Implement rules in the registration route (/api/auth/local/register)

I’m on a project in strapi that uses native strapi authentication to register users.
Works fine, gives me back the token easily. However, in this way, a registration can be made ignoring the project rules if a POST is made via insominia/postman etc… I would like to be able to limit the registration in this route (/api/auth/local/register) by implementing rules such as:

  • registration can only be done if the email is from a registered company (example:

and the other user fields cannot be received directly. Only when doing a crud update on a custom controller

Thanks for your help