because you can't have a full php application that connects to the user's signer, you're gonna need some js for that (or have the user enter their nsec -- terrible idea), and at that point you just have a mostly js application, with some php. I'm aware that there are tools to execute php in the browser, but at that point you're just running javascript with extra steps. if you want a web frontend to use nostr, be decentralized (i.e. the server is not the tool contacting the websockets) and you don't assume every user is gonna self-host the client, there's no way around that.