"application/vnd.kde.karbon",
				"application/vnd.kde.kchart",
				"application/vnd.kde.kformula",
				"application/vnd.kde.kivio",
				"application/vnd.kde.kontour",
				"application/vnd.kde.kpresenter",
				"application/vnd.kde.kspread",
				"application/vnd.kde.kword",
				"application/vnd.kenameaapp",
				"application/vnd.kidspiration",
				"application/vnd.kinar",
				"application/vnd.koan",

		HTTPStatusCode: http.StatusConflict,
	},
	ErrNoAccessKey: {
		Code:           "AccessDenied",
		Description:    "No AWSAccessKey was presented",
		HTTPStatusCode: http.StatusForbidden,
	},
	ErrInvalidToken: {
		Code:           "InvalidTokenId",
		Description:    "The security token included in the request is invalid",

  // empty there is no information available.
  // +optional
  optional string reason = 1;

  // A human-readable description of the cause of the error.  This field may be
  // presented as-is to a reader.
  // +optional
  optional string message = 2;

  // The field of the resource that has caused this error, as named by its JSON

	// Policies were found, evaluate all of them.
	if !isOwnerDerived {
		availablePoliciesStr, c := sys.store.MergePolicies(strings.Join(policies, ","))
		if availablePoliciesStr == "" {
			// all policies presented in the claim should exist
			iamLogIf(GlobalContext, fmt.Errorf("expected policy (%s) missing from the JWT claim %s, rejecting the request", policies, iamPolicyClaimNameOpenID()))

			return false
		}