PortableHole uses the Bukkit permissions API (aka "superperms") for all permission handling, so any superperms-compatible permissions plugin is supported. If you are not using a permissions plugin, then op status is required for certain admin functions - see the table below.
Give the portablehole.admin node to any server admins to allow complete control over the plugin.
By default, all players have permission to create holes with a tunnelling book (but see also the author_validation.players and author_validation.groups config settings).
|portablehole.admin||Parent node; gives all below nodes||ops|
|portablehole.create||Allows creation of holes||all players|
|portablehole.cost.exempt||Allows creation of holes without paying any costs||ops|
|portablehole.commands.info||Allows checking of various info with ||all players|
|portablehole.commands.reload||Allows reloading of plugin configuration with ||ops|
|portablehole.commands.give||Allows giving of tunnelling books with ||ops|
|portablehole.override.protection||Allows players to ignore protection plugins when creating tunnels||ops|
If you want to disallow certain players from creating holes at all (regardless of whose book they're using), you can give those players portablehole.create with a value of false. You might want to do this for a "guest" group for example, where tunnelling is a perk that needs to be earned.