Nice post Jijo.

I too have been moving over to Zope for some of our projects as you may already know. I can't find anything in the PHP world that compares to Zope's built-in security model.

Perhaps what PHP needs is a framework that treats security as an essential component and not as an afterthought. So far, I haven't come across anything.

zope is undoubtedly a very robust framework. how do you address the issues :

- speed (a lot has been said regarding the performance of zope)

- marketability (in terms of plugging it to future clients). most developers code at the mercy of what the clients have in their web application host of choice.

thanks in advance.

For single-server Zope installations, using a caching HTTP accelerator like Squid in front of the Zope instance significantly improves its performance. For installations that need more than one server, Zope Enterprise Objects (ZEO) allows you to have a farm of Zope instances that keep each other up-to-date. Coupled with a load-balancer like Pound, this allows you to scale a server farm as the load increases without having to drastically change your web application structure.

As to web application developers being at the mercy of their clients' choices, that's just how life is. Using PHP doesn't fix things if you have a client who insists on using ASP, does it? Of course PHP is admittedly more widely-supported on hosting providers, although there are also a number of good hosting providers who provide Zope hosting.

Yeah sadly MS has gained a lot of footing on the SME scene, and has somehow convinced a lot of people that .NET is "secure" (but that's for a whole different topic)

I have been doing some research regarding Ruby on Rails against Zope (as they are primarily good frameworks for their respective languages) and it seems RoR doesn't have an extensive support for security that Zope have. Do you have any recommendations regarding the matter? Somewhat a balance between RAD and robust framework capabilities.

In addition, does Zope offer an Object Relational Mapping Layer out of the box in conjunction with the usual DBs? How i wish that OODBMS'es would flourish in the enterprise scene.

Lastly, being a PHP developer namespaces and unicode, i18n support in general are probably my top frustrations. Does Zope offer good support for this? It's all sad when you are at the mercy of wide acceptance, being a PHP developer i can't even make the switch to PHP5.

You may want to check out the React Framework for Zope. It's still a very young project, but I'm sure you'll want to check it out. It aims to bring the MVC organization popularized by RoR to the Zope framework and make web application development on Zope more fun.

I don't know if it qualifies as an "Object Relational Mapping Layer", but accessing data in SQL RDBMSes using Z SQL Methods is painless. Z SQL Methods are actually one of the strongest points of Zope as a web application development platform for enterprises, since the Z SQL Methods, which contain your SQL, can be maintained by a separate team of SQL experts, while the actual web interface can be delegated to a team of Web Interface experts, who will access the data through the Z SQL objects. You'll probably want to give the Z SQL Methods User's Guide a quick spin to see what Z SQL Methods are all about, and if they'll suit your needs.

The i18n issue I don't know squat about, honestly. A quick Google for "zope i18n" turns up quite a bit, but I don't know what your particular i18n requirements are, and whether Zope gracefully supports these out of the box, at the moment.

yeah thanks for the responses. i'll sure take a look at react, and zope. as of now i need to eat so that means i must continue to develop using PHP.