protected void updateInfo(object sender, EventArgs e) { string type = ddlTypes.SelectedValue; int newType = 1; string password; string email; string phonenumber; if (type == "Agent") { newType = 1; } else if (type == "Admin") { newType = 2; } if (tbPhoneNumber.Text == "") { phonenumber = tbPhoneNumber.Attributes["placeholder"]; } else { phonenumber = tbPhoneNumber.Text; } if (tbEmail.Text == "") { email = tbEmail.Attributes["placeholder"]; } else { email = tbEmail.Text; } if (tbPassword.Text == "") { password = tbPassword.Attributes["name"]; } else { password = EncryptPassword.encryptString(tbPassword.Text); } string name = Request.QueryString["username"]; string qry = "UPDATE users SET UserType=\"" + newType + "\", Password = '******', Email ='" + email + "', PhoneNumber = '" + phonenumber + "' WHERE UserName=\"" + name + "\""; MySqlConnection conn = new MySqlConnection(ConfigurationManager.ConnectionStrings["TestCapstone"].ConnectionString); conn.Open(); MySqlCommand cmd = new MySqlCommand(qry, conn); MySqlDataReader rdr = cmd.ExecuteReader(); conn.Close(); rdr.Close(); Response.Redirect("Registration.aspx"); }