best practices passing userid/pwd session variables from UI to Business layer

[absoft]

What are the best practices for passing UserId and Password stored in
the Session state on the UI layer e.g. ASP.NET Web Forms to the
Business Layer or the Data Layer.

 

[dotnet dude]

How you guys implement this kinda functionality??

 

[Registered User]

What are the best practices for passing UserId and Password stored in
the Session state on the UI layer e.g. ASP.NET Web Forms to the
Business Layer or the Data Layer.

Why would you want to keep these values as Session variables? What
sort of MembershipProvider is being used if any?

regards
A.G.

 

[dotnet dude]

I am still using ASP.NET 1.1 and I think MembershipProvider is 2.0
specific. I need to keep these two values; Username and Password in
session becoz they are used for sql authentication to create query
string to query SQL Server db. For this purpose I need to pass these
values from UI to data layer so that sql queries execute based on the
logged in user.