Sync Google Sheets to a Database in Real Time with Apps Script
Google Sheets is, often, the right interface for a small piece of business data. A team can edit it without permissions or migrations, the formulas are powerful enough for ad hoc analysis, and you don't need to build a CRUD app for something that has 50 rows. But Sheets is wrong for the second job most teams ask of it: being the source of truth that other software queries against.
The pattern below gives you the best of both: people keep editing in Sheets, and every change replicates within seconds to a real database (Postgres, MySQL, Supabase, anything with an HTTP API), which is then queryable by whatever needs to consume it. It uses an Apps Script onEdit trigger plus a small webhook endpoint. Total code: under 100 lines.
Why this is usually the right architecture
The classic alternative is to either (a) move the data fully out of Sheets and build a real admin UI - expensive, slow, and resented by the people who liked Sheets - or (b) periodically export the sheet to CSV and re-import it into the database. Option (b) is fine until your second consumer needs the data 5 minutes after an edit and the next batch export isn't for another 50 minutes.
Real-time sync from Sheets to a database keeps the editing experience that teams actually like, while making the data immediately available to dashboards, APIs, automated workflows, and other systems. The cost is the small operational footprint of running the webhook endpoint - typically a serverless function on Vercel, Cloudflare Workers, or AWS Lambda, costing pennies per month at modest volume.
Architecture overview
[Google Sheet] -- onEdit trigger --> [Apps Script]
|
| HTTPS POST (JSON)
v
[Webhook endpoint]
|
| INSERT/UPDATE
v
[Database]Three components. The Sheet is unchanged from a user's perspective. The Apps Script is a few dozen lines of glue. The webhook endpoint is a small piece of code (Node, Python, Go - your choice) that receives the JSON payload and writes to your database.
Step 1: The Apps Script side
In your Sheet, open Apps Script (Extensions → Apps Script). Paste this and replace the constants:
const WEBHOOK_URL = 'https://your-webhook.example.com/sheet-sync';
const SHARED_SECRET = 'long-random-string-shared-with-server';
function onEdit(e) {
// Sanity guard - only react to actual edits
if (!e || !e.range) return;
const sheet = e.source.getActiveSheet();
const range = e.range;
const row = range.getRow();
// Ignore header row
if (row === 1) return;
// Read the full row that was changed
const lastCol = sheet.getLastColumn();
const headerRange = sheet.getRange(1, 1, 1, lastCol);
const headers = headerRange.getValues()[0];
const rowValues = sheet.getRange(row, 1, 1, lastCol).getValues()[0];
// Build a payload object
const payload = { sheet: sheet.getName(), row: row, data: {} };
headers.forEach((h, i) => { payload.data[h] = rowValues[i]; });
// Fire-and-forget POST to the webhook
try {
UrlFetchApp.fetch(WEBHOOK_URL, {
method: 'post',
contentType: 'application/json',
headers: { 'X-Shared-Secret': SHARED_SECRET },
payload: JSON.stringify(payload),
muteHttpExceptions: true
});
} catch (err) {
// Log to a 'sync_errors' tab so you can audit later
const errSheet = e.source.getSheetByName('sync_errors')
|| e.source.insertSheet('sync_errors');
errSheet.appendRow([new Date(), sheet.getName(), row, String(err)]);
}
}That's the entire Sheets side. Every time someone edits a non-header cell, the script fires the full updated row to your webhook within milliseconds.
Step 2: The webhook endpoint
A minimal Node.js (Express) version, deployable to Vercel, Cloudflare Workers, or any serverless platform:
// /api/sheet-sync.js
import { Pool } from 'pg';
const pool = new Pool({ connectionString: process.env.DATABASE_URL });
export default async function handler(req, res) {
if (req.method !== 'POST') return res.status(405).end();
if (req.headers['x-shared-secret'] !== process.env.SHARED_SECRET) {
return res.status(401).end();
}
const { sheet, row, data } = req.body;
if (!sheet || !row || !data) return res.status(400).end();
// Upsert into a table named after the sheet (sanitize first!)
const allowedSheets = ['customers', 'orders', 'inventory'];
if (!allowedSheets.includes(sheet)) return res.status(400).end();
// Convert keys/values to columns/params
const cols = Object.keys(data);
const vals = Object.values(data);
const placeholders = vals.map((_, i) => `$${i + 2}`).join(', ');
const updateSet = cols.map((c, i) => `"${c}" = $${i + 2}`).join(', ');
const sql = `
INSERT INTO "${sheet}" (sheet_row, ${cols.map(c => `"${c}"`).join(', ')})
VALUES ($1, ${placeholders})
ON CONFLICT (sheet_row) DO UPDATE SET ${updateSet}
`;
await pool.query(sql, [row, ...vals]);
res.status(200).json({ ok: true });
}The key idea: sheet_row is the primary key, matching the spreadsheet row number. ON CONFLICT ... DO UPDATE handles both new rows and edits to existing rows with the same SQL statement (an upsert). Postgres syntax shown; MySQL's equivalent is INSERT ... ON DUPLICATE KEY UPDATE.
Step 3: Handle deletes (the tricky part)
Apps Script's onEdit only fires when an edit happens - not when a row is deleted. If someone deletes row 7, the script doesn't notice. Two reasonable patterns to deal with this:
Pattern A: soft delete. Add a "deleted" column to the sheet. Instead of right-clicking → Delete, the convention becomes "set deleted = TRUE." The sync sees the edit, the database row keeps existing but is marked deleted, and any consumer queries can filter WHERE NOT deleted. Simplest by far.
Pattern B: periodic reconciliation. Add a time-based trigger that runs every 10 minutes, reads all current row IDs from the sheet, and deletes any database rows whose sheet_row isn't in that list. More work, but handles the case where you really do need hard deletes without changing user behavior.
Step 4: Initial backfill
The script above only catches future edits. To populate the database with what's already in the sheet, run this once from the Apps Script editor:
function backfillAll() {
const sheet = SpreadsheetApp.getActiveSheet();
const data = sheet.getDataRange().getValues();
const headers = data[0];
for (let i = 1; i < data.length; i++) {
if (data[i].every(v => v === '')) continue; // skip empty rows
const payload = { sheet: sheet.getName(), row: i + 1, data: {} };
headers.forEach((h, j) => { payload.data[h] = data[i][j]; });
UrlFetchApp.fetch(WEBHOOK_URL, {
method: 'post',
contentType: 'application/json',
headers: { 'X-Shared-Secret': SHARED_SECRET },
payload: JSON.stringify(payload)
});
Utilities.sleep(200); // gentle throttling
}
}Runs once. Replays every existing row through the same webhook. Takes about 10-15 minutes for 1,000 rows.
Operational notes
Authentication. The X-Shared-Secret header is the minimum bar - both sides know a secret string, and the endpoint rejects requests without it. For higher security, use HMAC signatures on the payload. GitHub's webhook signature spec is a good reference implementation.
Rate limits. Apps Script can make about 20,000 URL fetches per day on a free account, which is plenty for normal editing volume. If you're seeing more than that, you probably have a runaway script or someone is doing a bulk paste of 10,000 rows.
Retries. The script above is fire-and-forget. If the webhook returns a 500, the edit is logged to sync_errors but not retried. For most use cases this is fine; for higher reliability, use a small retry loop with exponential backoff before falling back to the error log.
Latency. End-to-end latency from edit to database write is typically 1-3 seconds. onEdit is a "simple" trigger and runs synchronously, but Apps Script execution time itself isn't deterministic - expect occasional spikes to 5+ seconds.
When to use this pattern (and when not to)
| Approach | Edit-to-DB latency | Engineering cost | Keeps Sheets UX | Right for |
|---|---|---|---|---|
| Periodic CSV export | Minutes-hours | Tiny | Yes | One-way reporting only |
| Apps Script onEdit → webhook (this post) | 1-3 seconds | ~100 LOC | Yes | Internal CRMs, feature flags, ops dashboards |
| n8n / Zapier "new row" trigger | 1-15 min polling | No-code | Yes | Low-volume integrations |
| Sheets API polling from your app | Whatever poll interval | Medium | Yes | When you can't add Apps Script |
| Build a proper admin UI | Instant | Days-weeks + ongoing | No - team loses Sheets | High volume, transactional needs |
Use it when: the Sheet is the canonical editing interface and you need the data available to other systems quickly. Internal CRMs, ops dashboards, lightweight admin tools, and small business apps where Sheets is the customer-facing surface area.
Don't use it when: the data needs strong consistency guarantees (Sheets is eventually-consistent, not transactional). Don't use it for financial transactions, inventory with reservation logic, or anything where two simultaneous edits could conflict and cause data loss.
Don't use it when: the volume is high enough that a real database editor would be cheaper. If 20 people are editing the sheet constantly and you're paying for engineering time to maintain the sync, build the real app.
What we use this for ourselves
An internal "feature flags" sheet where the product team can toggle flags without an engineer, with the changes appearing in our backend within seconds. A "support response templates" sheet where the customer success team owns the canonical copy, and the help app reads it live. A "pricing experiments" sheet where the growth team controls the pricing variants without a deploy. Each one of these started as "let me just put it in a sheet for now" and the sync pattern is what let it stay there.
Sources & Further Reading
- Apps Script trigger event objects (onEdit, etc.)
- UrlFetchApp reference
- Postgres: INSERT ... ON CONFLICT (upsert)
- GitHub: Securing webhooks with HMAC signatures
- Supabase API docs - good fit if you want a "database with HTTP API" without building one
Frequently asked questions
Why sync Sheets to a database instead of just using Sheets?
Sheets is the right editing interface for many small business datasets but the wrong source of truth for other software to query against. Real-time sync keeps the editing experience teams like, while making the data immediately available to dashboards, APIs, and automated workflows. The cost is a small serverless webhook costing pennies per month.
What's the architecture in three lines?
Google Sheet onEdit trigger → Apps Script fires HTTPS POST with JSON → serverless webhook endpoint upserts into Postgres/MySQL/Supabase. Total code under 100 lines: ~30 lines Apps Script + ~25 lines Node webhook.
How do I handle row deletes?
onEdit doesn't fire on deletes. Two options: (A) soft delete - add a "deleted" column to the sheet, set it TRUE instead of removing rows, consumers filter WHERE NOT deleted. (B) periodic reconciliation - a time-based trigger every 10 min reads current row IDs and deletes DB rows that no longer exist. Soft delete is simpler.
How do I populate the database with existing rows?
Run a one-time backfillAll() function from the Apps Script editor. It reads the entire sheet, replays each row through the same webhook with Utilities.sleep(200) between rows. About 10-15 minutes for 1,000 rows.
How do I secure the webhook?
Minimum bar: an X-Shared-Secret header that both sides know and the endpoint validates. For higher security, HMAC-sign the payload (GitHub's webhook signature spec is a good reference). Also keep an allow-list of valid sheet names on the server - prevents a new sheet with a SQL-keyword name from silently breaking the whole sync.
When should I NOT use this pattern?
When you need strong consistency or transactional guarantees - Sheets is eventually-consistent. Don't use it for financial transactions, inventory with reservation logic, or anywhere simultaneous edits could conflict and lose data. Also don't use it when volume is high enough that engineering time to maintain the sync exceeds the cost of building a real admin UI.