fix: harden date time handling and check for constant #2975

Author: marcelfolaron

app/Core/Support/DateTimeHelper.php

@@ -90,10 +90,14 @@ public function parseUserDateTime(string $userDate, string $userTime = ''): Carb
         $standardFormats = [
             DateTime::ATOM,
             DateTime::ISO8601,
-            DateTime::ISO8601_EXPANDED,
             DateTime::W3C,
         ];
 
+        //Added in PHP 8.2
+        if(defined('DateTime::ISO8601_EXPANDED')) {
+            $standardFormats[] = DateTime::ISO8601_EXPANDED;
+        }
+
         // Try standard formats first
         foreach ($standardFormats as $format) {
             try {
@@ -130,6 +134,8 @@ public function parseUserDateTime(string $userDate, string $userTime = ''): Carb
      *
      * @param  string  $dbDate  The date string in the database format to parse.
      * @return CarbonImmutable The parsed CarbonImmutable instance in db timezone (UTC)
+     *
+     * @throws InvalidDateException
      */
     public function parseDbDateTime(string $dbDate): CarbonImmutable
     {

app/Domain/Tickets/Controllers/ShowTicket.php

@@ -214,13 +214,14 @@ public function post($params): Response
 
             // Log time
             if (isset($params['saveTimes']) === true) {
-                $result = $this->timesheetService->logTime($id, $params);
 
-                if ($result === true) {
+                try {
+                    $result = $this->timesheetService->logTime($id, $params);
                     $this->tpl->setNotification($this->language->__('notifications.time_logged_success'), 'success');
-                } else {
-                    $this->tpl->setNotification($this->language->__($result['msg']), 'error');
+                }catch (\Exception $e) {
+                    $this->tpl->setNotification($e->getMessage(), 'error');
                 }
+
             }
 
             // Save Ticket

app/Domain/Tickets/Services/Tickets.php

@@ -7,6 +7,7 @@
     use DateTime;
     use Illuminate\Container\EntryNotFoundException;
     use Illuminate\Contracts\Container\BindingResolutionException;
+    use Illuminate\Support\Facades\Log;
     use Illuminate\Support\Str;
     use Leantime\Core\Configuration\Environment as EnvironmentCore;
     use Leantime\Core\Events\DispatchesEvents;
@@ -720,7 +721,14 @@ public function getOpenUserTicketsThisWeekAndLater($userId, $projectId, bool $in
                         }
                     } else {
                         $today = dtHelper()->userNow()->setToDbTimezone();
-                        $dbDueDate = dtHelper()->parseDbDateTime($row['dateToFinish']);
+
+                        try {
+                            $dbDueDate = dtHelper()->parseDbDateTime($row['dateToFinish']);
+                        }catch(\Exception $e){
+                            Log::warning('Error in DB Due date parsing: '.$e->getMessage());
+                            $dbDueDate = dtHelper()->userNow()->addYears();
+                        }
+
                         $nextFriday = dtHelper()->userNow()->endOfWeek(CarbonInterface::FRIDAY)->setToDbTimezone();
 
                         if ($dbDueDate <= $nextFriday && $dbDueDate >= $today) {
@@ -2290,57 +2298,78 @@ public function prepareTicketDates(&$values)
             // Prepare dates for db
             if (! empty($values['dateToFinish'])) {
 
-                if ($values['dateToFinish'] instanceof CarbonImmutable) {
-                    $values['dateToFinish'] = $values['dateToFinish']->formatDateTimeForDb();
-                } else {
-                    if (isset($values['timeToFinish']) && $values['timeToFinish'] != null) {
-                        $values['dateToFinish'] = dtHelper()->parseUserDateTime($values['dateToFinish'], $values['timeToFinish'])->formatDateTimeForDb();
-                        unset($values['timeToFinish']);
+                try {
+                    if ($values['dateToFinish'] instanceof CarbonImmutable) {
+                        $values['dateToFinish'] = $values['dateToFinish']->formatDateTimeForDb();
                     } else {
-                        $values['dateToFinish'] = dtHelper()->parseUserDateTime($values['dateToFinish'], 'end')->formatDateTimeForDb();
+                        if (isset($values['timeToFinish']) && $values['timeToFinish'] != null) {
+                            $values['dateToFinish'] = dtHelper()->parseUserDateTime(
+                                $values['dateToFinish'],
+                                $values['timeToFinish']
+                            )->formatDateTimeForDb();
+                            unset($values['timeToFinish']);
+                        } else {
+                            $values['dateToFinish'] = dtHelper()->parseUserDateTime(
+                                $values['dateToFinish'],
+                                'end'
+                            )->formatDateTimeForDb();
+                        }
                     }
+                } catch (\Exception $e) {
+                    $values['dateToFinish'] = '';
                 }
             }
 
             if (! empty($values['editFrom'])) {
 
-                if ($values['editFrom'] instanceof CarbonImmutable) {
-                    $values['editFrom'] = $values['editFrom']->formatDateTimeForDb();
-                } else {
-                    if (isset($values['timeFrom']) && $values['timeFrom'] != null) {
-                        $values['editFrom'] = dtHelper()->parseUserDateTime(
-                            $values['editFrom'],
-                            $values['timeFrom'],
-                            FromFormat::UserDateTime
-                        )->formatDateTimeForDb();
-                        unset($values['timeFrom']);
+                try {
+                    if ($values['editFrom'] instanceof CarbonImmutable) {
+                        $values['editFrom'] = $values['editFrom']->formatDateTimeForDb();
                     } else {
-                        $values['editFrom'] = dtHelper()->parseUserDateTime(
-                            $values['editFrom'],
-                            'start'
-                        )->formatDateTimeForDb();
+                        if (isset($values['timeFrom']) && $values['timeFrom'] != null) {
+                            $values['editFrom'] = dtHelper()->parseUserDateTime(
+                                $values['editFrom'],
+                                $values['timeFrom'],
+                                FromFormat::UserDateTime
+                            )->formatDateTimeForDb();
+                            unset($values['timeFrom']);
+                        } else {
+                            $values['editFrom'] = dtHelper()->parseUserDateTime(
+                                $values['editFrom'],
+                                'start'
+                            )->formatDateTimeForDb();
+                        }
                     }
+                } catch (\Exception $e) {
+                    $values['editFrom'] = '';
                 }
             }
 
             if (! empty($values['editTo'])) {
 
-                if ($values['editTo'] instanceof CarbonImmutable) {
-                    $values['editTo'] = $values['editTo']->formatDateTimeForDb();
-                } else {
-                    if (isset($values['timeTo']) && $values['timeTo'] != null) {
-                        $values['editTo'] = dtHelper()->parseUserDateTime(
-                            $values['editTo'],
-                            $values['timeTo']
-                        )->formatDateTimeForDb();
-                        unset($values['timeTo']);
+                try {
+
+                    if ($values['editTo'] instanceof CarbonImmutable) {
+                        $values['editTo'] = $values['editTo']->formatDateTimeForDb();
                     } else {
-                        $values['editTo'] = dtHelper()->parseUserDateTime(
-                            $values['editTo'],
-                            'end'
-                        )->formatDateTimeForDb();
+                        if (isset($values['timeTo']) && $values['timeTo'] != null) {
+                            $values['editTo'] = dtHelper()->parseUserDateTime(
+                                $values['editTo'],
+                                $values['timeTo']
+                            )->formatDateTimeForDb();
+                            unset($values['timeTo']);
+                        } else {
+                            $values['editTo'] = dtHelper()->parseUserDateTime(
+                                $values['editTo'],
+                                'end'
+                            )->formatDateTimeForDb();
+                        }
                     }
+
+                } catch (\Exception $e) {
+                    $values['editTo'] = '';
                 }
+
             }
 
             return $values;

app/Domain/Timesheets/Services/Timesheets.php

@@ -4,6 +4,7 @@
 
 use Carbon\CarbonInterface;
 use Illuminate\Contracts\Container\BindingResolutionException;
+use Illuminate\Support\Facades\Log;
 use Leantime\Core\Exceptions\MissingParameterException;
 use Leantime\Domain\Tickets\Models\Tickets;
 use Leantime\Domain\Timesheets\Repositories\Timesheets as TimesheetRepository;
@@ -294,8 +295,14 @@ public function getWeeklyTimesheets(int $projectId, CarbonInterface $fromDate, i
         // Timesheets are grouped by ticketId + type
         $timesheetGroups = [];
         foreach ($allTimesheets as $timesheet) {
-            $currentWorkDate = dtHelper()->parseDbDateTime($timesheet['workDate']);
 
+            try {
+                $currentWorkDate = dtHelper()->parseDbDateTime($timesheet['workDate']);
+            } catch (\Exception $e) {
+                Log::warning($e);
+
+                continue;
+            }
             // Detect timezone offset
 
             $workdateOffsetStart = ($currentWorkDate->setToUserTimezone()->secondsSinceMidnight() / 60 / 60);