HI @veroca
The docs are covering some complex scenarios. The short version:
When you start this flow, the user authenticates with their credentials. This creates and Auth0 session
Then the redirect triggers and they are redirected.
At this point, whether triggered through a rule or an action, the redirect app can do silent auth.
This is because the Auth0 session already exists.
You must take care with your rules to make sure that there is no backdoor to the original flow getting completed before the redirect is done.
John