The desired flow is:
- I define websites forbidden to a specific Android device.
- If a specific Android device tries to browse them, block them. But but send a notification to another device/pc (preferably through a website) that can approve them temporarily.
It would be nice if it supported paths (like if it starts with facebook.com/something/posts/
then no, but if it starts with facebook.com/marketplace
then yes).
If you offer a DNS service, the nice part will probably not be possible. But even more so, how can it limit just 1 device without letting the device remove the DNS settings?