diff --git a/src/api/types/project.ts b/src/api/types/project.ts
index 49b0a6628..08af727dd 100644
--- a/src/api/types/project.ts
+++ b/src/api/types/project.ts
@@ -9,6 +9,5 @@ export interface Project {
   updated_at: string;
   edit_access: boolean;
   add_remove_access: boolean;
-  // TODO: Add 'pinned' field on the server
   pinned?: boolean;
 }
diff --git a/src/common/Dropdown2.svelte b/src/common/Dropdown2.svelte
index ed8ba20d0..c3f2812cf 100644
--- a/src/common/Dropdown2.svelte
+++ b/src/common/Dropdown2.svelte
@@ -173,10 +173,10 @@
     position: absolute;
   }
   .dropdown.top {
-    bottom: 100%;
+    bottom: calc(100% + var(--offset, 0px));
   }
   .dropdown.bottom {
-    top: 100%;
+    top: calc(100% + var(--offset, 0px));
   }
   .dropdown.left {
     left: 0;
diff --git a/src/common/icons/Pin.svelte b/src/common/icons/Pin.svelte
index 969d2e7c3..28e3f06ec 100644
--- a/src/common/icons/Pin.svelte
+++ b/src/common/icons/Pin.svelte
@@ -16,6 +16,5 @@
   svg {
     display: block;
     transform: rotate(-45deg);
-    fill: var(--fill, var(--orange, #ec7b6b));
   }
 </style>
diff --git a/src/langs/json/en.json b/src/langs/json/en.json
index 2a82688b7..1e368daa6 100644
--- a/src/langs/json/en.json
+++ b/src/langs/json/en.json
@@ -7,7 +7,9 @@
     "new": "New",
     "learnMore": "Learn more",
     "or": "or",
-    "explore": "Explore"
+    "explore": "Explore",
+    "more": "More",
+    "add": "Add"
   },
   "homeTemplate": {
     "signedIn": "Signed in as {name}",
@@ -682,7 +684,7 @@
     "createProject": "Create your first project by clicking “New Project” above.",
     "pinsEmpty": "Pinned projects will appear here for quick access",
     "private": "Private Project",
-    "public": "Public Project",
+    "public": "Public Projects",
     "loading": "Loading project documents…",
     "empty": "This project is empty",
     "error": "Error loading project documents",
@@ -690,7 +692,57 @@
     "yours": "Your Projects",
     "shared": "Shared with you",
     "none": "No projects found",
-    "create": "Create project"
+    "create": "Create project",
+    "edit": "Edit project metadata",
+    "share": "Share & embed this project",
+    "users": "Manage Collaborators",
+    "add": "Add {n, plural, one {this document} other {# documents}} to a project",
+    "delete": {
+      "action": "Delete project",
+      "confirm": "Confirm delete",
+      "really": "Are you sure you want to delete this project ({project})?"
+    },
+    "placeholder": {
+      "projects": "Search projects",
+      "documents": "Search documents"
+    },
+    "collaborators": {
+      "title": "Collaborators",
+      "manage": "Change access",
+      "empty": "No collaborators",
+      "add": "Invite users to this project"
+    },
+    "fields": {
+      "title": "Title",
+      "description": "Description",
+      "private": "Private Project",
+      "pinned": "Pin project"
+    }
+  },
+  "collaborators": {
+    "remove": {
+      "label": "Remove user",
+      "confirm": "Confirm remove user",
+      "message": "Proceeding will remove {name} from {title}. Do you wish to continue?"
+    },
+    "add": "Add", 
+    "addCollaborators": "Add Collaborators",
+    "invite": "Put in the email of an existing DocumentCloud user below. If they don't have an account, have them register <a target=\"_blank\" rel=\"noopener noreferrer\" href=\"https://accounts.muckrock.com/accounts/signup/?intent=documentcloud\">here for free</a>, and then ask them to log in to DocumentCloud at least once.",
+    "admin": "Admin",
+    "view": "View",
+    "edit": "Edit",
+    "help": {
+      "admin": "Collaborators can edit this project and its documents",
+      "edit": "Collaborators can edit documents in this project",
+      "view": "Collaborators can view documents in this project",
+      "remove": "Remove this user from this project"
+    },
+    "empty": "You have not yet added any collaborators to this project. Invite collaborators to grant other users access to the documents shared in this project. You can control whether collaborators have access to view/edit the project’s documents or be an admin with permissions to invite other users and edit the project itself.",
+    "manage": "Manage Collaborators",
+    "name": "Name",
+    "access": "Access",
+    "you": "(you)",
+    "change": "Change access"
   },
   "organizations": {
     "sameOrgUsers": "Users in organization"
diff --git a/src/lib/api/collaborators.ts b/src/lib/api/collaborators.ts
new file mode 100644
index 000000000..6f6b43de1
--- /dev/null
+++ b/src/lib/api/collaborators.ts
@@ -0,0 +1,104 @@
+// manage users in a project
+import type { ProjectAccess, ProjectUser } from "./types";
+
+import { APP_URL, BASE_API_URL, CSRF_HEADER_NAME } from "@/config/config.js";
+import { getAll, isErrorCode } from "$lib/utils/api";
+
+export async function list(project_id: number, fetch = globalThis.fetch) {
+  const endpoint = new URL(
+    `projects/${project_id}/users/?expand=user`,
+    BASE_API_URL,
+  );
+
+  return getAll<ProjectUser>(endpoint, undefined, fetch);
+}
+
+export async function add(
+  project_id: number,
+  user: { email: string; access: ProjectAccess },
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL(`projects/${project_id}/users/`, BASE_API_URL);
+
+  const resp = await fetch(endpoint, {
+    body: JSON.stringify(user),
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "POST",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
+  }
+
+  if (isErrorCode(resp.status)) {
+    const data = await resp.json();
+    console.error(data);
+    throw new Error(resp.statusText);
+  }
+
+  return resp.json();
+}
+
+export async function update(
+  project_id: number,
+  user_id: number,
+  access: ProjectAccess,
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL(
+    `projects/${project_id}/users/${user_id}/`,
+    BASE_API_URL,
+  );
+
+  const resp = await fetch(endpoint, {
+    body: JSON.stringify({ user: user_id, access }),
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "PATCH",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
+  }
+
+  if (isErrorCode(resp.status)) {
+    const data = await resp.json();
+    console.error(data);
+    throw new Error(resp.statusText);
+  }
+
+  return resp.json();
+}
+
+export async function remove(
+  project_id: number,
+  user_id: number,
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL(
+    `projects/${project_id}/users/${user_id}/`,
+    BASE_API_URL,
+  );
+
+  return fetch(endpoint, {
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "DELETE",
+  });
+}
diff --git a/src/lib/api/projects.ts b/src/lib/api/projects.ts
index 379c7d7ff..7fdcaefe1 100644
--- a/src/lib/api/projects.ts
+++ b/src/lib/api/projects.ts
@@ -1,19 +1,20 @@
 // api methods for projects
 import type { Page } from "@/api/types";
-import type { Project, ProjectResults, Document } from "./types";
+import type {
+  APIError,
+  Document,
+  Project,
+  ProjectMembershipItem,
+  ProjectResults,
+} from "./types";
 
-import { error, type NumericRange } from "@sveltejs/kit";
-
-import { BASE_API_URL, CSRF_HEADER_NAME } from "@/config/config.js";
+import { APP_URL, BASE_API_URL, CSRF_HEADER_NAME } from "@/config/config.js";
 import { getAll, isErrorCode } from "$lib/utils/api";
 
 /**
  * Get a single project
  *
  * @export
- * @param {number} id
- * @param {globalThis.fetch} fetch
- * @returns {Promise<import('./types').Project>}
  */
 export async function get(
   id: number,
@@ -21,28 +22,28 @@ export async function get(
 ): Promise<Project> {
   const endpoint = new URL(`projects/${id}/`, BASE_API_URL);
 
-  const res = await fetch(endpoint, { credentials: "include" }).catch((e) => {
-    error(500, { message: e });
-  });
+  const resp = await fetch(endpoint, { credentials: "include" }).catch(
+    console.error,
+  );
+
+  if (!resp) {
+    throw new Error("API error");
+  }
 
-  if (isErrorCode(res.status)) {
-    error(res.status, {
-      message: res.statusText,
-    });
+  if (isErrorCode(resp.status)) {
+    throw new Error(resp.statusText);
   }
 
-  return res.json();
+  return resp.json();
 }
 
 /**
  * Get a page of projects
  *
  * @export
- * @param {any} params filter params
- * @param {globalThis.fetch} fetch
  */
 export async function list(
-  params: any = {},
+  params: Record<string, any> = {},
   fetch = globalThis.fetch,
 ): Promise<ProjectResults> {
   const endpoint = new URL("projects/", BASE_API_URL);
@@ -51,33 +52,43 @@ export async function list(
     endpoint.searchParams.set(k, String(v));
   }
 
-  const res = await fetch(endpoint, { credentials: "include" }).catch((e) => {
-    error(500, { message: e });
-  });
+  const resp = await fetch(endpoint, { credentials: "include" }).catch(
+    console.error,
+  );
+
+  if (!resp) {
+    throw new Error("API error");
+  }
 
-  if (isErrorCode(res.status)) {
-    error(res.status, {
-      message: res.statusText,
-    });
+  if (isErrorCode(resp.status)) {
+    throw new Error(resp.statusText);
   }
 
-  return res.json();
+  return resp.json();
 }
 
-/**
- * Get a list of all projects owned by the user
- */
-export async function getOwned(
+export async function getForUser(
   userId: number,
   query?: string,
   fetch = globalThis.fetch,
-): Promise<Project[]> {
+) {
   const endpoint = new URL("projects/", BASE_API_URL);
   endpoint.searchParams.set("user", String(userId));
   if (query) {
     endpoint.searchParams.set("query", query);
   }
-  const projects = await getAll<Project>(endpoint, undefined, fetch);
+  return getAll<Project>(endpoint, undefined, fetch);
+}
+
+/**
+ * Get a list of all projects owned by the user
+ */
+export async function getOwned(
+  userId: number,
+  query?: string,
+  fetch = globalThis.fetch,
+): Promise<Project[]> {
+  const projects = await getForUser(userId, query, fetch);
   return projects.filter((project) => project.user === userId);
 }
 
@@ -89,12 +100,7 @@ export async function getShared(
   query?: string,
   fetch = globalThis.fetch,
 ): Promise<Project[]> {
-  const endpoint = new URL("projects/", BASE_API_URL);
-  endpoint.searchParams.set("user", String(userId));
-  if (query) {
-    endpoint.searchParams.set("query", query);
-  }
-  const projects = await getAll<Project>(endpoint, undefined, fetch);
+  const projects = await getForUser(userId, query, fetch);
   return projects.filter((project) => project.user !== userId);
 }
 
@@ -104,9 +110,9 @@ export async function getShared(
  * it returns the updated project object.
  */
 export async function pinProject(
-  csrftoken: string,
   id: number,
   pinned = true,
+  csrf_token: string,
   fetch = globalThis.fetch,
 ): Promise<Project> {
   const endpoint = new URL(`projects/${id}/`, BASE_API_URL);
@@ -114,30 +120,213 @@ export async function pinProject(
     credentials: "include",
     method: "PATCH", // this component can only update whether a project is pinned
     headers: {
-      [CSRF_HEADER_NAME]: csrftoken,
+      [CSRF_HEADER_NAME]: csrf_token,
       "Content-type": "application/json",
     },
   };
 
   // The endpoint returns the updated project
-  const res = await fetch(endpoint, {
+  const resp = await fetch(endpoint, {
     ...options,
     body: JSON.stringify({ pinned }),
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API error");
+  }
+
+  if (isErrorCode(resp.status)) {
+    throw new Error(resp.statusText);
+  }
+
+  return resp.json();
+}
+
+// writable methods
+/**
+ * Create a new project
+ *
+ * @param project
+ * @param csrf_token
+ * @param fetch
+ */
+export async function create(
+  project: {
+    title: string;
+    description?: string;
+    private?: boolean;
+    pinned?: boolean;
+  },
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL("projects/", BASE_API_URL);
+  const resp = await fetch(endpoint, {
+    body: JSON.stringify(project),
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "POST",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
+  }
+
+  if (isErrorCode(resp.status)) {
+    const { data } = await resp.json();
+    throw new Error(data);
+  }
+
+  return resp.json();
+}
+
+export async function edit(
+  project_id: number,
+  data: Partial<Project>,
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL(`projects/${project_id}/`, BASE_API_URL);
+
+  const resp = await fetch(endpoint, {
+    body: JSON.stringify(data),
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "PATCH",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
+  }
+
+  if (isErrorCode(resp.status)) {
+    const { data } = await resp.json();
+    throw new Error(data);
+  }
+
+  return resp.json();
+}
+
+/**
+ * Delete a project. There is no undo.
+ *
+ * @param project_id
+ * @param csrf_token
+ * @param fetch
+ */
+export async function destroy(
+  project_id: number,
+  csrf_token: string,
+  fetch = globalThis.fetch,
+) {
+  const endpoint = new URL(`projects/${project_id}/`, BASE_API_URL);
+
+  return fetch(endpoint, {
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "DELETE",
   });
-  if (isErrorCode(res.status)) {
-    error(res.status, {
-      message: res.statusText,
-    });
+}
+
+/**
+ * Add documents to a project
+ *
+ * @param project_id
+ * @param documents
+ * @param csrf_token
+ * @param fetch
+ */
+export async function add(
+  project_id: number,
+  documents: (string | number)[],
+  csrf_token: string,
+  fetch = globalThis.fetch,
+): Promise<ProjectMembershipItem[] | APIError> {
+  const endpoint = new URL(`projects/${project_id}/documents/`, BASE_API_URL);
+  const data = documents.map((document) => ({ document }));
+  const resp = await fetch(endpoint, {
+    body: JSON.stringify(data),
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "POST",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
+  }
+
+  // trying out some new error handling
+  if (isErrorCode(resp.status)) {
+    return {
+      error: {
+        status: resp.status,
+        message: resp.statusText,
+        ...(await resp.json()),
+      },
+    };
+  }
+
+  return resp.json();
+}
+
+export async function remove(
+  project_id: number,
+  documents: (string | number)[],
+  csrf_token: string,
+  fetch = globalThis.fetch,
+): Promise<APIError | null> {
+  const endpoint = new URL(`projects/${project_id}/documents/`, BASE_API_URL);
+  endpoint.searchParams.set("document_id__in", documents.join(","));
+
+  const resp = await fetch(endpoint, {
+    credentials: "include",
+    headers: {
+      "Content-type": "application/json",
+      [CSRF_HEADER_NAME]: csrf_token,
+      Referer: APP_URL,
+    },
+    method: "DELETE",
+  }).catch(console.error);
+
+  if (!resp) {
+    throw new Error("API unavailable");
   }
-  return res.json();
+
+  // trying out some new error handling
+  if (isErrorCode(resp.status)) {
+    return {
+      error: {
+        status: resp.status,
+        message: resp.statusText,
+        ...(await resp.json()),
+      },
+    };
+  }
+
+  return null;
 }
 
 /**
  * Get documents in a project with membership access
  *
+ * @deprecated
  * @export
- * @param {number} id
- * @param {globalThis.fetch} fetch
  */
 export async function documents(
   id: number | string,
@@ -151,15 +340,23 @@ export async function documents(
   endpoint.searchParams.set("ordering", "-created_at");
   endpoint.searchParams.set("per_page", "12");
 
-  const res = await fetch(endpoint, { credentials: "include" }).catch((e) => {
-    error(500, { message: e });
-  });
+  const resp = await fetch(endpoint, { credentials: "include" }).catch(
+    console.error,
+  );
+
+  if (!resp) {
+    throw new Error("API error");
+  }
 
-  if (isErrorCode(res.status)) {
-    error(res.status, {
-      message: res.statusText,
-    });
+  if (isErrorCode(resp.status)) {
+    throw new Error(resp.statusText);
   }
 
-  return res.json();
+  return resp.json();
+}
+
+// utils
+
+export function canonicalUrl(project: Project): URL {
+  return new URL(`documents/projects/${project.id}-${project.slug}/`, APP_URL);
 }
diff --git a/src/lib/api/tests/collaborators.test.ts b/src/lib/api/tests/collaborators.test.ts
new file mode 100644
index 000000000..6e354a2ca
--- /dev/null
+++ b/src/lib/api/tests/collaborators.test.ts
@@ -0,0 +1,177 @@
+import type { Page, Project, ProjectAccess, ProjectUser, User } from "../types";
+
+import { afterEach, describe, expect, test as base, vi } from "vitest";
+import { APP_URL, BASE_API_URL, CSRF_HEADER_NAME } from "@/config/config.js";
+import * as collaborators from "../collaborators";
+
+type Use<T> = (value: T) => Promise<void>;
+
+const test = base.extend({
+  async me({}, use: Use<User>) {
+    const { me } = await import("@/test/fixtures/accounts");
+
+    await use(me);
+  },
+
+  async project({}, use: Use<Project>) {
+    const { project } = await import("@/test/fixtures/projects");
+
+    await use(project);
+  },
+
+  async users({}, use: Use<Page<ProjectUser>>) {
+    const { default: users } = await import(
+      "@/test/fixtures/projects/project-users.json"
+    );
+
+    await use(users as Page<ProjectUser>);
+  },
+});
+
+describe("manage project users", () => {
+  afterEach(() => {
+    vi.clearAllMocks();
+  });
+
+  test("collaborators.list", async ({ project, users }) => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      return {
+        ok: true,
+        status: 200,
+        async json() {
+          return users;
+        },
+      };
+    });
+
+    const result = await collaborators.list(project.id, mockFetch);
+
+    expect(result).toEqual(users.results);
+    expect(mockFetch).toBeCalledWith(
+      new URL(
+        `projects/${project.id}/users/?expand=user&per_page=100`,
+        BASE_API_URL,
+      ),
+      { credentials: "include" },
+    );
+  });
+
+  test("collaborators.add", async ({ project, users, me }) => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      // this doesn't have uniform expansion but I think that's ok for now
+      const updated = [...users.results, { user: me, access: "admin" }];
+      return {
+        ok: true,
+        status: 200,
+        async json() {
+          return {
+            ...users,
+            results: updated,
+          };
+        },
+      };
+    });
+
+    const result = await collaborators.add(
+      project.id,
+      { email: me.email, access: "admin" },
+      "token",
+      mockFetch,
+    );
+
+    expect(result.results).toMatchObject([
+      ...users.results,
+      { user: me, access: "admin" },
+    ]);
+
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/${project.id}/users/`, BASE_API_URL),
+      {
+        body: JSON.stringify({ email: me.email, access: "admin" }),
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "POST",
+      },
+    );
+  });
+
+  test("collaborators.update", async ({ project, users }) => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      const { user, access } = JSON.parse(options.body);
+      const updated: ProjectUser = users.results.find(
+        (u) => u.user.id === 1020,
+      );
+
+      return {
+        ok: true,
+        status: 200,
+        async json() {
+          return {
+            user: updated.user,
+            access,
+          };
+        },
+      };
+    });
+
+    const me = users.results.find((u) => u.user.id === 1020);
+
+    const updated = await collaborators.update(
+      project.id,
+      me.user.id,
+      "edit",
+      "token",
+      mockFetch,
+    );
+
+    expect(updated).toMatchObject({ user: me.user, access: "edit" });
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/${project.id}/users/${me.user.id}/`, BASE_API_URL),
+      {
+        body: JSON.stringify({ user: me.user.id, access: "edit" }),
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "PATCH",
+      },
+    );
+  });
+
+  test("collaborators.remove", async ({ project, users }) => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      return {
+        ok: true,
+        status: 204,
+      };
+    });
+
+    const me = users.results.find((u) => u.user.id === 1020);
+    const resp = await collaborators.remove(
+      project.id,
+      me.user.id,
+      "token",
+      mockFetch,
+    );
+
+    expect(resp.status).toStrictEqual(204);
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/${project.id}/users/${me.user.id}/`, BASE_API_URL),
+      {
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "DELETE",
+      },
+    );
+  });
+});
diff --git a/src/lib/api/tests/projects.test.ts b/src/lib/api/tests/projects.test.ts
index f14b5d36e..259db5556 100644
--- a/src/lib/api/tests/projects.test.ts
+++ b/src/lib/api/tests/projects.test.ts
@@ -1,10 +1,32 @@
-import { vi, describe, it, test, expect, beforeEach, afterEach } from "vitest";
+import type { Page, Project, ProjectMembershipItem } from "$lib/api/types";
 
-import { BASE_API_URL } from "@/config/config";
+import {
+  vi,
+  describe,
+  it,
+  test as base,
+  expect,
+  beforeEach,
+  afterEach,
+} from "vitest";
+
+import { APP_URL, BASE_API_URL, CSRF_HEADER_NAME } from "@/config/config";
 import { project, projectList } from "@/test/fixtures/projects";
 
 import * as projects from "../projects";
 
+type Use<T> = (value: T) => Promise<void>;
+
+const test = base.extend({
+  async documents({}, use: Use<Page<ProjectMembershipItem>>) {
+    const { default: documents } = await import(
+      "@/test/fixtures/projects/project-documents.json"
+    );
+
+    await use(documents);
+  },
+});
+
 describe("projects.get", () => {
   let mockFetch;
   beforeEach(() => {
@@ -80,6 +102,32 @@ describe("projects.list", () => {
   });
 });
 
+describe("projects for users", () => {
+  afterEach(() => {
+    vi.clearAllMocks();
+  });
+
+  test("projects.getForUser", async () => {
+    const mockFetch = vi.fn().mockImplementation(async (endpont, options) => {
+      return {
+        ok: true,
+        status: 200,
+        async json() {
+          return projectList;
+        },
+      };
+    });
+
+    const result = await projects.getForUser(1, undefined, mockFetch);
+
+    expect(result).toMatchObject(projectList.results);
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/?user=1&per_page=100`, BASE_API_URL),
+      { credentials: "include" },
+    );
+  });
+});
+
 describe("projects.getOwned", () => {
   let mockFetch;
   beforeEach(() => {
@@ -152,7 +200,7 @@ describe("projects.pinProject", () => {
     vi.restoreAllMocks();
   });
   it("makes a PATCH request to the provided project ID", async () => {
-    await projects.pinProject("csrftoken", 1, false, mockFetch);
+    await projects.pinProject(1, false, "csrftoken", mockFetch);
     expect(mockFetch).toHaveBeenCalledWith(
       new URL(`${BASE_API_URL}projects/1/`),
       {
@@ -169,7 +217,7 @@ describe("projects.pinProject", () => {
   it("throws a 500 error if fetch fails", async () => {
     mockFetch = vi.fn().mockRejectedValue("Error");
     await expect(
-      projects.pinProject("csrftoken", 1, false, mockFetch),
+      projects.pinProject(1, false, "csrftoken", mockFetch),
     ).rejects.toThrowError();
   });
   it("throws an error if fetch succeeds with an error status", async () => {
@@ -179,9 +227,176 @@ describe("projects.pinProject", () => {
       statusText: "Whoops",
     });
     await expect(
-      projects.pinProject("csrftoken", 1, false, mockFetch),
+      projects.pinProject(1, false, "csrftoken", mockFetch),
     ).rejects.toThrowError();
   });
 });
 
-test.todo("projects.documents");
+describe("project lifecycle", () => {
+  afterEach(() => {
+    vi.clearAllMocks();
+  });
+
+  test("projects.create", async () => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      return {
+        ok: true,
+        status: 201,
+        async json() {
+          return project;
+        },
+      };
+    });
+
+    const data = {
+      title: project.title,
+      description: project.description,
+      private: project.private,
+      pinned: project.pinned,
+    };
+
+    const created = await projects.create(data, "token", mockFetch);
+
+    expect(created).toMatchObject(project);
+    expect(mockFetch).toBeCalledWith(new URL("projects/", BASE_API_URL), {
+      body: JSON.stringify(data),
+      credentials: "include",
+      headers: {
+        "Content-type": "application/json",
+        [CSRF_HEADER_NAME]: "token",
+        Referer: APP_URL,
+      },
+      method: "POST",
+    });
+  });
+
+  test("projects.edit", async () => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      const update = JSON.parse(options.body);
+      return {
+        ok: true,
+        status: 200,
+        async json() {
+          return { ...project, ...update };
+        },
+      };
+    });
+
+    const update: Partial<Project> = { title: "New title" };
+
+    const updated = await projects.edit(project.id, update, "token", mockFetch);
+
+    expect(updated).toMatchObject({ ...project, ...update });
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/${project.id}/`, BASE_API_URL),
+      {
+        body: JSON.stringify(update),
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "PATCH",
+      },
+    );
+  });
+
+  test("projects.destroy", async () => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      return {
+        ok: true,
+        status: 204,
+      };
+    });
+
+    const resp = await projects.destroy(project.id, "token", mockFetch);
+
+    expect(resp.status).toEqual(204);
+    expect(mockFetch).toHaveBeenCalledWith(
+      new URL(`projects/${project.id}/`, BASE_API_URL),
+      {
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "DELETE",
+      },
+    );
+  });
+});
+
+describe("project utils", () => {
+  test("projects.canonicalUrl", () => {
+    const url = projects.canonicalUrl(project);
+    expect(url).toStrictEqual(
+      new URL(`documents/projects/${project.id}-${project.slug}/`, APP_URL),
+    );
+  });
+});
+
+describe("manage project documents", () => {
+  afterEach(() => {
+    vi.clearAllMocks();
+  });
+
+  test("projects.add", async ({ documents }) => {
+    const mockFetch = vi.fn().mockImplementation(async (endpoint, options) => {
+      const docs = JSON.parse(options.body).map((d) => {
+        d.edit_access = true;
+        return d;
+      });
+
+      return {
+        ok: true,
+        status: 201,
+        async json() {
+          return docs;
+        },
+      };
+    });
+
+    const ids = documents.results.map((d) => d.document as number);
+    const docs = await projects.add(1, ids, "token", mockFetch);
+
+    expect(docs).toMatchObject(documents.results);
+    expect(mockFetch).toBeCalledWith(
+      new URL("projects/1/documents/", BASE_API_URL),
+      {
+        body: JSON.stringify(ids.map((document) => ({ document }))),
+        credentials: "include",
+        headers: {
+          "Content-type": "application/json",
+          [CSRF_HEADER_NAME]: "token",
+          Referer: APP_URL,
+        },
+        method: "POST",
+      },
+    );
+  });
+
+  test("projects.remove", async ({ documents }) => {
+    const mockFetch = vi.fn().mockImplementation(async () => {
+      return {
+        ok: true,
+        status: 204,
+      };
+    });
+    const ids = documents.results.map((d) => d.document as number);
+    const endpoint = new URL(`projects/1/documents/`, BASE_API_URL);
+    endpoint.searchParams.set("document_id__in", ids.join(","));
+
+    expect(await projects.remove(1, ids, "token", mockFetch));
+    expect(mockFetch).toBeCalledWith(endpoint, {
+      credentials: "include",
+      headers: {
+        "Content-type": "application/json",
+        [CSRF_HEADER_NAME]: "token",
+        Referer: APP_URL,
+      },
+      method: "DELETE",
+    });
+  });
+});
diff --git a/src/lib/api/types.d.ts b/src/lib/api/types.d.ts
index 7f8e012e4..7b39d1156 100644
--- a/src/lib/api/types.d.ts
+++ b/src/lib/api/types.d.ts
@@ -14,6 +14,8 @@ export type { Page, User, Org, Project };
 
 export type Access = "public" | "private" | "organization"; // https://www.documentcloud.org/help/api#access-levels
 
+export type ProjectAccess = "view" | "edit" | "admin";
+
 export type Data = Record<string, string[]>;
 
 export type Highlights = Record<string, string[]>;
@@ -31,6 +33,13 @@ export type ViewerMode = ReadMode | WriteMode;
 
 export type Zoom = number | Sizes | "width" | "height";
 
+export interface APIError {
+  error: {
+    status: number;
+    message: string;
+  };
+}
+
 export interface NoteHighlight {
   title: string[];
   description: string[];
@@ -151,7 +160,7 @@ export interface Document {
   file_url?: string | URL;
 
   // expandable relationship fields
-  projects?: number[] | Project[];
+  projects?: (Project | number)[];
   notes?: Note[];
   sections?: Section[];
   revisions?: Revision[];
@@ -214,6 +223,11 @@ export interface ProjectMembershipItem {
   edit_access: boolean;
 }
 
+export interface ProjectUser {
+  user: User;
+  access: ProjectAccess;
+}
+
 export type ProjectMembershipList = Page<ProjectMembershipItem>;
 
 export interface OCREngine {
diff --git a/src/lib/components/accounts/tests/__snapshots__/UserMenu.test.ts.snap b/src/lib/components/accounts/tests/__snapshots__/UserMenu.test.ts.snap
index 730655aed..04de28da8 100644
--- a/src/lib/components/accounts/tests/__snapshots__/UserMenu.test.ts.snap
+++ b/src/lib/components/accounts/tests/__snapshots__/UserMenu.test.ts.snap
@@ -4,11 +4,11 @@ exports[`UserMenu 1`] = `
 <div>
    
   <div
-    class="dropdownContainer svelte-6er823"
+    class="dropdownContainer svelte-1ep6rnf"
     id="user-menu"
   >
     <div
-      class="title primary svelte-6er823"
+      class="title primary svelte-1ep6rnf"
       role="button"
       tabindex="0"
     >
@@ -54,7 +54,7 @@ exports[`UserMenu 1`] = `
     </div>
      
     <div
-      class="dropdown svelte-6er823 bottom right"
+      class="dropdown svelte-1ep6rnf bottom right"
     >
       <div
         class="menu svelte-18fuj21"
diff --git a/src/lib/components/addons/AddOnListItem.svelte b/src/lib/components/addons/AddOnListItem.svelte
index 735de9adc..710514b1f 100644
--- a/src/lib/components/addons/AddOnListItem.svelte
+++ b/src/lib/components/addons/AddOnListItem.svelte
@@ -88,6 +88,7 @@
     line-height: 1.4;
     color: var(--gray-4);
     overflow: hidden;
+    line-clamp: 4;
     -webkit-line-clamp: 4;
     display: -webkit-box;
     -webkit-box-orient: vertical;
diff --git a/src/lib/components/addons/tests/__snapshots__/AddOnListItem.test.ts.snap b/src/lib/components/addons/tests/__snapshots__/AddOnListItem.test.ts.snap
index 058f9ddaa..dcd4cb278 100644
--- a/src/lib/components/addons/tests/__snapshots__/AddOnListItem.test.ts.snap
+++ b/src/lib/components/addons/tests/__snapshots__/AddOnListItem.test.ts.snap
@@ -3,18 +3,18 @@
 exports[`AddOnListItem 1`] = `
 <div>
   <a
-    class="addon-link svelte-zccvfh"
+    class="addon-link svelte-1sp09hk"
     href="/add-ons/MuckRock/documentcloud-bulk-edit-addon/"
   >
     <div
-      class="container svelte-zccvfh"
+      class="container svelte-1sp09hk"
       id="MuckRock/documentcloud-bulk-edit-addon"
     >
       <div
-        class="row svelte-zccvfh"
+        class="row svelte-1sp09hk"
       >
         <div
-          class="center-self svelte-zccvfh"
+          class="center-self svelte-1sp09hk"
         >
           <div
             style="display: contents; --fill: var(--gray-3);"
@@ -24,7 +24,7 @@ exports[`AddOnListItem 1`] = `
               style="--padding:0.25em; --border-radius:4px;"
             >
               <svg
-                class="svelte-x1la67"
+                class="svelte-yezalu"
                 height="16px"
                 viewBox="0 0 16 16"
                 width="16px"
@@ -42,23 +42,23 @@ exports[`AddOnListItem 1`] = `
         </div>
          
         <div
-          class="stretch svelte-zccvfh"
+          class="stretch svelte-1sp09hk"
         >
           <h3
-            class="addon-name svelte-zccvfh"
+            class="addon-name svelte-1sp09hk"
           >
             Bulk Edit
           </h3>
         </div>
          
         <div
-          class="metadata svelte-zccvfh"
+          class="metadata svelte-1sp09hk"
         >
           <p
-            class="author svelte-zccvfh"
+            class="author svelte-1sp09hk"
           >
             <a
-              class="svelte-zccvfh"
+              class="svelte-1sp09hk"
               href="http://github.com/MuckRock/documentcloud-bulk-edit-addon"
               rel="noopener noreferrer"
               target="_blank"
@@ -72,7 +72,7 @@ exports[`AddOnListItem 1`] = `
       </div>
        
       <div
-        class="description svelte-zccvfh"
+        class="description svelte-1sp09hk"
       >
         This will update document information for all documents in your current search.  Please be sure you have edit access to these documents before running this add-on.
       </div>
@@ -84,18 +84,18 @@ exports[`AddOnListItem 1`] = `
 exports[`AddOnListItem 2`] = `
 <div>
   <a
-    class="addon-link svelte-zccvfh"
+    class="addon-link svelte-1sp09hk"
     href="/add-ons/MuckRock/documentcloud-azure-document-intelligence-ocr-addon/"
   >
     <div
-      class="container svelte-zccvfh"
+      class="container svelte-1sp09hk"
       id="MuckRock/documentcloud-azure-document-intelligence-ocr-addon"
     >
       <div
-        class="row svelte-zccvfh"
+        class="row svelte-1sp09hk"
       >
         <div
-          class="center-self svelte-zccvfh"
+          class="center-self svelte-1sp09hk"
         >
           <div
             style="display: contents; --fill: var(--gray-3);"
@@ -105,7 +105,7 @@ exports[`AddOnListItem 2`] = `
               style="--padding:0.25em; --border-radius:4px;"
             >
               <svg
-                class="svelte-x1la67"
+                class="svelte-yezalu"
                 height="16px"
                 viewBox="0 0 16 16"
                 width="16px"
@@ -123,23 +123,23 @@ exports[`AddOnListItem 2`] = `
         </div>
          
         <div
-          class="stretch svelte-zccvfh"
+          class="stretch svelte-1sp09hk"
         >
           <h3
-            class="addon-name svelte-zccvfh"
+            class="addon-name svelte-1sp09hk"
           >
             Azure Document Intelligence OCR
           </h3>
         </div>
          
         <div
-          class="metadata svelte-zccvfh"
+          class="metadata svelte-1sp09hk"
         >
           <p
-            class="author svelte-zccvfh"
+            class="author svelte-1sp09hk"
           >
             <a
-              class="svelte-zccvfh"
+              class="svelte-1sp09hk"
               href="http://github.com/MuckRock/documentcloud-azure-document-intelligence-ocr-addon"
               rel="noopener noreferrer"
               target="_blank"
@@ -150,7 +150,7 @@ exports[`AddOnListItem 2`] = `
           </p>
            
           <span
-            class="badge svelte-zccvfh"
+            class="badge svelte-1sp09hk"
             role="status"
           >
             <div
@@ -193,7 +193,7 @@ exports[`AddOnListItem 2`] = `
       </div>
        
       <div
-        class="description svelte-zccvfh"
+        class="description svelte-1sp09hk"
       >
         <p>
           This Add-On uses Azure’s Document Intelligence API to OCR documents. The document(s) must be public to be processed. This Add-On uses 1 AI Credit per page.
diff --git a/src/lib/components/addons/tests/__snapshots__/AddOnsNavigation.test.ts.snap b/src/lib/components/addons/tests/__snapshots__/AddOnsNavigation.test.ts.snap
index 967e5090e..acd4c37da 100644
--- a/src/lib/components/addons/tests/__snapshots__/AddOnsNavigation.test.ts.snap
+++ b/src/lib/components/addons/tests/__snapshots__/AddOnsNavigation.test.ts.snap
@@ -58,7 +58,7 @@ exports[`AddOnsNavigation 1`] = `
             style="display: contents; --fill: var(--orange-3);"
           >
             <svg
-              class="svelte-x1la67"
+              class="svelte-yezalu"
               height="16px"
               viewBox="0 0 16 16"
               width="16px"
diff --git a/src/lib/components/common/Action.svelte b/src/lib/components/common/Action.svelte
index 09bd24c23..e12e2773f 100644
--- a/src/lib/components/common/Action.svelte
+++ b/src/lib/components/common/Action.svelte
@@ -3,6 +3,7 @@
 
   export let icon: typeof SvgComponent = null;
   export let disabled = false;
+  export let title: string = undefined;
 </script>
 
 <span
@@ -10,6 +11,7 @@
   class:disabled
   role="button"
   tabindex={0}
+  {title}
   on:click|stopPropagation
   on:keydown|stopPropagation
 >
diff --git a/src/lib/components/forms/BulkActions.svelte b/src/lib/components/forms/BulkActions.svelte
index 1921cf848..50805cf2a 100644
--- a/src/lib/components/forms/BulkActions.svelte
+++ b/src/lib/components/forms/BulkActions.svelte
@@ -33,6 +33,8 @@ Most actual actions are deferred to their own forms, so this is more of a switch
   import Reprocess from "./Reprocess.svelte";
   import EditDataMany from "./EditDataMany.svelte";
 
+  export let position = "bottom right";
+
   const selected: Writable<Document[]> = getContext("selected");
 
   const id = "bulk-actions";
@@ -66,8 +68,8 @@ Most actual actions are deferred to their own forms, so this is more of a switch
   }
 </script>
 
-<Dropdown {id} position="bottom left">
-  <SidebarItem slot="title" disabled={$selected.length < 1}>
+<Dropdown {id} {position}>
+  <SidebarItem slot="title" disabled={$selected?.length < 1}>
     {$_("bulk.title")}
     <ChevronDown12 />
   </SidebarItem>
@@ -76,7 +78,7 @@ Most actual actions are deferred to their own forms, so this is more of a switch
     {#each Object.entries(actions) as [action, label]}
       <SidebarItem
         hover
-        disabled={$selected.length < 1}
+        disabled={$selected?.length < 1}
         on:click={() => show(action)}
       >
         <svelte:component this={icons[action]} />
@@ -92,8 +94,8 @@ Most actual actions are deferred to their own forms, so this is more of a switch
       <h1 slot="title">{actions[visible]}</h1>
       {#if visible === "edit"}
         <EditMany documents={$selected} on:close={close}>
-          {#if $selected.length}
-            <p>{$_("edit.many", { values: { n: $selected.length } })}</p>
+          {#if $selected?.length}
+            <p>{$_("edit.many", { values: { n: $selected?.length } })}</p>
           {/if}
         </EditMany>
       {/if}
diff --git a/src/lib/components/forms/DeleteProject.svelte b/src/lib/components/forms/DeleteProject.svelte
new file mode 100644
index 000000000..829bff000
--- /dev/null
+++ b/src/lib/components/forms/DeleteProject.svelte
@@ -0,0 +1,44 @@
+<!-- @component
+Confirm project deletion.
+-->
+<script lang="ts">
+  import type { Project } from "$lib/api/types";
+
+  import { createEventDispatcher } from "svelte";
+  import { _ } from "svelte-i18n";
+  import { Trash16 } from "svelte-octicons";
+
+  import Flex from "../common/Flex.svelte";
+  import Button from "../common/Button.svelte";
+
+  import { canonicalUrl } from "$lib/api/projects";
+
+  export let project: Project;
+
+  const dispatch = createEventDispatcher();
+
+  $: action = new URL("?/delete", canonicalUrl(project)).href;
+</script>
+
+<form {action} method="post">
+  <p>{$_("projects.delete.really", { values: { project: project.title } })}</p>
+
+  <Flex>
+    <Button type="submit" mode="danger">
+      <Trash16 />
+      {$_("delete.confirm")}
+    </Button>
+    <Button on:click={() => dispatch("close")}>
+      {$_("delete.cancel")}
+    </Button>
+  </Flex>
+</form>
+
+<style>
+  form {
+    display: flex;
+    flex-direction: column;
+    gap: 1rem;
+    width: 100%;
+  }
+</style>
diff --git a/src/lib/components/forms/EditProject.svelte b/src/lib/components/forms/EditProject.svelte
new file mode 100644
index 000000000..701e8187a
--- /dev/null
+++ b/src/lib/components/forms/EditProject.svelte
@@ -0,0 +1,81 @@
+<!-- @component
+Edit project metadata
+-->
+<script lang="ts">
+  import type { Project } from "$lib/api/types";
+
+  import { enhance } from "$app/forms";
+
+  import { createEventDispatcher } from "svelte";
+  import { _ } from "svelte-i18n";
+
+  import Button from "../common/Button.svelte";
+  import Field from "../inputs/Field.svelte";
+  import Flex from "../common/Flex.svelte";
+  import Switch from "../inputs/Switch.svelte";
+  import Text from "../inputs/Text.svelte";
+  import TextArea from "../inputs/TextArea.svelte";
+
+  import { pinned } from "$lib/components/projects/ProjectPin.svelte";
+
+  import { canonicalUrl } from "$lib/api/projects";
+
+  export let project: Partial<Project> = {};
+
+  const dispatch = createEventDispatcher();
+
+  $: action = project?.id
+    ? new URL("?/edit", canonicalUrl(project as Project)).href
+    : "/documents/projects/";
+
+  // handle optimistic updates
+  $: is_pinned = $pinned.includes(project as Project) || project.pinned;
+
+  function onSubmit({ submitter }) {
+    submitter.disabled = true;
+    return ({ result, update }) => {
+      update(result);
+      dispatch("close");
+    };
+  }
+</script>
+
+<form {action} method="post" use:enhance={onSubmit}>
+  <Flex direction="column" gap={1}>
+    <Field title={$_("projects.fields.title")} required>
+      <Text
+        name="title"
+        placeholder={$_("projects.fields.title")}
+        value={project.title}
+      />
+    </Field>
+    <Field title={$_("projects.fields.description")}>
+      <TextArea name="description" value={project.description} />
+    </Field>
+    <Field title={$_("projects.fields.private")} inline>
+      <Switch name="private" checked={project.private} />
+    </Field>
+    <Field title={$_("projects.fields.pinned")} inline>
+      <Switch name="pinned" checked={is_pinned} />
+    </Field>
+
+    <Flex class="buttons">
+      {#if project?.id}
+        <Button type="submit" mode="primary" full>{$_("edit.save")}</Button>
+      {:else}
+        <Button type="submit" mode="primary" full>
+          {$_("projects.create")}
+        </Button>
+      {/if}
+      <Button full on:click={(e) => dispatch("close")}>
+        {$_("edit.cancel")}
+      </Button>
+    </Flex>
+  </Flex>
+</form>
+
+<style>
+  form {
+    width: 100%;
+  }
+</style>
diff --git a/src/lib/components/forms/ManageCollaborators.svelte b/src/lib/components/forms/ManageCollaborators.svelte
new file mode 100644
index 000000000..b853752d0
--- /dev/null
+++ b/src/lib/components/forms/ManageCollaborators.svelte
@@ -0,0 +1,181 @@
+<!-- @component 
+Manage users on a project: add, update, remove
+
+This component is actually two separate forms that travel together.
+They might get separated later.
+-->
+<script lang="ts">
+  import type {
+    Project,
+    ProjectAccess,
+    ProjectUser,
+    User,
+  } from "$lib/api/types";
+
+  import { enhance } from "$app/forms";
+
+  import { createEventDispatcher } from "svelte";
+  import { _ } from "svelte-i18n";
+  import { Plus16 } from "svelte-octicons";
+
+  import Button from "../common/Button.svelte";
+  import Field from "../inputs/Field.svelte";
+  import Flex from "../common/Flex.svelte";
+  import Text from "../inputs/Text.svelte";
+  import UserAvatar from "../accounts/UserAvatar.svelte";
+
+  import { canonicalUrl } from "$lib/api/projects";
+
+  export let project: Project;
+  export let users: ProjectUser[];
+
+  const dispatch = createEventDispatcher();
+
+  $: canonical = canonicalUrl(project);
+  $: action = new URL("?/users", canonical).href;
+  $: invite = new URL("?/invite", canonical).href;
+  $: grouped = users.reduce(
+    (m, { user, access }) => {
+      m[access].push(user);
+      return m;
+    },
+    { admin: [], edit: [], view: [] } satisfies Record<ProjectAccess, User[]>,
+  );
+
+  function sort(users: User[]) {
+    return users.sort((a, b) => a.name.localeCompare(b.name));
+  }
+
+  function onSubmit({ formElement, formData, action, cancel, submitter }) {
+    submitter.disabled = true;
+    return async ({ result, update }) => {
+      submitter.disabled = false;
+      return update(result);
+    };
+  }
+</script>
+
+<Flex direction="column">
+  <form action={invite} method="post" use:enhance={onSubmit}>
+    <h2>{$_("collaborators.addCollaborators")}</h2>
+    <p>{@html $_("collaborators.invite")}</p>
+    <Flex align="center">
+      <Field title={$_("common.emailAddress")} sronly>
+        <Text name="email" placeholder={$_("common.emailAddress")} />
+      </Field>
+      <Field>
+        <select name="access" class="access">
+          <option value="view">{$_("collaborators.view")}</option>
+          <option value="edit">{$_("collaborators.edit")}</option>
+          <option value="admin">{$_("collaborators.admin")}</option>
+        </select>
+      </Field>
+      <Button mode="primary" type="submit">
+        <Plus16 />
+        {$_("collaborators.add")}
+      </Button>
+    </Flex>
+  </form>
+
+  {#if users.length}
+    <form {action} method="post" use:enhance>
+      {#each Object.entries(grouped) as [access, group]}
+        {#if group.length}
+          <Flex direction="column" class="users {access}">
+            <h2>{$_(`collaborators.${access}`)}</h2>
+            <p class="help">
+              {$_(`collaborators.help.${access}`)}
+            </p>
+            <table>
+              <tr class="sr-only">
+                <th>{$_("collaborators.name")}</th>
+                <th>{$_("collaborators.access")}</th>
+              </tr>
+              {#each sort(group) as user}
+                <tr>
+                  <td><Flex><UserAvatar {user} /> {user.name}</Flex></td>
+                  <td>
+                    <input type="hidden" name="user" value={user.id} />
+                    <Field title={$_("collaborators.change")} sronly>
+                      <select name="access" value={access}>
+                        <option value="view">{$_("collaborators.view")}</option>
+                        <option value="edit">{$_("collaborators.edit")}</option>
+                        <option value="admin">
+                          {$_("collaborators.admin")}
+                        </option>
+                        <option value="remove">
+                          {$_("collaborators.remove.label")}
+                        </option>
+                      </select>
+                    </Field>
+                  </td>
+                </tr>
+              {/each}
+            </table>
+          </Flex>
+        {/if}
+      {/each}
+      <Flex class="buttons">
+        <Button type="submit" mode="primary" full>{$_("dialog.save")}</Button>
+        <Button full on:click={() => dispatch("close")}>
+          {$_("dialog.done")}
+        </Button>
+      </Flex>
+    </form>
+  {/if}
+</Flex>
+
+<style>
+  form {
+    display: flex;
+    flex-direction: column;
+    gap: 1rem;
+    margin-bottom: 1rem;
+  }
+
+  table {
+    width: 100%;
+    margin: 0;
+    padding: 0;
+    border-collapse: collapse;
+    table-layout: fixed;
+  }
+
+  th,
+  td {
+    text-align: start;
+    margin: 0;
+    padding: 0.25rem 0 0 0;
+
+    color: var(--gray-5, #233944);
+    overflow: hidden;
+    text-overflow: ellipsis;
+    font-family: var(--font-family, var(--font-sans, "Source Sans Pro"));
+    font-size: var(--font-size, var(--font-md, 1rem));
+    line-height: normal;
+  }
+
+  /* copied from Text.svelte */
+  select {
+    display: flex;
+    padding: 0.375rem 0.75rem;
+    justify-content: center;
+    align-items: center;
+    gap: 0.5rem;
+    width: 100%;
+
+    border-radius: 0.5rem;
+    border: 1px solid var(--gray-3, hwb(205 60% 30%));
+    background: var(--white, #fff);
+    box-shadow: 0px 2px 0px 0px var(--gray-2, #d8dee2) inset;
+
+    color: var(--gray-5, #233944);
+    overflow: hidden;
+    text-overflow: ellipsis;
+    font-family: var(--font-family, var(--font-sans, "Source Sans Pro"));
+    font-size: var(--font-size, var(--font-md, 1rem));
+    font-style: normal;
+    font-weight: 400;
+    line-height: normal;
+  }
+</style>
diff --git a/src/lib/components/forms/Projects.svelte b/src/lib/components/forms/Projects.svelte
new file mode 100644
index 000000000..9143e0c74
--- /dev/null
+++ b/src/lib/components/forms/Projects.svelte
@@ -0,0 +1,165 @@
+<!-- @component
+Add to and remove from projects.
+This component can work entirely in the client,
+because it needs to load all of a user's projects 
+and we don't want to do that everywhere.
+-->
+<script lang="ts">
+  import type { Writable } from "svelte/store";
+  import type { Document, Project, User } from "$lib/api/types";
+
+  import { enhance } from "$app/forms";
+  import { invalidate } from "$app/navigation";
+
+  import { createEventDispatcher, getContext, onMount } from "svelte";
+  import { _ } from "svelte-i18n";
+
+  import Button from "../common/Button.svelte";
+  import Field from "../inputs/Field.svelte";
+  import Flex from "../common/Flex.svelte";
+  import Switch from "../inputs/Switch.svelte";
+  import Text from "../inputs/Text.svelte";
+  import TextArea from "../inputs/TextArea.svelte";
+
+  import { getForUser, add, remove } from "$lib/api/projects";
+  import { getCsrfToken } from "$lib/utils/api";
+  import { intersection } from "@/util/array.js";
+
+  export let documents: Document[] = [];
+  export let projects: Project[] = [];
+
+  const dispatch = createEventDispatcher();
+  const me: Writable<User> = getContext("me");
+
+  let common: Set<number>;
+
+  $: common = new Set(
+    intersection(
+      documents.map((d) => d.projects),
+      (a, b) => {
+        return a.id === b.id;
+      },
+    ).map((p: Project | number) => (typeof p === "number" ? p : p.id)),
+  );
+
+  onMount(async () => {
+    if ($me && projects.length === 0) {
+      projects = await getForUser($me.id);
+    }
+  });
+
+  function invalidateDocs(documents: Document[]) {
+    return Promise.all(documents.map((d) => invalidate(`document:${d.id}`)));
+  }
+
+  // typescript doesn't know what to do with svelte's events
+  async function toggle(project: Project, e) {
+    const { checked } = e.target;
+    const ids = documents.map((d) => d.id);
+    const csrf_token = getCsrfToken();
+    if (checked) {
+      await add(project.id, ids, csrf_token);
+    } else {
+      await remove(project.id, ids, csrf_token);
+    }
+    await invalidateDocs(documents);
+  }
+
+  function onSubmit({ submitter }) {
+    submitter.disabled = true;
+    return async ({ result, update }) => {
+      if (result.type === "success") {
+        projects = [...projects, result.data.project];
+        update(result);
+      }
+      submitter.disabled = false;
+    };
+  }
+
+  function sort(projects: Project[]) {
+    return projects.sort(
+      (a, b) => +b.pinned - +a.pinned || a.title.localeCompare(b.title),
+    );
+  }
+</script>
+
+<div class="container">
+  <form method="post" action="/documents/projects/" use:enhance={onSubmit}>
+    <h2>{$_("projects.create")}</h2>
+    <Field title={$_("projects.fields.title")} required inline>
+      <Text name="title" placeholder={$_("projects.fields.title")} />
+    </Field>
+
+    <details>
+      <summary>{$_("common.more")} &hellip;</summary>
+      <Flex direction="column">
+        <Field title={$_("projects.fields.description")}>
+          <TextArea name="description" />
+        </Field>
+        <Field title={$_("projects.fields.private")} inline>
+          <Switch name="private" />
+        </Field>
+        <Field title={$_("projects.fields.pinned")} inline>
+          <Switch name="pinned" />
+        </Field>
+      </Flex>
+    </details>
+    <Flex>
+      <Button mode="primary" type="submit">
+        {$_("common.add")} +
+      </Button>
+    </Flex>
+  </form>
+
+  {#if projects.length}
+    <hr class="divider" />
+    <Flex direction="column" class="projects">
+      {#each sort(projects) as project}
+        <label class="project">
+          <input
+            type="checkbox"
+            name="project"
+            value={project.id}
+            checked={common.has(project.id)}
+            on:change={(e) => toggle(project, e)}
+          />
+          {project.title}
+        </label>
+      {/each}
+    </Flex>
+    <hr class="divider" />
+  {/if}
+  <Flex class="buttons">
+    <input
+      type="hidden"
+      name="documents"
+      value={documents.map((d) => d.id).join(",")}
+    />
+    <Button on:click={() => dispatch("close")}>{$_("dialog.done")}</Button>
+  </Flex>
+</div>
+
+<style>
+  form,
+  .container {
+    display: flex;
+    flex-direction: column;
+    gap: 1rem;
+    width: 100%;
+  }
+
+  label {
+    display: flex;
+    align-items: center;
+    gap: 0.5rem;
+  }
+
+  details {
+    cursor: pointer;
+  }
+
+  summary {
+    cursor: pointer;
+    margin-bottom: 0.5rem;
+  }
+</style>
diff --git a/src/lib/components/forms/Search.svelte b/src/lib/components/forms/Search.svelte
index 2172e26ad..165e42c3c 100644
--- a/src/lib/components/forms/Search.svelte
+++ b/src/lib/components/forms/Search.svelte
@@ -4,6 +4,7 @@
 
   export let name: string = null;
   export let query: string = "";
+  export let placeholder: string = $_("searchBar.search");
 
   let input: HTMLInputElement;
   let form: HTMLFormElement;
@@ -19,9 +20,9 @@
   <input
     type="search"
     id="query"
-    {name}
     autocomplete="off"
-    placeholder={$_("searchBar.search")}
+    {name}
+    {placeholder}
     bind:value={query}
     bind:this={input}
     on:change
diff --git a/src/lib/components/forms/stories/DeleteProject.stories.svelte b/src/lib/components/forms/stories/DeleteProject.stories.svelte
new file mode 100644
index 000000000..fedc476cb
--- /dev/null
+++ b/src/lib/components/forms/stories/DeleteProject.stories.svelte
@@ -0,0 +1,16 @@
+<script context="module" lang="ts">
+  import { Story } from "@storybook/addon-svelte-csf";
+  import DeleteProject from "../DeleteProject.svelte";
+
+  import { project } from "@/test/fixtures/projects";
+
+  export const meta = {
+    title: "Forms / Delete project",
+    component: DeleteProject,
+    parameters: { layout: "centered" },
+  };
+</script>
+
+<Story name="default">
+  <DeleteProject {project} />
+</Story>
diff --git a/src/lib/components/forms/stories/EditProject.stories.svelte b/src/lib/components/forms/stories/EditProject.stories.svelte
new file mode 100644
index 000000000..d5ffee90b
--- /dev/null
+++ b/src/lib/components/forms/stories/EditProject.stories.svelte
@@ -0,0 +1,30 @@
+<script context="module" lang="ts">
+  import { Story } from "@storybook/addon-svelte-csf";
+  import EditProject from "../EditProject.svelte";
+
+  export const meta = {
+    title: "Forms / Edit project",
+    component: EditProject,
+    parameters: { layout: "centered" },
+  };
+
+  import { project } from "@/test/fixtures/projects";
+</script>
+
+<Story name="create project">
+  <div>
+    <EditProject />
+  </div>
+</Story>
+
+<Story name="update project">
+  <div>
+    <EditProject {project} />
+  </div>
+</Story>
+
+<style>
+  div {
+    min-width: 400px;
+  }
+</style>
diff --git a/src/lib/components/forms/stories/ManageCollaborators.stories.svelte b/src/lib/components/forms/stories/ManageCollaborators.stories.svelte
new file mode 100644
index 000000000..1dc1ccc7d
--- /dev/null
+++ b/src/lib/components/forms/stories/ManageCollaborators.stories.svelte
@@ -0,0 +1,29 @@
+<script context="module" lang="ts">
+  import type { ProjectUser } from "$lib/api/types";
+
+  import { Story } from "@storybook/addon-svelte-csf";
+  import ManageCollaborators from "../ManageCollaborators.svelte";
+
+  import { project } from "@/test/fixtures/projects";
+  import { results } from "@/test/fixtures/projects/project-users.json";
+
+  const users = results as ProjectUser[];
+
+  export const meta = {
+    title: "Forms / Manage Collaborators",
+    component: ManageCollaborators,
+    parameters: { layout: "centered" },
+  };
+</script>
+
+<Story name="with users">
+  <div style="max-width: 100ch;">
+    <ManageCollaborators {project} {users} />
+  </div>
+</Story>
+
+<Story name="no users">
+  <div style="max-width: 100ch;">
+    <ManageCollaborators {project} users={[]} />
+  </div>
+</Story>
diff --git a/src/lib/components/forms/stories/Projects.stories.svelte b/src/lib/components/forms/stories/Projects.stories.svelte
new file mode 100644
index 000000000..4e2c01e48
--- /dev/null
+++ b/src/lib/components/forms/stories/Projects.stories.svelte
@@ -0,0 +1,21 @@
+<script context="module" lang="ts">
+  import { Story } from "@storybook/addon-svelte-csf";
+  import Projects from "../Projects.svelte";
+
+  import { projectList } from "@/test/fixtures/projects";
+  import { document, documentsList } from "@/test/fixtures/documents";
+
+  export const meta = {
+    title: "Forms / Projects",
+    component: Projects,
+    parameters: { layout: "centered" },
+  };
+</script>
+
+<Story name="one document">
+  <Projects projects={projectList.results} documents={[document]} />
+</Story>
+
+<Story name="many documents">
+  <Projects projects={projectList.results} documents={documentsList.results} />
+</Story>
diff --git a/src/lib/components/inputs/Field.svelte b/src/lib/components/inputs/Field.svelte
index 6d16df03f..8306185bd 100644
--- a/src/lib/components/inputs/Field.svelte
+++ b/src/lib/components/inputs/Field.svelte
@@ -3,12 +3,13 @@
   export let description: string = "";
   export let inline = false;
   export let required = false;
+  export let sronly = false;
 </script>
 
 <div class="field" class:inline class:required>
   <label>
     {#if title}
-      <span class="title">{title}</span>
+      <span class="title" class:sr-only={sronly}>{title}</span>
     {/if}
     <slot />
   </label>
diff --git a/src/lib/components/projects/Collaborators.svelte b/src/lib/components/projects/Collaborators.svelte
new file mode 100644
index 000000000..2bbb33d32
--- /dev/null
+++ b/src/lib/components/projects/Collaborators.svelte
@@ -0,0 +1,67 @@
+<script lang="ts">
+  import type { Project, ProjectUser } from "$lib/api/types";
+
+  import { _ } from "svelte-i18n";
+  import { Pencil16 } from "svelte-octicons";
+
+  import Action from "../common/Action.svelte";
+  import Empty from "../common/Empty.svelte";
+  import SidebarGroup from "../sidebar/SidebarGroup.svelte";
+  import SidebarItem from "../sidebar/SidebarItem.svelte";
+  import UserAvatar from "../accounts/UserAvatar.svelte";
+
+  import ManageCollaborators from "../forms/ManageCollaborators.svelte";
+  import Modal from "../layouts/Modal.svelte";
+  import Portal from "../layouts/Portal.svelte";
+
+  export let project: Project;
+  export let users: ProjectUser[];
+
+  let edit = false;
+
+  function sort(users: ProjectUser[]) {
+    return users.sort(
+      (a, b) =>
+        a.access.localeCompare(b.access) ||
+        a.user.name.localeCompare(b.user.name),
+    );
+  }
+</script>
+
+<SidebarGroup name="collaborators">
+  <SidebarItem slot="title">
+    {$_("projects.collaborators.title")}
+    {#if project.add_remove_access}
+      <Action
+        icon={Pencil16}
+        title={$_("projects.manage")}
+        on:click={() => (edit = true)}
+      >
+        <span class="sr-only">{$_("projects.manage")}</span>
+      </Action>
+    {/if}
+  </SidebarItem>
+
+  {#each sort(users) as user}
+    <SidebarItem small>
+      <UserAvatar user={user.user} />
+      {user.user.name} ({user.access})
+    </SidebarItem>
+  {:else}
+    <Empty>
+      {$_("projects.collaborators.empty")}
+      <Action on:click={() => (edit = true)}>
+        {$_("projects.collaborators.add")}
+      </Action>
+    </Empty>
+  {/each}
+</SidebarGroup>
+
+{#if edit}
+  <Portal>
+    <Modal on:close={() => (edit = false)}>
+      <h1 slot="title">{$_("collaborators.manage")}</h1>
+      <ManageCollaborators {project} {users} on:close={() => (edit = false)} />
+    </Modal>
+  </Portal>
+{/if}
diff --git a/src/lib/components/projects/ProjectActions.svelte b/src/lib/components/projects/ProjectActions.svelte
new file mode 100644
index 000000000..9f096ae34
--- /dev/null
+++ b/src/lib/components/projects/ProjectActions.svelte
@@ -0,0 +1,103 @@
+<script context="module" lang="ts">
+  type Action = "edit" | "share" | "users" | "delete";
+</script>
+
+<script lang="ts">
+  import type { Project, ProjectUser } from "$lib/api/types";
+
+  import { _ } from "svelte-i18n";
+  import {
+    Alert16,
+    People16,
+    Pencil16,
+    Search16,
+    Share16,
+    Share24,
+  } from "svelte-octicons";
+
+  import Empty from "../common/Empty.svelte";
+  import Flex from "../common/Flex.svelte";
+  import SidebarItem from "../sidebar/SidebarItem.svelte";
+
+  import Modal from "../layouts/Modal.svelte";
+  import Portal from "../layouts/Portal.svelte";
+
+  import EditProject from "../forms/EditProject.svelte";
+  import ManageCollaborators from "../forms/ManageCollaborators.svelte";
+  import DeleteProject from "../forms/DeleteProject.svelte";
+
+  import { projectSearchUrl } from "$lib/utils/search";
+
+  export let project: Project;
+  export let users: ProjectUser[];
+
+  let show: Action = null;
+
+  const actions: Record<Action, string> = {
+    edit: $_("projects.edit"),
+    share: $_("projects.share"),
+    users: $_("projects.users"),
+    delete: $_("projects.delete.confirm"),
+  };
+
+  function hide() {
+    show = null;
+  }
+</script>
+
+<Flex direction="column">
+  <SidebarItem hover on:click={() => (show = "edit")}>
+    <Pencil16 />{$_("sidebar.edit")}
+  </SidebarItem>
+
+  <SidebarItem hover on:click={() => (show = "users")}>
+    <People16 />{$_("sidebar.collaborate")}
+  </SidebarItem>
+
+  <SidebarItem hover on:click={() => (show = "share")}>
+    <Share16 />{$_("sidebar.shareEmbed")}
+  </SidebarItem>
+  <SidebarItem
+    hover
+    --color="var(--caution)"
+    --fill="var(--caution)"
+    on:click={() => (show = "delete")}
+  >
+    <Alert16 />
+    {$_("projects.delete.action")}
+  </SidebarItem>
+</Flex>
+
+<hr class="divider" />
+
+<SidebarItem href={projectSearchUrl(project)}>
+  <Search16 />{$_("projects.viewInSearch")}
+</SidebarItem>
+
+{#if show}
+  <Portal>
+    <Modal on:close={hide}>
+      <h1 slot="title">
+        {actions[show]}
+      </h1>
+      {#if show === "edit"}
+        <EditProject {project} on:close={hide} />
+      {/if}
+
+      {#if show === "share"}
+        <Empty icon={Share24}
+          >Project sharing coming soon. Use our Feedback form to let us know how
+          you use project sharing.</Empty
+        >
+      {/if}
+
+      {#if show === "users"}
+        <ManageCollaborators {project} {users} on:close={hide} />
+      {/if}
+
+      {#if show === "delete"}
+        <DeleteProject {project} on:close={hide} />
+      {/if}
+    </Modal>
+  </Portal>
+{/if}
diff --git a/src/lib/components/projects/ProjectListItem.svelte b/src/lib/components/projects/ProjectListItem.svelte
index ddbff2c1f..86dfc5ad5 100644
--- a/src/lib/components/projects/ProjectListItem.svelte
+++ b/src/lib/components/projects/ProjectListItem.svelte
@@ -1,17 +1,19 @@
 <script lang="ts">
+  import type { Project } from "$lib/api/types";
+
   import { _ } from "svelte-i18n";
   import { Globe16, Lock16 } from "svelte-octicons";
 
-  import type { Project } from "$lib/api/types";
   import ProjectPin from "./ProjectPin.svelte";
 
+  import { canonicalUrl } from "$lib/api/projects";
+
   export let project: Project;
+
+  $: href = canonicalUrl(project).href;
 </script>
 
-<a
-  href={`/documents/projects/${project.id}-${project.slug}`}
-  id={project.id.toString()}
->
+<a {href} id={project.id.toString()}>
   <div class="container">
     <div class="row margin">
       <div class="center-self">
@@ -21,13 +23,13 @@
         <h3 class="project-title">{project.title}</h3>
       </div>
       {#if project.private}
-        <span class="small center center-self" title={$_("projects.private")}
-          ><Lock16 /></span
-        >
+        <span class="small center center-self" title={$_("projects.private")}>
+          <Lock16 />
+        </span>
       {:else}
-        <span class="small center center-self" title={$_("projects.public")}
-          ><Globe16 /></span
-        >
+        <span class="small center center-self" title={$_("projects.public")}>
+          <Globe16 />
+        </span>
       {/if}
     </div>
     {#if project.description}
@@ -71,6 +73,7 @@
     line-height: 1.4;
     color: var(--darkgray);
     overflow: hidden;
+    line-clamp: 4;
     -webkit-line-clamp: 4;
     display: -webkit-box;
     -webkit-box-orient: vertical;
diff --git a/src/lib/components/projects/ProjectPin.svelte b/src/lib/components/projects/ProjectPin.svelte
index 5a5e960dc..1c37af20d 100644
--- a/src/lib/components/projects/ProjectPin.svelte
+++ b/src/lib/components/projects/ProjectPin.svelte
@@ -1,7 +1,13 @@
 <script lang="ts" context="module">
-  import { writable, type Writable } from "svelte/store";
   import type { Project } from "@/lib/api/types";
 
+  import { invalidate } from "$app/navigation";
+
+  import { writable, type Writable } from "svelte/store";
+  import { getCsrfToken } from "$lib/utils/api";
+
+  import { canonicalUrl } from "$lib/api/projects";
+
   export const pinned: Writable<Project[]> = writable([]);
 
   export function sortPins(projects: Project[]): Project[] {
@@ -15,25 +21,24 @@
 
 <script lang="ts">
   import Pin from "@/common/Pin.svelte";
-  import { pinProject } from "@/lib/api/projects";
-  import { page } from "$app/stores";
+  import { pinProject } from "$lib/api/projects";
 
   export let project: Project;
   export let size = 1;
 
-  $: csrf_token = $page.data.csrf_token;
-
-  async function toggle(event) {
-    event.preventDefault();
-
+  async function toggle(e) {
+    e.preventDefault();
+    const csrf_token = getCsrfToken();
     const newPinnedState = !project.pinned;
     try {
       // optimistic update
       project.pinned = newPinnedState;
-      project = await pinProject(csrf_token, project.id, newPinnedState);
-    } catch {
+      project = await pinProject(project.id, newPinnedState, csrf_token);
+      await invalidate(canonicalUrl(project));
+    } catch (e) {
       // undo optimistic update on error
       project.pinned = !project.pinned;
+      console.error(e);
     }
 
     // now that we've updated, set $pinned
diff --git a/src/lib/components/projects/stories/Collaborators.stories.svelte b/src/lib/components/projects/stories/Collaborators.stories.svelte
new file mode 100644
index 000000000..5c0319bbd
--- /dev/null
+++ b/src/lib/components/projects/stories/Collaborators.stories.svelte
@@ -0,0 +1,28 @@
+<script context="module" lang="ts">
+  import type { ProjectUser } from "@/lib/api/types";
+  import { Story } from "@storybook/addon-svelte-csf";
+  import Collaborators from "../Collaborators.svelte";
+
+  export const meta = {
+    title: "Components / Projects / Collaborators",
+    component: Collaborators,
+    parameters: { layout: "centered" },
+  };
+
+  import { project } from "@/test/fixtures/projects";
+  import * as membership from "@/test/fixtures/projects/project-users.json";
+
+  const users = membership.results as ProjectUser[];
+</script>
+
+<Story name="default">
+  <Collaborators {project} {users} />
+</Story>
+
+<Story name="manage">
+  <Collaborators {users} project={{ ...project, add_remove_access: true }} />
+</Story>
+
+<Story name="empty">
+  <Collaborators {project} users={[]} />
+</Story>
diff --git a/src/lib/components/projects/stories/ProjectActions.stories.svelte b/src/lib/components/projects/stories/ProjectActions.stories.svelte
new file mode 100644
index 000000000..dbe63415b
--- /dev/null
+++ b/src/lib/components/projects/stories/ProjectActions.stories.svelte
@@ -0,0 +1,17 @@
+<script context="module" lang="ts">
+  import type { Project } from "@/lib/api/types";
+  import { Story } from "@storybook/addon-svelte-csf";
+  import ProjectActions from "../ProjectActions.svelte";
+
+  import { project } from "@/test/fixtures/projects";
+
+  export const meta = {
+    title: "Components / Projects / Actions",
+    component: ProjectActions,
+    parameters: { layout: "centered" },
+  };
+</script>
+
+<Story name="default">
+  <ProjectActions {project} users={[]} />
+</Story>
diff --git a/src/routes/documents/+layout.svelte b/src/routes/documents/+layout.svelte
deleted file mode 100644
index 80e809465..000000000
--- a/src/routes/documents/+layout.svelte
+++ /dev/null
@@ -1,5 +0,0 @@
-<svelte:head>
-  <title>DocumentCloud</title>
-</svelte:head>
-
-<slot />
diff --git a/src/routes/documents/+page.svelte b/src/routes/documents/+page.svelte
index 18f8b82ec..6e5e8886b 100644
--- a/src/routes/documents/+page.svelte
+++ b/src/routes/documents/+page.svelte
@@ -122,9 +122,9 @@
 
   <svelte:fragment slot="action">
     <SignedIn>
-      <Button mode="primary" href="/upload/"
-        ><PlusCircle16 />{$_("sidebar.upload")}</Button
-      >
+      <Button mode="primary" href="/upload/">
+        <PlusCircle16 />{$_("sidebar.upload")}
+      </Button>
       <Actions />
       <AddOns pinnedAddOns={data.pinnedAddons} />
     </SignedIn>
diff --git a/src/routes/documents/[id]-[slug]/+layout.svelte b/src/routes/documents/[id]-[slug]/+layout.svelte
index df7a59d93..6bb7f2fef 100644
--- a/src/routes/documents/[id]-[slug]/+layout.svelte
+++ b/src/routes/documents/[id]-[slug]/+layout.svelte
@@ -73,7 +73,7 @@
 
     <Data {document} />
 
-    <Projects {projects} />
+    <Projects {projects} {document} />
   </svelte:fragment>
 
   <slot slot="content" />
diff --git a/src/routes/documents/[id]-[slug]/+layout.ts b/src/routes/documents/[id]-[slug]/+layout.ts
index f7abcb7bd..2ca7e7797 100644
--- a/src/routes/documents/[id]-[slug]/+layout.ts
+++ b/src/routes/documents/[id]-[slug]/+layout.ts
@@ -16,7 +16,7 @@ function documentPath(document: Document) {
 }
 
 /** @type {import('./$types').PageLoad} */
-export async function load({ fetch, params, parent, depends, url }) {
+export async function load({ fetch, params, parent, depends }) {
   const document = await documents.get(+params.id, fetch).catch(console.error);
 
   if (!document) {
diff --git a/src/routes/documents/[id]-[slug]/+page.server.ts b/src/routes/documents/[id]-[slug]/+page.server.ts
index 27f468b35..190b64145 100644
--- a/src/routes/documents/[id]-[slug]/+page.server.ts
+++ b/src/routes/documents/[id]-[slug]/+page.server.ts
@@ -1,4 +1,4 @@
-import type { Actions } from "./$types.js";
+import type { Actions } from "./$types";
 import type { Document } from "$lib/api/types";
 
 import { fail, redirect } from "@sveltejs/kit";
diff --git a/src/routes/documents/[id]-[slug]/sidebar/Projects.svelte b/src/routes/documents/[id]-[slug]/sidebar/Projects.svelte
index 3398c9fae..5aa3ef150 100644
--- a/src/routes/documents/[id]-[slug]/sidebar/Projects.svelte
+++ b/src/routes/documents/[id]-[slug]/sidebar/Projects.svelte
@@ -1,26 +1,60 @@
 <script lang="ts">
-  import type { Project } from "$lib/api/types";
+  import type { Document, Project } from "$lib/api/types";
 
+  import { _ } from "svelte-i18n";
   import { FileDirectory16, FileDirectory24 } from "svelte-octicons";
 
+  import Action from "@/lib/components/common/Action.svelte";
   import Empty from "@/lib/components/common/Empty.svelte";
   import SidebarGroup from "@/lib/components/sidebar/SidebarGroup.svelte";
   import SidebarItem from "@/lib/components/sidebar/SidebarItem.svelte";
 
+  import Modal from "@/lib/components/layouts/Modal.svelte";
+  import Portal from "@/lib/components/layouts/Portal.svelte";
+  import Projects from "@/lib/components/forms/Projects.svelte";
+
+  import { canonicalUrl } from "$lib/api/projects";
+
+  export let document: Document;
   export let projects: Project[];
+
+  let show = false;
+
+  function hide() {
+    show = false;
+  }
 </script>
 
 <SidebarGroup name="projects:viewer">
   <SidebarItem slot="title">
     <FileDirectory16 />
-    Projects
+    {$_("projects.header")}
   </SidebarItem>
 
   {#each projects as project}
-    <SidebarItem small>
+    <SidebarItem small href={canonicalUrl(project).href}>
       {project.title}
     </SidebarItem>
   {:else}
-    <Empty icon={FileDirectory24}>Add this document to projects</Empty>
+    <Empty icon={FileDirectory24}>
+      <Action on:click={() => (show = true)}>
+        {$_("projects.add", { values: { n: 1 } })}
+      </Action>
+    </Empty>
   {/each}
+  {#if projects.length}
+    <SidebarItem>
+      <Action on:click={() => (show = true)}>
+        {$_("projects.add", { values: { n: 1 } })}
+      </Action>
+    </SidebarItem>
+  {/if}
 </SidebarGroup>
+
+{#if show}
+  <Portal>
+    <Modal on:close={hide}>
+      <Projects documents={[document]} on:close={hide} />
+    </Modal>
+  </Portal>
+{/if}
diff --git a/src/routes/documents/projects/+page.server.ts b/src/routes/documents/projects/+page.server.ts
new file mode 100644
index 000000000..a408c306c
--- /dev/null
+++ b/src/routes/documents/projects/+page.server.ts
@@ -0,0 +1,29 @@
+import type { Actions } from "./$types";
+
+import { fail } from "@sveltejs/kit";
+
+import { CSRF_COOKIE_NAME } from "@/config/config.js";
+import * as projects from "$lib/api/projects";
+
+export const actions = {
+  // create is the only thing we can do here
+  async default({ cookies, request, params, fetch }) {
+    const csrf_token = cookies.get(CSRF_COOKIE_NAME);
+    const form = await request.formData();
+
+    const project = {
+      title: form.get("title") as string,
+      description: form.get("description") as string,
+      pinned: form.get("pinned") === "checked",
+      private: form.get("private") === "checked",
+    };
+
+    try {
+      const created = await projects.create(project, csrf_token, fetch);
+      return { success: true, project: created };
+    } catch (error) {
+      // todo: return better errors
+      return fail(400, { error });
+    }
+  },
+} satisfies Actions;
diff --git a/src/routes/documents/projects/+page.svelte b/src/routes/documents/projects/+page.svelte
index 84ef5c700..4fe527d21 100644
--- a/src/routes/documents/projects/+page.svelte
+++ b/src/routes/documents/projects/+page.svelte
@@ -1,35 +1,52 @@
 <script lang="ts">
-  import { FileDirectory24, People16, Person16 } from "svelte-octicons";
   import { _ } from "svelte-i18n";
+  import {
+    FileDirectory24,
+    People16,
+    Person16,
+    Globe16,
+  } from "svelte-octicons";
 
   import { goto } from "$app/navigation";
   import { page } from "$app/stores";
 
-  import Button from "@/lib/components/common/Button.svelte";
-  import Empty from "@/lib/components/common/Empty.svelte";
-  import Flex from "@/lib/components/common/Flex.svelte";
-
-  import PageToolbar from "@/lib/components/common/PageToolbar.svelte";
+  import Button from "$lib/components/common/Button.svelte";
+  import ContentLayout from "$lib/components/layouts/ContentLayout.svelte";
+  import Empty from "$lib/components/common/Empty.svelte";
+  import Flex from "$lib/components/common/Flex.svelte";
+  import PageToolbar from "$lib/components/common/PageToolbar.svelte";
+  import Paginator from "$lib/components/common/Paginator.svelte";
+  import ProjectListItem from "$lib/components/projects/ProjectListItem.svelte";
+  import Search from "$lib/components/forms/Search.svelte";
+  import SidebarItem from "$lib/components/sidebar/SidebarItem.svelte";
   import SidebarLayout from "@/lib/components/layouts/SidebarLayout.svelte";
-  import ContentLayout from "@/lib/components/layouts/ContentLayout.svelte";
-  import Search from "@/lib/components/forms/Search.svelte";
-  import SidebarItem from "@/lib/components/sidebar/SidebarItem.svelte";
-  import ProjectListItem from "@/lib/components/projects/ProjectListItem.svelte";
+
+  import EditProject from "@/lib/components/forms/EditProject.svelte";
+  import Modal from "$lib/components/layouts/Modal.svelte";
+  import Portal from "$lib/components/layouts/Portal.svelte";
 
   export let data;
 
-  function search(event: SubmitEvent) {
-    event.preventDefault();
-    const url = new URL($page.url); // make a copy
-    const formData = new FormData(event.currentTarget as HTMLFormElement);
-    const query = formData.get("query") ?? "";
-    url.searchParams.set("query", query as string);
-    goto(url);
-  }
+  let create = false;
+
+  $: query = data.query;
+  $: projects = data.projects.results;
+  $: next = data.projects.next;
+  $: previous = data.projects.previous;
+
+  function paginate(u: URL | string) {
+    u = new URL(u);
+    const target = new URL($page.url);
 
-  $: query = ($page.url as URL).searchParams.get("query") ?? "";
+    target.searchParams.set("cursor", u.searchParams.get("cursor"));
+    goto(target);
+  }
 </script>
 
+<svelte:head>
+  <title>{$_("projects.header")} | DocumentCloud</title>
+</svelte:head>
+
 <SidebarLayout>
   <svelte:fragment slot="navigation">
     <Flex direction="column">
@@ -41,24 +58,52 @@
         <People16 />
         {$_("projects.shared")}
       </SidebarItem>
+      <SidebarItem active={data.list === "public"} href="?list=public">
+        <Globe16 />
+        {$_("projects.public")}
+      </SidebarItem>
     </Flex>
   </svelte:fragment>
 
   <ContentLayout slot="content">
     <PageToolbar slot="header">
-      <Search name="query" {query} on:submit={search} slot="center" />
+      <Search
+        slot="center"
+        name="query"
+        placeholder={$_("projects.placeholder.projects")}
+        {query}
+      />
     </PageToolbar>
 
-    {#each data.projects as project}
+    {#each projects as project}
       <ProjectListItem {project} />
     {:else}
       <Empty icon={FileDirectory24}>{$_("projects.none")}</Empty>
     {/each}
 
-    <PageToolbar slot="footer"></PageToolbar>
+    <PageToolbar slot="footer">
+      <Paginator
+        slot="center"
+        has_next={Boolean(next)}
+        has_previous={Boolean(previous)}
+        on:next={(e) => paginate(next)}
+        on:previous={(e) => paginate(previous)}
+      />
+    </PageToolbar>
   </ContentLayout>
 
   <svelte:fragment slot="action">
-    <Button mode="primary" href="#create">{$_("projects.create")}</Button>
+    <Button mode="primary" on:click={() => (create = true)}>
+      {$_("projects.create")}
+    </Button>
   </svelte:fragment>
 </SidebarLayout>
+
+{#if create}
+  <Portal>
+    <Modal on:close={() => (create = false)}>
+      <h1 slot="title">{$_("projects.create")}</h1>
+      <EditProject on:close={() => (create = false)} />
+    </Modal>
+  </Portal>
+{/if}
diff --git a/src/routes/documents/projects/+page.ts b/src/routes/documents/projects/+page.ts
index abc7bc9f0..3a66b0336 100644
--- a/src/routes/documents/projects/+page.ts
+++ b/src/routes/documents/projects/+page.ts
@@ -1,27 +1,59 @@
-import { getOwned, getShared } from "$lib/api/projects";
-import type { Project } from "@/api/types";
+import type { ProjectResults } from "$lib/api/types";
+
+import { DEFAULT_PER_PAGE } from "@/config/config.js";
+import { getOwned, getShared, list } from "$lib/api/projects";
+
+type ProjectFilter = "owned" | "shared" | "public";
 
 export async function load({ url, parent, fetch }) {
   const { me } = await parent();
-  const params = Object.fromEntries(url.searchParams.entries());
-  const list = params.list ?? "owned";
-  const query = params.query ?? "";
-  let projects: Project[] = [];
+  const query = url.searchParams.get("query") ?? "";
+  const cursor = url.searchParams.get("cursor") ?? "";
+  const per_page = +url.searchParams.get("per_page") || DEFAULT_PER_PAGE;
+
+  const params: Record<string, any> = {
+    query,
+    cursor,
+    per_page,
+  };
+
+  const filter: ProjectFilter =
+    (url.searchParams.get("list") as ProjectFilter) ?? "owned";
+
+  let projects: ProjectResults = {
+    results: [],
+    next: null,
+    previous: null,
+  };
 
-  if (me && list === "owned") {
-    projects = await getOwned(me.id, query, fetch).catch((e) => {
+  // for owned and shared, we just get everything at once
+  if (me && filter === "owned") {
+    projects.results = await getOwned(me.id, query, fetch).catch((e) => {
       console.error(e);
       return [];
     });
-  } else if (me && list === "shared") {
-    projects = await getShared(me.id, query, fetch).catch((e) => {
+  }
+
+  if (me && filter === "shared") {
+    projects.results = await getShared(me.id, query, fetch).catch((e) => {
       console.error(e);
       return [];
     });
   }
 
+  // for public, we get the first page and paginate
+  if (filter === "public") {
+    projects = await list(params, fetch).catch((e) => {
+      console.error(e);
+      return projects;
+    });
+  }
+
   return {
-    list,
+    list: filter,
     projects,
+    query,
+    cursor,
+    per_page,
   };
 }
diff --git a/src/routes/documents/projects/[id]-[slug]/+page.server.ts b/src/routes/documents/projects/[id]-[slug]/+page.server.ts
new file mode 100644
index 000000000..2b3dbdee0
--- /dev/null
+++ b/src/routes/documents/projects/[id]-[slug]/+page.server.ts
@@ -0,0 +1,114 @@
+import type { Actions } from "./$types";
+import type { Project, ProjectAccess } from "$lib/api/types";
+
+import { fail, redirect } from "@sveltejs/kit";
+import { CSRF_COOKIE_NAME } from "@/config/config.js";
+import * as projects from "$lib/api/projects";
+import * as collaborators from "$lib/api/collaborators";
+
+export const actions = {
+  async delete({ cookies, request, fetch, params }) {
+    const csrf_token = cookies.get(CSRF_COOKIE_NAME);
+    const project_id = +params.id;
+
+    const resp = await projects
+      .destroy(project_id, csrf_token, fetch)
+      .catch(console.error);
+
+    if (!resp) {
+      return fail(500, { message: "API error" });
+    }
+
+    if (resp.status === 204) {
+      return redirect(302, "/documents/projects/");
+    }
+
+    return fail(resp.status, { error: await resp.json() });
+  },
+
+  async edit({ cookies, request, fetch, params }) {
+    const csrf_token = cookies.get(CSRF_COOKIE_NAME);
+    const form = await request.formData();
+
+    const update: Partial<Project> = {
+      title: form.get("title") as string,
+      description: form.get("description") as string,
+      pinned: form.get("pinned") === "on",
+      private: form.get("private") === "on",
+    };
+
+    try {
+      const updated = await projects.edit(
+        +params.id,
+        update,
+        csrf_token,
+        fetch,
+      );
+      return { success: true, project: updated };
+    } catch (error) {
+      return fail(400, { error });
+    }
+  },
+
+  async users({ request, cookies, params, fetch }) {
+    const csrf_token = cookies.get(CSRF_COOKIE_NAME);
+    const form = await request.formData();
+    const project_id = +params.id;
+
+    const users = form.getAll("user").map(Number);
+    const access = form.getAll("access");
+
+    try {
+      // batch update
+      const updated = await Promise.all(
+        users.map((u, i) => {
+          const a = access[i];
+          if (a === "remove") {
+            // this returns an empty body, so just fire and forget
+            collaborators.remove(project_id, u, csrf_token, fetch);
+          } else {
+            return collaborators.update(
+              project_id,
+              u,
+              a as ProjectAccess,
+              csrf_token,
+              fetch,
+            );
+          }
+        }),
+      );
+      return {
+        success: true,
+        users: updated,
+      };
+    } catch (error) {
+      console.error(error);
+      return fail(400, { error: error.toString() });
+    }
+  },
+
+  async invite({ request, cookies, params, fetch }) {
+    const csrf_token = cookies.get(CSRF_COOKIE_NAME);
+    const form = await request.formData();
+
+    const email = form.get("email") as string;
+    const access = form.get("access") as ProjectAccess;
+
+    try {
+      const user = await collaborators.add(
+        +params.id,
+        { email, access },
+        csrf_token,
+        fetch,
+      );
+
+      return {
+        success: true,
+        user,
+      };
+    } catch (error) {
+      console.log(error);
+      return fail(400);
+    }
+  },
+} satisfies Actions;
diff --git a/src/routes/documents/projects/[id]-[slug]/+page.svelte b/src/routes/documents/projects/[id]-[slug]/+page.svelte
index f977b791a..abc9e412a 100644
--- a/src/routes/documents/projects/[id]-[slug]/+page.svelte
+++ b/src/routes/documents/projects/[id]-[slug]/+page.svelte
@@ -1,34 +1,38 @@
 <script lang="ts">
+  import { setContext } from "svelte";
+  import { _ } from "svelte-i18n";
   import {
     FileDirectory24,
     Hourglass24,
-    Pencil16,
-    People16,
-    Search16,
-    Share16,
+    Globe16,
+    Lock16,
   } from "svelte-octicons";
-  import { _ } from "svelte-i18n";
 
+  import BulkActions from "$lib/components/forms/BulkActions.svelte";
+  import Collaborators from "$lib/components/projects/Collaborators.svelte";
+  import ProjectActions from "$lib/components/projects/ProjectActions.svelte";
+  import Empty from "$lib/components/common/Empty.svelte";
+  import Error from "$lib/components/common/Error.svelte";
+  import Flex from "$lib/components/common/Flex.svelte";
+  import PageToolbar from "$lib/components/common/PageToolbar.svelte";
+  import ProjectPin from "$lib/components/projects/ProjectPin.svelte";
   import SidebarLayout from "@/lib/components/layouts/SidebarLayout.svelte";
   import ContentLayout from "@/lib/components/layouts/ContentLayout.svelte";
-  import Flex from "@/lib/components/common/Flex.svelte";
-  import SidebarItem from "@/lib/components/sidebar/SidebarItem.svelte";
-  import Empty from "@/lib/components/common/Empty.svelte";
-  import Error from "@/lib/components/common/Error.svelte";
-  import { projectSearchUrl } from "@/lib/utils/search";
-  import Search from "@/lib/components/forms/Search.svelte";
   import ResultsList, {
     selected,
     total,
     visible,
-  } from "@/lib/components/documents/ResultsList.svelte";
-  import PageToolbar from "@/lib/components/common/PageToolbar.svelte";
+  } from "$lib/components/documents/ResultsList.svelte";
+  import Search from "$lib/components/forms/Search.svelte";
 
   export let data;
 
+  setContext("selected", selected);
+
   $: project = data.project;
   $: documentSearch = data.documents;
   $: query = data.query;
+  $: users = data.users;
 
   function selectAll(e) {
     if (e.target.checked) {
@@ -39,17 +43,38 @@
   }
 </script>
 
+<svelte:head>
+  <title>{project.title} | DocumentCloud</title>
+</svelte:head>
+
 <SidebarLayout>
   <svelte:fragment slot="navigation">
     <Flex direction="column">
-      <h1>{project.title}</h1>
+      <h1>
+        {project.title}
+        {#if project.private}
+          <Lock16 />
+        {:else}
+          <Globe16 />
+        {/if}
+        <ProjectPin {project} />
+      </h1>
       <p>{project.description}</p>
     </Flex>
+
+    <Collaborators {users} {project} />
   </svelte:fragment>
 
   <ContentLayout slot="content">
     <PageToolbar slot="header">
-      <Search name="q" {query} slot="center" />
+      <BulkActions slot="left" />
+
+      <Search
+        slot="right"
+        name="q"
+        {query}
+        placeholder={$_("projects.placeholder.documents")}
+      />
     </PageToolbar>
     {#await documentSearch}
       <Empty icon={Hourglass24}>{$_("projects.loading")}</Empty>
@@ -94,19 +119,13 @@
     </PageToolbar>
   </ContentLayout>
 
-  <svelte:fragment slot="action">
-    <Flex direction="column">
-      <SidebarItem href="#edit"><Pencil16 />{$_("sidebar.edit")}</SidebarItem>
-      <SidebarItem href="#collaborate"
-        ><People16 />{$_("sidebar.collaborate")}</SidebarItem
-      >
-      <SidebarItem href="#share"
-        ><Share16 />{$_("sidebar.shareEmbed")}</SidebarItem
-      >
-    </Flex>
-    <hr class="divider" />
-    <SidebarItem href={projectSearchUrl(project)}>
-      <Search16 />{$_("projects.viewInSearch")}
-    </SidebarItem>
-  </svelte:fragment>
+  <ProjectActions slot="action" {project} {users} />
 </SidebarLayout>
+
+<style>
+  h1 {
+    display: flex;
+    align-items: center;
+    gap: 1rem;
+  }
+</style>
diff --git a/src/routes/documents/projects/[id]-[slug]/+page.ts b/src/routes/documents/projects/[id]-[slug]/+page.ts
index 9b07b3f91..af3e6d814 100644
--- a/src/routes/documents/projects/[id]-[slug]/+page.ts
+++ b/src/routes/documents/projects/[id]-[slug]/+page.ts
@@ -1,20 +1,47 @@
-import * as projectApi from "$lib/api/projects";
+import { error, redirect } from "@sveltejs/kit";
+
+import { DEFAULT_PER_PAGE } from "@/config/config.js";
+import * as projects from "$lib/api/projects";
+import * as collaborators from "$lib/api/collaborators";
 import { search } from "$lib/api/documents";
 import { breadcrumbTrail } from "$lib/utils/navigation";
 
 export async function load({ params, url, parent, fetch }) {
   const id = parseInt(params.id);
-  const project = await projectApi.get(id, fetch);
+  const [project, users] = await Promise.all([
+    projects.get(id, fetch).catch(console.error),
+    collaborators.list(id, fetch).catch(console.error),
+  ]).catch((e) => {
+    return [];
+  });
+
+  if (!project) {
+    error(404, "Project not found");
+  }
+
+  if (project.slug !== params.slug) {
+    const canonical = projects.canonicalUrl(project);
+    redirect(302, canonical);
+  }
+
   const breadcrumbs = await breadcrumbTrail(parent, [
     { href: url.pathname, title: project.title },
   ]);
+
   const query = url.searchParams.get("q") ?? "";
   const cursor = url.searchParams.get("cursor") ?? "";
-  const documents = search(query, { cursor, project: project.id });
+  const per_page = +url.searchParams.get("per_page") || DEFAULT_PER_PAGE;
+  const documents = search(
+    query,
+    { cursor, project: project.id, per_page },
+    fetch,
+  );
+
   return {
     breadcrumbs,
-    project,
     documents,
     query,
+    project,
+    users,
   };
 }
diff --git a/src/routes/documents/sidebar/Projects.svelte b/src/routes/documents/sidebar/Projects.svelte
index ef3cc7825..f916d9fbc 100644
--- a/src/routes/documents/sidebar/Projects.svelte
+++ b/src/routes/documents/sidebar/Projects.svelte
@@ -1,6 +1,8 @@
 <script lang="ts">
   import type { Project } from "$lib/api/types";
 
+  import { page } from "$app/stores";
+
   import {
     Book16,
     FileDirectory16,
@@ -16,11 +18,15 @@
   import SidebarGroup from "@/lib/components/sidebar/SidebarGroup.svelte";
   import SidebarItem from "@/lib/components/sidebar/SidebarItem.svelte";
 
-  import { page } from "$app/stores";
+  import { canonicalUrl } from "$lib/api/projects";
 
   let pinned: Project[] | Promise<Project[]> = [];
 
   $: pinned = $page.data.pinnedProjects || [];
+
+  function sort(projects: Project[]) {
+    return projects.sort((a, b) => a.title.localeCompare(b.title));
+  }
 </script>
 
 <SidebarGroup name="projects">
@@ -34,11 +40,8 @@
     {#await pinned}
       <Empty icon={Hourglass24}>{$_("common.loading")}</Empty>
     {:then projects}
-      {#each projects as project}
-        <SidebarItem
-          small
-          href={`/documents/projects/${project.id}-${project.slug}/`}
-        >
+      {#each sort(projects) as project}
+        <SidebarItem small href={canonicalUrl(project).href}>
           <Pin active={project.pinned} />
           {project.title}
         </SidebarItem>
diff --git a/src/test/fixtures/documents.ts b/src/test/fixtures/documents.ts
index 5a6fb48e1..a35f02ed7 100644
--- a/src/test/fixtures/documents.ts
+++ b/src/test/fixtures/documents.ts
@@ -27,7 +27,7 @@ export const document: Document = {
   original_extension: "pdf",
   page_count: 20,
   page_spec: "612.0x792.0:0-19",
-  projects: [215678, 208091],
+  projects: [215678, 208091, 200006, 200002],
   publish_at: null,
   published_url: "",
   related_article: "",
@@ -108,7 +108,7 @@ export const documentsList: Page<Document> = {
       original_extension: "pdf",
       page_count: 3,
       page_spec: "",
-      projects: [],
+      projects: [200006, 200002],
       publish_at: null,
       published_url: "",
       related_article: "http://thetyee.ca/News/2012/12/05/test-test/index.html",
diff --git a/src/test/fixtures/projects.ts b/src/test/fixtures/projects.ts
index 3ff2c1ae1..664916c24 100644
--- a/src/test/fixtures/projects.ts
+++ b/src/test/fixtures/projects.ts
@@ -11,6 +11,7 @@ export let project: Project = {
   title: "Miltary Contractors",
   updated_at: "2020-10-23T15:59:33.896698Z",
   user: 1,
+  pinned: false,
 };
 
 export let editableProject: Project = {
diff --git a/src/test/fixtures/projects/project-users.json b/src/test/fixtures/projects/project-users.json
new file mode 100644
index 000000000..1e35231ca
--- /dev/null
+++ b/src/test/fixtures/projects/project-users.json
@@ -0,0 +1,235 @@
+{
+  "next": null,
+  "previous": null,
+  "results": [
+    {
+      "user": {
+        "id": 104081,
+        "avatar_url": "https://cdn.muckrock.com/media/avatars/dillon-crop-square.jpg",
+        "is_staff": false,
+        "name": "Dillon Bergin",
+        "organization": 51993,
+        "organizations": [51989, 51990, 34128, 125, 51993, 46370, 62177],
+        "admin_organizations": [51989, 51990, 34128, 51993, 46370, 62177],
+        "username": "Dillon-Bergin",
+        "uuid": "a274d91b-e497-4391-9352-7fab126b5bbe",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 105494,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Adriene Hill",
+        "organization": 42572,
+        "organizations": [35614, 10006, 42572],
+        "admin_organizations": [35614, 42572],
+        "username": "Adriene",
+        "uuid": "b6c2bce5-8fab-44c0-8f9f-d2d345b7ab8c",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 109298,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Derek Kravitz",
+        "organization": 39752,
+        "organizations": [10219, 39752],
+        "admin_organizations": [10219, 39752],
+        "username": "DerekRKravitz",
+        "uuid": "70376af4-3258-4bf6-ae2c-3540ebe63d25",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 101425,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Molly Peterson",
+        "organization": 37614,
+        "organizations": [10006, 813, 31622, 37614],
+        "admin_organizations": [10006, 31622],
+        "username": "mollypeterson",
+        "uuid": "3b19bacb-e17c-4ef1-b8c8-4df216c3d666",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 1020,
+        "avatar_url": "https://cdn.muckrock.com/media/avatars/20140211-0O1A7147-2.jpg",
+        "is_staff": true,
+        "name": "Chris Amico",
+        "organization": 125,
+        "organizations": [19198, 170, 125],
+        "admin_organizations": [19198, 170],
+        "username": "chrisamico",
+        "uuid": "800bbb85-ea7a-46e9-8f56-16f862e66e52",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 108486,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Mike K",
+        "organization": 42572,
+        "organizations": [38883, 42572],
+        "admin_organizations": [38883],
+        "username": "mikekessler213",
+        "uuid": "34b645e4-eb32-4ab7-9bc0-d43d5ab16ff8",
+        "verified_journalist": false
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 110708,
+        "avatar_url": "https://cdn.muckrock.com/media/avatars/kelly-square.jpg",
+        "is_staff": false,
+        "name": "Kelly Kauffman",
+        "organization": 125,
+        "organizations": [41234, 125, 51993, 62177],
+        "admin_organizations": [41234, 62177],
+        "username": "kellykauffman",
+        "uuid": "c918d430-351f-4795-83dc-93d69219150d",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 111462,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Holly McDede",
+        "organization": 813,
+        "organizations": [42059, 813],
+        "admin_organizations": [42059],
+        "username": "hollymcdede",
+        "uuid": "5b026426-e75f-4dcc-9c42-438776c3e25b",
+        "verified_journalist": true
+      },
+      "access": "edit"
+    },
+    {
+      "user": {
+        "id": 111662,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Lindsay Shachnow",
+        "organization": 42277,
+        "organizations": [42277],
+        "admin_organizations": [42277],
+        "username": "lindsayshachnow",
+        "uuid": "64a0a5c1-f059-4861-a165-f918934d766e",
+        "verified_journalist": true
+      },
+      "access": "edit"
+    },
+    {
+      "user": {
+        "id": 20080,
+        "avatar_url": "https://cdn.muckrock.com/media/account_images/22_MuckRock_2018_PRELIMANRY_EDITS_DSC_5387_2018_Derek_Kouyoumjian_preview_SfuGGnJ.jpg",
+        "is_staff": true,
+        "name": "Mitchell Kotler",
+        "organization": 125,
+        "organizations": [
+          63361, 63362, 10000, 3168, 125, 41248, 63685, 63367, 10002
+        ],
+        "admin_organizations": [
+          63361, 63362, 10000, 3168, 125, 41248, 63685, 63367, 10002
+        ],
+        "username": "mitch",
+        "uuid": "8136b9b8-95b9-4302-950d-5402e9065978",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 113744,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Maanvi",
+        "organization": 45125,
+        "organizations": [45125],
+        "admin_organizations": [45125],
+        "username": "maanvi_singh",
+        "uuid": "445859b2-3721-4551-a999-e04d34acfbba",
+        "verified_journalist": false
+      },
+      "access": "view"
+    },
+    {
+      "user": {
+        "id": 113353,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "John Lippert",
+        "organization": 44466,
+        "organizations": [44466],
+        "admin_organizations": [44466],
+        "username": "johnlippert",
+        "uuid": "ae7f1b47-ad01-4100-b3f3-fe2a22085d19",
+        "verified_journalist": true
+      },
+      "access": "admin"
+    },
+    {
+      "user": {
+        "id": 102112,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": true,
+        "name": "Sanjin Ibrahimovic",
+        "organization": 125,
+        "organizations": [125, 32363],
+        "admin_organizations": [32363],
+        "username": "sanjin",
+        "uuid": "84859f4e-6757-47dc-8fe4-1976d31828dc",
+        "verified_journalist": true
+      },
+      "access": "view"
+    },
+    {
+      "user": {
+        "id": 100773,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "LPL",
+        "organization": 30905,
+        "organizations": [12037, 30905],
+        "admin_organizations": [12037, 30905],
+        "username": "LPL",
+        "uuid": "813cbf63-0f81-4dc9-bdcb-4b65a664e517",
+        "verified_journalist": true
+      },
+      "access": "view"
+    },
+    {
+      "user": {
+        "id": 114243,
+        "avatar_url": "https://cdn.muckrock.com/static/images/avatars/profile.png",
+        "is_staff": false,
+        "name": "Emily Alpert",
+        "organization": 46323,
+        "organizations": [46323],
+        "admin_organizations": [46323],
+        "username": "ealpert",
+        "uuid": "8eabeb89-67bd-438f-9ce1-c33763215376",
+        "verified_journalist": false
+      },
+      "access": "view"
+    }
+  ]
+}