The message "This application was created by a Google Apps Script user" is a mandatory security banner displayed by Google on web apps created with Google Apps Script. It is designed to alert users that the application was not created by Google and may request sensitive permissions.
While there is no single button to "turn off" this banner for free consumer accounts, there are several methods to remove or bypass it depending on your environment. 1. Embed the Web App in a Google Site
The most reliable "no-cost" way to remove the banner for external users is to embed your Apps Script web app into a Google Site.
When a web app is viewed through an iframe on a Google Site, Google typically suppresses the author warning banner.
Requirement: Ensure your web app deployment is set to "Anyone" or "Anyone with a Google Account" and that the site itself is shared with your target audience. 2. Use a Google Workspace Account (Internal Use)
If you are developing for an organization, the banner is automatically hidden for users within the same domain.
If you own a Google Workspace (Business, Enterprise, or Education) account and deploy the script so only "People within [Your Domain]" can access it, they will not see the banner.
The warning only appears when the script is accessed by someone outside your Workspace organization or by a consumer (Gmail) account user. 3. Complete Google Cloud Project Verification
For public-facing applications that cannot be restricted to a Workspace domain, the official way to remove security warnings is through Google Cloud verification.
Process: You must associate your Apps Script with a standard Google Cloud Platform (GCP) project instead of the default "default" project.
Outcome: Once your project is verified as a "Verified Publisher" by Google, the banner and "unverified app" warnings will disappear for all users. Note that this process can take several weeks and may require a security audit if you use restricted data scopes. 4. Technical Workarounds (For Personal Viewing)
If you only need to hide the banner for yourself (e.g., on a public display or TV), you can use browser-based tools:
Custom JavaScript Extensions: Extensions like "Custom JavaScript for websites" can be used to inject code that sets the CSS of the banner to display: none;.
GitHub Solutions: Community-made plugins such as apps-script-remove-warning on GitHub are designed to auto-hide these elements in your browser.
Note: These methods only hide the banner for you and anyone else who has the extension installed; they do not remove it for the general public. Comparison of Methods Complexity Google Sites Embedding General Public Workspace (Internal) Employees/Team Paid Account GCP Verification General Public Free (but time-intensive) Browser Extension
To remove the "This application was created by a Google Apps Script user" banner, you must transition from a personal script to a Google Cloud Project (GCP) with an OAuth consent screen that has been verified by Google. Phase 1: Create a Standard Google Cloud Project
By default, Apps Script uses a "Default" project that triggers the warning. You need to link it to a manual project. Open your script at google.com. Go to Project Settings (gear icon).
Under Google Cloud Platform (GCP) Project, click Change project.
Enter the Project Number of a project you created in the Google Cloud Console. Phase 2: Configure the OAuth Consent Screen
The banner acts as a safety warning for unverified developers. To lift it, you must identify your "app."
In the GCP Console, go to APIs & Services > OAuth consent screen.
Select External (if you want people outside your workspace to use it) or Internal (for Google Workspace users only). Fill out the required App Information: App name: The name users will see. User support email: Your email. Developer contact info: Your email. The message " This application was created by
Add the Scopes your script uses (e.g., https://googleapis.com). Phase 3: Verification (The Critical Step)
The banner will only disappear once Google trusts the application.
For Internal Apps: If you are a Google Workspace user and set the app to "Internal," the banner usually disappears immediately for members of your organization. For External Apps: You must click Submit for Verification.
Google will review your privacy policy and terms of service.
Once approved, the "unverified app" warning and the footer banner are removed. Quick Workarounds If you cannot go through full verification:
Google Workspace: Deploy the script within a managed organization. If the script and the user are in the same domain, the banner is often suppressed.
Web App URL: Ensure you are using the /exec URL and not the /dev URL, as the development mode always shows debugging headers.
Custom Domain: Embedding the script in a site via an Use code with caution.
The Result: While the banner still technically exists inside the iframe, it stays contained within that frame. If you style your website correctly, the banner feels less like a "system warning" and more like a small footer or header element within a specific window. Method 2: Using a Custom Domain with a Proxy (Advanced)
If you want to completely strip the banner, you cannot host the app on Google’s servers directly. Instead, you can use a "proxy" or a middle-man server.
Using a service like Cloudflare Workers or a simple Node.js/Express server, you can fetch the HTML content from your Google Apps Script, strip out the Google-injected header tags, and serve the cleaned HTML on your own custom domain. Pros: Complete removal of the banner; professional URL.
Cons: Requires significant coding knowledge; may violate Google’s Terms of Service regarding masking the origin of the script.
Method 3: Switching to Google Cloud Run (The Professional Path)
If the "Created by a Google Apps Script user" banner is a dealbreaker for a professional project, it may be time to move beyond Apps Script.
Google Apps Script is designed for quick internal tools. For client-facing applications, developers often migrate their logic to Google Cloud Run or Firebase Hosting.
Cloud Run: Allows you to run code in any language (Python, Node.js, Go) without any forced headers.
No Disclaimers: Since you are hosting the environment, Google does not inject any security banners. Why Does Google Put It There?
It is important to remember why this exists. Google Apps Script allows anyone to write code that can access Google Drive, Gmail, and Calendar data. Without that banner, a malicious actor could easily build a fake "Google Login" page that looks identical to a real one. The banner serves as a "Proceed with Caution" sign for the end-user.
To summarize your options for dealing with the "This application was created by a Google Apps Script user" message:
Accept it: For internal company tools, it is rarely an issue.
Iframe it: Embed it into your own site to make it feel like part of a larger dashboard. Conclusion The message “This application was created by
Migrate: If branding is paramount, move your project to a dedicated hosting platform like Firebase or Vercel.
By understanding these limitations, you can better plan your project's user experience from the start.
The gray banner at the bottom of the screen was a digital scar. It read:
"This application was created by a Google Apps Script user."
For Elias, a self-taught coder working out of a cramped studio, that banner was a neon sign pointing to his amateur status. He had built "The Oracle," an algorithm designed to predict localized market crashes, using nothing but Google Sheets and a dream. But every time he pitched it to a venture capitalist, their eyes drifted to that tiny, gray disclaimer. To them, it didn't look like a revolution; it looked like a hobby.
One Tuesday, Elias snapped. He didn't just want the banner gone; he wanted the
He spent forty-eight hours straight buried in documentation. He learned that the banner was a security feature, a permanent "badge of origin" for scripts running on Google’s infrastructure. It was there to protect users from phishing, ensuring they knew the app wasn't an official Google product.
"I don't want to hide," Elias whispered to his glowing monitor, "I want to be independent."
He realized he couldn't just "CSS-hide" his way out of this. To remove the mark, he had to graduate. He began the grueling process of migrating his entire codebase. He moved the logic from Apps Script to a dedicated Node.js server. He swapped the Google Sheet for a robust SQL database. He replaced the simple function with a professional front-end framework.
As he hit 'Deploy' on his own private domain, the banner finally vanished. The interface was clean, white, and professional.
A week later, Elias sat across from a high-tier investor. The man looked at the screen, scrolled through the seamless, branding-free dashboard, and nodded. "Impressive. It feels solid. Built this from scratch?"
Elias smiled, remembering the gray banner that had once haunted him. "It had humble beginnings," he said, "but it grew up." technical steps
to migrate a project away from Apps Script, or should we refine the narrative arc of the story?
Removing the "This application was created by a Google Apps Script user" banner is a common goal for developers looking to create a more professional-looking web app. This banner is a security feature by Google to alert users that the application was not created by Google itself.
While there is no single "off" switch in the settings for free accounts, you can use these methods to hide or remove it: 1. Embed the Web App in Google Sites
The most effective "native" workaround is to embed your Google Apps Script web app into a Google Sites page.
When a web app is viewed through an embedded frame on a Google Site, the banner is typically suppressed for visitors.
This is the preferred method if you want a professional presentation without requiring users to install anything. 2. Verify Your Project with Google Cloud (GCP)
For a permanent and official solution, you must associate your script with a standard Google Cloud Project and go through the OAuth verification process.
Create a GCP Project: Link your script to a new project in the Google Cloud Console.
Verification: Submit your app for verification. Once Google verifies you as a "verified publisher," the banner is removed for all users. For internal company tools → Switch to an
Note: This process can be technical and may take several weeks to complete. 3. Use within a Workspace Domain
If you are part of a Google Workspace (formerly G Suite) organization:
The banner is generally not shown to other users within the same domain as the script owner.
For users outside your domain, the verification process (Method 2) is still required to remove the warning. 4. Client-Side Browser Extensions (Personal Use)
If you only want to hide the banner for yourself or a specific set of users, you can use browser-based tools: Google Apps Script remove warning banner - Stack Overflow
Since the footer cannot be removed from native script.google.com URLs, three compliant methods exist.
If your app is used only by members of your Google Workspace organization, you can eliminate the warning without full public verification.
Steps:
Users inside your domain will no longer see the warning. External users will still see it.
When you deploy a Google Apps Script project as a web app, Google shows a security/permission screen before the app runs. One of the lines often displayed is:
This application was created by a Google Apps Script user
This happens because your script is not verified by Google and is using a default OAuth consent screen meant for personal/development use.
This method removes the visible footer by masking the GAS URL behind your own domain using a reverse proxy.
How it works:
app.yourcompany.com) points to a lightweight proxy server (NGINX, Apache, or a Cloud Function).script.google.com/macros/s/.../exec, rewrites HTML to strip the footer element, and serves the modified page.Example NGINX configuration:
location /
proxy_pass https://script.google.com/macros/s/AKfycb.../exec;
proxy_set_header Host script.google.com;
sub_filter '<div class="footer-branding">' '</div><!-- removed -->';
sub_filter_once off;
proxy_ssl_server_name on;
Advantages:
Disadvantages:
robots.txt and rate limits.If you are the user who created the script and you want to stop it from running automatically (e.g., sending emails at midnight), you must delete the triggers.
There is no legitimate code or workaround to bypass or remove this banner from a standard Google Apps Script web app. Any method claiming to do so would violate Google's terms of service and likely stop working or get your account flagged.
Would you like help migrating your Apps Script logic to a different Google Cloud platform that offers more control?
If you are seeing a prompt stating "This application was created by a Google Apps Script user" and you want to remove the application (or your connection to it), you are likely dealing with a Google Workspace Add-on, a web app, or an authorization token you previously granted.
Here is a helpful write-up on how to remove these applications and revoke their access to your Google account.
There are two distinct approaches to remove the “created by a Google Apps Script user” message.
© 2011 - 2024 LitExtension.com All Rights Reserved.