authPrompt: Hide password when insensitive

The purpose of password peeking is to spot and correct errors;
the latter isn't possible when the entry is non-editable, so
we can hide the password again while authentication is ongoing.

https://gitlab.gnome.org/GNOME/gnome-shell/-/issues/3138

js/gdm/authPrompt.js

@@ -432,6 +432,8 @@ var AuthPrompt = GObject.registerClass({
 
         if (sensitive)
             this._entry.grab_key_focus();
+        else if (this._entry === this._passwordEntry)
+            this._entry.password_visible = false;
     }
 
     vfunc_hide() {