I’m on an intranet environment and i try to install a new theme from this url :
When i try to install it, i got this error message :
Failed to process hijacked response correctly : FinalDestination::SSRFDetector::LookupFailedError : FinalDestination: lookup failed
This error is thrown when something attempts to connect to a private/internal IP address. If you’re getting it when cloning a theme from GitHub, then that suggests your intranet is pointing GitHub’s DNS record to some internal IP address… which is quite unusual! Is that expected in your intranet environment?
There is a site setting ‘allowed internal hosts’ which can be used to add hostnames which will bypass Discourse’s SSRF protections. Adding github.com there may help, but will also affect the security of Discourse.
Another option would be to download the theme from GitHub manually and then upload it to Discourse. But of course, that would mean you won’t get any automated updates.