec/javascripts/ide/components/new_dropdown/modal_spec.js b/spec/javascripts/ide/components/new_dropdown/modal_spec.js
index f362ed4db65..6dcc5880677 100644
--- a/spec/javascripts/ide/components/new_dropdown/modal_spec.js
+++ b/spec/javascripts/ide/components/new_dropdown/modal_spec.js
@@ -1,6 +1,7 @@
 import Vue from 'vue';
+import { createStore } from '~/ide/stores';
 import modal from '~/ide/components/new_dropdown/modal.vue';
-import createComponent from 'spec/helpers/vue_mount_component_helper';
+import { createComponentWithStore } from 'spec/helpers/vue_mount_component_helper';
 
 describe('new file modal component', () => {
   const Component = Vue.extend(modal);
@@ -13,13 +14,15 @@ describe('new file modal component', () => {
   ['tree', 'blob'].forEach(type => {
     describe(type, () => {
       beforeEach(() => {
-        vm = createComponent(Component, {
+        const store = createStore();
+        store.state.newEntryModal = {
           type,
-          branchId: 'master',
           path: '',
-        });
+        };
 
-        vm.entryName = 'testing';
+        vm = createComponentWithStore(Component, store).$mount();
+
+        vm.name = 'testing';
       });
 
       it(`sets modal title as ${type}`, () => {
@@ -40,12 +43,11 @@ describe('new file modal component', () => {
 
       describe('createEntryInStore', () => {
         it('$emits create', () => {
-          spyOn(vm, '$emit');
+          spyOn(vm, 'createTempEntry');
 
           vm.createEntryInStore();
 
-          expect(vm.$emit).toHaveBeenCalledWith('create', {
-            branchId: 'master',
+          expect(vm.createTempEntry).toHaveBeenCalledWith({
             name: 'testing',
             type,
           });
@@ -53,22 +55,4 @@ describe('new file modal component', () => {
       });
     });
   });
-
-  it('focuses field on mount', () => {
-    document.body.innerHTML += '<div class="js-test"></div>';
-
-    vm = createComponent(
-      Component,
-      {
-        type: 'tree',
-        branchId: 'master',
-        path: '',
-      },
-      '.js-test',
-    );
-
-    expect(document.activeElement).toBe(vm.$refs.fieldName);
-
-    vm.$el.remove();
-  });
 });
diff --git a/spec/javascripts/ide/components/new_dropdown/upload_spec.js b/spec/javascripts/ide/components/new_dropdown/upload_spec.js
index 2bc5d701601..9c76500cfe5 100644
--- a/spec/javascripts/ide/components/new_dropdown/upload_spec.js
+++ b/spec/javascripts/ide/components/new_dropdown/upload_spec.js
@@ -9,7 +9,6 @@ describe('new dropdown upload', () => {
     const Component = Vue.extend(upload);
 
     vm = createComponent(Component, {
-      branchId: 'master',
       path: '',
     });
 
@@ -65,7 +64,6 @@ describe('new dropdown upload', () => {
 
       expect(vm.$emit).toHaveBeenCalledWith('create', {
         name: file.name,
-        branchId: 'master',
         type: 'blob',
         content: target.result,
         base64: false,
@@ -77,7 +75,6 @@ describe('new dropdown upload', () => {
 
       expect(vm.$emit).toHaveBeenCalledWith('create', {
         name: file.name,
-        branchId: 'master',
         type: 'blob',
         content: binaryTarget.result.split('base64,')[1],
         base64: true,

From eb4e629fa906ed73e0d70a8f9a1b460f50627c30 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Mon, 9 Jul 2018 17:40:51 +0200
Subject: [PATCH 091/113] [QA] Ensure screenshots are save in subfolder per QA
 run
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 qa/qa/runtime/browser.rb   | 4 ++++
 qa/qa/runtime/namespace.rb | 2 +-
 2 files changed, 5 insertions(+), 1 deletion(-)

diff --git a/qa/qa/runtime/browser.rb b/qa/qa/runtime/browser.rb
index cee381f3379..877864fb40c 100644
--- a/qa/qa/runtime/browser.rb
+++ b/qa/qa/runtime/browser.rb
@@ -85,6 +85,10 @@ module QA
           driver.browser.save_screenshot(path)
         end
 
+        Capybara::Screenshot.register_filename_prefix_formatter(:rspec) do |example|
+          File.join(QA::Runtime::Namespace.name, example.file_path.sub('./qa/specs/features/', ''))
+        end
+
         Capybara.configure do |config|
           config.default_driver = :chrome
           config.javascript_driver = :chrome
diff --git a/qa/qa/runtime/namespace.rb b/qa/qa/runtime/namespace.rb
index ccfa8b44db3..28f17d1160b 100644
--- a/qa/qa/runtime/namespace.rb
+++ b/qa/qa/runtime/namespace.rb
@@ -8,7 +8,7 @@ module QA
       end
 
       def name
-        'qa-test-' + time.strftime('%d-%m-%Y-%H-%M-%S')
+        "qa-test-#{time.strftime('%Y-%m-%d-%Y-%H-%M-%S')}"
       end
 
       def path

From 8717c7dad9b5a8fa21ec9a652c54718a6b4c2175 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Jarka=20Kadlecov=C3=A1?= <jarka@gitlab.com>
Date: Wed, 11 Jul 2018 18:33:24 +0200
Subject: [PATCH 092/113] Revert "Merge branch 'ee-5481-epic-todos' into
 'master'"

This reverts commit 4d9a3f42f1fd3be21555e19872b7121cca65015e, reversing
changes made to ecf9c145f6e4d170cd059df88743393d9e63c489.
---
 .../pages/dashboard/todos/index/todos.js      |  12 +-
 .../sidebar/components/todo_toggle/todo.vue   |  98 -----------
 .../components/sidebar/toggle_sidebar.vue     |   7 -
 app/assets/stylesheets/pages/issuable.scss    |   1 -
 app/assets/stylesheets/pages/todos.scss       |  16 --
 app/controllers/concerns/todos_actions.rb     |  12 --
 app/controllers/dashboard/todos_controller.rb |   2 +-
 app/controllers/projects/todos_controller.rb  |  14 +-
 app/finders/todos_finder.rb                   |  54 ++----
 app/helpers/issuables_helper.rb               |  13 --
 app/helpers/todos_helper.rb                   |  10 +-
 app/models/concerns/issuable.rb               |   6 -
 app/models/group.rb                           |   8 -
 app/models/issue.rb                           |   4 +
 app/models/note.rb                            |   4 -
 app/models/todo.rb                            |  11 +-
 app/services/todo_service.rb                  |  30 ++--
 app/views/dashboard/todos/index.html.haml     |  48 +++---
 .../20180608091413_add_group_to_todos.rb      |  32 ----
 db/schema.rb                                  |   5 +-
 doc/api/todos.md                              |   1 -
 doc/workflow/todos.md                         |   1 -
 lib/api/entities.rb                           |  13 +-
 .../projects/todos_controller_spec.rb         | 133 ++++++++++++---
 spec/factories/todos.rb                       |   4 +-
 spec/finders/todos_finder_spec.rb             |  64 -------
 spec/helpers/issuables_helper_spec.rb         |  21 ---
 spec/javascripts/sidebar/todo_spec.js         | 158 ------------------
 spec/models/todo_spec.rb                      |   1 -
 .../controllers/todos_shared_examples.rb      |  43 -----
 30 files changed, 185 insertions(+), 641 deletions(-)
 delete mode 100644 app/assets/javascripts/sidebar/components/todo_toggle/todo.vue
 delete mode 100644 app/controllers/concerns/todos_actions.rb
 delete mode 100644 db/migrate/20180608091413_add_group_to_todos.rb
 delete mode 100644 spec/javascripts/sidebar/todo_spec.js
 delete mode 100644 spec/support/shared_examples/controllers/todos_shared_examples.rb

diff --git a/app/assets/javascripts/pages/dashboard/todos/index/todos.js b/app/assets/javascripts/pages/dashboard/todos/index/todos.js
index 9aa83ce6269..ff19b9a9c30 100644
--- a/app/assets/javascripts/pages/dashboard/todos/index/todos.js
+++ b/app/assets/javascripts/pages/dashboard/todos/index/todos.js
@@ -39,7 +39,6 @@ export default class Todos {
   }
 
   initFilters() {
-    this.initFilterDropdown($('.js-group-search'), 'group_id', ['text']);
     this.initFilterDropdown($('.js-project-search'), 'project_id', ['text']);
     this.initFilterDropdown($('.js-type-search'), 'type');
     this.initFilterDropdown($('.js-action-search'), 'action_id');
@@ -54,16 +53,7 @@ export default class Todos {
       filterable: searchFields ? true : false,
       search: { fields: searchFields },
       data: $dropdown.data('data'),
-      clicked: () => {
-        const $formEl = $dropdown.closest('form.filter-form');
-        const mutexDropdowns = {
-          group_id: 'project_id',
-          project_id: 'group_id',
-        };
-
-        $formEl.find(`input[name="${mutexDropdowns[fieldName]}"]`).remove();
-        $formEl.submit();
-      },
+      clicked: () => $dropdown.closest('form.filter-form').submit(),
     });
   }
 
diff --git a/app/assets/javascripts/sidebar/components/todo_toggle/todo.vue b/app/assets/javascripts/sidebar/components/todo_toggle/todo.vue
deleted file mode 100644
index ffaed9c7193..00000000000
--- a/app/assets/javascripts/sidebar/components/todo_toggle/todo.vue
+++ /dev/null
@@ -1,98 +0,0 @@
-<script>
-import { __ } from '~/locale';
-import tooltip from '~/vue_shared/directives/tooltip';
-
-import Icon from '~/vue_shared/components/icon.vue';
-import LoadingIcon from '~/vue_shared/components/loading_icon.vue';
-
-const MARK_TEXT = __('Mark todo as done');
-const TODO_TEXT = __('Add todo');
-
-export default {
-  directives: {
-    tooltip,
-  },
-  components: {
-    Icon,
-    LoadingIcon,
-  },
-  props: {
-    issuableId: {
-      type: Number,
-      required: true,
-    },
-    issuableType: {
-      type: String,
-      required: true,
-    },
-    isTodo: {
-      type: Boolean,
-      required: false,
-      default: true,
-    },
-    isActionActive: {
-      type: Boolean,
-      required: false,
-      default: false,
-    },
-    collapsed: {
-      type: Boolean,
-      required: false,
-      default: false,
-    },
-  },
-  computed: {
-    buttonClasses() {
-      return this.collapsed ?
-        'btn-blank btn-todo sidebar-collapsed-icon dont-change-state' :
-        'btn btn-default btn-todo issuable-header-btn float-right';
-    },
-    buttonLabel() {
-      return this.isTodo ? MARK_TEXT : TODO_TEXT;
-    },
-    collapsedButtonIconClasses() {
-      return this.isTodo ? 'todo-undone' : '';
-    },
-    collapsedButtonIcon() {
-      return this.isTodo ? 'todo-done' : 'todo-add';
-    },
-  },
-  methods: {
-    handleButtonClick() {
-      this.$emit('toggleTodo');
-    },
-  },
-};
-</script>
-
-<template>
-  <button
-    v-tooltip
-    :class="buttonClasses"
-    :title="buttonLabel"
-    :aria-label="buttonLabel"
-    :data-issuable-id="issuableId"
-    :data-issuable-type="issuableType"
-    type="button"
-    data-container="body"
-    data-placement="left"
-    data-boundary="viewport"
-    @click="handleButtonClick"
-  >
-    <icon
-      v-show="collapsed"
-      :css-classes="collapsedButtonIconClasses"
-      :name="collapsedButtonIcon"
-    />
-    <span
-      v-show="!collapsed"
-      class="issuable-todo-inner"
-    >
-      {{ buttonLabel }}
-    </span>
-    <loading-icon
-      v-show="isActionActive"
-      :inline="true"
-    />
-  </button>
-</template>
diff --git a/app/assets/javascripts/vue_shared/components/sidebar/toggle_sidebar.vue b/app/assets/javascripts/vue_shared/components/sidebar/toggle_sidebar.vue
index 80dc7d3557c..ac2e99abe77 100644
--- a/app/assets/javascripts/vue_shared/components/sidebar/toggle_sidebar.vue
+++ b/app/assets/javascripts/vue_shared/components/sidebar/toggle_sidebar.vue
@@ -12,11 +12,6 @@ export default {
       type: Boolean,
       required: true,
     },
-    cssClasses: {
-      type: String,
-      required: false,
-      default: '',
-    },
   },
   computed: {
     tooltipLabel() {
@@ -35,12 +30,10 @@ export default {
   <button
     v-tooltip
     :title="tooltipLabel"
-    :class="cssClasses"
     type="button"
     class="btn btn-blank gutter-toggle btn-sidebar-action"
     data-container="body"
     data-placement="left"
-    data-boundary="viewport"
     @click="toggle"
   >
     <i
diff --git a/app/assets/stylesheets/pages/issuable.scss b/app/assets/stylesheets/pages/issuable.scss
index f6617380cc0..f9fd9f1ab8b 100644
--- a/app/assets/stylesheets/pages/issuable.scss
+++ b/app/assets/stylesheets/pages/issuable.scss
@@ -449,7 +449,6 @@
 
       .todo-undone {
         color: $gl-link-color;
-        fill: $gl-link-color;
       }
 
       .author {
diff --git a/app/assets/stylesheets/pages/todos.scss b/app/assets/stylesheets/pages/todos.scss
index 010a2c05a1c..e5d7dd13915 100644
--- a/app/assets/stylesheets/pages/todos.scss
+++ b/app/assets/stylesheets/pages/todos.scss
@@ -174,18 +174,6 @@
   }
 }
 
-@include media-breakpoint-down(lg) {
-  .todos-filters {
-    .filter-categories {
-      width: 75%;
-
-      .filter-item {
-        margin-bottom: 10px;
-      }
-    }
-  }
-}
-
 @include media-breakpoint-down(xs) {
   .todo {
     .avatar {
@@ -211,10 +199,6 @@
   }
 
   .todos-filters {
-    .filter-categories {
-      width: auto;
-    }
-
     .dropdown-menu-toggle {
       width: 100%;
     }
diff --git a/app/controllers/concerns/todos_actions.rb b/app/controllers/concerns/todos_actions.rb
deleted file mode 100644
index c0acdb3498d..00000000000
--- a/app/controllers/concerns/todos_actions.rb
+++ /dev/null
@@ -1,12 +0,0 @@
-module TodosActions
-  extend ActiveSupport::Concern
-
-  def create
-    todo = TodoService.new.mark_todo(issuable, current_user)
-
-    render json: {
-      count: TodosFinder.new(current_user, state: :pending).execute.count,
-      delete_path: dashboard_todo_path(todo)
-    }
-  end
-end
diff --git a/app/controllers/dashboard/todos_controller.rb b/app/controllers/dashboard/todos_controller.rb
index bd7111e28bc..f9e8fe624e8 100644
--- a/app/controllers/dashboard/todos_controller.rb
+++ b/app/controllers/dashboard/todos_controller.rb
@@ -70,7 +70,7 @@ class Dashboard::TodosController < Dashboard::ApplicationController
   end
 
   def todo_params
-    params.permit(:action_id, :author_id, :project_id, :type, :sort, :state, :group_id)
+    params.permit(:action_id, :author_id, :project_id, :type, :sort, :state)
   end
 
   def redirect_out_of_range(todos)
diff --git a/app/controllers/projects/todos_controller.rb b/app/controllers/projects/todos_controller.rb
index 93fb9da6510..a41fcb85c40 100644
--- a/app/controllers/projects/todos_controller.rb
+++ b/app/controllers/projects/todos_controller.rb
@@ -1,13 +1,19 @@
 class Projects::TodosController < Projects::ApplicationController
-  include Gitlab::Utils::StrongMemoize
-  include TodosActions
-
   before_action :authenticate_user!, only: [:create]
 
+  def create
+    todo = TodoService.new.mark_todo(issuable, current_user)
+
+    render json: {
+      count: TodosFinder.new(current_user, state: :pending).execute.count,
+      delete_path: dashboard_todo_path(todo)
+    }
+  end
+
   private
 
   def issuable
-    strong_memoize(:issuable) do
+    @issuable ||= begin
       case params[:issuable_type]
       when "issue"
         IssuesFinder.new(current_user, project_id: @project.id).find(params[:issuable_id])
diff --git a/app/finders/todos_finder.rb b/app/finders/todos_finder.rb
index 2156413fb26..09e2c586f2a 100644
--- a/app/finders/todos_finder.rb
+++ b/app/finders/todos_finder.rb
@@ -15,7 +15,6 @@
 class TodosFinder
   prepend FinderWithCrossProjectAccess
   include FinderMethods
-  include Gitlab::Utils::StrongMemoize
 
   requires_cross_project_access unless: -> { project? }
 
@@ -35,11 +34,9 @@ class TodosFinder
     items = by_author(items)
     items = by_state(items)
     items = by_type(items)
-    items = by_group(items)
     # Filtering by project HAS TO be the last because we use
     # the project IDs yielded by the todos query thus far
     items = by_project(items)
-    items = visible_to_user(items)
 
     sort(items)
   end
@@ -85,10 +82,6 @@ class TodosFinder
     params[:project_id].present?
   end
 
-  def group?
-    params[:group_id].present?
-  end
-
   def project
     return @project if defined?(@project)
 
@@ -107,14 +100,18 @@ class TodosFinder
     @project
   end
 
-  def group
-    strong_memoize(:group) do
-      Group.find(params[:group_id])
+  def project_ids(items)
+    ids = items.except(:order).select(:project_id)
+    if Gitlab::Database.mysql?
+      # To make UPDATE work on MySQL, wrap it in a SELECT with an alias
+      ids = Todo.except(:order).select('*').from("(#{ids.to_sql}) AS t")
     end
+
+    ids
   end
 
   def type?
-    type.present? && %w(Issue MergeRequest Epic).include?(type)
+    type.present? && %w(Issue MergeRequest).include?(type)
   end
 
   def type
@@ -151,37 +148,12 @@ class TodosFinder
 
   def by_project(items)
     if project?
-      items = items.where(project: project)
+      items.where(project: project)
+    else
+      projects = Project.public_or_visible_to_user(current_user)
+
+      items.joins(:project).merge(projects)
     end
-
-    items
-  end
-
-  def by_group(items)
-    if group?
-      groups = group.self_and_descendants
-      items = items.where(
-        'project_id IN (?) OR group_id IN (?)',
-        Project.where(group: groups).select(:id),
-        groups.select(:id)
-      )
-    end
-
-    items
-  end
-
-  def visible_to_user(items)
-    projects = Project.public_or_visible_to_user(current_user)
-    groups = Group.public_or_visible_to_user(current_user)
-
-    items
-      .joins('LEFT JOIN namespaces ON namespaces.id = todos.group_id')
-      .joins('LEFT JOIN projects ON projects.id = todos.project_id')
-      .where(
-        'project_id IN (?) OR group_id IN (?)',
-        projects.select(:id),
-        groups.select(:id)
-      )
   end
 
   def by_state(items)
diff --git a/app/helpers/issuables_helper.rb b/app/helpers/issuables_helper.rb
index 7bbdc798ddd..8766bb43cac 100644
--- a/app/helpers/issuables_helper.rb
+++ b/app/helpers/issuables_helper.rb
@@ -131,19 +131,6 @@ module IssuablesHelper
     end
   end
 
-  def group_dropdown_label(group_id, default_label)
-    return default_label if group_id.nil?
-    return "Any group" if group_id == "0"
-
-    group = ::Group.find_by(id: group_id)
-
-    if group
-      group.full_name
-    else
-      default_label
-    end
-  end
-
   def milestone_dropdown_label(milestone_title, default_label = "Milestone")
     title =
       case milestone_title
diff --git a/app/helpers/todos_helper.rb b/app/helpers/todos_helper.rb
index 7cd74358168..f7620e0b6b8 100644
--- a/app/helpers/todos_helper.rb
+++ b/app/helpers/todos_helper.rb
@@ -43,7 +43,7 @@ module TodosHelper
       project_commit_path(todo.project,
                                     todo.target, anchor: anchor)
     else
-      path = [todo.parent, todo.target]
+      path = [todo.project.namespace.becomes(Namespace), todo.project, todo.target]
 
       path.unshift(:pipelines) if todo.build_failed?
 
@@ -167,12 +167,4 @@ module TodosHelper
   def show_todo_state?(todo)
     (todo.target.is_a?(MergeRequest) || todo.target.is_a?(Issue)) && %w(closed merged).include?(todo.target.state)
   end
-
-  def todo_group_options
-    groups = current_user.authorized_groups.map do |group|
-      { id: group.id, text: group.full_name }
-    end
-
-    groups.unshift({ id: '', text: 'Any Group' }).to_json
-  end
 end
diff --git a/app/models/concerns/issuable.rb b/app/models/concerns/issuable.rb
index 7a459078151..b93c1145f82 100644
--- a/app/models/concerns/issuable.rb
+++ b/app/models/concerns/issuable.rb
@@ -243,12 +243,6 @@ module Issuable
     opened?
   end
 
-  def overdue?
-    return false unless respond_to?(:due_date)
-
-    due_date.try(:past?) || false
-  end
-
   def user_notes_count
     if notes.loaded?
       # Use the in-memory association to select and count to avoid hitting the db
diff --git a/app/models/group.rb b/app/models/group.rb
index 28677320e28..ddebaff50b0 100644
--- a/app/models/group.rb
+++ b/app/models/group.rb
@@ -39,8 +39,6 @@ class Group < Namespace
   has_many :boards
   has_many :badges, class_name: 'GroupBadge'
 
-  has_many :todos
-
   accepts_nested_attributes_for :variables, allow_destroy: true
 
   validate :visibility_level_allowed_by_projects
@@ -84,12 +82,6 @@ class Group < Namespace
       where(id: user.authorized_groups.select(:id).reorder(nil))
     end
 
-    def public_or_visible_to_user(user)
-      where('id IN (?) OR namespaces.visibility_level IN (?)',
-        user.authorized_groups.select(:id),
-        Gitlab::VisibilityLevel.levels_for_user(user))
-    end
-
     def select_for_project_authorization
       if current_scope.joins_values.include?(:shared_projects)
         joins('INNER JOIN namespaces project_namespace ON project_namespace.id = projects.namespace_id')
diff --git a/app/models/issue.rb b/app/models/issue.rb
index 983684a5e05..4715d942c8d 100644
--- a/app/models/issue.rb
+++ b/app/models/issue.rb
@@ -275,6 +275,10 @@ class Issue < ActiveRecord::Base
     user ? readable_by?(user) : publicly_visible?
   end
 
+  def overdue?
+    due_date.try(:past?) || false
+  end
+
   def check_for_spam?
     project.public? && (title_changed? || description_changed?)
   end
diff --git a/app/models/note.rb b/app/models/note.rb
index 3918bbee194..abc40d9016e 100644
--- a/app/models/note.rb
+++ b/app/models/note.rb
@@ -229,10 +229,6 @@ class Note < ActiveRecord::Base
     !for_personal_snippet?
   end
 
-  def for_issuable?
-    for_issue? || for_merge_request?
-  end
-
   def skip_project_check?
     !for_project_noteable?
   end
diff --git a/app/models/todo.rb b/app/models/todo.rb
index 942cbb754e3..a2ab405fdbe 100644
--- a/app/models/todo.rb
+++ b/app/models/todo.rb
@@ -22,18 +22,15 @@ class Todo < ActiveRecord::Base
   belongs_to :author, class_name: "User"
   belongs_to :note
   belongs_to :project
-  belongs_to :group
   belongs_to :target, polymorphic: true, touch: true # rubocop:disable Cop/PolymorphicAssociations
   belongs_to :user
 
   delegate :name, :email, to: :author, prefix: true, allow_nil: true
 
-  validates :action, :target_type, :user, presence: true
+  validates :action, :project, :target_type, :user, presence: true
   validates :author, presence: true
   validates :target_id, presence: true, unless: :for_commit?
   validates :commit_id, presence: true, if: :for_commit?
-  validates :project, presence: true, unless: :group_id
-  validates :group, presence: true, unless: :project_id
 
   scope :pending, -> { with_state(:pending) }
   scope :done, -> { with_state(:done) }
@@ -47,7 +44,7 @@ class Todo < ActiveRecord::Base
     state :done
   end
 
-  after_save :keep_around_commit, if: :commit_id
+  after_save :keep_around_commit
 
   class << self
     # Priority sorting isn't displayed in the dropdown, because we don't show
@@ -82,10 +79,6 @@ class Todo < ActiveRecord::Base
     end
   end
 
-  def parent
-    project
-  end
-
   def unmergeable?
     action == UNMERGEABLE
   end
diff --git a/app/services/todo_service.rb b/app/services/todo_service.rb
index 46f12086555..f91cd03bf5c 100644
--- a/app/services/todo_service.rb
+++ b/app/services/todo_service.rb
@@ -260,15 +260,15 @@ class TodoService
     end
   end
 
-  def create_mention_todos(parent, target, author, note = nil, skip_users = [])
+  def create_mention_todos(project, target, author, note = nil, skip_users = [])
     # Create Todos for directly addressed users
-    directly_addressed_users = filter_directly_addressed_users(parent, note || target, author, skip_users)
-    attributes = attributes_for_todo(parent, target, author, Todo::DIRECTLY_ADDRESSED, note)
+    directly_addressed_users = filter_directly_addressed_users(project, note || target, author, skip_users)
+    attributes = attributes_for_todo(project, target, author, Todo::DIRECTLY_ADDRESSED, note)
     create_todos(directly_addressed_users, attributes)
 
     # Create Todos for mentioned users
-    mentioned_users = filter_mentioned_users(parent, note || target, author, skip_users)
-    attributes = attributes_for_todo(parent, target, author, Todo::MENTIONED, note)
+    mentioned_users = filter_mentioned_users(project, note || target, author, skip_users)
+    attributes = attributes_for_todo(project, target, author, Todo::MENTIONED, note)
     create_todos(mentioned_users, attributes)
   end
 
@@ -299,36 +299,36 @@ class TodoService
 
   def attributes_for_todo(project, target, author, action, note = nil)
     attributes_for_target(target).merge!(
-      project_id: project&.id,
+      project_id: project.id,
       author_id: author.id,
       action: action,
       note: note
     )
   end
 
-  def filter_todo_users(users, parent, target)
-    reject_users_without_access(users, parent, target).uniq
+  def filter_todo_users(users, project, target)
+    reject_users_without_access(users, project, target).uniq
   end
 
-  def filter_mentioned_users(parent, target, author, skip_users = [])
+  def filter_mentioned_users(project, target, author, skip_users = [])
     mentioned_users = target.mentioned_users(author) - skip_users
-    filter_todo_users(mentioned_users, parent, target)
+    filter_todo_users(mentioned_users, project, target)
   end
 
-  def filter_directly_addressed_users(parent, target, author, skip_users = [])
+  def filter_directly_addressed_users(project, target, author, skip_users = [])
     directly_addressed_users = target.directly_addressed_users(author) - skip_users
-    filter_todo_users(directly_addressed_users, parent, target)
+    filter_todo_users(directly_addressed_users, project, target)
   end
 
-  def reject_users_without_access(users, parent, target)
-    if target.is_a?(Note) && target.for_issuable?
+  def reject_users_without_access(users, project, target)
+    if target.is_a?(Note) && (target.for_issue? || target.for_merge_request?)
       target = target.noteable
     end
 
     if target.is_a?(Issuable)
       select_users(users, :"read_#{target.to_ability_name}", target)
     else
-      select_users(users, :read_project, parent)
+      select_users(users, :read_project, project)
     end
   end
 
diff --git a/app/views/dashboard/todos/index.html.haml b/app/views/dashboard/todos/index.html.haml
index 8b3974d97f8..d5a9cc646a6 100644
--- a/app/views/dashboard/todos/index.html.haml
+++ b/app/views/dashboard/todos/index.html.haml
@@ -30,33 +30,27 @@
 
   .todos-filters
     .row-content-block.second-block
-      = form_tag todos_filter_path(without: [:project_id, :author_id, :type, :action_id]), method: :get, class: 'filter-form d-sm-flex' do
-        .filter-categories.flex-fill
-          .filter-item.inline
-            - if params[:group_id].present?
-              = hidden_field_tag(:group_id, params[:group_id])
-            = dropdown_tag(group_dropdown_label(params[:group_id], 'Group'), options: { toggle_class: 'js-group-search js-filter-submit', title: 'Filter by group', filter: true, filterInput: 'input#group-search', dropdown_class: 'dropdown-menu-selectable dropdown-menu-group js-filter-submit',
-              placeholder: 'Search groups', data: { data: todo_group_options, default_label: 'Group', display: 'static' } })
-          .filter-item.inline
-            - if params[:project_id].present?
-              = hidden_field_tag(:project_id, params[:project_id])
-            = dropdown_tag(project_dropdown_label(params[:project_id], 'Project'), options: { toggle_class: 'js-project-search js-filter-submit', title: 'Filter by project', filter: true, filterInput: 'input#project-search', dropdown_class: 'dropdown-menu-selectable dropdown-menu-project js-filter-submit',
-              placeholder: 'Search projects', data: { data: todo_projects_options, default_label: 'Project', display: 'static' } })
-          .filter-item.inline
-            - if params[:author_id].present?
-              = hidden_field_tag(:author_id, params[:author_id])
-            = dropdown_tag(user_dropdown_label(params[:author_id], 'Author'), options: { toggle_class: 'js-user-search js-filter-submit js-author-search', title: 'Filter by author', filter: true, filterInput: 'input#author-search', dropdown_class: 'dropdown-menu-user dropdown-menu-selectable dropdown-menu-author js-filter-submit',
-              placeholder: 'Search authors', data: { any_user: 'Any Author', first_user: (current_user.username if current_user), project_id: (@project.id if @project), selected: params[:author_id], field_name: 'author_id', default_label: 'Author', todo_filter: true, todo_state_filter: params[:state] || 'pending' } })
-          .filter-item.inline
-            - if params[:type].present?
-              = hidden_field_tag(:type, params[:type])
-            = dropdown_tag(todo_types_dropdown_label(params[:type], 'Type'), options: { toggle_class: 'js-type-search js-filter-submit', dropdown_class: 'dropdown-menu-selectable dropdown-menu-type js-filter-submit',
-              data: { data: todo_types_options, default_label: 'Type' } })
-          .filter-item.inline.actions-filter
-            - if params[:action_id].present?
-              = hidden_field_tag(:action_id, params[:action_id])
-            = dropdown_tag(todo_actions_dropdown_label(params[:action_id], 'Action'), options: { toggle_class: 'js-action-search js-filter-submit', dropdown_class: 'dropdown-menu-selectable dropdown-menu-action js-filter-submit',
-              data: { data: todo_actions_options, default_label: 'Action' } })
+      = form_tag todos_filter_path(without: [:project_id, :author_id, :type, :action_id]), method: :get, class: 'filter-form' do
+        .filter-item.inline
+          - if params[:project_id].present?
+            = hidden_field_tag(:project_id, params[:project_id])
+          = dropdown_tag(project_dropdown_label(params[:project_id], 'Project'), options: { toggle_class: 'js-project-search js-filter-submit', title: 'Filter by project', filter: true, filterInput: 'input#project-search', dropdown_class: 'dropdown-menu-selectable dropdown-menu-project js-filter-submit',
+            placeholder: 'Search projects', data: { data: todo_projects_options, default_label: 'Project', display: 'static' } })
+        .filter-item.inline
+          - if params[:author_id].present?
+            = hidden_field_tag(:author_id, params[:author_id])
+          = dropdown_tag(user_dropdown_label(params[:author_id], 'Author'), options: { toggle_class: 'js-user-search js-filter-submit js-author-search', title: 'Filter by author', filter: true, filterInput: 'input#author-search', dropdown_class: 'dropdown-menu-user dropdown-menu-selectable dropdown-menu-author js-filter-submit',
+            placeholder: 'Search authors', data: { any_user: 'Any Author', first_user: (current_user.username if current_user), project_id: (@project.id if @project), selected: params[:author_id], field_name: 'author_id', default_label: 'Author', todo_filter: true, todo_state_filter: params[:state] || 'pending' } })
+        .filter-item.inline
+          - if params[:type].present?
+            = hidden_field_tag(:type, params[:type])
+          = dropdown_tag(todo_types_dropdown_label(params[:type], 'Type'), options: { toggle_class: 'js-type-search js-filter-submit', dropdown_class: 'dropdown-menu-selectable dropdown-menu-type js-filter-submit',
+            data: { data: todo_types_options, default_label: 'Type' } })
+        .filter-item.inline.actions-filter
+          - if params[:action_id].present?
+            = hidden_field_tag(:action_id, params[:action_id])
+          = dropdown_tag(todo_actions_dropdown_label(params[:action_id], 'Action'), options: { toggle_class: 'js-action-search js-filter-submit', dropdown_class: 'dropdown-menu-selectable dropdown-menu-action js-filter-submit',
+            data: { data: todo_actions_options, default_label: 'Action' } })
         .filter-item.sort-filter
           .dropdown
             %button.dropdown-menu-toggle.dropdown-menu-toggle-sort{ type: 'button', 'data-toggle' => 'dropdown' }
diff --git a/db/migrate/20180608091413_add_group_to_todos.rb b/db/migrate/20180608091413_add_group_to_todos.rb
deleted file mode 100644
index af3ee48b29d..00000000000
--- a/db/migrate/20180608091413_add_group_to_todos.rb
+++ /dev/null
@@ -1,32 +0,0 @@
-class AddGroupToTodos < ActiveRecord::Migration
-  include Gitlab::Database::MigrationHelpers
-
-  DOWNTIME = false
-
-  disable_ddl_transaction!
-
-  def up
-    add_column :todos, :group_id, :integer
-    add_concurrent_foreign_key :todos, :namespaces, column: :group_id, on_delete: :cascade
-    add_concurrent_index :todos, :group_id
-
-    change_column_null :todos, :project_id, true
-  end
-
-  def down
-    return unless group_id_exists?
-
-    remove_foreign_key :todos, column: :group_id
-    remove_index :todos, :group_id if index_exists?(:todos, :group_id)
-    remove_column :todos, :group_id
-
-    execute "DELETE FROM todos WHERE project_id IS NULL"
-    change_column_null :todos, :project_id, false
-  end
-
-  private
-
-  def group_id_exists?
-    column_exists?(:todos, :group_id)
-  end
-end
diff --git a/db/schema.rb b/db/schema.rb
index 75a1960e2f8..d2aa31fae30 100644
--- a/db/schema.rb
+++ b/db/schema.rb
@@ -1950,7 +1950,7 @@ ActiveRecord::Schema.define(version: 20180704204006) do
 
   create_table "todos", force: :cascade do |t|
     t.integer "user_id", null: false
-    t.integer "project_id"
+    t.integer "project_id", null: false
     t.integer "target_id"
     t.string "target_type", null: false
     t.integer "author_id", null: false
@@ -1960,12 +1960,10 @@ ActiveRecord::Schema.define(version: 20180704204006) do
     t.datetime "updated_at"
     t.integer "note_id"
     t.string "commit_id"
-    t.integer "group_id"
   end
 
   add_index "todos", ["author_id"], name: "index_todos_on_author_id", using: :btree
   add_index "todos", ["commit_id"], name: "index_todos_on_commit_id", using: :btree
-  add_index "todos", ["group_id"], name: "index_todos_on_group_id", using: :btree
   add_index "todos", ["note_id"], name: "index_todos_on_note_id", using: :btree
   add_index "todos", ["project_id"], name: "index_todos_on_project_id", using: :btree
   add_index "todos", ["target_type", "target_id"], name: "index_todos_on_target_type_and_target_id", using: :btree
@@ -2339,7 +2337,6 @@ ActiveRecord::Schema.define(version: 20180704204006) do
   add_foreign_key "term_agreements", "users", on_delete: :cascade
   add_foreign_key "timelogs", "issues", name: "fk_timelogs_issues_issue_id", on_delete: :cascade
   add_foreign_key "timelogs", "merge_requests", name: "fk_timelogs_merge_requests_merge_request_id", on_delete: :cascade
-  add_foreign_key "todos", "namespaces", column: "group_id", on_delete: :cascade
   add_foreign_key "todos", "notes", name: "fk_91d1f47b13", on_delete: :cascade
   add_foreign_key "todos", "projects", name: "fk_45054f9c45", on_delete: :cascade
   add_foreign_key "todos", "users", column: "author_id", name: "fk_ccf0373936", on_delete: :cascade
diff --git a/doc/api/todos.md b/doc/api/todos.md
index 0843e4eedc6..27e623007cc 100644
--- a/doc/api/todos.md
+++ b/doc/api/todos.md
@@ -18,7 +18,6 @@ Parameters:
 | `action` | string | no | The action to be filtered. Can be `assigned`, `mentioned`, `build_failed`, `marked`, `approval_required`, `unmergeable` or `directly_addressed`. |
 | `author_id` | integer | no | The ID of an author |
 | `project_id` | integer | no | The ID of a project |
-| `group_id` | integer | no | The ID of a group |
 | `state` | string | no | The state of the todo. Can be either `pending` or `done` |
 | `type` | string | no | The type of a todo. Can be either `Issue` or `MergeRequest` |
 
diff --git a/doc/workflow/todos.md b/doc/workflow/todos.md
index dda82352c67..760cd87d4cc 100644
--- a/doc/workflow/todos.md
+++ b/doc/workflow/todos.md
@@ -109,7 +109,6 @@ There are four kinds of filters you can use on your Todos dashboard.
 | Filter  | Description |
 | ------- | ----------- |
 | Project | Filter by project |
-| Group   | Filter by group |
 | Author  | Filter by the author that triggered the Todo |
 | Type    | Filter by issue or merge request |
 | Action  | Filter by the action that triggered the Todo |
diff --git a/lib/api/entities.rb b/lib/api/entities.rb
index 40df1e79bc7..66b62d9ee2e 100644
--- a/lib/api/entities.rb
+++ b/lib/api/entities.rb
@@ -775,33 +775,28 @@ module API
 
     class Todo < Grape::Entity
       expose :id
-      expose :project, using: Entities::ProjectIdentity, if: -> (todo, _) { todo.project_id }
-      expose :group, using: 'API::Entities::NamespaceBasic', if: -> (todo, _) { todo.group_id }
+      expose :project, using: Entities::BasicProjectDetails
       expose :author, using: Entities::UserBasic
       expose :action_name
       expose :target_type
 
       expose :target do |todo, options|
-        todo_target_class(todo.target_type).represent(todo.target, options)
+        Entities.const_get(todo.target_type).represent(todo.target, options)
       end
 
       expose :target_url do |todo, options|
         target_type   = todo.target_type.underscore
-        target_url    = "#{todo.parent.class.to_s.underscore}_#{target_type}_url"
+        target_url    = "namespace_project_#{target_type}_url"
         target_anchor = "note_#{todo.note_id}" if todo.note_id?
 
         Gitlab::Routing
           .url_helpers
-          .public_send(target_url, todo.parent, todo.target, anchor: target_anchor) # rubocop:disable GitlabSecurity/PublicSend
+          .public_send(target_url, todo.project.namespace, todo.project, todo.target, anchor: target_anchor) # rubocop:disable GitlabSecurity/PublicSend
       end
 
       expose :body
       expose :state
       expose :created_at
-
-      def todo_target_class(target_type)
-        ::API::Entities.const_get(target_type)
-      end
     end
 
     class NamespaceBasic < Grape::Entity
diff --git a/spec/controllers/projects/todos_controller_spec.rb b/spec/controllers/projects/todos_controller_spec.rb
index 58f2817c7cc..1ce7e84bef9 100644
--- a/spec/controllers/projects/todos_controller_spec.rb
+++ b/spec/controllers/projects/todos_controller_spec.rb
@@ -5,29 +5,10 @@ describe Projects::TodosController do
   let(:project)       { create(:project) }
   let(:issue)         { create(:issue, project: project) }
   let(:merge_request) { create(:merge_request, source_project: project) }
-  let(:parent)        { project }
-
-  shared_examples 'project todos actions' do
-    it_behaves_like 'todos actions'
-
-    context 'when not authorized for resource' do
-      before do
-        project.update!(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
-        project.project_feature.update!(issues_access_level: ProjectFeature::PRIVATE)
-        project.project_feature.update!(merge_requests_access_level: ProjectFeature::PRIVATE)
-        sign_in(user)
-      end
-
-      it "doesn't create todo" do
-        expect { post_create }.not_to change { user.todos.count }
-        expect(response).to have_gitlab_http_status(404)
-      end
-    end
-  end
 
   context 'Issues' do
     describe 'POST create' do
-      def post_create
+      def go
         post :create,
           namespace_id: project.namespace,
           project_id: project,
@@ -36,13 +17,66 @@ describe Projects::TodosController do
           format: 'html'
       end
 
-      it_behaves_like 'project todos actions'
+      context 'when authorized' do
+        before do
+          sign_in(user)
+          project.add_developer(user)
+        end
+
+        it 'creates todo for issue' do
+          expect do
+            go
+          end.to change { user.todos.count }.by(1)
+
+          expect(response).to have_gitlab_http_status(200)
+        end
+
+        it 'returns todo path and pending count' do
+          go
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(json_response['count']).to eq 1
+          expect(json_response['delete_path']).to match(%r{/dashboard/todos/\d{1}})
+        end
+      end
+
+      context 'when not authorized for project' do
+        it 'does not create todo for issue that user has no access to' do
+          sign_in(user)
+          expect do
+            go
+          end.to change { user.todos.count }.by(0)
+
+          expect(response).to have_gitlab_http_status(404)
+        end
+
+        it 'does not create todo for issue when user not logged in' do
+          expect do
+            go
+          end.to change { user.todos.count }.by(0)
+
+          expect(response).to have_gitlab_http_status(302)
+        end
+      end
+
+      context 'when not authorized for issue' do
+        before do
+          project.update!(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
+          project.project_feature.update!(issues_access_level: ProjectFeature::PRIVATE)
+          sign_in(user)
+        end
+
+        it "doesn't create todo" do
+          expect { go }.not_to change { user.todos.count }
+          expect(response).to have_gitlab_http_status(404)
+        end
+      end
     end
   end
 
   context 'Merge Requests' do
     describe 'POST create' do
-      def post_create
+      def go
         post :create,
           namespace_id: project.namespace,
           project_id: project,
@@ -51,7 +85,60 @@ describe Projects::TodosController do
           format: 'html'
       end
 
-      it_behaves_like 'project todos actions'
+      context 'when authorized' do
+        before do
+          sign_in(user)
+          project.add_developer(user)
+        end
+
+        it 'creates todo for merge request' do
+          expect do
+            go
+          end.to change { user.todos.count }.by(1)
+
+          expect(response).to have_gitlab_http_status(200)
+        end
+
+        it 'returns todo path and pending count' do
+          go
+
+          expect(response).to have_gitlab_http_status(200)
+          expect(json_response['count']).to eq 1
+          expect(json_response['delete_path']).to match(%r{/dashboard/todos/\d{1}})
+        end
+      end
+
+      context 'when not authorized for project' do
+        it 'does not create todo for merge request user has no access to' do
+          sign_in(user)
+          expect do
+            go
+          end.to change { user.todos.count }.by(0)
+
+          expect(response).to have_gitlab_http_status(404)
+        end
+
+        it 'does not create todo for merge request user has no access to' do
+          expect do
+            go
+          end.to change { user.todos.count }.by(0)
+
+          expect(response).to have_gitlab_http_status(302)
+        end
+      end
+
+      context 'when not authorized for merge_request' do
+        before do
+          project.update!(visibility_level: Gitlab::VisibilityLevel::PUBLIC)
+          project.project_feature.update!(merge_requests_access_level: ProjectFeature::PRIVATE)
+          sign_in(user)
+        end
+
+        it "doesn't create todo" do
+          expect { go }.not_to change { user.todos.count }
+          expect(response).to have_gitlab_http_status(404)
+        end
+      end
     end
   end
 end
diff --git a/spec/factories/todos.rb b/spec/factories/todos.rb
index 14486c80341..94f8caedfa6 100644
--- a/spec/factories/todos.rb
+++ b/spec/factories/todos.rb
@@ -1,8 +1,8 @@
 FactoryBot.define do
   factory :todo do
     project
-    author { project&.creator || user }
-    user { project&.creator || user }
+    author { project.creator }
+    user { project.creator }
     target factory: :issue
     action { Todo::ASSIGNED }
 
diff --git a/spec/finders/todos_finder_spec.rb b/spec/finders/todos_finder_spec.rb
index 6061021d3b0..9747b9402a7 100644
--- a/spec/finders/todos_finder_spec.rb
+++ b/spec/finders/todos_finder_spec.rb
@@ -5,76 +5,12 @@ describe TodosFinder do
     let(:user) { create(:user) }
     let(:group) { create(:group) }
     let(:project) { create(:project, namespace: group) }
-    let(:issue) { create(:issue, project: project) }
-    let(:merge_request) { create(:merge_request, source_project: project) }
     let(:finder) { described_class }
 
     before do
       group.add_developer(user)
     end
 
-    describe '#execute' do
-      context 'visibility' do
-        let(:private_group_access) { create(:group, :private) }
-        let(:private_group_hidden) { create(:group, :private) }
-        let(:public_project) { create(:project, :public) }
-        let(:private_project_hidden) { create(:project) }
-        let(:public_group) { create(:group) }
-
-        let!(:todo1) { create(:todo, user: user, project: project, group: nil) }
-        let!(:todo2) { create(:todo, user: user, project: public_project, group: nil) }
-        let!(:todo3) { create(:todo, user: user, project: private_project_hidden, group: nil) }
-        let!(:todo4) { create(:todo, user: user, project: nil, group: group) }
-        let!(:todo5) { create(:todo, user: user, project: nil, group: private_group_access) }
-        let!(:todo6) { create(:todo, user: user, project: nil, group: private_group_hidden) }
-        let!(:todo7) { create(:todo, user: user, project: nil, group: public_group) }
-
-        before do
-          private_group_access.add_developer(user)
-        end
-
-        it 'returns only todos with a target a user has access to' do
-          todos = finder.new(user).execute
-
-          expect(todos).to match_array([todo1, todo2, todo4, todo5, todo7])
-        end
-      end
-
-      context 'filtering' do
-        let!(:todo1) { create(:todo, user: user, project: project, target: issue) }
-        let!(:todo2) { create(:todo, user: user, group: group, target: merge_request) }
-
-        it 'returns correct todos when filtered by a project' do
-          todos = finder.new(user, { project_id: project.id }).execute
-
-          expect(todos).to match_array([todo1])
-        end
-
-        it 'returns correct todos when filtered by a group' do
-          todos = finder.new(user, { group_id: group.id }).execute
-
-          expect(todos).to match_array([todo1, todo2])
-        end
-
-        it 'returns correct todos when filtered by a type' do
-          todos = finder.new(user, { type: 'Issue' }).execute
-
-          expect(todos).to match_array([todo1])
-        end
-
-        context 'with subgroups', :nested_groups do
-          let(:subgroup) { create(:group, parent: group) }
-          let!(:todo3) { create(:todo, user: user, group: subgroup, target: issue) }
-
-          it 'returns todos from subgroups when filtered by a group' do
-            todos = finder.new(user, { group_id: group.id }).execute
-
-            expect(todos).to match_array([todo1, todo2, todo3])
-          end
-        end
-      end
-    end
-
     describe '#sort' do
       context 'by date' do
         let!(:todo1) { create(:todo, user: user, project: project) }
diff --git a/spec/helpers/issuables_helper_spec.rb b/spec/helpers/issuables_helper_spec.rb
index f76ed4bfda4..77410e0070c 100644
--- a/spec/helpers/issuables_helper_spec.rb
+++ b/spec/helpers/issuables_helper_spec.rb
@@ -21,27 +21,6 @@ describe IssuablesHelper do
     end
   end
 
-  describe '#group_dropdown_label' do
-    let(:group)  { create(:group) }
-    let(:default) { 'default label' }
-
-    it 'returns default group label when group_id is nil' do
-      expect(group_dropdown_label(nil, default)).to eq('default label')
-    end
-
-    it 'returns "any group" when group_id is 0' do
-      expect(group_dropdown_label('0', default)).to eq('Any group')
-    end
-
-    it 'returns group full path when a group was found for the provided id' do
-      expect(group_dropdown_label(group.id, default)).to eq(group.full_name)
-    end
-
-    it 'returns default label when a group was not found for the provided id' do
-      expect(group_dropdown_label(9999, default)).to eq('default label')
-    end
-  end
-
   describe '#issuable_labels_tooltip' do
     it 'returns label text with no labels' do
       expect(issuable_labels_tooltip([])).to eq("Labels")
diff --git a/spec/javascripts/sidebar/todo_spec.js b/spec/javascripts/sidebar/todo_spec.js
deleted file mode 100644
index a929b804a29..00000000000
--- a/spec/javascripts/sidebar/todo_spec.js
+++ /dev/null
@@ -1,158 +0,0 @@
-import Vue from 'vue';
-
-import SidebarTodos from '~/sidebar/components/todo_toggle/todo.vue';
-import mountComponent from 'spec/helpers/vue_mount_component_helper';
-
-const createComponent = ({
-  issuableId = 1,
-  issuableType = 'epic',
-  isTodo,
-  isActionActive,
-  collapsed,
-}) => {
-  const Component = Vue.extend(SidebarTodos);
-
-  return mountComponent(Component, {
-    issuableId,
-    issuableType,
-    isTodo,
-    isActionActive,
-    collapsed,
-  });
-};
-
-describe('SidebarTodo', () => {
-  let vm;
-
-  beforeEach(() => {
-    vm = createComponent({});
-  });
-
-  afterEach(() => {
-    vm.$destroy();
-  });
-
-  describe('computed', () => {
-    describe('buttonClasses', () => {
-      it('returns todo button classes for when `collapsed` prop is `false`', () => {
-        expect(vm.buttonClasses).toBe('btn btn-default btn-todo issuable-header-btn float-right');
-      });
-
-      it('returns todo button classes for when `collapsed` prop is `true`', done => {
-        vm.collapsed = true;
-        Vue.nextTick()
-          .then(() => {
-            expect(vm.buttonClasses).toBe('btn-blank btn-todo sidebar-collapsed-icon dont-change-state');
-          })
-          .then(done)
-          .catch(done.fail);
-      });
-    });
-
-    describe('buttonLabel', () => {
-      it('returns todo button text for marking todo as done when `isTodo` prop is `true`', () => {
-        expect(vm.buttonLabel).toBe('Mark todo as done');
-      });
-
-      it('returns todo button text for add todo when `isTodo` prop is `false`', done => {
-        vm.isTodo = false;
-        Vue.nextTick()
-          .then(() => {
-            expect(vm.buttonLabel).toBe('Add todo');
-          })
-          .then(done)
-          .catch(done.fail);
-      });
-    });
-
-    describe('collapsedButtonIconClasses', () => {
-      it('returns collapsed button icon class when `isTodo` prop is `true`', () => {
-        expect(vm.collapsedButtonIconClasses).toBe('todo-undone');
-      });
-
-      it('returns empty string when `isTodo` prop is `false`', done => {
-        vm.isTodo = false;
-        Vue.nextTick()
-          .then(() => {
-            expect(vm.collapsedButtonIconClasses).toBe('');
-          })
-          .then(done)
-          .catch(done.fail);
-      });
-    });
-
-    describe('collapsedButtonIcon', () => {
-      it('returns button icon name when `isTodo` prop is `true`', () => {
-        expect(vm.collapsedButtonIcon).toBe('todo-done');
-      });
-
-      it('returns button icon name when `isTodo` prop is `false`', done => {
-        vm.isTodo = false;
-        Vue.nextTick()
-          .then(() => {
-            expect(vm.collapsedButtonIcon).toBe('todo-add');
-          })
-          .then(done)
-          .catch(done.fail);
-      });
-    });
-  });
-
-  describe('methods', () => {
-    describe('handleButtonClick', () => {
-      it('emits `toggleTodo` event on component', () => {
-        spyOn(vm, '$emit');
-        vm.handleButtonClick();
-        expect(vm.$emit).toHaveBeenCalledWith('toggleTodo');
-      });
-    });
-  });
-
-  describe('template', () => {
-    it('renders component container element', () => {
-      const dataAttributes = {
-        issuableId: '1',
-        issuableType: 'epic',
-        originalTitle: 'Mark todo as done',
-        placement: 'left',
-        container: 'body',
-        boundary: 'viewport',
-      };
-      expect(vm.$el.nodeName).toBe('BUTTON');
-
-      const elDataAttrs = vm.$el.dataset;
-      Object.keys(elDataAttrs).forEach((attr) => {
-        expect(elDataAttrs[attr]).toBe(dataAttributes[attr]);
-      });
-    });
-
-    it('renders button label element when `collapsed` prop is `false`', () => {
-      const buttonLabelEl = vm.$el.querySelector('span.issuable-todo-inner');
-      expect(buttonLabelEl).not.toBeNull();
-      expect(buttonLabelEl.innerText.trim()).toBe('Mark todo as done');
-    });
-
-    it('renders button icon when `collapsed` prop is `true`', done => {
-      vm.collapsed = true;
-      Vue.nextTick()
-        .then(() => {
-          const buttonIconEl = vm.$el.querySelector('svg');
-          expect(buttonIconEl).not.toBeNull();
-          expect(buttonIconEl.querySelector('use').getAttribute('xlink:href')).toContain('todo-done');
-        })
-        .then(done)
-        .catch(done.fail);
-    });
-
-    it('renders loading icon when `isActionActive` prop is true', done => {
-      vm.isActionActive = true;
-      Vue.nextTick()
-        .then(() => {
-          const loadingEl = vm.$el.querySelector('span.loading-container');
-          expect(loadingEl).not.toBeNull();
-        })
-        .then(done)
-        .catch(done.fail);
-    });
-  });
-});
diff --git a/spec/models/todo_spec.rb b/spec/models/todo_spec.rb
index f29abcf536e..bd498269798 100644
--- a/spec/models/todo_spec.rb
+++ b/spec/models/todo_spec.rb
@@ -7,7 +7,6 @@ describe Todo do
     it { is_expected.to belong_to(:author).class_name("User") }
     it { is_expected.to belong_to(:note) }
     it { is_expected.to belong_to(:project) }
-    it { is_expected.to belong_to(:group) }
     it { is_expected.to belong_to(:target).touch(true) }
     it { is_expected.to belong_to(:user) }
   end
diff --git a/spec/support/shared_examples/controllers/todos_shared_examples.rb b/spec/support/shared_examples/controllers/todos_shared_examples.rb
deleted file mode 100644
index bafd9bac8d0..00000000000
--- a/spec/support/shared_examples/controllers/todos_shared_examples.rb
+++ /dev/null
@@ -1,43 +0,0 @@
-shared_examples 'todos actions' do
-  context 'when authorized' do
-    before do
-      sign_in(user)
-      parent.add_developer(user)
-    end
-
-    it 'creates todo' do
-      expect do
-        post_create
-      end.to change { user.todos.count }.by(1)
-
-      expect(response).to have_gitlab_http_status(200)
-    end
-
-    it 'returns todo path and pending count' do
-      post_create
-
-      expect(response).to have_gitlab_http_status(200)
-      expect(json_response['count']).to eq 1
-      expect(json_response['delete_path']).to match(%r{/dashboard/todos/\d{1}})
-    end
-  end
-
-  context 'when not authorized for project/group' do
-    it 'does not create todo for resource that user has no access to' do
-      sign_in(user)
-      expect do
-        post_create
-      end.to change { user.todos.count }.by(0)
-
-      expect(response).to have_gitlab_http_status(404)
-    end
-
-    it 'does not create todo when user is not logged in' do
-      expect do
-        post_create
-      end.to change { user.todos.count }.by(0)
-
-      expect(response).to have_gitlab_http_status(parent.is_a?(Group) ? 401 : 302)
-    end
-  end
-end

From e1578effd9363d20395f1104c4f7471249b854d4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Wed, 11 Jul 2018 18:53:45 +0200
Subject: [PATCH 093/113] Revert "Add a new fake migration file"

This reverts commit eff378ca1a317877f168b76658d81b38d4d9f02e.
---
 db/migrate/my_new_migration.rb | 0
 1 file changed, 0 insertions(+), 0 deletions(-)
 delete mode 100644 db/migrate/my_new_migration.rb

diff --git a/db/migrate/my_new_migration.rb b/db/migrate/my_new_migration.rb
deleted file mode 100644
index e69de29bb2d..00000000000

From ffba5ce93646eb8e42ceddcec94b6797b3efb471 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Wed, 11 Jul 2018 18:53:52 +0200
Subject: [PATCH 094/113] Revert "Add a fake change to Gemfile"

This reverts commit 867018aab4fe2a305ebc58193da5c19e72827ddf.
---
 Gemfile | 2 --
 1 file changed, 2 deletions(-)

diff --git a/Gemfile b/Gemfile
index f608937ecd4..d575568adaa 100644
--- a/Gemfile
+++ b/Gemfile
@@ -437,5 +437,3 @@ gem 'grape_logging', '~> 1.7'
 
 # Asset synchronization
 gem 'asset_sync', '~> 2.4'
-
-# foo

From 644135b9c4348dd7d45eaa5684d2c67a8b015b02 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Wed, 11 Jul 2018 18:53:59 +0200
Subject: [PATCH 095/113] Revert "Moving 400 lines of code"

This reverts commit 1915c9f0cf1ec3e836c02ba57c97e5a9a61d487b.
---
 app/models/project.rb | 301 ------------------------------------------
 app/models/user.rb    |  27 ++--
 2 files changed, 13 insertions(+), 315 deletions(-)

diff --git a/app/models/project.rb b/app/models/project.rb
index 2cc0c83d064..770262f6193 100644
--- a/app/models/project.rb
+++ b/app/models/project.rb
@@ -2182,306 +2182,5 @@ class Project < ActiveRecord::Base
     else
       check_access.call
     end
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
-
   end
 end
diff --git a/app/models/user.rb b/app/models/user.rb
index 4aeaaedfe4d..1c5d39db118 100644
--- a/app/models/user.rb
+++ b/app/models/user.rb
@@ -441,20 +441,6 @@ class User < ActiveRecord::Base
     [:ghost]
   end
 
-  def full_website_url
-    return "http://#{website_url}" if website_url !~ %r{\Ahttps?://}
-
-    website_url
-  end
-
-  def short_website_url
-    website_url.sub(%r{\Ahttps?://}, '')
-  end
-
-  def all_ssh_keys
-    keys.map(&:publishable_key)
-  end
-
   def internal?
     self.class.internal_attributes.any? { |a| self[a] }
   end
@@ -859,6 +845,19 @@ class User < ActiveRecord::Base
       project.project_member(self)
   end
 
+  def full_website_url
+    return "http://#{website_url}" if website_url !~ %r{\Ahttps?://}
+
+    website_url
+  end
+
+  def short_website_url
+    website_url.sub(%r{\Ahttps?://}, '')
+  end
+
+  def all_ssh_keys
+    keys.map(&:publishable_key)
+  end
 
   def temp_oauth_email?
     email.start_with?('temp-email-for-oauth')

From f5b64bee94f741ef8b1608567b774870278c7ac5 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Wed, 11 Jul 2018 18:54:06 +0200
Subject: [PATCH 096/113] Revert "Modify locale/gitlab.pot for debugging
 purpose"

This reverts commit dc629bb6b8146477fdbf9fcd11d10ebedc785029.
---
 locale/gitlab.pot | 21 +++++++++++++--------
 1 file changed, 13 insertions(+), 8 deletions(-)

diff --git a/locale/gitlab.pot b/locale/gitlab.pot
index 984753cffe5..83ff735580e 100644
--- a/locale/gitlab.pot
+++ b/locale/gitlab.pot
@@ -16,11 +16,6 @@ msgstr ""
 "Content-Transfer-Encoding: 8bit\n"
 "Plural-Forms: nplurals=INTEGER; plural=EXPRESSION;\n"
 
-msgid "Adding 4 lines"
-msgid_plural "%d changed files"
-msgstr[0] ""
-msgstr[1] ""
-
 msgid "%d changed file"
 msgid_plural "%d changed files"
 msgstr[0] ""
@@ -36,11 +31,21 @@ msgid_plural "%d commits behind"
 msgstr[0] ""
 msgstr[1] ""
 
+msgid "%d exporter"
+msgid_plural "%d exporters"
+msgstr[0] ""
+msgstr[1] ""
+
 msgid "%d issue"
 msgid_plural "%d issues"
 msgstr[0] ""
 msgstr[1] ""
 
+msgid "%d layer"
+msgid_plural "%d layers"
+msgstr[0] ""
+msgstr[1] ""
+
 msgid "%d merge request"
 msgid_plural "%d merge requests"
 msgstr[0] ""
@@ -1429,14 +1434,14 @@ msgstr ""
 msgid "Comment & unresolve discussion"
 msgstr ""
 
+msgid "Comments"
+msgstr ""
+
 msgid "Commit"
 msgid_plural "Commits"
 msgstr[0] ""
 msgstr[1] ""
 
-msgid "Comments"
-msgstr ""
-
 msgid "Commit (%{commit_count})"
 msgid_plural "Commits (%{commit_count})"
 msgstr[0] ""

From 0cf9af01ce5c6db84aba8d40defc0cb03cb6e75f Mon Sep 17 00:00:00 2001
From: Annabel Dunstone Gray <annabel.dunstone@gmail.com>
Date: Wed, 11 Jul 2018 12:07:38 -0500
Subject: [PATCH 097/113] Fix MR widget border

---
 app/assets/stylesheets/pages/merge_requests.scss    | 6 ------
 app/views/projects/merge_requests/_mr_box.html.haml | 2 +-
 2 files changed, 1 insertion(+), 7 deletions(-)

diff --git a/app/assets/stylesheets/pages/merge_requests.scss b/app/assets/stylesheets/pages/merge_requests.scss
index c32049e1b33..2af79c511ba 100644
--- a/app/assets/stylesheets/pages/merge_requests.scss
+++ b/app/assets/stylesheets/pages/merge_requests.scss
@@ -116,10 +116,8 @@
 
       .modify-merge-commit-link {
         padding: 0;
-
         background-color: transparent;
         border: 0;
-
         color: $gl-text-color;
 
         &:hover,
@@ -501,10 +499,6 @@
   }
 }
 
-.merge-request-details .content-block {
-  border-bottom: 0;
-}
-
 .mr-source-target {
   display: flex;
   flex-wrap: wrap;
diff --git a/app/views/projects/merge_requests/_mr_box.html.haml b/app/views/projects/merge_requests/_mr_box.html.haml
index 8a390cf8700..1a9ab288683 100644
--- a/app/views/projects/merge_requests/_mr_box.html.haml
+++ b/app/views/projects/merge_requests/_mr_box.html.haml
@@ -1,4 +1,4 @@
-.detail-page-description.content-block
+.detail-page-description
   %h2.title
     = markdown_field(@merge_request, :title)
 

From 545c961dbccad9eefbdc44c68b6c82b4e4699661 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?R=C3=A9my=20Coutable?= <remy@rymai.me>
Date: Wed, 11 Jul 2018 19:12:44 +0200
Subject: [PATCH 098/113] Wrap DB paths in backticks in the Danger check
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

Signed-off-by: Rémy Coutable <remy@rymai.me>
---
 danger/database/Dangerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
index 5d9b53fe4f0..2328a6c1733 100644
--- a/danger/database/Dangerfile
+++ b/danger/database/Dangerfile
@@ -67,7 +67,7 @@ unless db_paths_to_review.empty?
 
 The following files require a review from the Database team:
 
-* #{db_paths_to_review.join("\n* ")}
+* #{db_paths_to_review.map { |path| "`#{path}`" }.join("\n* ")}
 
 To make sure these changes are reviewed, take the following steps:
 

From df54458a93fb1ec8d3564aa4e17857b6fa78fe7e Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Tue, 10 Jul 2018 16:07:59 -0700
Subject: [PATCH 099/113] Truncate filenames created by bin/changelog to 140
 characters

---
 bin/changelog              | 14 ++++++++++----
 spec/bin/changelog_spec.rb | 14 ++++++++++++++
 2 files changed, 24 insertions(+), 4 deletions(-)

diff --git a/bin/changelog b/bin/changelog
index d7b2a1a2de9..758c036161e 100755
--- a/bin/changelog
+++ b/bin/changelog
@@ -23,6 +23,8 @@ module ChangelogHelpers
   Abort = Class.new(StandardError)
   Done = Class.new(StandardError)
 
+  MAX_FILENAME_LENGTH = 140 # ecryptfs has a limit of 140 characters
+
   def capture_stdout(cmd)
     output = IO.popen(cmd, &:read)
     fail_with "command failed: #{cmd.join(' ')}" unless $?.success?
@@ -142,7 +144,9 @@ class ChangelogEntry
 
   def initialize(options)
     @options = options
+  end
 
+  def execute
     assert_feature_branch!
     assert_title!
     assert_new_file!
@@ -221,10 +225,12 @@ class ChangelogEntry
   end
 
   def file_path
-    File.join(
+    base_path = File.join(
       unreleased_path,
-      branch_name.gsub(/[^\w-]/, '-') << '.yml'
-    )
+      branch_name.gsub(/[^\w-]/, '-'))
+
+    # Add padding for .yml extension
+    base_path[0..MAX_FILENAME_LENGTH - 5] + '.yml'
   end
 
   def unreleased_path
@@ -250,7 +256,7 @@ end
 if $0 == __FILE__
   begin
     options = ChangelogOptionParser.parse(ARGV)
-    ChangelogEntry.new(options)
+    ChangelogEntry.new(options).execute
   rescue ChangelogHelpers::Abort => ex
     $stderr.puts ex.message
     exit 1
diff --git a/spec/bin/changelog_spec.rb b/spec/bin/changelog_spec.rb
index f278043028f..9dc4edf97d1 100644
--- a/spec/bin/changelog_spec.rb
+++ b/spec/bin/changelog_spec.rb
@@ -3,6 +3,20 @@ require 'spec_helper'
 load File.expand_path('../../bin/changelog', __dir__)
 
 describe 'bin/changelog' do
+  let(:options) { OpenStruct.new(title: 'Test title', type: 'fixed', dry_run: true) }
+
+  describe ChangelogEntry do
+    it 'truncates the file path' do
+      entry = described_class.new(options)
+
+      allow(entry).to receive(:ee?).and_return(false)
+      allow(entry).to receive(:branch_name).and_return('long-branch-' * 100)
+
+      file_path = entry.send(:file_path)
+      expect(file_path.length).to eq(140)
+    end
+  end
+
   describe ChangelogOptionParser do
     describe '.parse' do
       it 'parses --amend' do

From a825dc229a9b9ecb76dc6b88d7002afe29ff5781 Mon Sep 17 00:00:00 2001
From: ddavison <ddavison@gitlab.com>
Date: Wed, 11 Jul 2018 14:14:06 -0400
Subject: [PATCH 100/113] move #has_milestone? to issuable sidebar; closes
 #48690

---
 qa/qa/page/issuable/sidebar.rb                    |  7 +++++++
 qa/qa/page/merge_request/show.rb                  |  6 ------
 qa/qa/specs/features/merge_request/create_spec.rb | 11 ++++++-----
 3 files changed, 13 insertions(+), 11 deletions(-)

diff --git a/qa/qa/page/issuable/sidebar.rb b/qa/qa/page/issuable/sidebar.rb
index dec2ce1eab3..f207264e24f 100644
--- a/qa/qa/page/issuable/sidebar.rb
+++ b/qa/qa/page/issuable/sidebar.rb
@@ -4,6 +4,7 @@ module QA
       class Sidebar < Page::Base
         view 'app/views/shared/issuable/_sidebar.html.haml' do
           element :labels_block, ".issuable-show-labels"
+          element :milestones_block, '.block.milestone'
         end
 
         def has_label?(label)
@@ -11,6 +12,12 @@ module QA
             !!find('span', text: label)
           end
         end
+
+        def has_milestone?(milestone)
+          page.within('.block.milestone') do
+            !!find("[href*='/milestones/']", text: milestone)
+          end
+        end
       end
     end
   end
diff --git a/qa/qa/page/merge_request/show.rb b/qa/qa/page/merge_request/show.rb
index f3200160a78..c200f14f4fb 100644
--- a/qa/qa/page/merge_request/show.rb
+++ b/qa/qa/page/merge_request/show.rb
@@ -79,12 +79,6 @@ module QA
 
           click_element :squash_checkbox
         end
-
-        def has_milestone?(milestone_title)
-          page.within('.issuable-sidebar') do
-            !!find("[href*='/milestones/']", text: milestone_title, wait: 1)
-          end
-        end
       end
     end
   end
diff --git a/qa/qa/specs/features/merge_request/create_spec.rb b/qa/qa/specs/features/merge_request/create_spec.rb
index 5807e539699..36d7efb02e1 100644
--- a/qa/qa/specs/features/merge_request/create_spec.rb
+++ b/qa/qa/specs/features/merge_request/create_spec.rb
@@ -20,11 +20,12 @@ module QA
         merge_request.milestone = current_milestone
       end
 
-      Page::MergeRequest::Show.perform do |merge_request|
-        expect(page).to have_content('This is a merge request with a milestone')
-        expect(page).to have_content('Great feature with milestone')
-        expect(page).to have_content(/Opened [\w\s]+ ago/)
-        expect(merge_request).to have_milestone(current_milestone.title)
+      expect(page).to have_content('This is a merge request with a milestone')
+      expect(page).to have_content('Great feature with milestone')
+      expect(page).to have_content(/Opened [\w\s]+ ago/)
+
+      Page::Issuable::Sidebar.perform do |sidebar|
+        expect(sidebar).to have_milestone(current_milestone.title)
       end
     end
   end

From 2555bf5ee35862a9f940d3004e3b9f7bdf196e12 Mon Sep 17 00:00:00 2001
From: Michael Kozono <mkozono@gmail.com>
Date: Wed, 11 Jul 2018 11:22:46 -0700
Subject: [PATCH 101/113] Revert "Log push output on exception"

This reverts commit d493c91d21250e0b94a14f1808fcf8bb6f1a8d03.
---
 .../repository/protected_branches_spec.rb     | 24 +++++--------------
 1 file changed, 6 insertions(+), 18 deletions(-)

diff --git a/qa/qa/specs/features/repository/protected_branches_spec.rb b/qa/qa/specs/features/repository/protected_branches_spec.rb
index 29ea2e69ec7..4e593a69aae 100644
--- a/qa/qa/specs/features/repository/protected_branches_spec.rb
+++ b/qa/qa/specs/features/repository/protected_branches_spec.rb
@@ -13,15 +13,11 @@ module QA
       Page::Main::Login.act { sign_in_using_credentials }
     end
 
-    after do |example|
+    after do
       # We need to clear localStorage because we're using it for the dropdown,
       # and capybara doesn't do this for us.
       # https://github.com/teamcapybara/capybara/issues/1702
       Capybara.execute_script 'localStorage.clear()'
-
-      # In order to help diagnose a false failure
-      # https://gitlab.com/gitlab-org/gitlab-ce/issues/48241
-      log_push_output if example.exception
     end
 
     context 'when developers and maintainers are allowed to push to a protected branch' do
@@ -31,9 +27,9 @@ module QA
         expect(protected_branch.name).to have_content(branch_name)
         expect(protected_branch.push_allowance).to have_content('Developers + Maintainers')
 
-        @push = push_new_file(branch_name)
+        push = push_new_file(branch_name)
 
-        expect(@push.output).to match(/remote: To create a merge request for protected-branch, visit/)
+        expect(push.output).to match(/remote: To create a merge request for protected-branch, visit/)
       end
     end
 
@@ -41,11 +37,11 @@ module QA
       it 'user without push rights fails to push to the protected branch' do
         create_protected_branch(allow_to_push: false)
 
-        @push = push_new_file(branch_name)
+        push = push_new_file(branch_name)
 
-        expect(@push.output)
+        expect(push.output)
           .to match(/remote\: GitLab\: You are not allowed to push code to protected branches on this project/)
-        expect(@push.output)
+        expect(push.output)
           .to match(/\[remote rejected\] #{branch_name} -> #{branch_name} \(pre-receive hook declined\)/)
       end
     end
@@ -69,13 +65,5 @@ module QA
         resource.new_branch = false
       end
     end
-
-    def log_push_output
-      if defined?(@push)
-        filename = File.join('tmp', "push-output-#{project.name}")
-        puts "Exception detected. Push output will be saved to #{filename}"
-        IO.binwrite(filename, @push.output)
-      end
-    end
   end
 end

From 27843cd2e7b290dd79483e3d11b1bb1bd8a6d78e Mon Sep 17 00:00:00 2001
From: Robert Speicher <rspeicher@gmail.com>
Date: Wed, 11 Jul 2018 14:44:35 -0500
Subject: [PATCH 102/113] Autocorrect RuboCop violations in
 danger/**/Dangerfile

---
 danger/changelog/Dangerfile    | 6 +++---
 danger/changes_size/Dangerfile | 2 --
 danger/database/Dangerfile     | 1 -
 danger/gemfile/Dangerfile      | 4 +---
 danger/specs/Dangerfile        | 4 +---
 5 files changed, 5 insertions(+), 12 deletions(-)

diff --git a/danger/changelog/Dangerfile b/danger/changelog/Dangerfile
index b4a2f7b964c..76ebe57cf8d 100644
--- a/danger/changelog/Dangerfile
+++ b/danger/changelog/Dangerfile
@@ -2,9 +2,9 @@
 
 require 'yaml'
 
-NO_CHANGELOG_LABELS = %w[backstage QA test]
-SEE_DOC = "See [the documentation](https://docs.gitlab.com/ce/development/changelog.html)."
-MISSING_CHANGELOG_MESSAGE = <<~MSG
+NO_CHANGELOG_LABELS = %w[backstage QA test].freeze
+SEE_DOC = "See [the documentation](https://docs.gitlab.com/ce/development/changelog.html).".freeze
+MISSING_CHANGELOG_MESSAGE = <<~MSG.freeze
 **[CHANGELOG missing](https://docs.gitlab.com/ce/development/changelog.html).**
 
 You can create one with:
diff --git a/danger/changes_size/Dangerfile b/danger/changes_size/Dangerfile
index 597073e6029..8251d0d5cbf 100644
--- a/danger/changes_size/Dangerfile
+++ b/danger/changes_size/Dangerfile
@@ -1,5 +1,3 @@
-# rubocop:disable Style/SignalException
-
 # FIXME: git.info_for_file raises the following error
 # /usr/local/bundle/gems/git-1.4.0/lib/git/lib.rb:956:in `command':  (Danger::DSLError)
 # [!] Invalid `Dangerfile` file:
diff --git a/danger/database/Dangerfile b/danger/database/Dangerfile
index 2328a6c1733..6f48994945a 100644
--- a/danger/database/Dangerfile
+++ b/danger/database/Dangerfile
@@ -1,5 +1,4 @@
 # frozen_string_literal: true
-# rubocop:disable Style/SignalException
 
 # All the files/directories that should be reviewed by the DB team.
 DB_FILES = [
diff --git a/danger/gemfile/Dangerfile b/danger/gemfile/Dangerfile
index b9f59d95815..8ef4a464fe4 100644
--- a/danger/gemfile/Dangerfile
+++ b/danger/gemfile/Dangerfile
@@ -1,6 +1,4 @@
-# rubocop:disable Style/SignalException
-
-GEMFILE_LOCK_NOT_UPDATED_MESSAGE = <<~MSG
+GEMFILE_LOCK_NOT_UPDATED_MESSAGE = <<~MSG.freeze
 **%<gemfile>s was updated but %<gemfile_lock>s wasn't updated.**
 
 Usually, when %<gemfile>s is updated, you should run
diff --git a/danger/specs/Dangerfile b/danger/specs/Dangerfile
index 0ed5235ec02..934ea0beadb 100644
--- a/danger/specs/Dangerfile
+++ b/danger/specs/Dangerfile
@@ -1,6 +1,4 @@
-# rubocop:disable Style/SignalException
-
-NO_NEW_SPEC_MESSAGE = <<~MSG
+NO_NEW_SPEC_MESSAGE = <<~MSG.freeze
 You've made some app changes, but didn't add any tests.
 That's OK as long as you're refactoring existing code,
 but please consider adding the ~backstage label in that case.

From 96ccab8f6f4a6e3a56d5d590626666c6aea4637a Mon Sep 17 00:00:00 2001
From: Lin Jen-Shin <godfat@godfat.org>
Date: Thu, 12 Jul 2018 09:24:43 +0800
Subject: [PATCH 103/113] We want letters and numbers

---
 db/fixtures/development/19_environments.rb | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/db/fixtures/development/19_environments.rb b/db/fixtures/development/19_environments.rb
index 65089f6ba4e..3e227928a29 100644
--- a/db/fixtures/development/19_environments.rb
+++ b/db/fixtures/development/19_environments.rb
@@ -30,7 +30,7 @@ class Gitlab::Seeder::Environments
   def create_merge_request_review_deployments!
     @project
       .merge_requests
-      .select { |mr| mr.source_branch.match(/[^a-zA-Z0-9]+/) }
+      .select { |mr| mr.source_branch.match?(/[a-zA-Z0-9]+/) }
       .sample(4)
       .each do |merge_request|
       next unless merge_request.diff_head_sha

From 9a0549550384e4a04dd9d006c4e6e981bd362eb4 Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Thu, 12 Jul 2018 07:41:49 +0000
Subject: [PATCH 104/113] Remove timeouts from TimeTracker tests

---
 .../javascripts/issuable_time_tracker_spec.js | 201 ---------------
 .../time_tracking/time_tracker_spec.js        | 243 ++++++++++++++++++
 2 files changed, 243 insertions(+), 201 deletions(-)
 delete mode 100644 spec/javascripts/issuable_time_tracker_spec.js
 create mode 100644 spec/javascripts/sidebar/components/time_tracking/time_tracker_spec.js

diff --git a/spec/javascripts/issuable_time_tracker_spec.js b/spec/javascripts/issuable_time_tracker_spec.js
deleted file mode 100644
index 5add150f874..00000000000
--- a/spec/javascripts/issuable_time_tracker_spec.js
+++ /dev/null
@@ -1,201 +0,0 @@
-/* eslint-disable no-unused-vars, func-call-spacing, no-spaced-func, semi, quotes, space-infix-ops, max-len */
-
-import $ from 'jquery';
-import Vue from 'vue';
-
-import timeTracker from '~/sidebar/components/time_tracking/time_tracker.vue';
-
-function initTimeTrackingComponent(opts) {
-  setFixtures(`
-    <div>
-      <div id="mock-container"></div>
-    </div>
-  `);
-
-  this.initialData = {
-    time_estimate: opts.timeEstimate,
-    time_spent: opts.timeSpent,
-    human_time_estimate: opts.timeEstimateHumanReadable,
-    human_time_spent: opts.timeSpentHumanReadable,
-    rootPath: '/',
-  };
-
-  const TimeTrackingComponent = Vue.extend(timeTracker);
-  this.timeTracker = new TimeTrackingComponent({
-    el: '#mock-container',
-    propsData: this.initialData,
-  });
-}
-
-describe('Issuable Time Tracker', function() {
-  describe('Initialization', function() {
-    beforeEach(function() {
-      initTimeTrackingComponent.call(this, { timeEstimate: 100000, timeSpent: 5000, timeEstimateHumanReadable: '2h 46m', timeSpentHumanReadable: '1h 23m' });
-    });
-
-    it('should return something defined', function() {
-      expect(this.timeTracker).toBeDefined();
-    });
-
-    it ('should correctly set timeEstimate', function(done) {
-      Vue.nextTick(() => {
-        expect(this.timeTracker.timeEstimate).toBe(this.initialData.time_estimate);
-        done();
-      });
-    });
-    it ('should correctly set time_spent', function(done) {
-      Vue.nextTick(() => {
-        expect(this.timeTracker.timeSpent).toBe(this.initialData.time_spent);
-        done();
-      });
-    });
-  });
-
-  describe('Content Display', function() {
-    describe('Panes', function() {
-      describe('Comparison pane', function() {
-        beforeEach(function() {
-          initTimeTrackingComponent.call(this, { timeEstimate: 100000, timeSpent: 5000, timeEstimateHumanReadable: '', timeSpentHumanReadable: '' });
-        });
-
-        it('should show the "Comparison" pane when timeEstimate and time_spent are truthy', function(done) {
-          Vue.nextTick(() => {
-            const $comparisonPane = this.timeTracker.$el.querySelector('.time-tracking-comparison-pane');
-            expect(this.timeTracker.showComparisonState).toBe(true);
-            done();
-          });
-        });
-
-        describe('Remaining meter', function() {
-          it('should display the remaining meter with the correct width', function(done) {
-            Vue.nextTick(() => {
-              const meterWidth = this.timeTracker.$el.querySelector('.time-tracking-comparison-pane .meter-fill').style.width;
-              const correctWidth = '5%';
-
-              expect(meterWidth).toBe(correctWidth);
-              done();
-            })
-          });
-
-          it('should display the remaining meter with the correct background color when within estimate', function(done) {
-            Vue.nextTick(() => {
-              const styledMeter = $(this.timeTracker.$el).find('.time-tracking-comparison-pane .within_estimate .meter-fill');
-              expect(styledMeter.length).toBe(1);
-              done()
-            });
-          });
-
-          it('should display the remaining meter with the correct background color when over estimate', function(done) {
-            this.timeTracker.time_estimate = 100000;
-            this.timeTracker.time_spent = 20000000;
-            Vue.nextTick(() => {
-              const styledMeter = $(this.timeTracker.$el).find('.time-tracking-comparison-pane .over_estimate .meter-fill');
-              expect(styledMeter.length).toBe(1);
-              done();
-            });
-          });
-        });
-      });
-
-      describe("Estimate only pane", function() {
-        beforeEach(function() {
-          initTimeTrackingComponent.call(this, { timeEstimate: 100000, timeSpent: 0, timeEstimateHumanReadable: '2h 46m', timeSpentHumanReadable: '' });
-        });
-
-        it('should display the human readable version of time estimated', function(done) {
-          Vue.nextTick(() => {
-            const estimateText = this.timeTracker.$el.querySelector('.time-tracking-estimate-only-pane').innerText;
-            const correctText = 'Estimated: 2h 46m';
-
-            expect(estimateText).toBe(correctText);
-            done();
-          });
-        });
-      });
-
-      describe('Spent only pane', function() {
-        beforeEach(function() {
-          initTimeTrackingComponent.call(this, { timeEstimate: 0, timeSpent: 5000, timeEstimateHumanReadable: '2h 46m', timeSpentHumanReadable: '1h 23m' });
-        });
-
-        it('should display the human readable version of time spent', function(done) {
-          Vue.nextTick(() => {
-            const spentText = this.timeTracker.$el.querySelector('.time-tracking-spend-only-pane').innerText;
-            const correctText = 'Spent: 1h 23m';
-
-            expect(spentText).toBe(correctText);
-            done();
-          });
-        });
-      });
-
-      describe('No time tracking pane', function() {
-        beforeEach(function() {
-          initTimeTrackingComponent.call(this, { timeEstimate: 0, timeSpent: 0, timeEstimateHumanReadable: '', timeSpentHumanReadable: '' });
-        });
-
-        it('should only show the "No time tracking" pane when both timeEstimate and time_spent are falsey', function(done) {
-          Vue.nextTick(() => {
-            const $noTrackingPane = this.timeTracker.$el.querySelector('.time-tracking-no-tracking-pane');
-            const noTrackingText =$noTrackingPane.innerText;
-            const correctText = 'No estimate or time spent';
-
-            expect(this.timeTracker.showNoTimeTrackingState).toBe(true);
-            expect($noTrackingPane).toBeVisible();
-            expect(noTrackingText).toBe(correctText);
-            done();
-          });
-        });
-      });
-
-      describe("Help pane", function() {
-        beforeEach(function() {
-          initTimeTrackingComponent.call(this, { timeEstimate: 0, timeSpent: 0 });
-        });
-
-        it('should not show the "Help" pane by default', function(done) {
-          Vue.nextTick(() => {
-            const $helpPane = this.timeTracker.$el.querySelector('.time-tracking-help-state');
-
-            expect(this.timeTracker.showHelpState).toBe(false);
-            expect($helpPane).toBeNull();
-            done();
-          });
-        });
-
-        it('should show the "Help" pane when help button is clicked', function(done) {
-          Vue.nextTick(() => {
-            $(this.timeTracker.$el).find('.help-button').click();
-
-            setTimeout(() => {
-              const $helpPane = this.timeTracker.$el.querySelector('.time-tracking-help-state');
-              expect(this.timeTracker.showHelpState).toBe(true);
-              expect($helpPane).toBeVisible();
-              done();
-            }, 10);
-          });
-        });
-
-        it('should not show the "Help" pane when help button is clicked and then closed', function(done) {
-          Vue.nextTick(() => {
-            $(this.timeTracker.$el).find('.help-button').click();
-
-            setTimeout(() => {
-
-              $(this.timeTracker.$el).find('.close-help-button').click();
-
-              setTimeout(() => {
-                const $helpPane = this.timeTracker.$el.querySelector('.time-tracking-help-state');
-
-                expect(this.timeTracker.showHelpState).toBe(false);
-                expect($helpPane).toBeNull();
-
-                done();
-              }, 1000);
-            }, 1000);
-          });
-        });
-      });
-    });
-  });
-});
diff --git a/spec/javascripts/sidebar/components/time_tracking/time_tracker_spec.js b/spec/javascripts/sidebar/components/time_tracking/time_tracker_spec.js
new file mode 100644
index 00000000000..b58de607ece
--- /dev/null
+++ b/spec/javascripts/sidebar/components/time_tracking/time_tracker_spec.js
@@ -0,0 +1,243 @@
+import $ from 'jquery';
+import Vue from 'vue';
+
+import TimeTracker from '~/sidebar/components/time_tracking/time_tracker.vue';
+
+import mountComponent from 'spec/helpers/vue_mount_component_helper';
+
+describe('Issuable Time Tracker', () => {
+  let initialData;
+  let vm;
+
+  const initTimeTrackingComponent = opts => {
+    setFixtures(`
+    <div>
+      <div id="mock-container"></div>
+    </div>
+  `);
+
+    initialData = {
+      time_estimate: opts.timeEstimate,
+      time_spent: opts.timeSpent,
+      human_time_estimate: opts.timeEstimateHumanReadable,
+      human_time_spent: opts.timeSpentHumanReadable,
+      rootPath: '/',
+    };
+
+    const TimeTrackingComponent = Vue.extend({
+      ...TimeTracker,
+      components: {
+        ...TimeTracker.components,
+        transition: {
+          // disable animations
+          template: '<div><slot></slot></div>',
+        },
+      },
+    });
+    vm = mountComponent(TimeTrackingComponent, initialData, '#mock-container');
+  };
+
+  afterEach(() => {
+    vm.$destroy();
+  });
+
+  describe('Initialization', () => {
+    beforeEach(() => {
+      initTimeTrackingComponent({
+        timeEstimate: 100000,
+        timeSpent: 5000,
+        timeEstimateHumanReadable: '2h 46m',
+        timeSpentHumanReadable: '1h 23m',
+      });
+    });
+
+    it('should return something defined', () => {
+      expect(vm).toBeDefined();
+    });
+
+    it('should correctly set timeEstimate', done => {
+      Vue.nextTick(() => {
+        expect(vm.timeEstimate).toBe(initialData.time_estimate);
+        done();
+      });
+    });
+
+    it('should correctly set time_spent', done => {
+      Vue.nextTick(() => {
+        expect(vm.timeSpent).toBe(initialData.time_spent);
+        done();
+      });
+    });
+  });
+
+  describe('Content Display', () => {
+    describe('Panes', () => {
+      describe('Comparison pane', () => {
+        beforeEach(() => {
+          initTimeTrackingComponent({
+            timeEstimate: 100000,
+            timeSpent: 5000,
+            timeEstimateHumanReadable: '',
+            timeSpentHumanReadable: '',
+          });
+        });
+
+        it('should show the "Comparison" pane when timeEstimate and time_spent are truthy', done => {
+          Vue.nextTick(() => {
+            expect(vm.showComparisonState).toBe(true);
+            const $comparisonPane = vm.$el.querySelector('.time-tracking-comparison-pane');
+            expect($comparisonPane).toBeVisible();
+            done();
+          });
+        });
+
+        describe('Remaining meter', () => {
+          it('should display the remaining meter with the correct width', done => {
+            Vue.nextTick(() => {
+              const meterWidth = vm.$el.querySelector('.time-tracking-comparison-pane .meter-fill')
+                .style.width;
+              const correctWidth = '5%';
+
+              expect(meterWidth).toBe(correctWidth);
+              done();
+            });
+          });
+
+          it('should display the remaining meter with the correct background color when within estimate', done => {
+            Vue.nextTick(() => {
+              const styledMeter = $(vm.$el).find(
+                '.time-tracking-comparison-pane .within_estimate .meter-fill',
+              );
+              expect(styledMeter.length).toBe(1);
+              done();
+            });
+          });
+
+          it('should display the remaining meter with the correct background color when over estimate', done => {
+            vm.time_estimate = 100000;
+            vm.time_spent = 20000000;
+            Vue.nextTick(() => {
+              const styledMeter = $(vm.$el).find(
+                '.time-tracking-comparison-pane .over_estimate .meter-fill',
+              );
+              expect(styledMeter.length).toBe(1);
+              done();
+            });
+          });
+        });
+      });
+
+      describe('Estimate only pane', () => {
+        beforeEach(() => {
+          initTimeTrackingComponent({
+            timeEstimate: 100000,
+            timeSpent: 0,
+            timeEstimateHumanReadable: '2h 46m',
+            timeSpentHumanReadable: '',
+          });
+        });
+
+        it('should display the human readable version of time estimated', done => {
+          Vue.nextTick(() => {
+            const estimateText = vm.$el.querySelector('.time-tracking-estimate-only-pane')
+              .innerText;
+            const correctText = 'Estimated: 2h 46m';
+
+            expect(estimateText).toBe(correctText);
+            done();
+          });
+        });
+      });
+
+      describe('Spent only pane', () => {
+        beforeEach(() => {
+          initTimeTrackingComponent({
+            timeEstimate: 0,
+            timeSpent: 5000,
+            timeEstimateHumanReadable: '2h 46m',
+            timeSpentHumanReadable: '1h 23m',
+          });
+        });
+
+        it('should display the human readable version of time spent', done => {
+          Vue.nextTick(() => {
+            const spentText = vm.$el.querySelector('.time-tracking-spend-only-pane').innerText;
+            const correctText = 'Spent: 1h 23m';
+
+            expect(spentText).toBe(correctText);
+            done();
+          });
+        });
+      });
+
+      describe('No time tracking pane', () => {
+        beforeEach(() => {
+          initTimeTrackingComponent({
+            timeEstimate: 0,
+            timeSpent: 0,
+            timeEstimateHumanReadable: '',
+            timeSpentHumanReadable: '',
+          });
+        });
+
+        it('should only show the "No time tracking" pane when both timeEstimate and time_spent are falsey', done => {
+          Vue.nextTick(() => {
+            const $noTrackingPane = vm.$el.querySelector('.time-tracking-no-tracking-pane');
+            const noTrackingText = $noTrackingPane.innerText;
+            const correctText = 'No estimate or time spent';
+
+            expect(vm.showNoTimeTrackingState).toBe(true);
+            expect($noTrackingPane).toBeVisible();
+            expect(noTrackingText).toBe(correctText);
+            done();
+          });
+        });
+      });
+
+      describe('Help pane', () => {
+        const helpButton = () => vm.$el.querySelector('.help-button');
+        const closeHelpButton = () => vm.$el.querySelector('.close-help-button');
+        const helpPane = () => vm.$el.querySelector('.time-tracking-help-state');
+
+        beforeEach(done => {
+          initTimeTrackingComponent({ timeEstimate: 0, timeSpent: 0 });
+
+          Vue.nextTick()
+            .then(done)
+            .catch(done.fail);
+        });
+
+        it('should not show the "Help" pane by default', () => {
+          expect(vm.showHelpState).toBe(false);
+          expect(helpPane()).toBeNull();
+        });
+
+        it('should show the "Help" pane when help button is clicked', done => {
+          helpButton().click();
+
+          Vue.nextTick()
+            .then(() => {
+              expect(vm.showHelpState).toBe(true);
+              expect(helpPane()).toBeVisible();
+            })
+            .then(done)
+            .catch(done.fail);
+        });
+
+        it('should not show the "Help" pane when help button is clicked and then closed', done => {
+          helpButton().click();
+
+          Vue.nextTick()
+            .then(() => closeHelpButton().click())
+            .then(() => Vue.nextTick())
+            .then(() => {
+              expect(vm.showHelpState).toBe(false);
+              expect(helpPane()).toBeNull();
+            })
+            .then(done)
+            .catch(done.fail);
+        });
+      });
+    });
+  });
+});

From edf1945f3815d1bd8d2fe6a91e3c3c132e1b02ff Mon Sep 17 00:00:00 2001
From: Athar Hameed <atharh@gmail.com>
Date: Thu, 12 Jul 2018 12:53:13 +0500
Subject: [PATCH 105/113] Add examples for array and hash type API params

---
 doc/api/README.md | 32 +++++++++++++++++++++++++++++++-
 1 file changed, 31 insertions(+), 1 deletion(-)

diff --git a/doc/api/README.md b/doc/api/README.md
index 6267618d3bc..4566319ad45 100644
--- a/doc/api/README.md
+++ b/doc/api/README.md
@@ -388,7 +388,7 @@ For example, `/` is represented by `%2F`:
 GET /api/v4/projects/diaspora%2Fdiaspora
 ```
 
-## Branches & tags name encoding
+## Branches and tags name encoding
 
 If your branch or tag contains a `/`, make sure the branch/tag name is
 URL-encoded.
@@ -399,6 +399,36 @@ For example, `/` is represented by `%2F`:
 GET /api/v4/projects/1/branches/my%2Fbranch/commits
 ```
 
+## Encoding API parameters of `array` and `hash` types
+
+When making an API call with parameters of type `array` and/or `hash`, the parameters may be
+specified as shown below.
+
+### `array`
+
+`import_sources` is a parameter of type `array`:
+
+```
+curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" \
+-d "import_sources[]=github" \
+-d "import_sources[]=bitbucket" \
+"https://gitlab.example.com/api/v4/some_endpoint
+```
+
+### `hash`
+
+`override_params` is a parameter of type `hash`:
+
+```
+curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" \
+--form "namespace=email" \
+--form "path=impapi" \
+--form "file=@/path/to/somefile.txt"
+--form "override_params[visibility]=private" \
+--form "override_params[some_other_param]=some_value" \
+https://gitlab.example.com/api/v4/projects/import
+```
+
 ## `id` vs `iid`
 
 When you work with the API, you may notice two similar fields in API entities:

From 081264f18682d7fa823f75737a919e05ea02fe04 Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Wed, 11 Jul 2018 23:19:20 -0700
Subject: [PATCH 106/113] Optimize ProjectWiki#empty? check

The `empty?` check was iterating over all Wiki pages to determine
whether it was empty. Using the limit parameter allows us to bail
out early once we found a page.

Note that this currently only improves performance for GitLab 11.0
until https://gitlab.com/gitlab-org/gitaly/issues/1204 is fixed.

Relates to #40101
---
 app/models/project_wiki.rb                             |  5 ++++-
 changelogs/unreleased/sh-optimize-wiki-empty-check.yml |  5 +++++
 spec/models/project_wiki_spec.rb                       | 10 +++++++++-
 3 files changed, 18 insertions(+), 2 deletions(-)
 create mode 100644 changelogs/unreleased/sh-optimize-wiki-empty-check.yml

diff --git a/app/models/project_wiki.rb b/app/models/project_wiki.rb
index fc868c3ebb7..9ae2fb0013a 100644
--- a/app/models/project_wiki.rb
+++ b/app/models/project_wiki.rb
@@ -20,7 +20,6 @@ class ProjectWiki
     @user = user
   end
 
-  delegate :empty?, to: :pages
   delegate :repository_storage, :hashed_storage?, to: :project
 
   def path
@@ -74,6 +73,10 @@ class ProjectWiki
     !!find_page('home')
   end
 
+  def empty?
+    pages(limit: 1).empty?
+  end
+
   # Returns an Array of Gitlab WikiPage instances or an
   # empty Array if this Wiki has no pages.
   def pages(limit: nil)
diff --git a/changelogs/unreleased/sh-optimize-wiki-empty-check.yml b/changelogs/unreleased/sh-optimize-wiki-empty-check.yml
new file mode 100644
index 00000000000..31ca7497b5a
--- /dev/null
+++ b/changelogs/unreleased/sh-optimize-wiki-empty-check.yml
@@ -0,0 +1,5 @@
+---
+title: Optimize ProjectWiki#empty? check
+merge_request: 20573
+author:
+type: performance
diff --git a/spec/models/project_wiki_spec.rb b/spec/models/project_wiki_spec.rb
index a3c20b3b3c1..a544940800a 100644
--- a/spec/models/project_wiki_spec.rb
+++ b/spec/models/project_wiki_spec.rb
@@ -1,3 +1,4 @@
+# coding: utf-8
 require "spec_helper"
 
 describe ProjectWiki do
@@ -10,7 +11,6 @@ describe ProjectWiki do
 
   subject { project_wiki }
 
-  it { is_expected.to delegate_method(:empty?).to :pages }
   it { is_expected.to delegate_method(:repository_storage).to :project }
   it { is_expected.to delegate_method(:hashed_storage?).to :project }
 
@@ -92,11 +92,19 @@ describe ProjectWiki do
     context "when the wiki has pages" do
       before do
         project_wiki.create_page("index", "This is an awesome new Gollum Wiki")
+        project_wiki.create_page("another-page", "This is another page")
       end
 
       describe '#empty?' do
         subject { super().empty? }
         it { is_expected.to be_falsey }
+
+        # Re-enable this when https://gitlab.com/gitlab-org/gitaly/issues/1204 is fixed
+        xit 'only instantiates a Wiki page once' do
+          expect(WikiPage).to receive(:new).once.and_call_original
+
+          subject
+        end
       end
     end
   end

From 26072c1a646d39547c3eaca57b7715b81ce5b177 Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Thu, 12 Jul 2018 01:16:16 -0700
Subject: [PATCH 107/113] Fix Dangerfile

---
 danger/changelog/Dangerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/danger/changelog/Dangerfile b/danger/changelog/Dangerfile
index 76ebe57cf8d..2424e650d07 100644
--- a/danger/changelog/Dangerfile
+++ b/danger/changelog/Dangerfile
@@ -59,7 +59,7 @@ end
 
 if changelog_needed
   if changelog_found
-    check_changelog(path)
+    check_changelog(changelog_found)
   else
     warn format(MISSING_CHANGELOG_MESSAGE, mr_iid: gitlab.mr_json["iid"], labels: presented_no_changelog_labels)
   end

From 209b66fb0d6e58e02f3be947bd58240aec62dafb Mon Sep 17 00:00:00 2001
From: Stan Hu <stanhu@gmail.com>
Date: Thu, 12 Jul 2018 01:16:16 -0700
Subject: [PATCH 108/113] Fix Dangerfile

---
 danger/changelog/Dangerfile | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/danger/changelog/Dangerfile b/danger/changelog/Dangerfile
index 76ebe57cf8d..2424e650d07 100644
--- a/danger/changelog/Dangerfile
+++ b/danger/changelog/Dangerfile
@@ -59,7 +59,7 @@ end
 
 if changelog_needed
   if changelog_found
-    check_changelog(path)
+    check_changelog(changelog_found)
   else
     warn format(MISSING_CHANGELOG_MESSAGE, mr_iid: gitlab.mr_json["iid"], labels: presented_no_changelog_labels)
   end

From 37af75a2e024bf35f09e6f014626019e960ad9b9 Mon Sep 17 00:00:00 2001
From: Kia Mei Somabes <kia@aelogica.com>
Date: Thu, 12 Jul 2018 09:26:09 +0000
Subject: [PATCH 109/113] Resolve "do not set updated_at when creating note"

---
 .../46930-fix-updated_at-if-created_at-is-set-note-api.yml   | 5 +++++
 doc/api/notes.md                                             | 2 ++
 lib/api/helpers/notes_helpers.rb                             | 2 ++
 spec/support/shared_examples/requests/api/notes.rb           | 1 +
 4 files changed, 10 insertions(+)
 create mode 100644 changelogs/unreleased/46930-fix-updated_at-if-created_at-is-set-note-api.yml

diff --git a/changelogs/unreleased/46930-fix-updated_at-if-created_at-is-set-note-api.yml b/changelogs/unreleased/46930-fix-updated_at-if-created_at-is-set-note-api.yml
new file mode 100644
index 00000000000..d95714a5267
--- /dev/null
+++ b/changelogs/unreleased/46930-fix-updated_at-if-created_at-is-set-note-api.yml
@@ -0,0 +1,5 @@
+---
+title: Fix updated_at if created_at is set for Note API
+merge_request:
+author:
+type: fixed
diff --git a/doc/api/notes.md b/doc/api/notes.md
index d29c5b94915..c271d46688f 100644
--- a/doc/api/notes.md
+++ b/doc/api/notes.md
@@ -218,6 +218,7 @@ Parameters:
 - `id` (required) - The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding)
 - `snippet_id` (required) - The ID of a snippet
 - `body` (required) - The content of a note
+- `created_at` (optional) - Date time string, ISO 8601 formatted, e.g. 2016-03-11T03:45:40Z
 
 ```bash
 curl --request POST --header "PRIVATE-TOKEN: 9koXpg98eAheJpvBs5tK" https://gitlab.example.com/api/v4/projects/5/snippet/11/notes?body=note
@@ -340,6 +341,7 @@ Parameters:
 - `id` (required) - The ID or [URL-encoded path of the project](README.md#namespaced-path-encoding)
 - `merge_request_iid` (required) - The IID of a merge request
 - `body` (required) - The content of a note
+- `created_at` (optional) - Date time string, ISO 8601 formatted, e.g. 2016-03-11T03:45:40Z
 
 ### Modify existing merge request note
 
diff --git a/lib/api/helpers/notes_helpers.rb b/lib/api/helpers/notes_helpers.rb
index b4bfb677d72..e2984b08eca 100644
--- a/lib/api/helpers/notes_helpers.rb
+++ b/lib/api/helpers/notes_helpers.rb
@@ -97,6 +97,8 @@ module API
             current_user.admin? || parent.owned_by?(current_user)
         end
 
+        opts[:updated_at] = opts[:created_at] if opts[:created_at]
+
         project = parent if parent.is_a?(Project)
         ::Notes::CreateService.new(project, current_user, opts).execute
       end
diff --git a/spec/support/shared_examples/requests/api/notes.rb b/spec/support/shared_examples/requests/api/notes.rb
index 79b2196660c..1b563021244 100644
--- a/spec/support/shared_examples/requests/api/notes.rb
+++ b/spec/support/shared_examples/requests/api/notes.rb
@@ -121,6 +121,7 @@ shared_examples 'noteable API' do |parent_type, noteable_type, id_name|
         expect(json_response['body']).to eq('hi!')
         expect(json_response['author']['username']).to eq(user.username)
         expect(Time.parse(json_response['created_at'])).to be_like_time(creation_time)
+        expect(Time.parse(json_response['updated_at'])).to be_like_time(creation_time)
       end
     end
 

From 62ffad08029c4525d9ebfb2862c75c6d3fbbdf10 Mon Sep 17 00:00:00 2001
From: "Jacob Vosmaer (GitLab)" <jacob@gitlab.com>
Date: Thu, 12 Jul 2018 09:49:25 +0000
Subject: [PATCH 110/113] Remove Repository#path memoization

---
 lib/gitlab/git/repository.rb                  |  21 ++-
 lib/gitlab/git/rev_list.rb                    |  33 +----
 spec/lib/gitlab/git/branch_spec.rb            |   8 +-
 spec/lib/gitlab/git/diff_spec.rb              |   9 +-
 spec/lib/gitlab/git/repository_spec.rb        | 125 ++++++++++--------
 spec/lib/gitlab/git/rev_list_spec.rb          |  61 ---------
 spec/lib/gitlab/git_access_spec.rb            |  12 +-
 spec/models/repository_spec.rb                |  11 +-
 .../git_garbage_collect_worker_spec.rb        |   7 +-
 9 files changed, 109 insertions(+), 178 deletions(-)

diff --git a/lib/gitlab/git/repository.rb b/lib/gitlab/git/repository.rb
index a1a050647b9..d50ac2707f0 100644
--- a/lib/gitlab/git/repository.rb
+++ b/lib/gitlab/git/repository.rb
@@ -86,9 +86,6 @@ module Gitlab
       # Relative path of repo
       attr_reader :relative_path
 
-      # Rugged repo object
-      attr_reader :rugged
-
       attr_reader :gitlab_projects, :storage, :gl_repository, :relative_path
 
       # This initializer method is only used on the client side (gitlab-ce).
@@ -112,8 +109,9 @@ module Gitlab
         [storage, relative_path] == [other.storage, other.relative_path]
       end
 
+      # This method will be removed when Gitaly reaches v1.1.
       def path
-        @path ||= File.join(
+        File.join(
           Gitlab.config.repositories.storages[@storage].legacy_disk_path, @relative_path
         )
       end
@@ -127,8 +125,9 @@ module Gitlab
         raise Gitlab::Git::CommandError.new(e.message)
       end
 
+      # This method will be removed when Gitaly reaches v1.1.
       def rugged
-        @rugged ||= circuit_breaker.perform do
+        circuit_breaker.perform do
           Rugged::Repository.new(path, alternates: alternate_object_directories)
         end
       rescue Rugged::RepositoryError, Rugged::OSError
@@ -713,12 +712,6 @@ module Gitlab
         Gitlab::Git.committer_hash(email: user.email, name: user.name)
       end
 
-      def create_commit(params = {})
-        params[:message].delete!("\r")
-
-        Rugged::Commit.create(rugged, params)
-      end
-
       # Delete the specified branch from the repository
       def delete_branch(branch_name)
         gitaly_migrate(:delete_branch, status: Gitlab::GitalyClient::MigrationStatus::OPT_OUT) do |is_enabled|
@@ -1758,6 +1751,12 @@ module Gitlab
       def sha_from_ref(ref)
         rev_parse_target(ref).oid
       end
+
+      def create_commit(params = {})
+        params[:message].delete!("\r")
+
+        Rugged::Commit.create(rugged, params)
+      end
     end
   end
 end
diff --git a/lib/gitlab/git/rev_list.rb b/lib/gitlab/git/rev_list.rb
index 5fdad077eea..2ba68343aa5 100644
--- a/lib/gitlab/git/rev_list.rb
+++ b/lib/gitlab/git/rev_list.rb
@@ -12,35 +12,12 @@ module Gitlab
       end
 
       # This method returns an array of new commit references
+      # Gitaly migration: https://gitlab.com/gitlab-org/gitaly/issues/1233
+      #
       def new_refs
-        repository.rev_list(including: newrev, excluding: :all).split("\n")
-      end
-
-      # Finds newly added objects
-      # Returns an array of shas
-      #
-      # Can skip objects which do not have a path using required_path: true
-      # This skips commit objects and root trees, which might not be needed when
-      # looking for blobs
-      #
-      # When given a block it will yield objects as a lazy enumerator so
-      # the caller can limit work done instead of processing megabytes of data
-      def new_objects(options: [], require_path: nil, not_in: nil, &lazy_block)
-        opts = {
-          including: newrev,
-          options: options,
-          excluding: not_in.nil? ? :all : not_in,
-          require_path: require_path
-        }
-
-        get_objects(opts, &lazy_block)
-      end
-
-      def all_objects(options: [], require_path: nil, &lazy_block)
-        get_objects(including: :all,
-                    options: options,
-                    require_path: require_path,
-                    &lazy_block)
+        Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+          repository.rev_list(including: newrev, excluding: :all).split("\n")
+        end
       end
 
       private
diff --git a/spec/lib/gitlab/git/branch_spec.rb b/spec/lib/gitlab/git/branch_spec.rb
index ec1a684cfbc..a8c5627e678 100644
--- a/spec/lib/gitlab/git/branch_spec.rb
+++ b/spec/lib/gitlab/git/branch_spec.rb
@@ -2,6 +2,11 @@ require "spec_helper"
 
 describe Gitlab::Git::Branch, seed_helper: true do
   let(:repository) { Gitlab::Git::Repository.new('default', TEST_REPO_PATH, '') }
+  let(:rugged) do
+    Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+      repository.rugged
+    end
+  end
 
   subject { repository.branches }
 
@@ -124,6 +129,7 @@ describe Gitlab::Git::Branch, seed_helper: true do
   it { expect(repository.branches.size).to eq(SeedRepo::Repo::BRANCHES.size) }
 
   def create_commit
-    repository.create_commit(params.merge(committer: committer.merge(time: Time.now)))
+    params[:message].delete!("\r")
+    Rugged::Commit.create(rugged, params.merge(committer: committer.merge(time: Time.now)))
   end
 end
diff --git a/spec/lib/gitlab/git/diff_spec.rb b/spec/lib/gitlab/git/diff_spec.rb
index 3bb0b5be15b..7c3d2af819b 100644
--- a/spec/lib/gitlab/git/diff_spec.rb
+++ b/spec/lib/gitlab/git/diff_spec.rb
@@ -27,6 +27,7 @@ EOT
       too_large: false
     }
 
+    # TODO use a Gitaly diff object instead
     @rugged_diff = Gitlab::GitalyClient::StorageSettings.allow_disk_access do
       repository.rugged.diff("5937ac0a7beb003549fc5fd26fc247adbce4a52e^", "5937ac0a7beb003549fc5fd26fc247adbce4a52e", paths:
                                               [".gitmodules"]).patches.first
@@ -266,8 +267,12 @@ EOT
 
   describe '#submodule?' do
     before do
-      commit = repository.lookup('5937ac0a7beb003549fc5fd26fc247adbce4a52e')
-      @diffs = commit.parents[0].diff(commit).patches
+      # TODO use a Gitaly diff object instead
+      rugged_commit = Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+        repository.lookup('5937ac0a7beb003549fc5fd26fc247adbce4a52e')
+      end
+
+      @diffs = rugged_commit.parents[0].diff(rugged_commit).patches
     end
 
     it { expect(described_class.new(@diffs[0]).submodule?).to eq(false) }
diff --git a/spec/lib/gitlab/git/repository_spec.rb b/spec/lib/gitlab/git/repository_spec.rb
index 4f8e6f29255..f155ebc9d1a 100644
--- a/spec/lib/gitlab/git/repository_spec.rb
+++ b/spec/lib/gitlab/git/repository_spec.rb
@@ -611,21 +611,6 @@ describe Gitlab::Git::Repository, seed_helper: true do
     end
   end
 
-  describe "#remove_remote" do
-    before(:all) do
-      @repo = Gitlab::Git::Repository.new('default', TEST_MUTABLE_REPO_PATH, '')
-      @repo.remove_remote("expendable")
-    end
-
-    it "should remove the remote" do
-      expect(@repo.rugged.remotes).not_to include("expendable")
-    end
-
-    after(:all) do
-      ensure_seeds
-    end
-  end
-
   describe "#remote_update" do
     before(:all) do
       @repo = Gitlab::Git::Repository.new('default', TEST_MUTABLE_REPO_PATH, '')
@@ -633,7 +618,9 @@ describe Gitlab::Git::Repository, seed_helper: true do
     end
 
     it "should add the remote" do
-      expect(@repo.rugged.remotes["expendable"].url).to(
+      rugged = Gitlab::GitalyClient::StorageSettings.allow_disk_access { @repo.rugged }
+
+      expect(rugged.remotes["expendable"].url).to(
         eq(TEST_NORMAL_REPO_PATH)
       )
     end
@@ -1157,6 +1144,13 @@ describe Gitlab::Git::Repository, seed_helper: true do
       @repo.rugged.config['core.autocrlf'] = true
     end
 
+    around do |example|
+      # OK because autocrlf is only used in gitaly-ruby
+      Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+        example.run
+      end
+    end
+
     it 'return the value of the autocrlf option' do
       expect(@repo.autocrlf).to be(true)
     end
@@ -1172,6 +1166,13 @@ describe Gitlab::Git::Repository, seed_helper: true do
       @repo.rugged.config['core.autocrlf'] = false
     end
 
+    around do |example|
+      # OK because autocrlf= is only used in gitaly-ruby
+      Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+        example.run
+      end
+    end
+
     it 'should set the autocrlf option to the provided option' do
       @repo.autocrlf = :input
 
@@ -2042,55 +2043,62 @@ describe Gitlab::Git::Repository, seed_helper: true do
     let(:repository) do
       Gitlab::Git::Repository.new('default', TEST_MUTABLE_REPO_PATH, '')
     end
+    let(:rugged) do
+      Gitlab::GitalyClient::StorageSettings.allow_disk_access { repository.rugged }
+    end
     let(:remote_name) { 'my-remote' }
+    let(:url) { 'http://my-repo.git' }
 
     after do
       ensure_seeds
     end
 
     describe '#add_remote' do
-      let(:url) { 'http://my-repo.git' }
       let(:mirror_refmap) { '+refs/*:refs/*' }
 
-      it 'creates a new remote via Gitaly' do
-        expect_any_instance_of(Gitlab::GitalyClient::RemoteService)
-          .to receive(:add_remote).with(remote_name, url, mirror_refmap)
-
-        repository.add_remote(remote_name, url, mirror_refmap: mirror_refmap)
-      end
-
-      context 'with Gitaly disabled', :skip_gitaly_mock do
-        it 'creates a new remote via Rugged' do
-          expect_any_instance_of(Rugged::RemoteCollection).to receive(:create)
-            .with(remote_name, url)
-          expect_any_instance_of(Rugged::Config).to receive(:[]=)
-          .with("remote.#{remote_name}.mirror", true)
-          expect_any_instance_of(Rugged::Config).to receive(:[]=)
-          .with("remote.#{remote_name}.prune", true)
-          expect_any_instance_of(Rugged::Config).to receive(:[]=)
-            .with("remote.#{remote_name}.fetch", mirror_refmap)
+      shared_examples 'add_remote' do
+        it 'added the remote' do
+          begin
+            rugged.remotes.delete(remote_name)
+          rescue Rugged::ConfigError
+          end
 
           repository.add_remote(remote_name, url, mirror_refmap: mirror_refmap)
+
+          expect(rugged.remotes[remote_name]).not_to be_nil
+          expect(rugged.config["remote.#{remote_name}.mirror"]).to eq('true')
+          expect(rugged.config["remote.#{remote_name}.prune"]).to eq('true')
+          expect(rugged.config["remote.#{remote_name}.fetch"]).to eq(mirror_refmap)
         end
       end
+
+      context 'using Gitaly' do
+        it_behaves_like 'add_remote'
+      end
+
+      context 'with Gitaly disabled', :disable_gitaly do
+        it_behaves_like 'add_remote'
+      end
     end
 
     describe '#remove_remote' do
-      it 'removes the remote via Gitaly' do
-        expect_any_instance_of(Gitlab::GitalyClient::RemoteService)
-          .to receive(:remove_remote).with(remote_name)
-
-        repository.remove_remote(remote_name)
-      end
-
-      context 'with Gitaly disabled', :skip_gitaly_mock do
-        it 'removes the remote via Rugged' do
-          expect_any_instance_of(Rugged::RemoteCollection).to receive(:delete)
-            .with(remote_name)
+      shared_examples 'remove_remote' do
+        it 'removes the remote' do
+          rugged.remotes.create(remote_name, url)
 
           repository.remove_remote(remote_name)
+
+          expect(rugged.remotes[remote_name]).to be_nil
         end
       end
+
+      context 'using Gitaly' do
+        it_behaves_like 'remove_remote'
+      end
+
+      context 'with Gitaly disabled', :disable_gitaly do
+        it_behaves_like 'remove_remote'
+      end
     end
   end
 
@@ -2281,20 +2289,25 @@ describe Gitlab::Git::Repository, seed_helper: true do
       let(:worktree_path) { File.join(repository_path, 'worktrees', 'delete-me') }
 
       it 'cleans up the files' do
-        repository.with_worktree(worktree_path, 'master', env: ENV) do
-          FileUtils.touch(worktree_path, mtime: Time.now - 8.hours)
-          # git rev-list --all will fail in git 2.16 if HEAD is pointing to a non-existent object,
-          # but the HEAD must be 40 characters long or git will ignore it.
-          File.write(File.join(worktree_path, 'HEAD'), Gitlab::Git::BLANK_SHA)
+        create_worktree = %W[git -C #{repository_path} worktree add --detach #{worktree_path} master]
+        raise 'preparation failed' unless system(*create_worktree, err: '/dev/null')
 
-          # git 2.16 fails with "fatal: bad object HEAD"
-          expect { repository.rev_list(including: :all) }.to raise_error(Gitlab::Git::Repository::GitError)
+        FileUtils.touch(worktree_path, mtime: Time.now - 8.hours)
+        # git rev-list --all will fail in git 2.16 if HEAD is pointing to a non-existent object,
+        # but the HEAD must be 40 characters long or git will ignore it.
+        File.write(File.join(worktree_path, 'HEAD'), Gitlab::Git::BLANK_SHA)
 
-          repository.clean_stale_repository_files
+        # git 2.16 fails with "fatal: bad object HEAD"
+        expect(rev_list_all).to be false
 
-          expect { repository.rev_list(including: :all) }.not_to raise_error
-          expect(File.exist?(worktree_path)).to be_falsey
-        end
+        repository.clean_stale_repository_files
+
+        expect(rev_list_all).to be true
+        expect(File.exist?(worktree_path)).to be_falsey
+      end
+
+      def rev_list_all
+        system(*%W[git -C #{repository_path} rev-list --all], out: '/dev/null', err: '/dev/null')
       end
 
       it 'increments a counter upon an error' do
diff --git a/spec/lib/gitlab/git/rev_list_spec.rb b/spec/lib/gitlab/git/rev_list_spec.rb
index b752c3e8341..d9d405e1ccc 100644
--- a/spec/lib/gitlab/git/rev_list_spec.rb
+++ b/spec/lib/gitlab/git/rev_list_spec.rb
@@ -32,65 +32,4 @@ describe Gitlab::Git::RevList do
       expect(rev_list.new_refs).to eq(%w[sha1 sha2])
     end
   end
-
-  context '#new_objects' do
-    it 'fetches list of newly pushed objects using rev-list' do
-      stub_popen_rev_list('newrev', '--not', '--all', '--objects', output: "sha1\nsha2")
-
-      expect { |b| rev_list.new_objects(&b) }.to yield_with_args(%w[sha1 sha2])
-    end
-
-    it 'can skip pathless objects' do
-      stub_popen_rev_list('newrev', '--not', '--all', '--objects', output: "sha1\nsha2 path/to/file")
-
-      expect { |b| rev_list.new_objects(require_path: true, &b) }.to yield_with_args(%w[sha2])
-    end
-
-    it 'can handle non utf-8 paths' do
-      non_utf_char = [0x89].pack("c*").force_encoding("UTF-8")
-      stub_popen_rev_list('newrev', '--not', '--all', '--objects', output: "sha2 πå†h/†ø/ƒîlé#{non_utf_char}\nsha1")
-
-      rev_list.new_objects(require_path: true) do |object_ids|
-        expect(object_ids.force).to eq(%w[sha2])
-      end
-    end
-
-    it 'can yield a lazy enumerator' do
-      stub_popen_rev_list('newrev', '--not', '--all', '--objects', output: "sha1\nsha2")
-
-      rev_list.new_objects do |object_ids|
-        expect(object_ids).to be_a Enumerator::Lazy
-      end
-    end
-
-    it 'returns the result of the block when given' do
-      stub_popen_rev_list('newrev', '--not', '--all', '--objects', output: "sha1\nsha2")
-
-      objects = rev_list.new_objects do |object_ids|
-        object_ids.first
-      end
-
-      expect(objects).to eq 'sha1'
-    end
-
-    it 'can accept list of references to exclude' do
-      stub_popen_rev_list('newrev', '--not', 'master', '--objects', output: "sha1\nsha2")
-
-      expect { |b| rev_list.new_objects(not_in: ['master'], &b) }.to yield_with_args(%w[sha1 sha2])
-    end
-
-    it 'handles empty list of references to exclude as listing all known objects' do
-      stub_popen_rev_list('newrev', '--objects', output: "sha1\nsha2")
-
-      expect { |b| rev_list.new_objects(not_in: [], &b) }.to yield_with_args(%w[sha1 sha2])
-    end
-  end
-
-  context '#all_objects' do
-    it 'fetches list of all pushed objects using rev-list' do
-      stub_popen_rev_list('--all', '--objects', output: "sha1\nsha2")
-
-      expect { |b| rev_list.all_objects(&b) }.to yield_with_args(%w[sha1 sha2])
-    end
-  end
 end
diff --git a/spec/lib/gitlab/git_access_spec.rb b/spec/lib/gitlab/git_access_spec.rb
index 832db2bd906..dbd64c4bec0 100644
--- a/spec/lib/gitlab/git_access_spec.rb
+++ b/spec/lib/gitlab/git_access_spec.rb
@@ -734,26 +734,18 @@ describe Gitlab::GitAccess do
         merge_into_protected_branch: "0b4bc9a #{merge_into_protected_branch} refs/heads/feature" }
     end
 
-    def stub_git_hooks
-      # Running the `pre-receive` hook is expensive, and not necessary for this test.
-      allow_any_instance_of(Gitlab::Git::HooksService).to receive(:execute) do |service, &block|
-        block.call(service)
-      end
-    end
-
     def merge_into_protected_branch
       @protected_branch_merge_commit ||= begin
         Gitlab::GitalyClient::StorageSettings.allow_disk_access do
-          stub_git_hooks
           project.repository.add_branch(user, unprotected_branch, 'feature')
-          target_branch = project.repository.lookup('feature')
+          rugged = project.repository.rugged
+          target_branch = rugged.rev_parse('feature')
           source_branch = project.repository.create_file(
             user,
             'filename',
             'This is the file content',
             message: 'This is a good commit message',
             branch_name: unprotected_branch)
-          rugged = project.repository.rugged
           author = { email: "email@example.com", time: Time.now, name: "Example Git User" }
 
           merge_index = rugged.merge_commits(target_branch, source_branch)
diff --git a/spec/models/repository_spec.rb b/spec/models/repository_spec.rb
index caf5d829d21..04d00023b8a 100644
--- a/spec/models/repository_spec.rb
+++ b/spec/models/repository_spec.rb
@@ -151,7 +151,9 @@ describe Repository do
         it { is_expected.to eq(['v1.1.0', 'v1.0.0', annotated_tag_name]) }
 
         after do
-          repository.rugged.tags.delete(annotated_tag_name)
+          Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+            repository.rugged.tags.delete(annotated_tag_name)
+          end
         end
       end
     end
@@ -2231,8 +2233,11 @@ describe Repository do
       create_remote_branch('joe', 'remote_branch', masterrev)
       repository.add_branch(user, 'local_branch', masterrev.id)
 
-      expect(repository.remote_branches('joe').any? { |branch| branch.name == 'local_branch' }).to eq(false)
-      expect(repository.remote_branches('joe').any? { |branch| branch.name == 'remote_branch' }).to eq(true)
+      # TODO: move this test to gitaly https://gitlab.com/gitlab-org/gitaly/issues/1243
+      Gitlab::GitalyClient::StorageSettings.allow_disk_access do
+        expect(repository.remote_branches('joe').any? { |branch| branch.name == 'local_branch' }).to eq(false)
+        expect(repository.remote_branches('joe').any? { |branch| branch.name == 'remote_branch' }).to eq(true)
+      end
     end
   end
 
diff --git a/spec/workers/git_garbage_collect_worker_spec.rb b/spec/workers/git_garbage_collect_worker_spec.rb
index d5808e21271..30e67e67e0e 100644
--- a/spec/workers/git_garbage_collect_worker_spec.rb
+++ b/spec/workers/git_garbage_collect_worker_spec.rb
@@ -209,12 +209,7 @@ describe GitGarbageCollectWorker do
       tree: old_commit.tree,
       parents: [old_commit]
     )
-    Gitlab::Git::OperationService.new(nil, project.repository.raw_repository).send(
-      :update_ref,
-      "refs/heads/#{SecureRandom.hex(6)}",
-      new_commit_sha,
-      Gitlab::Git::BLANK_SHA
-    )
+    rugged.references.create("refs/heads/#{SecureRandom.hex(6)}", new_commit_sha)
   end
 
   def packs(project)

From 8c4bb42521c6db3d61e3d581eef903acf6577007 Mon Sep 17 00:00:00 2001
From: Marcia Ramos <virtua.creative@gmail.com>
Date: Thu, 12 Jul 2018 10:01:11 +0000
Subject: [PATCH 111/113] typo

---
 doc/user/project/clusters/eks_and_gitlab/index.md | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/doc/user/project/clusters/eks_and_gitlab/index.md b/doc/user/project/clusters/eks_and_gitlab/index.md
index 2d8fdf0d1da..ec8467da14f 100644
--- a/doc/user/project/clusters/eks_and_gitlab/index.md
+++ b/doc/user/project/clusters/eks_and_gitlab/index.md
@@ -62,7 +62,7 @@ Click on `Add Kubernetes cluster`, the cluster is now connected to GitLab. At th
 
 If you would like to utilize your own CI/CD scripts to deploy to the cluster, you can stop here.
 
-## Disable Role Based-Access Control (RBAC)
+## Disable Role-Based Access Control (RBAC)
 
 Presently, Auto DevOps and one-click app installs do not support [Kubernetes role-based access control](https://kubernetes.io/docs/reference/access-authn-authz/rbac/). Support is [being worked on](https://gitlab.com/groups/gitlab-org/-/epics/136), but in the interim RBAC must be disabled to utilize for these features.
 

From 29955c9c474de957415da21ec3a330b596807f74 Mon Sep 17 00:00:00 2001
From: Mykhailo Formus <mikeformus@gmail.com>
Date: Thu, 12 Jul 2018 11:59:40 +0000
Subject: [PATCH 112/113] Adding spec to test basic forking functionalities

---
 qa/README.md                                  |  2 +-
 qa/qa.rb                                      | 12 +++++++
 qa/qa/factory/repository/project_push.rb      |  2 ++
 qa/qa/factory/repository/push.rb              | 16 +++++++--
 qa/qa/factory/resource/fork.rb                | 24 +++++++++++++
 .../resource/merge_request_from_fork.rb       | 24 +++++++++++++
 qa/qa/factory/resource/project.rb             |  1 +
 qa/qa/factory/resource/user.rb                | 34 +++++++++++++++++++
 qa/qa/page/layout/banner.rb                   | 17 ++++++++++
 qa/qa/page/main/login.rb                      | 19 +++++++++--
 qa/qa/page/main/sign_up.rb                    | 27 +++++++++++++++
 qa/qa/page/menu/main.rb                       |  4 +--
 qa/qa/page/project/fork/new.rb                | 17 ++++++++++
 qa/qa/page/project/new.rb                     |  5 +++
 qa/qa/page/project/show.rb                    |  9 +++++
 qa/qa/specs/features/login/standard_spec.rb   | 15 --------
 .../features/project/fork_project_spec.rb     | 23 +++++++++++++
 17 files changed, 229 insertions(+), 22 deletions(-)
 create mode 100644 qa/qa/factory/resource/fork.rb
 create mode 100644 qa/qa/factory/resource/merge_request_from_fork.rb
 create mode 100644 qa/qa/factory/resource/user.rb
 create mode 100644 qa/qa/page/layout/banner.rb
 create mode 100644 qa/qa/page/main/sign_up.rb
 create mode 100644 qa/qa/page/project/fork/new.rb
 delete mode 100644 qa/qa/specs/features/login/standard_spec.rb
 create mode 100644 qa/qa/specs/features/project/fork_project_spec.rb

diff --git a/qa/README.md b/qa/README.md
index a4b4398645e..be4cf89ebbc 100644
--- a/qa/README.md
+++ b/qa/README.md
@@ -55,7 +55,7 @@ Since the arguments would be passed to `rspec`, you could use all `rspec`
 options there. For example, passing `--backtrace` and also line number:
 
 ```
-bin/qa Test::Instance http://localhost qa/specs/features/login/standard_spec.rb:3 --backtrace
+bin/qa Test::Instance http://localhost qa/specs/features/project/create_spec.rb:3 --backtrace
 ```
 
 ### Overriding the authenticated user
diff --git a/qa/qa.rb b/qa/qa.rb
index be7bcf7a2ad..258db4d1f16 100644
--- a/qa/qa.rb
+++ b/qa/qa.rb
@@ -41,14 +41,17 @@ module QA
       autoload :Project, 'qa/factory/resource/project'
       autoload :MergeRequest, 'qa/factory/resource/merge_request'
       autoload :ProjectImportedFromGithub, 'qa/factory/resource/project_imported_from_github'
+      autoload :MergeRequestFromFork, 'qa/factory/resource/merge_request_from_fork'
       autoload :DeployKey, 'qa/factory/resource/deploy_key'
       autoload :Branch, 'qa/factory/resource/branch'
       autoload :SecretVariable, 'qa/factory/resource/secret_variable'
       autoload :Runner, 'qa/factory/resource/runner'
       autoload :PersonalAccessToken, 'qa/factory/resource/personal_access_token'
       autoload :KubernetesCluster, 'qa/factory/resource/kubernetes_cluster'
+      autoload :User, 'qa/factory/resource/user'
       autoload :ProjectMilestone, 'qa/factory/resource/project_milestone'
       autoload :Wiki, 'qa/factory/resource/wiki'
+      autoload :Fork, 'qa/factory/resource/fork'
     end
 
     module Repository
@@ -107,6 +110,7 @@ module QA
     module Main
       autoload :Login, 'qa/page/main/login'
       autoload :OAuth, 'qa/page/main/oauth'
+      autoload :SignUp, 'qa/page/main/sign_up'
     end
 
     module Settings
@@ -167,6 +171,10 @@ module QA
         autoload :Index, 'qa/page/project/issue/index'
       end
 
+      module Fork
+        autoload :New, 'qa/page/project/fork/new'
+      end
+
       module Milestone
         autoload :New, 'qa/page/project/milestone/new'
         autoload :Index, 'qa/page/project/milestone/index'
@@ -200,6 +208,10 @@ module QA
       autoload :Sidebar, 'qa/page/issuable/sidebar'
     end
 
+    module Layout
+      autoload :Banner, 'qa/page/layout/banner'
+    end
+
     module MergeRequest
       autoload :New, 'qa/page/merge_request/new'
       autoload :Show, 'qa/page/merge_request/show'
diff --git a/qa/qa/factory/repository/project_push.rb b/qa/qa/factory/repository/project_push.rb
index 48674c08a8d..4f78098d348 100644
--- a/qa/qa/factory/repository/project_push.rb
+++ b/qa/qa/factory/repository/project_push.rb
@@ -11,6 +11,8 @@ module QA
           factory.output
         end
 
+        product(:project) { |factory| factory.project }
+
         def initialize
           @file_name = 'file.txt'
           @file_content = '# This is test project'
diff --git a/qa/qa/factory/repository/push.rb b/qa/qa/factory/repository/push.rb
index 4f97e65b091..5b7ebf6c41f 100644
--- a/qa/qa/factory/repository/push.rb
+++ b/qa/qa/factory/repository/push.rb
@@ -5,7 +5,8 @@ module QA
     module Repository
       class Push < Factory::Base
         attr_accessor :file_name, :file_content, :commit_message,
-                      :branch_name, :new_branch, :output, :repository_uri
+                      :branch_name, :new_branch, :output, :repository_uri,
+                      :user
 
         attr_writer :remote_branch
 
@@ -31,9 +32,20 @@ module QA
         def fabricate!
           Git::Repository.perform do |repository|
             repository.uri = repository_uri
+
             repository.use_default_credentials
+            username = 'GitLab QA'
+            email = 'root@gitlab.com'
+
+            if user
+              repository.username = user.username
+              repository.password = user.password
+              username = user.name
+              email = user.email
+            end
+
             repository.clone
-            repository.configure_identity('GitLab QA', 'root@gitlab.com')
+            repository.configure_identity(username, email)
 
             if new_branch
               repository.checkout_new_branch(branch_name)
diff --git a/qa/qa/factory/resource/fork.rb b/qa/qa/factory/resource/fork.rb
new file mode 100644
index 00000000000..1d0c76a3d30
--- /dev/null
+++ b/qa/qa/factory/resource/fork.rb
@@ -0,0 +1,24 @@
+module QA
+  module Factory
+    module Resource
+      class Fork < Factory::Base
+        dependency Factory::Repository::ProjectPush, as: :push
+
+        dependency Factory::Resource::User, as: :user
+
+        product(:user) { |factory| factory.user }
+
+        def fabricate!
+          push.project.visit!
+          Page::Project::Show.act { fork_project }
+
+          Page::Project::Fork::New.perform do |fork_new|
+            fork_new.choose_namespace(user.name)
+          end
+
+          Page::Layout::Banner.act { has_notice?('The project was successfully forked.') }
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/factory/resource/merge_request_from_fork.rb b/qa/qa/factory/resource/merge_request_from_fork.rb
new file mode 100644
index 00000000000..6caaf65f673
--- /dev/null
+++ b/qa/qa/factory/resource/merge_request_from_fork.rb
@@ -0,0 +1,24 @@
+module QA
+  module Factory
+    module Resource
+      class MergeRequestFromFork < MergeRequest
+        attr_accessor :fork_branch
+
+        dependency Factory::Resource::Fork, as: :fork
+
+        dependency Factory::Repository::ProjectPush, as: :push do |push, factory|
+          push.project = factory.fork
+          push.branch_name = factory.fork_branch
+          push.file_name = 'file2.txt'
+          push.user = factory.fork.user
+        end
+
+        def fabricate!
+          fork.visit!
+          Page::Project::Show.act { new_merge_request }
+          Page::MergeRequest::New.act { create_merge_request }
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/factory/resource/project.rb b/qa/qa/factory/resource/project.rb
index 7bc64c6ae5d..7fff22b5468 100644
--- a/qa/qa/factory/resource/project.rb
+++ b/qa/qa/factory/resource/project.rb
@@ -37,6 +37,7 @@ module QA
             page.choose_test_namespace
             page.choose_name(@name)
             page.add_description(@description)
+            page.set_visibility('Public')
             page.create_new_project
           end
         end
diff --git a/qa/qa/factory/resource/user.rb b/qa/qa/factory/resource/user.rb
new file mode 100644
index 00000000000..e08df9e0cd0
--- /dev/null
+++ b/qa/qa/factory/resource/user.rb
@@ -0,0 +1,34 @@
+require 'securerandom'
+
+module QA
+  module Factory
+    module Resource
+      class User < Factory::Base
+        attr_accessor :name, :username, :email, :password
+
+        def initialize
+          @name = "name-#{SecureRandom.hex(8)}"
+          @username = "username-#{SecureRandom.hex(8)}"
+          @email = "mail#{SecureRandom.hex(8)}@mail.com"
+          @password = 'password'
+        end
+
+        product(:name) { |factory| factory.name }
+
+        product(:username) { |factory| factory.username }
+
+        product(:email) { |factory| factory.email }
+
+        product(:password) { |factory| factory.password }
+
+        def fabricate!
+          Page::Menu::Main.act { sign_out }
+          Page::Main::Login.act { switch_to_register_tab }
+          Page::Main::SignUp.perform do |page|
+            page.sign_up!(name: name, username: username, email: email, password: password)
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/layout/banner.rb b/qa/qa/page/layout/banner.rb
new file mode 100644
index 00000000000..e7654bdafc9
--- /dev/null
+++ b/qa/qa/page/layout/banner.rb
@@ -0,0 +1,17 @@
+module QA
+  module Page
+    module Layout
+      class Banner < Page::Base
+        view 'app/views/layouts/header/_read_only_banner.html.haml' do
+          element :flash_notice, ".flash-notice"
+        end
+
+        def has_notice?(message)
+          page.within('.flash-notice') do
+            !!find('span', text: message)
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/main/login.rb b/qa/qa/page/main/login.rb
index 26c99efc53d..6cdfbd1c125 100644
--- a/qa/qa/page/main/login.rb
+++ b/qa/qa/page/main/login.rb
@@ -25,19 +25,24 @@ module QA
           element :standard_tab, "link_to 'Standard'"
         end
 
+        view 'app/views/devise/shared/_tabs_normal.html.haml' do
+          element :sign_in_tab, /nav-link.*login-pane.*Sign in/
+          element :register_tab, /nav-link.*register-pane.*Register/
+        end
+
         def initialize
           # The login page is usually the entry point for all the scenarios so
           # we need to wait for the instance to start. That said, in some cases
           # we are already logged-in so we check both cases here.
           wait(max: 500) do
             page.has_css?('.login-page') ||
-              Page::Menu::Main.act { has_personal_area? }
+              Page::Menu::Main.act { has_personal_area?(wait: 0) }
           end
         end
 
         def sign_in_using_credentials
           # Don't try to log-in if we're already logged-in
-          return if Page::Menu::Main.act { has_personal_area? }
+          return if Page::Menu::Main.act { has_personal_area?(wait: 0) }
 
           using_wait_time 0 do
             set_initial_password_if_present
@@ -48,12 +53,22 @@ module QA
               sign_in_using_gitlab_credentials
             end
           end
+
+          Page::Menu::Main.act { has_personal_area? }
         end
 
         def self.path
           '/users/sign_in'
         end
 
+        def switch_to_sign_in_tab
+          click_on 'Sign in'
+        end
+
+        def switch_to_register_tab
+          click_on 'Register'
+        end
+
         private
 
         def sign_in_using_ldap_credentials
diff --git a/qa/qa/page/main/sign_up.rb b/qa/qa/page/main/sign_up.rb
new file mode 100644
index 00000000000..9a834e94b81
--- /dev/null
+++ b/qa/qa/page/main/sign_up.rb
@@ -0,0 +1,27 @@
+module QA
+  module Page
+    module Main
+      class SignUp < Page::Base
+        view 'app/views/devise/shared/_signup_box.html.haml' do
+          element :name, 'text_field :name'
+          element :username, 'text_field :username'
+          element :email_field, 'email_field :email'
+          element :email_confirmation, 'email_field :email_confirmation'
+          element :password, 'password_field :password'
+          element :register_button, 'submit "Register"'
+        end
+
+        def sign_up!(name:, username:, email:, password:)
+          fill_in :new_user_name, with: name
+          fill_in :new_user_username, with: username
+          fill_in :new_user_email, with: email
+          fill_in :new_user_email_confirmation, with: email
+          fill_in :new_user_password, with: password
+          click_button 'Register'
+
+          Page::Menu::Main.act { has_personal_area? }
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/menu/main.rb b/qa/qa/page/menu/main.rb
index aef5c9f9c82..36e7285f7b7 100644
--- a/qa/qa/page/menu/main.rb
+++ b/qa/qa/page/menu/main.rb
@@ -60,9 +60,9 @@ module QA
           end
         end
 
-        def has_personal_area?
+        def has_personal_area?(wait: Capybara.default_max_wait_time)
           # No need to wait, either we're logged-in, or not.
-          using_wait_time(0) { page.has_selector?('.qa-user-avatar') }
+          using_wait_time(wait) { page.has_selector?('.qa-user-avatar') }
         end
 
         private
diff --git a/qa/qa/page/project/fork/new.rb b/qa/qa/page/project/fork/new.rb
new file mode 100644
index 00000000000..ed92df956bf
--- /dev/null
+++ b/qa/qa/page/project/fork/new.rb
@@ -0,0 +1,17 @@
+module QA
+  module Page
+    module Project
+      module Fork
+        class New < Page::Base
+          view 'app/views/projects/forks/_fork_button.html.haml' do
+            element :namespace, 'link_to project_forks_path'
+          end
+
+          def choose_namespace(namespace = Runtime::Namespace.path)
+            click_on namespace
+          end
+        end
+      end
+    end
+  end
+end
diff --git a/qa/qa/page/project/new.rb b/qa/qa/page/project/new.rb
index 7976e96d43b..9e812fa7c74 100644
--- a/qa/qa/page/project/new.rb
+++ b/qa/qa/page/project/new.rb
@@ -14,6 +14,7 @@ module QA
           element :project_path, 'text_field :path'
           element :project_description, 'text_area :description'
           element :project_create_button, "submit 'Create project'"
+          element :visibility_radios, 'visibility_level:'
         end
 
         view 'app/views/projects/_import_project_pane.html.haml' do
@@ -42,6 +43,10 @@ module QA
           click_on 'Create project'
         end
 
+        def set_visibility(visibility)
+          choose visibility
+        end
+
         def go_to_github_import
           click_link 'GitHub'
         end
diff --git a/qa/qa/page/project/show.rb b/qa/qa/page/project/show.rb
index 1dcdb59490a..88861d5772d 100644
--- a/qa/qa/page/project/show.rb
+++ b/qa/qa/page/project/show.rb
@@ -22,6 +22,11 @@ module QA
           element :branches_dropdown
         end
 
+        view 'app/views/projects/buttons/_fork.html.haml' do
+          element :fork_label, "%span= s_('GoToYourFork|Fork')"
+          element :fork_link, "link_to new_project_fork_path(@project)"
+        end
+
         view 'app/views/projects/_files.html.haml' do
           element :tree_holder, '.tree-holder'
         end
@@ -61,6 +66,10 @@ module QA
 
           click_link 'New issue'
         end
+
+        def fork_project
+          click_on 'Fork'
+        end
       end
     end
   end
diff --git a/qa/qa/specs/features/login/standard_spec.rb b/qa/qa/specs/features/login/standard_spec.rb
deleted file mode 100644
index 254f47cf217..00000000000
--- a/qa/qa/specs/features/login/standard_spec.rb
+++ /dev/null
@@ -1,15 +0,0 @@
-module QA
-  describe 'standard user login', :core do
-    it 'user logs in using credentials' do
-      Runtime::Browser.visit(:gitlab, Page::Main::Login)
-      Page::Main::Login.act { sign_in_using_credentials }
-
-      # TODO, since `Signed in successfully` message was removed
-      # this is the only way to tell if user is signed in correctly.
-      #
-      Page::Menu::Main.perform do |menu|
-        expect(menu).to have_personal_area
-      end
-    end
-  end
-end
diff --git a/qa/qa/specs/features/project/fork_project_spec.rb b/qa/qa/specs/features/project/fork_project_spec.rb
new file mode 100644
index 00000000000..8ad0120305a
--- /dev/null
+++ b/qa/qa/specs/features/project/fork_project_spec.rb
@@ -0,0 +1,23 @@
+module QA
+  describe 'Project fork', :core do
+    it 'can submit merge requests to upstream master' do
+      Runtime::Browser.visit(:gitlab, Page::Main::Login)
+      Page::Main::Login.act { sign_in_using_credentials }
+
+      merge_request = Factory::Resource::MergeRequestFromFork.fabricate! do |merge_request|
+        merge_request.fork_branch = 'feature-branch'
+      end
+
+      Page::Menu::Main.act { sign_out }
+      Page::Main::Login.act do
+        switch_to_sign_in_tab
+        sign_in_using_credentials
+      end
+
+      merge_request.visit!
+      Page::MergeRequest::Show.act { merge! }
+
+      expect(page).to have_content('The changes were merged')
+    end
+  end
+end

From 5cb48d36860eb26ecbb2dfc70682afa431093f07 Mon Sep 17 00:00:00 2001
From: Winnie Hellmann <winnie@gitlab.com>
Date: Thu, 12 Jul 2018 12:10:53 +0000
Subject: [PATCH 113/113] Remove old service architecture from Vue docs

---
 doc/development/fe_guide/img/vue_arch.png | Bin 9848 -> 0 bytes
 doc/development/fe_guide/vue.md           | 239 +---------------------
 2 files changed, 11 insertions(+), 228 deletions(-)
 delete mode 100644 doc/development/fe_guide/img/vue_arch.png

diff --git a/doc/development/fe_guide/img/vue_arch.png b/doc/development/fe_guide/img/vue_arch.png
deleted file mode 100644
index a67706c7c1e5dce1491e92c576f95d6d8911f4ec..0000000000000000000000000000000000000000
GIT binary patch
literal 0
HcmV?d00001

literal 9848
zcmeHtbySqm`zPR_gu;k0Dj^^u9nw8?cZbXfD4o*Xpdh7mBi&uY08&ztLpLbWA>Hf?
z?AblPKlY#R?jL*3?msZ^x%WQL^WOW!=kwh6v$CSpBOGEJG&HnFGScFzXlUq2;P)2R
zec*39(GOnWAG*D&lqgzBKj|78+G{o$aS?SF^sN-^Dvi;UzXSfAMYNy3(}KW*1eloL
zMP)$hWy!(fdg2ri+ALIzwv$G~)WaiPC#_t>W)Yi?h^@p3m`eXmo*akLW5O68tnYsJ
z{9lR_ieSEfaemHq{FY^R&J)$Rlj6Q(Q(C>lYcg<NyXdjgJTSKsEy05&jD`X3BJrKJ
zZYWN`f&L_NSRXM%2_DZ>a@)kH*lJ=d>ll3wKm$=Iw}Y(fmt)zFx2BI3XF4h>Dma_3
zFL#=W;O8#;ecVv5g&)2ozsp`LBz{TevYH}a+E@>tuC*a=^1i+@Nwz-STYkFET8j{9
zUkMiec0nkY5B5O=;Y9cZ6o-PgqkqLRSStVJTnUszYhjov&s+xk2;*UQA<j88X6Ao(
zcwL{*?-cF#Kew|}4~ro9rPb5hdp=3-zF8h>ksKAkOY<YzxIapj0x&Zj1k-9Ljjdf!
za3*)!nIkLW|2&4F5Bpsv&uu=Ex525;D`}A1Z4<@X|1B+(Zh+>uLn6jjwiznz#BI99
z%6X$qUh_|_<Aq6Z_iTnhrba&z-+b{tO|;3`j@NO+fEXi`m&zwFjy;+XgpNhX<9nKa
zl*=Tb-??J<77<F&;2kY}se-Q6bNrQ@!r<aTU|(eVED?>mw$y3i*74?~eR3PMInBmd
z1Kst5<<m5r7qs3Pt=r>=`}rNris8MF(LpRy6m<77z_gYa1Q`*_(3pjT%NBeuTlE5N
zk=;ZtE4P3JndsL%VSB$cF2Fh;=7*LG)SL8FI}=IW7<Qh;uxozS;`g5}GwKX)66#zI
zNArv0kBz>uRLHkE4_ATPX3is3)3&C3ch#*PWM*VMPMW(xw|D)joTPNEGfuD8x>0%@
zo;6HXG0aY+xh5idtft^AR4|$mv3f!NTRidp79`F7*CW78Zc;i-z)TDb0v_Dd6sCs#
zKS{CyORT{UXnd!~kgogijU^*&lsAg-FPmW6bk>GFeoo%#&R3r5_Wf@sZx7wBUoZ!Q
zw5z^~#S>xz=5e8iCW#NEoakXsdZn$prA8zuCUquRD9xg98eYYCrR?=bLKVlKe#j}_
ze*5y+(b4SFz$0`<<cw_=A(n7D78Zxam}Qi>MFiqw6Edy)^!e;#$Xo~!LlEscL1*u5
z_F9+PADie2PgmAY^REbmcfaz`S7Bp-O$jmZp%=S~8c6ZhQB6_jsEgQCL3d_;<eLzv
zARcPJktSx_=V+6xl-0(fjDg=}fm;RyM!pKWZ{>>y`YKGJ?Lbiddau;tj7{Fkm`ffb
z4kA)KcH!+7bi7-l-w;bD;3YpI@A|k=-V~chYL|c&ivt}4ERBb*W4T5rk3I2tU}r{E
z0p65XcU`QeWN;K!7dC8Hasll+uZOd5p&DjZ>i&QiSR(&?!DIpy;(YPp4&Irmw-@e>
zWtvZ6`_S_j!$PPp5C~2*^xHTFBI-Z+nfDz1XmRw*lY9y^-}|o@ly*(+oms4wt^!KE
zxmhn>7UQ)r4Etv5foat-+{C)yHJ0?I&GE_!&1AmvxMJPFom#kT3x47DsTB8*t?glO
z2iiYoi=powG=>e#!4fnjv@oXFI?4<YFs(iYK?C{v-}4HrgD9nI5$1A!neoiSrk+zO
zsqjr0BH-h^{l8S2rqYeDH^1%SZWXfPyI(n9RNcp*mJ^PZ<ev4o)<And7~@&&tQ#J+
zqYi_4C6?^4Kbwso7(8W>g%FUHKJ`6-D<9Ga{<=vn>oUS{(s*W(hL#TL)sj>$t3+s7
zqEp2tY@~zrbhcQxns2SP`O@m-Xr|8YH=p%<(<S^>z`W*L?wE4f&QpS(>#Nnw2(OI&
zh3IQ;S$pJ?$$DmCn(W(7+9mnZ`o#Woc*Tp_^$XZ(i)^KsnRjuVI5cMim`fR0J>Ef1
zcwOJ0a{V@iMMM9%prjT*N8m*7n^XRP^*%IrZ#IKXs!(5R)vdNa4II3dFu-!Tt$29I
zJnEY7p_Q#e4=t36cyau}Yg8n5?^>o~KvidF{bFbN67!gM{hVCmujS#2rM{B-m0d{X
zzsfEc{NuICI=c*lkvVvQXxwF(1dEUnef9!67FHW-{exU)Q*rc-hnv85WE1ze>+$w%
zqepSl5kcr={2L>;o!JKG*u9izxxG9kqYw0hh4#9rAU~wJPa+)3q#4!E>>XZs_jJBq
zmcy~gDD&Mj%iX<xHI%fCR&A3qoSen#Ewbp5l55gMSfh5eGqN3*T$8i)l~te0H)&De
zV`&c@+^-6y-!BFVf`=YU&fM?PqK&r7(gIlMA4<iwtGu0~*&>bxvW%LuBri|Lb^NKL
zG1p!(Hu0fH1SrAhj=7nK$yHY6LNp5a+KAfZn^I-^4#RoIPKseRn!iDp%&MC7r4wEn
zpX0i&cWkFn&CJo}<i1>X?ZlR9YWLpLUg-CY#=R8kpwyRw?R1xDm;%`(R}nEs>{9fW
zpZb+zn{}?xF}LjNX0{&S&tK4QQRw%nBAVlx=ilI1(0Mn5XlB$lhM9>_dRD}lY@O>K
z)yUqh2BS_qT&-8-=jA2-6Lho9bgQD-DVscj-p)XYt3A139fyy5t0Ern{UxYd_xMsY
z9OodQWnlba$a`>HAK@_hcf-(Ot=TrD-2MQ_K(r4rNVqIlzsLS$SKP1|ULVSoI{uoj
zzf^@#fihDjNA?_lFXB}agwavfZI9{MY(>|fDVsf|-EvORgp5J5U1?)>ylH3D;v>36
z`Scc7Hjrxc%==~EJ<pG{F4wi1r<R3BmoYi#)y^t4OWscEZ<(v2oVpDa;tHKE)geon
zc*>X7<7pmEHuFu^d`L>D=G-=m?6Hzi)Q=|m43Z2~$sPnb-;<ltb0Hr)|17&QPq4IR
zs^ZWu-8!*mChNE8Xm$afHV4#ov%C{RUt~%Kfeqm?k@*WRf=y=;j%8IdhO=1_g)+UI
zWX_V32%YCEUiVK7J&H$z6V^P8;3S>-C63Qm$bYWzdByPAq&|iy#;jCpZ>rj@A&8vK
z^{2BdV%r_fdX9jK@qw#yInT-2IesJ3mZ>IgLI*2CCh&pW;7Yk#YBpUtu1F6_kA_Pn
zj{+T8`L3*4)fxkcK=uc@(&!_P%*1h#tAn1ze2wIl?y2XSJc1@}@}f=-l86EJe$T|F
zF$E#^S<3ELifj35DLc?ts!s`m96Ti7>L#lhSUcOw!b%L;HsorlVqSTsm}?<CKEI7Q
z#~m-$8&^HO{4!*<=gI#mxpbMaA5M2cV*dv8z^<s`m-^SQd=xI!oHGs(jBaWQ^!U=G
zBceTTDm#*lm;j=L;+P4A;X_{8TK$1EFDhT{k}{rd<rD#Oc-}+!gWRg#-}`)|D8J~a
zTB)D)OeMG)a4gj%%?&prh3RYuLH6E)^|#(&%khy+?s@mK1Ls7y3p))n?9xOuwM30d
zN&r5X3S%G=uGI}67cpYDkRNz#-Jkt49ZtqyQy31DURqJAvCYv#d&O)+=P4lJ>_3eE
z5!wDR9#8A+t+ht2^{fz&OJWjy)H`g7eJ0y=IS+3<TXt@+#%emo)pGphc&5;Nd;#|`
zS0G-+7r2UhZ1=TZ0huG8De*}j-v`EYc`O+EBZxwv@S7)*qZQ)Z``1b9M*Iqo+~9M@
zOq(aton^YJ{}`729e+0(;#|wndpc)(D{x;n%QC{%>$I$ONw<4Ef?{O#e*5o{8!Yn5
zmxwwRkIywmIC#kx{P6x)+2~O%cX*}cdVDHAdY-WkuX5bb#J$4AIVb6GZBZyr*$aXa
zx9>n3<S$zWbH)M*rSF4Eh3|(Li>4D|xg2INhLMbpKZ-dxKAzIz)@GoqZMP%n4tC5u
z*7O7CBpr9>^FYTDFth7txy8LI%Vd-;IBwz}1S#hgoANJUqu2YeMz_m`e*a#nhW5Yr
zM%mw9k!h%wI31wM>r0rl+lZQZ)M35k|E{!R%GD;3oLOlB1D^D<TAI;~-_-z2+wx>r
zJ?E%0C7)z(+zs!z<Y-ajwO>YB#Zr$}vF@na(?taaEq%w)9un(1%1a-Xr>yTU1HxA5
zH^vF7uD@^8@Ie(w+TvV8sw?>RhL}IACQLZQQBUi?)pXvPa*SE$HEdD%u$52Gcz8b!
z&u~_p<ZxUDEdqR2um@4)@zavdl+dF@^OdBsty|#K70avZ2gMH;vGcKs0*Tc}nDX&E
zJyFUqh!ub+h`;?1RXB7Uj5hpx|L~_JzN6U9l>ZD~{AbG~WGOsem=0&jNStnEz9eHu
zjG}>FD<*g4RucQLYY3-PVrMnSvO25|1{K92C?d5n?En6fv79zXv0g<MKVlk=#qh0K
zh!HheqXNl>p?P=3PJKen7hs*>>j<Ig5s|f0-e9KmJS++q3C?5(AZ7qF3tsvxXh;Ov
z-hwGwdJHU>$|IT-0D1wyr~sI$5k*OQJ24~#%}-0cO~&LFZl&MM)Oe2-d^_<wAcSbt
zcKG?Nl)Ml$l7YgPVmu((FTyJwadFxaYu1!cw5M&1i<2S(wJhGhzug~S(O1B-rMw~I
zyJei{pwh9ft~+2CC=IZpc9qP&+apl60Mr#nMFCh6Sc($`nDQx8GU@Jx#sGk-OGS0>
z76=l)1f+na!nkfvPq-MH!lhbL^8VfHi33t7!-=heZmrgRBD`xJ_T}N7hEISLQBuyS
zhqt)0`nAu(DDm^>cP|SDqy+MqS3SQ~Z?1sWQpm~1c2k=H7Xq*~j@^hU`>pzsL^N`r
z;+w$*>6_!BgV%pt{&9JJ9KmC|@Iynk+^{tOdz?JsD;PM5a$tYMBvRdQQ-Ap53r$$f
zH+fQxL_OYVzP@55)9TWSj)|G29%`sv;Fo?tq5K{&@Fj^d;u{p>8;z26@o;btoL+>4
zvfQH39(TsOE28=GXqp@0gl*v6LAJ|_cMH2grKv{$4#(kAaF2fyRaVnAtMNwRpTnV7
zCwUT~kVD3pO_^8eYduymRTfq4HdSpj3W<c@0lY*Kj<8l9O5(9I)X9q{2W(XZwk}({
z0KaNb@cLqZsNzE}o{VKV{|<8hdyD@ADTO31g-+haM*UpHl;Oo>LOfr96<0-3bN?Dk
zY1Dn8=R(w%$mzZa)brVexhzH`om<d&v#pzy9HsIF@Lqgh%5w_8uc30KHpYr^>m8}S
z=vJE(6(RK-oFwd5`on6hXNmRgI*8VW=iN4nO##TWcxD1U*WpY4)=HU9*SlrD#ZG4v
zT2craL?z8nH@Y9&I5eu-5mkUzh!jgr=|Hl<fXf7z!^#aMbT^sn7W}%JT=)OB_$9qD
zlB{w&TsQr<)G_qK_g?1jaQ+fJ&d6*qmMM;1_0*})r9mMF4TGhxz|Dq&0q4T=FE<d2
zugBqi@bDS9z5l5cxu=7}zmBI;>?ZvW?ckn=8epUr%$53V!5?2V-aFOxZ$h5?@%GSj
zljO&(b6)3LU66&d!wo8(hbo=nWSL%<XW73~R)0r8!~YJXkq^V&x2lI)193Bt=iFHk
zdp!(dZh9&EfBQnKIE1FE%+wrOv1!Bsq=EZ=gU#-g8b}Aq&^mYOW$&-^Q?z6l;5^(L
z8%K~l)J~96O0ghuniL0BFatD=1nT8MN*2D;bZ!l<<QW`GV-m%kOS`^USq1zfBD3{h
z8$R^QrWG$9$=}g!m8uWDu~nv;>gwV)O{d0KwS$vNDSVt(j(n{HxIo?}YGsT}7<eKk
z>2(t!(a&yl-m~5)0{mbxA%%(lJeEmM62N}gni_ytw>iE&a2(fvDsDCOU4qgSARj|2
zQe;HM`VCx6POw=s-+i3sahN;P*<LS8Te<VjT#H|5@7|E%c$4S(yN>!fOk7A-hxK5(
zh{`~!U}m;loMg#>q5FD%uH;Ixy`u5s<eOlp<po@nENI5i5v9N_F(7nqscY)AJ@cFi
z-X!3{qPRBS?9JhEva5{fU_{Y>(K72#<Ydrq=;c3}FlsyeOq04A;}r!F3&`*N)xo0p
z?lJP}%m%hp{=WNb<W97jBDPvVQ`yN>>;6GbuKZ)9&!?N92mtbeBdJGdEEDHWOJ!M+
zPUUNPG2IiuJ)fl3R$EPT@d2??SVZXsnE=Rf)dX)j=0Ks4^XA0k4l_1f-u++fs5poO
zl%Z<ht|yvqji<Jwf8f4dpu~djgBLEMM($0TXi71qt3#QcaMb~9+(N1<2nIHgYex-O
zFMj<J{oO$U3pDfIu3rf<F-w*805(K4AJ&(ku!{_A=|^QI^e+Q}!-oY+e$6ga10wrN
zr(D~q*t?ji{l{Z#P0>AdK0(re_wxKKHej18Y>na+zCQXvklJr<Ts7lg(V+cO1Wut8
zpfXGeNO*0}1TGIyLqNnoiHVDoa-MTFIqRc`K%mY0<}!N52}^1^oDf+hUazyY+^8eF
zY%O=Umd{L54R~aHq*0^iSBANd1`HhY_7B!jG{kRO&ok^ggoVG?!t}_uHR0Q17JV1^
z26e3$vX$<yyz~x&qu>^r8D*3Cf_@!?R%d9w$j8FF>po+s1c-p1me+Jh+UV&chMFp*
z^!wjGcV#<P|9n#_sXEY}LDsdSGWu8g*1h;ci#cqJKBeSTETQNlV3g)9`+9KX@qk)>
zDxT-XzfS*E#1}c{`mCM{@sU(vF(j9~XpQn=z|Yh94ug`+C3pJG;C$PoRMPvO<giE;
z(OUSEr5}|vQgq;oSSGl3WHqMMPku)!&_*wq$>M5nBBfZI&Nc*)UccN=kkl;<Y*s{W
z8rl1L;4NfaKg7tf-~AdH)?(vae|>e{R?t5Hy%rE0b?xIESJwjlt9})^bF3-5Iv07E
zQ~OQ9rA?u?YS+Px{R)gbU}g&x87IKCorGe3y3yPJ>53ZaWoagD?}sEZ6--QitdxkM
z``GAqh!d(JbiP^18deWvwp~kw9r%}2kG<})YRY}r*|prX7hEytt}w@bRBEPVSV*e-
zc72&}hp6SsS!vVRdYM!ig6)$M1U;<b!4(L5w(*S0G=LEa!@(KYb-3Ig(Sv;*HPyZ6
z8vxYIbspiG1?Gm$in2#P1{OCP2iqB#@!<hW^p@yzPSaLV5`D4hPrps@Ms(PpA8kby
zv(2wqPV#!@@NX1VzC15TuBBY%Rn*R38%=~wEY*-AZ8T#-cR^3InGDVYFHpp7{D%()
z1vJfGyHuI#ihu!qyz*W~A(%Z)uloni=+8YO14}K&OE~FXS`ddO3zn2&?^YkQzJThc
z$z#kj9?Kb@n-bmigeYi$(vtix3#hd~evsw^dU$J8;^((D{r`{s@9&H6UY#${KMhmj
zy+zY#ppbB3FjBKv*Gd=RU^e6!jwh1N3_7^ZV4m!{hmQ3s85k`$>a3A-;WvA6cSPwh
z(6CzKUHb}P3O5+B<=7Wbn1TcyQv5zsjPwrF0qxgP)1a^6caVz<hz2gcc9C2BH3WD_
zh%xON*6qyqR6YwI{`Z&7RjG1_$w*NsLorgG!ePxAA*{zudrm_LAymQU^Irwx-^M>7
znuxG)SxVbP7jFS%Bq3mxs-&OOosBS{G`M!i{XaSut(3^ICJeJkx5XlS=KJ{xO)Qc2
zH#277uHqiXvLZV`VTfN*V}nA{ekAkShctgX0Ao<g`q1?ekhvfp-H?<K02*g=Egd|)
zf!Ln`h%M`|u*L-(v9Bs{!Z84`f!_o*wJg9AhJ16UZ;k-qJbqf{REpj=v>=++w~Q%6
z{9Lj2=4mAK$CMZQMoikTM{;Pmr3S8QB)9IuK>#>b)DJbLyC+8A=|3B*q2^$;G4}^T
z;L{D|;Wo9QpS~Xz!1YX2bt=kAxNNs#h!OyhfR!OZfR(q-bwhLjKL@dpkS*Qu4AUEG
z#vbhex}8}8l)V32mI>iUhvC_Q^C*3J?f*uXzODbbaCLbuMGCMQ`VV?<3|a#=EaFq%
z1BZ1Fh{pn-i~l9((8#imUr6D1mP8~-DkO549n^5hM|{)o{hth|=f5(bY&!(^WO1$|
zm{t%2YtF#PI>Y_ybR`qOr(^_1|Am1FzADLJ&QVB$6zkP8ua6b$IrK8sa;R62e0$02
zy7y;{kBr_sA7mBKUQ*o8WP42sy*iq<nP1H!XuS&IU$6&qO(ZE0#6PuHUlS>$2?>4*
z@wbwxHXo(ec5QIl3i;cgLSi+G;6yBiFtB~J)1?P-=+_s2Z3>S)33EEhlKCcjFxTkb
zrZWDB-t7sEA|o!*K9Kd)0T=E4QDN8-QZ=D(+kzS834nPjJx_MyU!OEfVPs4&Bo8r<
z?K_7VyUq`PEaOoYCH1fO`bMl;IR(%!(MKd>XIS-|kIY3Z7d3z@pUpr$n?^@}y_kyK
zoYm*B>mVCyP9Xbg0KUT3WjO)f)}nm>!w22WfcI=QGc%N>i6@cQ-uTn`dSU6XpGl$Z
z9MUxk!YH1^Wfh{xvlzg-Y^pNS_a^K5<ab2o>HbRazC~#xmu{V{!NHvSj>J=a2bF`f
zjnd$o%bg%Plx;>D0Q_j&j%S_QmY3t;FUTB6RECmlnx1=}F2~*S8Gv%M%lK0?U+nb`
z<)(QNZ%vd_nU9y~JB;a=NO+zdU~8Hu5B>u%hq-hviG#ylH%%~~{)-YfjKqqW67_*B
zBom^9*htC7%LbsK%|nN>9U5H($y%OfSwQd*Cj!@dA~T_ChR46y2S6&kYgym?Y#rA}
z=!oyw4WuDoEjOoF^uZMI+iG(StjfAm*Li@8e8(3$q4<-ZmxtB5j0=4VFc2ec(n^4P
ziGg;)xaU5NmFSZMj2fDlEFQ26%)V`__D<dzk|KX3`t*UW3l!MO$fJs0X51Etl3u>G
z{U+lsWRAoJ`KDrF$y`cU?NedQZ}jsvO*2K!2@Ka8KccwtqjwHFbAslm90eC+lhD2<
zz++Y7nDzZe$7*fnZOKe@%HE0SZr*=HOnA6C$$nEZt4xQ!ze`DRThAZjT}ggIgD<6L
zwl!UgADiA=Lwz(X$AY;rSSTu}u|68_eYpV#n4#HZ^3#clg8luU25mu@a=X>zuuw*0
zh(c}e0A(5g@hF^Xgq!zMb^`2Yv&0&e1P|2@GRZG#^*Gx##NMqAW_Z~i%l2GnCH@fy
zC{&m*;Ho~>a_c!s)*-2$N0U{NIv%ks@D~@Gla-k_@!l4Uk6$0ls6!B*oBUBWe(xZ#
zV+fL3TvR*nb&l1t0bHy&TprF_4)6ig#(#mg6m!h)crlnfXzKx9C57fPm(3h0BX8%8
zVIngga~Wd6gAda5#2XiWPBUyW*Z=w2C2DD6u>*kB@VDV<N`}jrj2A$bmjFVD-}0TH
zBd_&L9R(qzgwtXSgkG_`HCag`5NZM3VaIzNR0{Bu=gKF1W$rfH5}0+VtNihSPtUys
zr4~~%phwQ=;RNKI@NmJSiC=$$lRFRj2h~c;L(jqR^LqVF<Gw_q#*?McMK+kiDsC-N
zODLTk@Bu&w&}WK!Q&8hlg+?h*S(*L8rnh@BwcubREk(<IYB)44*epskKIlv6o_e<D
zhx0@FC#-sQ5CLdrC6>;~W`&M(_<Yl>1uY(8thiC4=;Kq|G9#<44~RO!<>d>tu0O53
zKt1#T)%AY(lAn8w<QwL`2G|w*CD#+&xU_j!&YZL`9bsh8P$74tbjQG?<d<Fg!}XN3
zYO-z1!&9APCh5{ChlCOoDs3{Esc+(gu6zH^))Oa_WIIXi>gT!ptt3!X8+Fo;d-wvo
z0aqt{@M~C3kJiEJ&~KLfm4I$*o??GtKWtLhV+C8I{aFqr%&Ezq3bc-~NG4v~3@!C3
zSKelQfw0xu3K!~}l&6s{%Q@VX&AY9*ltl<~mgs+e&l|L0{}92n0w#ru@fV0n7o}9p
z{;it8btdp!&O*L?99b=D`R6p1hqav}{}wwY%C7Dwb-LZf4cY8_5pDL?J6|i#lk#yg
zCA6iK!(wJkg&&0T4GjYOS?8KKjH`fz_Z8A@G4a)`GQM(xfSX~z`rY@DKiX~Jw;bxK
z?v6vPg)MP9rZyd@8#7jnDwrVN+F0yH7Y1%s4hV&AH|#VWNV;}Tiyo-wUQU{%k-0{N
zVU9}aMZ&a=oTtok$qX@rguRGUe6IS6$H#&jMk5;zbu01s@U-ILW=;_SHlasoXVu0;
zI7ul}R1>RKIp|<%HlSh~IS9n?e*Dw*j!b9Ma&pozG^LizB_=bMZ3{{KaU@U0pu730
zr#9^tsrTWi7P+BL;3q~Xglyb~p-)q<6xLXgb@h6^6_@49#ls;~F{D?UwUO-Qod3#5
z9L&uOEM$|t8*Q?gT#|z-w|f!3$Z6>6Z51D2nNe)RAMx*haMN9X8(tp9$8o3BWi|6H
zaVmdmV>h#DG9FnQ0FWb0GvP{%Y_QVT(oB}EKdHeAeR5iKZ(7cBR%2O!+H^;PLXo8T
zLw3PIJzni#$5?hQYvEaiKkAe>%R1J8<(<ab$Jr)Px&ikm-*y#cFPlBYu7eJoDzI(h
z^>YGq<)Ex3W37c-*IWIeEY2Er4>8VrrX@Dc<a@CetCX=%uDKvEqD&Kp-lVE6izUX7
zM`6p1Z|8n0r`YrDkhD`L`2gH?8k+#&e%RTKrQ^~_$f0MD+Ir!-&cxEa4FcS<6~IB*
zB;dq*zJ$J`1U2w3C{sqm{sBrUt&?8i%1Suh3m|r9|ERb@d!jz2*(;a~fw4U3HPq23
zP&5So4SrO=!H;ai2TyMC<CAx?mF?H)gPy?1Hb{F?*V*Z?TW6dJtPR|bD8lZV!_R<}
z-SUv=(e1|tzGpYYQ!D~`i|v(J0eybY>4|Y}o5P2cKno`Lh3j4W`5mANlU<#I@D{YK
zivhh7e8IiD`-K)j3XXA}DeW!39Jy&ilDqx6)8Ge4A^N2}q<pJB4<EpuLI+*Aw;C`3
zDGc!$-!tyilVczS5I2LqFJCH;Kiz{o_S1F7G_IB$%X?n7OH2ffx$Aa|0VsetgyZmz
zf@A`)`TzVF7Rdl`UpAE&mj3b9a3A3&?C4taQFGLAw%oox{<2s)1=i}dm`K$(NnjJI
zX_SSWHYc2_2PE<S`+S4P3;KzHoG_rXRQ<9H$i2GRG;cs53Bcz3%9NXzO%w()`gIjh
o(7qZAuTX-Y3|<GXUf+{YmR=Ds{F(`TN`@vQp(tJ=`p)ma0b}5+@c;k-

diff --git a/doc/development/fe_guide/vue.md b/doc/development/fe_guide/vue.md
index 219b98ac696..f6cbd11042c 100644
--- a/doc/development/fe_guide/vue.md
+++ b/doc/development/fe_guide/vue.md
@@ -2,27 +2,24 @@
 
 To get started with Vue, read through [their documentation][vue-docs].
 
+## Examples
+
+What is described in the following sections can be found in these examples:
+
+- web ide: https://gitlab.com/gitlab-org/gitlab-ce/tree/master/app/assets/javascripts/ide/stores
+- security products: https://gitlab.com/gitlab-org/gitlab-ee/tree/master/ee/app/assets/javascripts/vue_shared/security_reports
+- registry: https://gitlab.com/gitlab-org/gitlab-ce/tree/master/app/assets/javascripts/registry/stores
+
 ## Vue architecture
 
 All new features built with Vue.js must follow a [Flux architecture][flux].
 The main goal we are trying to achieve is to have only one data flow and only one data entry.
-In order to achieve this goal, you can either use [vuex](#vuex) or use the [store pattern][state-management], explained below:
-
-Each Vue bundle needs a Store - where we keep all the data -, a Service - that we use to communicate with the server - and a main Vue component.
-
-Think of the Main Vue Component as the entry point of your application. This is the only smart
-component that should exist in each Vue feature.
-This component is responsible for:
-1. Calling the Service to get data from the server
-1. Calling the Store to store the data received
-1. Mounting all the other components
-
-![Vue Architecture](img/vue_arch.png)
+In order to achieve this goal we use [vuex](#vuex).
 
 You can also read about this architecture in vue docs about [state management][state-management]
 and about [one way data flow][one-way-data-flow].
 
-### Components, Stores and Services
+### Components and Store
 
 In some features implemented with Vue.js, like the [issue board][issue-boards]
 or [environments table][environments-table]
@@ -33,10 +30,8 @@ new_feature
 ├── components
 │   └── component.vue
 │   └── ...
-├── stores
+├── store
 │  └── new_feature_store.js
-├── services # only when not using vuex
-│  └── new_feature_service.js
 ├── index.js
 ```
 _For consistency purposes, we recommend you to follow the same structure._
@@ -125,217 +120,6 @@ You can read more about components in Vue.js site, [Component System][component-
 #### Vuex
 Check this [page](vuex.md) for more details.
 
-#### Flux like state management
-The Store is a class that allows us to manage the state in a single
-source of truth. It is not aware of the service or the components.
-
-The concept we are trying to follow is better explained by Vue documentation
-itself, please read this guide: [State Management][state-management]
-
-### A folder for the Service
-
-**If you are using Vuex you won't need this step**
-
-The Service is a class used only to communicate with the server.
-It does not store or manipulate any data. It is not aware of the store or the components.
-We use [axios][axios] to communicate with the server.
-Refer to [axios](axios.md) for more details.
-
-Axios instance should only be imported in the service file.
-
-```javascript
-import axios from '~/lib/utils/axios_utils';
-```
-
-### End Result
-
-The following example shows an application:
-
-```javascript
-// store.js
-export default class Store {
-
-  /**
-   * This is where we will iniatialize the state of our data.
-   * Usually in a small SPA you don't need any options when starting the store.
-   * In that case you do need guarantee it's an Object and it's documented.
-   *
-   * @param  {Object} options
-   */
-  constructor(options) {
-    this.options = options;
-
-    // Create a state object to handle all our data in the same place
-    this.todos = [];
-  }
-
-  setTodos(todos = []) {
-    this.todos = todos;
-  }
-
-  addTodo(todo) {
-    this.todos.push(todo);
-  }
-
-  removeTodo(todoID) {
-    const state = this.todos;
-
-    const newState = state.filter((element) => {element.id !== todoID});
-
-    this.todos = newState;
-  }
-}
-
-// service.js
-import axios from '~/lib/utils/axios_utils'
-
-export default class Service {
-  constructor(options) {
-    this.todos = axios.create({
-      baseURL: endpoint.todosEndpoint
-    });
-
-  }
-
-  getTodos() {
-    return this.todos.get();
-  }
-
-  addTodo(todo) {
-    return this.todos.put(todo);
-  }
-}
-// todo_component.vue
-<script>
-export default {
-  props: {
-    data: {
-      type: Object,
-      required: true,
-    },
-  },
-};
-</script>
-<template>
-  <div>
-    <h1>
-      Title: {{data.title}}
-    </h1>
-    <p>
-      {{data.text}}
-    </p>
-  </div>
-</template>
-
-// todos_main_component.vue
-<script>
-import Store from 'store';
-import Service from 'service';
-import TodoComponent from 'todoComponent';
-export default {
-  components: {
-    todo: TodoComponent,
-  },
-  /**
-   * Although most data belongs in the store, each component it's own state.
-   * We want to show a loading spinner while we are fetching the todos, this state belong
-   * in the component.
-   *
-   * We need to access the store methods through all methods of our component.
-   * We need to access the state of our store.
-   */
-  data() {
-    const store = new Store();
-
-    return {
-      isLoading: false,
-      store: store,
-      todos: store.todos,
-    };
-  },
-
-  created() {
-    this.service = new Service('/todos');
-
-    this.getTodos();
-  },
-
-  methods: {
-    getTodos() {
-      this.isLoading = true;
-
-      this.service
-        .getTodos()
-        .then(response => {
-          this.store.setTodos(response);
-          this.isLoading = false;
-        })
-        .catch(() => {
-          this.isLoading = false;
-          // Show an error
-        });
-    },
-
-    addTodo(event) {
-      this.service
-        .addTodo({
-          title: 'New entry',
-          text: `You clicked on ${event.target.tagName}`,
-        })
-        .then(response => {
-          this.store.addTodo(response);
-        })
-        .catch(() => {
-          // Show an error
-        });
-    },
-  },
-};
-</script>
-<template>
-  <div class="container">
-    <div v-if="isLoading">
-      <i
-        class="fa fa-spin fa-spinner"
-        aria-hidden="true" />
-    </div>
-
-    <div
-      v-if="!isLoading"
-      class="js-todo-list">
-      <template v-for='todo in todos'>
-        <todo :data="todo" />
-      </template>
-
-      <button
-        @click="addTodo"
-        class="js-add-todo">
-        Add Todo
-      </button>
-    </div>
-  <div>
-</template>
-
-// index.js
-import todoComponent from 'todos_main_component.vue';
-
-new Vue({
-  el: '.js-todo-app',
-  components: {
-    todoComponent,
-  },
-  render: createElement => createElement('todo-component' {
-    props: {
-      someProp: [],
-    }
-  }),
-});
-
-```
-
-The [issue boards service][issue-boards-service]
-is a good example of this pattern.
-
 ## Style guide
 
 Please refer to the Vue section of our [style guide](style_guide_js.md#vue-js)
@@ -446,6 +230,5 @@ need to test the rendered output. [Vue][vue-test] guide's to unit test show us e
 [state-management]: https://vuejs.org/v2/guide/state-management.html#Simple-State-Management-from-Scratch
 [one-way-data-flow]: https://vuejs.org/v2/guide/components.html#One-Way-Data-Flow
 [vue-test]: https://vuejs.org/v2/guide/unit-testing.html
-[issue-boards-service]: https://gitlab.com/gitlab-org/gitlab-ce/blob/master/app/assets/javascripts/boards/services/board_service.js.es6
 [flux]: https://facebook.github.io/flux
 [axios]: https://github.com/axios/axios