- remove sessionKey from storage.

business/auth2/authprovider/weixin/weixin_mini.go

@@ -38,13 +38,15 @@ func (a *MiniAuther) VerifySecret(dummy, jsCode string) (authBind *model.AuthBin
 		db := dao.GetDB()
 		if authBind, err = dao.GetAuthBind(db, "", AuthTypeMP, sessionInfo.OpenID); dao.IsNoRowsError(err) {
 			var authBindList []*model.AuthBind
+			sessionKey := sessionInfo.SessionKey
+			sessionInfo.SessionKey = ""
 			if sessionInfo.UnionID != "" {
 				if authBindList, err = dao.GetAuthBindsByAuthID2(db, sessionInfo.UnionID, []string{AuthTypeWeixin, AuthTypeMP, AuthTypeMini}); err == nil && len(authBindList) > 0 {
 					authBind = authBindList[0]
 					authBind.Type = AuthTypeMP
 					authBind.AuthID = sessionInfo.OpenID
 					authBind.DetailData = string(utils.MustMarshal(sessionInfo))
-					authBind.UserData = sessionInfo.SessionKey
+					authBind.UserData = sessionKey
 					err = a.AddAuthBind(authBind, "admin")
 				}
 			}
@@ -54,7 +56,7 @@ func (a *MiniAuther) VerifySecret(dummy, jsCode string) (authBind *model.AuthBin
 					AuthID:     sessionInfo.OpenID,
 					AuthID2:    sessionInfo.UnionID,
 					DetailData: string(utils.MustMarshal(sessionInfo)),
-					UserData:   sessionInfo.SessionKey,
+					UserData:   sessionKey,
 				}
 			}
 		}