Future Date Validation (#841)

* Datetime must not be in the future

Author: Akol125

backend/src/models/fhir_immunization_pre_validators.py

@@ -737,7 +737,7 @@ def pre_validate_expiration_date(self, values: dict) -> dict:
         """
         try:
             field_value = values["expirationDate"]
-            PreValidation.for_date(field_value, "expirationDate")
+            PreValidation.for_date(field_value, "expirationDate", future_date_allowed=True)
         except KeyError:
             pass
 

backend/src/models/utils/pre_validator_utils.py

@@ -1,4 +1,4 @@
-from datetime import datetime
+from datetime import date, datetime
 from decimal import Decimal
 from typing import Union
 
@@ -80,7 +80,7 @@ def for_list(
                     raise ValueError(f"{field_location} must be an array of non-empty objects")
 
     @staticmethod
-    def for_date(field_value: str, field_location: str):
+    def for_date(field_value: str, field_location: str, future_date_allowed: bool = False):
         """
         Apply pre-validation to a date field to ensure that it is a string (JSON dates must be
         written as strings) containing a valid date in the format "YYYY-MM-DD"
@@ -89,10 +89,14 @@ def for_date(field_value: str, field_location: str):
             raise TypeError(f"{field_location} must be a string")
 
         try:
-            datetime.strptime(field_value, "%Y-%m-%d").date()
+            parsed_date = datetime.strptime(field_value, "%Y-%m-%d").date()
         except ValueError as value_error:
             raise ValueError(f'{field_location} must be a valid date string in the format "YYYY-MM-DD"') from value_error
 
+        # Enforce future date rule using central checker after successful parse
+        if not future_date_allowed and PreValidation.check_if_future_date(parsed_date):
+            raise ValueError(f"{field_location} must not be in the future")
+
     @staticmethod
     def for_date_time(field_value: str, field_location: str, strict_timezone: bool = True):
         """
@@ -112,11 +116,13 @@ def for_date_time(field_value: str, field_location: str, strict_timezone: bool =
             "- 'YYYY-MM-DD' — Full date only"
             "- 'YYYY-MM-DDThh:mm:ss%z' — Full date and time with timezone (e.g. +00:00 or +01:00)"
             "- 'YYYY-MM-DDThh:mm:ss.f%z' — Full date and time with milliseconds and timezone"
+            "-  Date must not be in the future."
         )
-
         if strict_timezone:
-            error_message += "Only '+00:00' and '+01:00' are accepted as valid timezone offsets.\n"
-            error_message += f"Note that partial dates are not allowed for {field_location} in this service."
+            error_message += (
+                "Only '+00:00' and '+01:00' are accepted as valid timezone offsets.\n"
+                f"Note that partial dates are not allowed for {field_location} in this service.\n"
+            )
 
         allowed_suffixes = {
             "+00:00",
@@ -135,7 +141,10 @@ def for_date_time(field_value: str, field_location: str, strict_timezone: bool =
         for fmt in formats:
             try:
                 fhir_date = datetime.strptime(field_value, fmt)
-
+                # Enforce future-date rule using central checker after successful parse
+                if PreValidation.check_if_future_date(fhir_date):
+                    raise ValueError(f"{field_location} must not be in the future")
+                # After successful parse, enforce timezone and future-date rules
                 if strict_timezone and fhir_date.tzinfo is not None:
                     if not any(field_value.endswith(suffix) for suffix in allowed_suffixes):
                         raise ValueError(error_message)
@@ -233,3 +242,16 @@ def for_nhs_number(nhs_number: str, field_location: str):
         """
         if not nhs_number_mod11_check(nhs_number):
             raise ValueError(f"{field_location} is not a valid NHS number")
+
+    @staticmethod
+    def check_if_future_date(parsed_value: date | datetime):
+        """
+        Ensure a parsed date or datetime object is not in the future.
+        """
+        if isinstance(parsed_value, datetime):
+            now = datetime.now(parsed_value.tzinfo) if parsed_value.tzinfo else datetime.now()
+        elif isinstance(parsed_value, date):
+            now = datetime.now().date()
+        if parsed_value > now:
+            return True
+        return False

backend/tests/test_immunization_pre_validator.py

@@ -1103,7 +1103,7 @@ def test_pre_validate_lot_number(self):
 
     def test_pre_validate_expiration_date(self):
         """Test pre_validate_expiration_date accepts valid values and rejects invalid values"""
-        ValidatorModelTests.test_date_value(self, field_location="expirationDate")
+        ValidatorModelTests.test_date_value(self, field_location="expirationDate", is_future_date_allowed=True)
 
     def test_pre_validate_site_coding(self):
         """Test pre_validate_site_coding accepts valid values and rejects invalid values"""

backend/tests/utils/pre_validation_test_utils.py

@@ -281,6 +281,7 @@ def test_unique_list(
     def test_date_value(
         test_instance: unittest.TestCase,
         field_location: str,
+        is_future_date_allowed: bool = False,
     ):
         """
         Test that a FHIR model accepts valid date values and rejects the following invalid values:
@@ -313,6 +314,15 @@ def test_date_value(
                 invalid_value=invalid_date_format,
                 expected_error_message=f"{field_location} must be a valid date string in the " + 'format "YYYY-MM-DD"',
             )
+        if not is_future_date_allowed:
+            for invalid_date_format in InvalidValues.for_future_dates:
+                test_invalid_values_rejected(
+                    test_instance,
+                    valid_json_data,
+                    field_location=field_location,
+                    invalid_value=invalid_date_format,
+                    expected_error_message=f"{field_location} must not be in the future",
+                )
 
     @staticmethod
     def test_date_time_value(
@@ -332,11 +342,14 @@ def test_date_time_value(
             "- 'YYYY-MM-DD' — Full date only"
             "- 'YYYY-MM-DDThh:mm:ss%z' — Full date and time with timezone (e.g. +00:00 or +01:00)"
             "- 'YYYY-MM-DDThh:mm:ss.f%z' — Full date and time with milliseconds and timezone"
+            "-  Date must not be in the future."
         )
 
         if is_occurrence_date_time:
-            expected_error_message += "Only '+00:00' and '+01:00' are accepted as valid timezone offsets.\n"
-            expected_error_message += f"Note that partial dates are not allowed for {field_location} in this service."
+            expected_error_message += (
+                "Only '+00:00' and '+01:00' are accepted as valid timezone offsets.\n"
+                f"Note that partial dates are not allowed for {field_location} in this service.\n"
+            )
             valid_datetime_formats = ValidValues.for_date_times_strict_timezones
             invalid_datetime_formats = InvalidValues.for_date_time_string_formats_for_strict_timezone
         else:

backend/tests/utils/values_for_tests.py

@@ -34,7 +34,7 @@ class ValidValues:
     for_date_times_strict_timezones = [
         "2000-01-01",  # Full date only
         "2000-01-01T00:00:00+00:00",  # Time and offset all zeroes
-        "2025-05-20T18:26:30+01:00",  # Date with Time with no milliseconds and positive offset
+        "2025-09-24T11:04:30+01:00",  # Date with Time with no milliseconds and positive offset
         "2000-01-01T00:00:00+01:00",  # Time and offset all zeroes
         "1933-12-31T11:11:11+01:00",  # Positive offset (with hours and minutes not 0)
         "1933-12-31T11:11:11.1+00:00",  # DateTime with milliseconds to 1 decimal place
@@ -291,6 +291,12 @@ class InvalidValues:
         "2000-02-30",  # Invalid combination of month and day
     ]
 
+    for_future_dates = [
+        "2100-01-01",  # Year in future
+        "2050-12-31",  # Year in future
+        "2029-06-15",  # Year in future
+    ]
+
     # Strings which are not in acceptable date time format
     for_date_time_string_formats_for_relaxed_timezone = [
         "",  # Empty string