Oauth Google Social Login Restrict to Domain

Is there a way to restrict google social login in erpnext to one domain?

i.e. allow only users from companyname.com such as someuser@companyname.com

Not out of the box, you will have to write a hook on User validate.

BTW, a new sign up has no access other than the portal / website.

Seems like an essential feature. Do you consider adding it?