I'm designing a 3-tier system that is initially built on a secure access database,
then will be upgraded to SQL server when the application is complete.
My method of switching databases is in the persist objects I retrieve informaton
regarding the database connection from the Server registry using the Win
API. So far this works on my workstation.
I relaize the MTS has it's own security available but I need to check which
group the user is in e.g. Materials, QA, etc.. So, in our Access aplication
we have already utilized our own System.mdw and on the SQL Server I have
set up roles and users.

To my question, is it acceptable to gather the user info from a login screen
retain this in my UI logic and pass the username and password to my persistent
modules when setting up my connection and querying the database? And is my
method for retrieving database info correct?