feat(share): save date and time for expiration

Because of timezones, not saving time can lead to unexpected behaviour
when sharing an item sooner than timezone offset
Example: sharing a file before 9am when in UTC+9

Signed-off-by: Benjamin Gaussorgues <benjamin.gaussorgues@nextcloud.com>

apps/files_sharing/lib/Controller/ShareAPIController.php

@@ -240,6 +240,7 @@ protected function formatShare(IShare $share, Node $recipientNode = null): array
 
  $expiration = $share->getExpirationDate();
  if ($expiration !== null) {
+ $expiration->setTimezone($this->dateTimeZone->getTimeZone());
  $result['expiration'] = $expiration->format('Y-m-d 00:00:00');
  }
 
@@ -1695,12 +1696,14 @@ protected function canDeleteShareFromSelf(\OCP\Share\IShare $share): bool {
  private function parseDate(string $expireDate): \DateTime {
  try {
  $date = new \DateTime(trim($expireDate, "\""), $this->dateTimeZone->getTimeZone());
+ // Make sure it expires at midnight in user timezone
+ $date->setTime(0, 0, 0);
  } catch (\Exception $e) {
  throw new \Exception('Invalid date. Format must be YYYY-MM-DD');
  }
 
+ // Use server timezone to store the date
  $date->setTimezone(new \DateTimeZone(date_default_timezone_get()));
- $date->setTime(0, 0, 0);
 
  return $date;
  }

apps/files_sharing/tests/ApiTest.php

@@ -124,6 +124,7 @@ private function createOCS($userId) {
  $userStatusManager = $this->createMock(IUserStatusManager::class);
  $previewManager = $this->createMock(IPreview::class);
  $dateTimeZone = $this->createMock(IDateTimeZone::class);
+ $dateTimeZone->method('getTimeZone')->willReturn(new \DateTimeZone('Pacific/Auckland'));
 
  return new ShareAPIController(
  self::APP_NAME,
@@ -1059,10 +1060,10 @@ public function testUpdateShareExpireDate() {
  $config->setAppValue('core', 'shareapi_default_expire_date', 'yes');
  $config->setAppValue('core', 'shareapi_enforce_expire_date', 'yes');
 
- $dateWithinRange = new \DateTime();
+ $dateWithinRange = new \DateTime('now', new \DateTimeZone('Pacific/Auckland'));
  $dateWithinRange->setTime(0, 0, 0);
  $dateWithinRange->add(new \DateInterval('P5D'));
- $dateOutOfRange = new \DateTime();
+ $dateOutOfRange = new \DateTime('now', new \DateTimeZone('Pacific/Auckland'));
  $dateOutOfRange->setTime(0, 0, 0);
  $dateOutOfRange->add(new \DateInterval('P8D'));
 
@@ -1286,13 +1287,15 @@ public function testShareStorageMountPoint() {
  }
 
  public function datesProvider() {
- $date = new \DateTime();
+ $date = new \DateTime('now', new \DateTimeZone('Pacific/Auckland'));
+ $date->setTime(0, 0);
  $date->add(new \DateInterval('P5D'));
+ $date->setTimezone(new \DateTimeZone(date_default_timezone_get()));
 
  return [
- [$date->format('Y-m-d'), true],
+ [$date->format('Y-m-d H:i:s'), true],
  ['abc', false],
- [$date->format('Y-m-d') . 'xyz', false],
+ [$date->format('Y-m-d H:i:s') . 'xyz', false],
  ];
  }
 
@@ -1318,15 +1321,15 @@ public function testPublicLinkExpireDate($date, $valid) {
 
  $data = $result->getData();
  $this->assertTrue(is_string($data['token']));
- $this->assertEquals($date, substr($data['expiration'], 0, 10));
+ $this->assertEquals(substr($date, 0, 10), substr($data['expiration'], 0, 10));
 
  // check for correct link
  $url = \OC::$server->getURLGenerator()->getAbsoluteURL('/index.php/s/' . $data['token']);
  $this->assertEquals($url, $data['url']);
 
  $share = $this->shareManager->getShareById('ocinternal:'.$data['id']);
 
- $this->assertEquals($date, $share->getExpirationDate()->format('Y-m-d'));
+ $this->assertEquals($date, $share->getExpirationDate()->format('Y-m-d H:i:s'));
 
  $this->shareManager->deleteShare($share);
  }
@@ -1341,7 +1344,7 @@ public function testCreatePublicLinkExpireDateValid() {
  $config->setAppValue('core', 'shareapi_default_expire_date', 'yes');
  $config->setAppValue('core', 'shareapi_enforce_expire_date', 'yes');
 
- $date = new \DateTime();
+ $date = new \DateTime('now', new \DateTimeZone('Pacific/Auckland'));
  $date->add(new \DateInterval('P5D'));
 
  $ocs = $this->createOCS(self::TEST_FILES_SHARING_API_USER1);
@@ -1350,7 +1353,7 @@ public function testCreatePublicLinkExpireDateValid() {
 
  $data = $result->getData();
  $this->assertTrue(is_string($data['token']));
- $this->assertEquals($date->format('Y-m-d') . ' 00:00:00', $data['expiration']);
+ $this->assertEquals($date->format('Y-m-d 00:00:00'), $data['expiration']);
 
  // check for correct link
  $url = \OC::$server->getURLGenerator()->getAbsoluteURL('/index.php/s/' . $data['token']);

apps/files_sharing/tests/CapabilitiesTest.php

@@ -36,6 +36,7 @@
 use OCP\Files\IRootFolder;
 use OCP\Files\Mount\IMountManager;
 use OCP\IConfig;
+use OCP\IDateTimeZone;
 use OCP\IGroupManager;
 use OCP\IL10N;
 use OCP\IURLGenerator;
@@ -96,7 +97,8 @@ private function getResults(array $map) {
  $this->createMock(IEventDispatcher::class),
  $this->createMock(IUserSession::class),
  $this->createMock(KnownUserService::class),
- $this->createMock(ShareDisableChecker::class)
+ $this->createMock(ShareDisableChecker::class),
+ $this->createMock(IDateTimeZone::class),
  );
  $cap = new Capabilities($config, $shareManager);
  $result = $this->getFilesSharingPart($cap->getCapabilities());

apps/files_sharing/tests/Controller/ShareAPIControllerTest.php

@@ -845,6 +845,7 @@ public function testGetShare(\OCP\Share\IShare $share, array $result) {
  $this->groupManager->method('get')->willReturnMap([
  ['group', $group],
  ]);
+ $this->dateTimeZone->method('getTimezone')->willReturn(new \DateTimeZone('UTC'));
 
  $d = $ocs->getShare($share->getId())->getData()[0];
 
@@ -4647,6 +4648,7 @@ public function testFormatShare(array $expects, \OCP\Share\IShare $share, array
  $this->rootFolder->method('getUserFolder')
  ->with($this->currentUser)
  ->willReturnSelf();
+ $this->dateTimeZone->method('getTimezone')->willReturn(new \DateTimeZone('UTC'));
 
  if (!$exception) {
  $this->rootFolder->method('getById')

lib/private/Server.php

@@ -1266,7 +1266,8 @@ public function __construct($webRoot, \OC\Config $config) {
  $c->get(IEventDispatcher::class),
  $c->get(IUserSession::class),
  $c->get(KnownUserService::class),
- $c->get(ShareDisableChecker::class)
+ $c->get(ShareDisableChecker::class),
+ $c->get(IDateTimeZone::class),
  );
 
  return $manager;

lib/private/Share20/Manager.php

@@ -54,6 +54,7 @@
 use OCP\Files\Node;
 use OCP\HintException;
 use OCP\IConfig;
+use OCP\IDateTimeZone;
 use OCP\IGroupManager;
 use OCP\IL10N;
 use OCP\IURLGenerator;
@@ -120,6 +121,7 @@ class Manager implements IManager {
  /** @var KnownUserService */
  private $knownUserService;
  private ShareDisableChecker $shareDisableChecker;
+ private IDateTimeZone $dateTimeZone;
 
  public function __construct(
  LoggerInterface $logger,
@@ -139,7 +141,8 @@ public function __construct(
  IEventDispatcher $dispatcher,
  IUserSession $userSession,
  KnownUserService $knownUserService,
- ShareDisableChecker $shareDisableChecker
+ ShareDisableChecker $shareDisableChecker,
+ IDateTimeZone $dateTimeZone,
  ) {
  $this->logger = $logger;
  $this->config = $config;
@@ -162,6 +165,7 @@ public function __construct(
  $this->userSession = $userSession;
  $this->knownUserService = $knownUserService;
  $this->shareDisableChecker = $shareDisableChecker;
+ $this->dateTimeZone = $dateTimeZone;
  }
 
  /**
@@ -382,10 +386,10 @@ protected function validateExpirationDateInternal(IShare $share) {
  $expirationDate = $share->getExpirationDate();
 
  if ($expirationDate !== null) {
- //Make sure the expiration date is a date
+ $expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
  $expirationDate->setTime(0, 0, 0);
 
- $date = new \DateTime();
+ $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $date->setTime(0, 0, 0);
  if ($date >= $expirationDate) {
  $message = $this->l->t('Expiration date is in the past');
@@ -413,9 +417,8 @@ protected function validateExpirationDateInternal(IShare $share) {
  $isEnforced = $this->shareApiInternalDefaultExpireDateEnforced();
  }
  if ($fullId === null && $expirationDate === null && $defaultExpireDate) {
- $expirationDate = new \DateTime();
+ $expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $expirationDate->setTime(0, 0, 0);
-
  $days = (int)$this->config->getAppValue('core', $configProp, (string)$defaultExpireDays);
  if ($days > $defaultExpireDays) {
  $days = $defaultExpireDays;
@@ -429,7 +432,7 @@ protected function validateExpirationDateInternal(IShare $share) {
  throw new \InvalidArgumentException('Expiration date is enforced');
  }
 
- $date = new \DateTime();
+ $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $date->setTime(0, 0, 0);
  $date->add(new \DateInterval('P' . $defaultExpireDays . 'D'));
  if ($date < $expirationDate) {
@@ -469,10 +472,10 @@ protected function validateExpirationDateLink(IShare $share) {
  $expirationDate = $share->getExpirationDate();
 
  if ($expirationDate !== null) {
- //Make sure the expiration date is a date
+ $expirationDate->setTimezone($this->dateTimeZone->getTimeZone());
  $expirationDate->setTime(0, 0, 0);
 
- $date = new \DateTime();
+ $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $date->setTime(0, 0, 0);
  if ($date >= $expirationDate) {
  $message = $this->l->t('Expiration date is in the past');
@@ -489,7 +492,7 @@ protected function validateExpirationDateLink(IShare $share) {
  }
 
  if ($fullId === null && $expirationDate === null && $this->shareApiLinkDefaultExpireDate()) {
- $expirationDate = new \DateTime();
+ $expirationDate = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $expirationDate->setTime(0, 0, 0);
 
  $days = (int)$this->config->getAppValue('core', 'link_defaultExpDays', (string)$this->shareApiLinkDefaultExpireDays());
@@ -505,7 +508,7 @@ protected function validateExpirationDateLink(IShare $share) {
  throw new \InvalidArgumentException('Expiration date is enforced');
  }
 
- $date = new \DateTime();
+ $date = new \DateTime('now', $this->dateTimeZone->getTimeZone());
  $date->setTime(0, 0, 0);
  $date->add(new \DateInterval('P' . $this->shareApiLinkDefaultExpireDays() . 'D'));
  if ($date < $expirationDate) {
@@ -527,6 +530,9 @@ protected function validateExpirationDateLink(IShare $share) {
  throw new \Exception($message);
  }
 
+ if ($expirationDate instanceof \DateTimeInterface) {
+ $expirationDate->setTimezone(new \DateTimeZone(date_default_timezone_get()));
+ }
  $share->setExpirationDate($expirationDate);
 
  return $share;