Ok, I've got the basic understanding of what Zend_ACL from the Zend Framework actually does, but I'm confused on the usage. Alot of the text out there say it is particularly useful for limiting access to pages which are intended for specific users. The thing is, I haven't been able to find any actual implementation, only theory. From the manual, the "checking" process seems to be isAllowed(). So, are people actually using isAllowed() in their checking process for each page? I suppose you could use an MVC design and add the checking process with isAllowed into the controller, but is that what people are doing? Also, by what method are they determining that a specifc usertype is logged in? Through sessions?
