First of all I know my code is highly vulnerable to SQL injections, but I wanted to code the base first. I have a feeling this can be done with fewer lines and less repeating. I'm sorry if it is really bad code I just started learning C#.
public DataTable GetData(string search, int filter)
{
switch (filter)
{
case 0:
sqlQuery = string.Format("SELECT * FROM movies WHERE movie_id = {0} OR movie_name = \"{0}\" OR movie_director = \"{0}\";", search);
break;
case 1:
sqlQuery = string.Format("SELECT * FROM movies WHERE move_id = {0};", search);
break;
case 2:
sqlQuery = string.Format("SELECT * FROM movies WHERE movie_name = \"{0}\"", search);
break;
case 3:
sqlQuery = string.Format("SELECT * FROM movies WHERE movie_director = \"{0}\";", search);
break;
default:
sqlQuery = "SELECT * FROM movies";
break;
}