Allow users (i.e. teachers) to specify website allow exception with password
I think that it would help to allow the endpoint user the ability to add a site exception for a limited time or permanently. One would need an admin password that you'd need to specify at the web appliance or in the SEC. K9 works this way, and it saves a lot of admin time.