Our users sign in to Moodle using the G Suite Education logins (using OAuth2).
On the signing-in page, when they click on the "Google" button to sign in, it automatically tries to log them in using the current gmail account. Since most students are logged into their private gmail accounts (in other tabs for example), Moodle tries to log them in using their same gmail account and they get an error ("This client is restricted to users within its organization.").
The workaround is that they have to sign out of any other google account, before clicking on the Google button.
Is there a way that they're asked to enter their G Suite email address even if they are already signed in to Google.