Hello again,
The parameters are right, user doesn't have any moderator rights and is not whitelisted.
These are the results for the sessions table:
1. First user with Firefox logs in the site
-> sessions table has one record for the user and the session id (id1)
2. Second user logs in with same user/pass with Chrome
-> sessions table has one record for the user and different session id (id2)
3. Refreshing the Firefox tab (user 1 that now had to be logged out)
-> sessions table has 2 records for the user and with session ids (id1, id2)
So I could confirm that it deletes the session but on refresh of the browser is back.
Could you think what may be wrong?