From 1d57a258f393b5762e00be0c540fa4248730401d Mon Sep 17 00:00:00 2001
From: Jens Langhammer <jens@goauthentik.io>
Date: Fri, 16 Jun 2023 17:07:10 +0200
Subject: [PATCH] ATH-01-012: escape quotation marks

Signed-off-by: Jens Langhammer <jens@goauthentik.io>
---
 authentik/flows/api/flows_diagram.py | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/authentik/flows/api/flows_diagram.py b/authentik/flows/api/flows_diagram.py
index e72bceea4..ab75fa235 100644
--- a/authentik/flows/api/flows_diagram.py
+++ b/authentik/flows/api/flows_diagram.py
@@ -23,7 +23,8 @@ class DiagramElement:
     style: list[str] = field(default_factory=lambda: ["[", "]"])
 
     def __str__(self) -> str:
-        element = f'{self.identifier}{self.style[0]}"{self.description}"{self.style[1]}'
+        description = self.description.replace('"', "#quot;")
+        element = f'{self.identifier}{self.style[0]}"{description}"{self.style[1]}'
         if self.action is not None:
             if self.action != "":
                 element = f"--{self.action}--> {element}"