This packages creates an AWS EC2 configured as a Twingate connector.

Using Twingate to access your VPC permits high performance connectivity whilst avoiding SSH or the overhead & limitations of Session Manager.

This construct will deploy the connector into a public subnet by default in order to support P2P connections. Only outbound connections are permitted.

JS/TS: npm i cdk-twingate -D

The Twingate credentials can be passed in via Secrets Manager (Recommended) or as a hardcoded string.

import { TwingateConnector } from 'cdk-twingate';

// Secrets Manager
const secret = Secret.fromSecretNameV2(stack, 'ApiSecrets', 'twingate-connector-1');

const connector = new TwingateConnector(stack, 'TwingateConnector-1', {
  vpc,
  twingateDomain: 'https://mycompany.twingate.com',
  twingateCredentials: {
    secretsManager: {
      secret: secret,
      accessToken: 'ACCESS_TOKEN',
      refreshToken: 'REFRESH_TOKEN',
    },
  },
});

Whatever resource you intend to reach should permit connections from the EC2 on the relevant port, naturally.