device.policy: Use auth-self-keep for enrollment

When user is requested for enrolling, we should ask for password as
anyone who has physical access to the machine could otherwise enroll
its own fingers, and have access to it.

Fixes #5

data/net.reactivated.fprint.device.policy.in

@@ -25,7 +25,7 @@
     <defaults>
       <allow_any>no</allow_any>
       <allow_inactive>no</allow_inactive>
-      <allow_active>yes</allow_active>
+      <allow_active>auth_self_keep</allow_active>
     </defaults>
   </action>