Removed all of the 'not required at this time' grants.

README.md

+
 # Readme 
 
 I managed Oracle databases for at least 15 years. I have developed a number of helpful tools and utilities and my goal is to pull a number of those assets together, make them better, and put them here in ArcSQL. Enjoy!
@@ -28,8 +29,9 @@ As an administrative user perform the following step.
 Perform the following steps as the user whom received the grants in the last step.
 
 1. Consider running uninstall_arcsql.sql if you are testing development versions of the product to ensure all tables are completely rebuilt.
-
 2. Run arcsql_install_single_file.sql.
+3. To start the DBMS_JOB's which run any recurring tasks run "exec arcsql.run;" command.
+4. To stop the delivered DBMS_JOB's run "exec arcsql.stop;" command;
 
 ## Uninstall
 As the user who owns the ArcSQL objects run the uninstall_arcsql.sql script.

arcsql_schema.sql

@@ -240,6 +240,7 @@ where
   s.inst_id = l.inst_id and
   s.sid = l.sid and
   -- Don't monitor locks from data pump, triggers many false alarms.
+  -- Somewhere else we need to monitor for long running data pump jobs.
   s.module not like '%Data Pump%' and
   b.paddr (+) = s.paddr and
   b.inst_id (+) = s.inst_id and

arcsql_user.sql

 
--- Every grant below is not necessarily required.
--- When I get a chance I will do a better job of narrowing this down.
--- Some of these might be required in the future. 
--- If you see one you don't like remove it, compile.
--- If something breaks it will probably be the missing grant.
-
-define username="&1"
+define username="foo"
 
 -- Direct grant required to create sequences from PL/SQL code.
 grant create sequence to &username;
-   
 grant create session to &username;
-grant alter session to &username;
-grant dba to &username;
-grant select any table to &username;
-grant execute any procedure to &username;
-grant analyze any to &username;
-grant select any table to &username;
-grant alter any table to &username;
-grant alter any index to &username;
-grant execute on dbms_system to &username;
-grant execute on dbms_lock to &username;
-grant select on gv_$database to &username;
-grant select on gv_$instance to &username;
-grant select on gv_$session to &username;
-grant select on gv_$system_event to &username;
-grant select on gv_$waitstat to &username;
-grant select on gv_$sysstat to &username;
-grant select on dba_free_space to &username;
-grant select on dba_data_files to &username;
-grant select on dba_tables to &username;
-grant select on dba_segments to &username;
-grant select on dba_indexes to &username;
-grant select any dictionary to &username;
-grant create any directory to &username;
-grant create any synonym to &username;
-grant create public synonym to &username;
-grant alter system to &username;
-grant create user to &username;
-grant alter user to &username;
-grant drop user to &username;
 grant create table to &username;
-grant create role to &username;
-grant grant any object privilege to &username;
-grant drop any directory to &username;
-grant create database link to &username;
-grant EXEMPT ACCESS POLICY to &username;
-grant drop any table to &username;
-grant execute on dbms_system to &username;
-grant execute on dbms_lock to &username;
-grant delete any table to &username;
+grant create procedure to &username;
+grant create view to &username;
+
+-- These are used for some lock related views.
+grant select on sys.gv_$lock to &username;
+grant select on sys.gv_$session to &username;
+grant select on sys.gv_$bgprocess to &username;
+grant select on gv$locked_object to &username;
+grant select on dba_objects to &username;
+
+-- Used for SQL_LOG.
+grant select on gv$sql to &username;
+-- Only used if licensed and explicitly specified in the config_settings table.
+grant select on gv$active_session_history to &username;
+
+-- grant select on gv_$database to &username;
+-- grant select on gv_$instance to &username;
+-- grant select on gv_$session to &username;
+-- grant select on gv_$system_event to &username;
+-- grant select on gv_$waitstat to &username;
+-- grant select on gv_$sysstat to &username;
+-- grant alter session to &username;
+-- grant dba to &username;
+-- grant select any table to &username;
+-- grant execute any procedure to &username;
+-- grant analyze any to &username;
+-- grant select any table to &username;
+-- grant alter any table to &username;
+-- grant alter any index to &username;
+-- grant execute on dbms_system to &username;
+-- grant execute on dbms_lock to &username;
+-- grant select on dba_free_space to &username;
+-- grant select on dba_data_files to &username;
+-- grant select on dba_tables to &username;
+-- grant select on dba_segments to &username;
+-- grant select on dba_indexes to &username;
+-- grant select any dictionary to &username;
+-- grant create any directory to &username;
+-- grant create any synonym to &username;
+-- grant create public synonym to &username;
+-- grant alter system to &username;
+-- grant create user to &username;
+-- grant alter user to &username;
+-- grant drop user to &username;
+-- grant create role to &username;
+-- grant grant any object privilege to &username;
+-- grant drop any directory to &username;
+-- grant create database link to &username;
+-- grant EXEMPT ACCESS POLICY to &username;
+-- grant drop any table to &username;
+-- grant execute on dbms_system to &username;
+-- grant execute on dbms_lock to &username;
+-- grant delete any table to &username;