Commit 1e6ae51e authored by Ethan Post's avatar Ethan Post

Removed all of the 'not required at this time' grants.

parent 3e543394
# Readme
I managed Oracle databases for at least 15 years. I have developed a number of helpful tools and utilities and my goal is to pull a number of those assets together, make them better, and put them here in ArcSQL. Enjoy!
......@@ -28,8 +29,9 @@ As an administrative user perform the following step.
Perform the following steps as the user whom received the grants in the last step.
1. Consider running uninstall_arcsql.sql if you are testing development versions of the product to ensure all tables are completely rebuilt.
2. Run arcsql_install_single_file.sql.
3. To start the DBMS_JOB's which run any recurring tasks run "exec arcsql.run;" command.
4. To stop the delivered DBMS_JOB's run "exec arcsql.stop;" command;
## Uninstall
As the user who owns the ArcSQL objects run the uninstall_arcsql.sql script.
......
......@@ -240,6 +240,7 @@ where
s.inst_id = l.inst_id and
s.sid = l.sid and
-- Don't monitor locks from data pump, triggers many false alarms.
-- Somewhere else we need to monitor for long running data pump jobs.
s.module not like '%Data Pump%' and
b.paddr (+) = s.paddr and
b.inst_id (+) = s.inst_id and
......
-- Every grant below is not necessarily required.
-- When I get a chance I will do a better job of narrowing this down.
-- Some of these might be required in the future.
-- If you see one you don't like remove it, compile.
-- If something breaks it will probably be the missing grant.
define username="&1"
define username="foo"
-- Direct grant required to create sequences from PL/SQL code.
grant create sequence to &username;
grant create session to &username;
grant alter session to &username;
grant dba to &username;
grant select any table to &username;
grant execute any procedure to &username;
grant analyze any to &username;
grant select any table to &username;
grant alter any table to &username;
grant alter any index to &username;
grant execute on dbms_system to &username;
grant execute on dbms_lock to &username;
grant select on gv_$database to &username;
grant select on gv_$instance to &username;
grant select on gv_$session to &username;
grant select on gv_$system_event to &username;
grant select on gv_$waitstat to &username;
grant select on gv_$sysstat to &username;
grant select on dba_free_space to &username;
grant select on dba_data_files to &username;
grant select on dba_tables to &username;
grant select on dba_segments to &username;
grant select on dba_indexes to &username;
grant select any dictionary to &username;
grant create any directory to &username;
grant create any synonym to &username;
grant create public synonym to &username;
grant alter system to &username;
grant create user to &username;
grant alter user to &username;
grant drop user to &username;
grant create table to &username;
grant create role to &username;
grant grant any object privilege to &username;
grant drop any directory to &username;
grant create database link to &username;
grant EXEMPT ACCESS POLICY to &username;
grant drop any table to &username;
grant execute on dbms_system to &username;
grant execute on dbms_lock to &username;
grant delete any table to &username;
grant create procedure to &username;
grant create view to &username;
-- These are used for some lock related views.
grant select on sys.gv_$lock to &username;
grant select on sys.gv_$session to &username;
grant select on sys.gv_$bgprocess to &username;
grant select on gv$locked_object to &username;
grant select on dba_objects to &username;
-- Used for SQL_LOG.
grant select on gv$sql to &username;
-- Only used if licensed and explicitly specified in the config_settings table.
grant select on gv$active_session_history to &username;
-- grant select on gv_$database to &username;
-- grant select on gv_$instance to &username;
-- grant select on gv_$session to &username;
-- grant select on gv_$system_event to &username;
-- grant select on gv_$waitstat to &username;
-- grant select on gv_$sysstat to &username;
-- grant alter session to &username;
-- grant dba to &username;
-- grant select any table to &username;
-- grant execute any procedure to &username;
-- grant analyze any to &username;
-- grant select any table to &username;
-- grant alter any table to &username;
-- grant alter any index to &username;
-- grant execute on dbms_system to &username;
-- grant execute on dbms_lock to &username;
-- grant select on dba_free_space to &username;
-- grant select on dba_data_files to &username;
-- grant select on dba_tables to &username;
-- grant select on dba_segments to &username;
-- grant select on dba_indexes to &username;
-- grant select any dictionary to &username;
-- grant create any directory to &username;
-- grant create any synonym to &username;
-- grant create public synonym to &username;
-- grant alter system to &username;
-- grant create user to &username;
-- grant alter user to &username;
-- grant drop user to &username;
-- grant create role to &username;
-- grant grant any object privilege to &username;
-- grant drop any directory to &username;
-- grant create database link to &username;
-- grant EXEMPT ACCESS POLICY to &username;
-- grant drop any table to &username;
-- grant execute on dbms_system to &username;
-- grant execute on dbms_lock to &username;
-- grant delete any table to &username;
Markdown is supported
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment