I'm having trouble as well figuring out the best way to do this. It is core to ever app I contemplate building but doesn't seem to be spelled out in the docs. Pretty much every web site I know of personalizes web pages based on who is logged in.
I noticed that for each user, a db.auth_group is created. Would we use that for this type of permissioning?