Absolutely. It only stops people who are half-heartedly malicious: bots stop and attackers get past either way. You now get the malicious uncoordinated person, but you also get a simpler code base and the peace of mind from knowing that your login system can't fail just because of a free third-party api.