should work

Author: jumde

README.md

@@ -0,0 +1,3 @@
+#Secure Headers
+
+Secure headers will help you to keep up with the new security headers. Just hit Analyze! and see what you're missing.

popup.css

@@ -1,4 +1,14 @@
 body {
-   width:400px;
-   height:300px;
+	width:300px;
+	height:400px;
 }
+
+.button {
+	position: absolute;
+    top: 50%;
+    left: 40%;
+}
+
+.wrapper {
+    text-align: center;
+}

popup.html

@@ -7,7 +7,9 @@
     <script type="text/javascript" src="popup.js"></script>
   </head>
   <body>
-    <button id="reload-page">Analyze headers on the current tab</button>
+    <div class="wrapper">
+      <button class="button" id="reload-page">Analyze!</button>
+    </div>
     <h1 id="title" hidden>Secure Headers</h1>
   </body>
   <script type="text/javascript" src="refresh.js"></script>

popup.js

@@ -41,11 +41,7 @@ function updateView(url, headers) {
     missingHeaders = missingSecurityHeaders(headers);
     missingHeadersHTML = showHeaders(missingHeaders, 'missing-headers');
     div.appendChild(missingHeadersHTML);
-    allHeadersButton = document.createElement("button");
-    allHeadersButtonText = document.createTextNode("All headers");
-    allHeadersButton.appendChild(allHeadersButtonText);
     div.appendChild(document.createElement("br"));
-    div.appendChild(allHeadersButton);
     document.body.appendChild(div);
 }
 

security_headers.json

@@ -1,5 +1,7 @@
 security_headers = [ 
     'x-frame-options',
     'x-xss-protection',
-    'random-security-header'
+    'content-security-policy',
+    'strict-transport-security',
+    'upgrade-insecure-requests'
 ]