How is ACL implemented

i am using Zend_Acl, PHP and is wondering how shld ACLs be implemented.

shld every page be a resou开发者_JAVA技巧rce and i always query the acl to see if a user is authorized? i guess i must use this if i want to use a controller plugin (can be setup to run on every request) to check if a user is allowed?

or do i just put the query code where i need it? eg. at the top of pages i need to query the acl? then in pages publicly available, i just skip it? may get troublesome if the application gets big?

ok, i just answer this question then close it

what i did now was have a controller plugin that sets its resource based on controller name and privilege based on action name. then query the acl based on that

still under development, but what i currently have look like http://pastebin.com/9BYzms7W