Provide a more helpful reason instead of 'Bad Request' when payment fails due to expired CSRF token from firewall