I'm trying to implement an updated SSO solution using SAML in ACF 2021. Would you protect a given application by putting the InitSAMLAuthRequest() in the onRequestStart in the Application.cfc? That would seem to call it with every request, which doesn't seem right though. And how does the value of relaystate effect this?