创建只读用户：

grant connect to user;

grant create session to user;

1.创建角色

CREATE ROLE SELECT_ROLE

2.给角色分配权限

grant SELECT ANY DICTIONARY to SELECT_ROLE;

grant SELECT ANY TABLE to SELECT_ROLE;

grant SELECT ANY TRANSACTION to SELECT_ROLE;

grant SELECT ANY SEQUENCE to SELECT_ROLE;

3.把角色赋予指定账户

grant SELECT_ROLE to user;

4.删除角色

drop role SELECT_ROLE;

5：查询

select * from dba_sys_privs WHERE GRANTEE='SELECT_ROLE';

select * from role_sys_privs WHERE ROLE='SELECT_ROLE';

select * from dba_tab_privs WHERE GRANTEE='SELECT_ROLE';

创建读存储过程的用户

1:创建角色

CREATE ROLE DEBUG_PROCEDURE

2：给角色分配权限

grant EXECUTE ANY PROCEDURE to DEBUG_PROCEDURE;

grant CREATE ANY PROCEDURE to DEBUG_PROCEDURE;

grant DEBUG ANY PROCEDURE to DEBUG_PROCEDURE;

3.把角色赋予指定账户

grant DEBUG_PROCEDURE TO user;