I'd like to build a custom login control for dot net using c#. Once the person submits their login and password information successfully, the control hits the database, grabs their information, and can throw a loginsuccess or loginfail event. after this in the codebehind page, the loginsuccess event will redirect to a member area, or the loginfail will redirect to a fail message.

I normally like to load an instance of a member object with all their information into session. i'd like to do the same here, so i can access user parameters without hitting the database each time...plus at the very least I'd need to store the memberid...

how do I access the session object to store values there? Or is there some other way I'm not aware of? I know about roles configured in the webconfig file, but this is still slightly different.

cheers
David